grafeas-client 0.1.0 → 0.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 4cff737925fbedb09d181a6f9eede152286cfda204b31c07ff3dd5d2b32b670d
-  data.tar.gz: c1ce6d5489eedfa15981a9e15be1c23e5775cf61e7e1518e0c1a1a29817c7fbc
+  metadata.gz: fecb264dfebc85d0171dfc0f9fbeb24c960fd7514c2de60fc98fca8bcf905cef
+  data.tar.gz: eb2195460145d81c127506ac71965b6e5e775633017c5761980337ea73c12775
 SHA512:
-  metadata.gz: c05e9bf064b61db1332ef73735265f5bed61147c96a801841dec3875bc959ae873ddb7fbf9d0c32890f7602a81d4133787e1b7a077cae7f781e3eaa8f5cbf1ad
-  data.tar.gz: 3e18ce3d0b9498da72d60f9c7af976421238432a5208d8437572b72a823d213fe606fff58c40d1261fb220fcc60f3bc3599e63f975aa7b95c95a380d5f925fe2
+  metadata.gz: 8c0d00f84dfe73bc1a4c12db3ce11abf5891dfb45f11bbdcbc2242ca84acc572cbedb3169a431f92c9c08c9e13a2294be9dd5faa1a671b0d8ce76993b930548f
+  data.tar.gz: 55a61693ddd623f46b9b34bc143d2a5d87d8ef0f6f0ba4f29f6b154f10531ab09a12e4c2536644948f12a214c06abd423eab6bcc1ba23168bf23cd8d50d213d3

data/lib/grafeas.rb

@@ -131,6 +131,10 @@ module Grafeas
   #     The default timeout, in seconds, for calls made through this client.
   #   @param metadata [Hash]
   #     Default metadata to be sent with each request. This can be overridden on a per call basis.
+  #   @param service_address [String]
+  #     Override for the service hostname, or `nil` to leave as the default.
+  #   @param service_port [Integer]
+  #     Override for the service port, or `nil` to leave as the default.
   #   @param exception_transformer [Proc]
   #     An optional proc that intercepts any exceptions raised during an API call to inject
   #     custom error handling.

data/lib/grafeas/v1.rb

@@ -119,6 +119,10 @@ module Grafeas
     #   The default timeout, in seconds, for calls made through this client.
     # @param metadata [Hash]
     #   Default metadata to be sent with each request. This can be overridden on a per call basis.
+    # @param service_address [String]
+    #   Override for the service hostname, or `nil` to leave as the default.
+    # @param service_port [Integer]
+    #   Override for the service port, or `nil` to leave as the default.
     # @param exception_transformer [Proc]
     #   An optional proc that intercepts any exceptions raised during an API call to inject
     #   custom error handling.
@@ -128,6 +132,8 @@ module Grafeas
         client_config: nil,
         timeout: nil,
         metadata: nil,
+        service_address: nil,
+        service_port: nil,
         exception_transformer: nil,
         lib_name: nil,
         lib_version: nil
@@ -139,6 +145,8 @@ module Grafeas
         metadata: metadata,
         exception_transformer: exception_transformer,
         lib_name: lib_name,
+        service_address: service_address,
+        service_port: service_port,
         lib_version: lib_version
       }.select { |_, v| v != nil }
       Grafeas::V1::GrafeasClient.new(**kwargs)

data/lib/grafeas/v1/doc/grafeas/v1/vulnerability.rb

@@ -55,22 +55,39 @@ module Grafeas
       # @!attribute [rw] affected_package
       #   @return [String]
       #     Required. The package this vulnerability affects.
-      # @!attribute [rw] min_affected_version
+      # @!attribute [rw] affected_version_start
       #   @return [Grafeas::V1::Version]
-      #     Required. The minimum version of the package this vulnerability affects.
+      #     The version number at the start of an interval in which this
+      #     vulnerability exists. A vulnerability can affect a package between
+      #     version numbers that are disjoint sets of intervals (example:
+      #     [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be
+      #     represented in its own Detail. If a specific affected version is provided
+      #     by a vulnerability database, affected_version_start and
+      #     affected_version_end will be the same in that Detail.
+      # @!attribute [rw] affected_version_end
+      #   @return [Grafeas::V1::Version]
+      #     The version number at the end of an interval in which this vulnerability
+      #     exists. A vulnerability can affect a package between version numbers
+      #     that are disjoint sets of intervals (example: [1.0.0-1.1.0],
+      #     [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its
+      #     own Detail. If a specific affected version is provided by a vulnerability
+      #     database, affected_version_start and affected_version_end will be the
+      #     same in that Detail.
       # @!attribute [rw] fixed_cpe_uri
       #   @return [String]
-      #     The [CPE URI](https://cpe.mitre.org/specification/) this vulnerability
-      #     was fixed in. It is possible for this to be different from the
-      #     affected_cpe_uri.
+      #     The distro recommended [CPE URI](https://cpe.mitre.org/specification/)
+      #     to update to that contains a fix for this vulnerability. It is possible
+      #     for this to be different from the affected_cpe_uri.
       # @!attribute [rw] fixed_package
       #   @return [String]
-      #     The package this vulnerability was fixed in. It is possible for this to
-      #     be different from the affected_package.
+      #     The distro recommended package to update to that contains a fix for this
+      #     vulnerability. It is possible for this to be different from the
+      #     affected_package.
       # @!attribute [rw] fixed_version
       #   @return [Grafeas::V1::Version]
-      #     Required. The version of the package this vulnerability was fixed in.
-      #     Setting this to VersionKind.MAXIMUM means no fix is yet available.
+      #     The distro recommended version to update to that contains a
+      #     fix for this vulnerability. Setting this to VersionKind.MAXIMUM means no
+      #     such version is yet available.
       # @!attribute [rw] is_obsolete
       #   @return [true, false]
       #     Whether this detail is obsolete. Occurrences are expected not to point to
@@ -150,10 +167,10 @@ module Grafeas
       # @!attribute [rw] affected_package
       #   @return [String]
       #     Required. The package this vulnerability was found in.
-      # @!attribute [rw] min_affected_version
+      # @!attribute [rw] affected_version
       #   @return [Grafeas::V1::Version]
-      #     Required. The minimum version of the package this vulnerability exists
-      #     in.
+      #     Required. The version of the package that is installed on the resource
+      #     affected by this vulnerability.
       # @!attribute [rw] fixed_cpe_uri
       #   @return [String]
       #     The [CPE URI](https://cpe.mitre.org/specification/) this vulnerability

data/lib/grafeas/v1/grafeas_client.rb

@@ -162,6 +162,10 @@ module Grafeas
       #   The default timeout, in seconds, for calls made through this client.
       # @param metadata [Hash]
       #   Default metadata to be sent with each request. This can be overridden on a per call basis.
+      # @param service_address [String]
+      #   Override for the service hostname, or `nil` to leave as the default.
+      # @param service_port [Integer]
+      #   Override for the service port, or `nil` to leave as the default.
       # @param exception_transformer [Proc]
       #   An optional proc that intercepts any exceptions raised during an API call to inject
       #   custom error handling.
@@ -171,6 +175,8 @@ module Grafeas
           client_config: {},
           timeout: DEFAULT_TIMEOUT,
           metadata: nil,
+          service_address: nil,
+          service_port: nil,
           exception_transformer: nil,
           lib_name: nil,
           lib_version: ""
@@ -225,8 +231,8 @@ module Grafeas
         end
 
         # Allow overriding the service path/port in subclasses.
-        service_path = self.class::SERVICE_ADDRESS
-        port = self.class::DEFAULT_SERVICE_PORT
+        service_path = service_address || self.class::SERVICE_ADDRESS
+        port = service_port || self.class::DEFAULT_SERVICE_PORT
         interceptors = self.class::GRPC_INTERCEPTORS
         @grafeas_stub = Google::Gax::Grpc.create_stub(
           service_path,

data/lib/grafeas/v1/vulnerability_pb.rb

@@ -21,11 +21,12 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
     optional :package_type, :string, 3
     optional :affected_cpe_uri, :string, 4
     optional :affected_package, :string, 5
-    optional :min_affected_version, :message, 6, "grafeas.v1.Version"
-    optional :fixed_cpe_uri, :string, 7
-    optional :fixed_package, :string, 8
-    optional :fixed_version, :message, 9, "grafeas.v1.Version"
-    optional :is_obsolete, :bool, 10
+    optional :affected_version_start, :message, 6, "grafeas.v1.Version"
+    optional :affected_version_end, :message, 7, "grafeas.v1.Version"
+    optional :fixed_cpe_uri, :string, 8
+    optional :fixed_package, :string, 9
+    optional :fixed_version, :message, 10, "grafeas.v1.Version"
+    optional :is_obsolete, :bool, 11
   end
   add_message "grafeas.v1.VulnerabilityNote.WindowsDetail" do
     optional :cpe_uri, :string, 1
@@ -51,7 +52,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
   add_message "grafeas.v1.VulnerabilityOccurrence.PackageIssue" do
     optional :affected_cpe_uri, :string, 1
     optional :affected_package, :string, 2
-    optional :min_affected_version, :message, 3, "grafeas.v1.Version"
+    optional :affected_version, :message, 3, "grafeas.v1.Version"
     optional :fixed_cpe_uri, :string, 4
     optional :fixed_package, :string, 5
     optional :fixed_version, :message, 6, "grafeas.v1.Version"

data/lib/grafeas/version.rb

@@ -14,5 +14,5 @@
 
 
 module Grafeas
-  VERSION = "0.1.0".freeze
+  VERSION = "0.2.0".freeze
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: grafeas-client
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.2.0
 platform: ruby
 authors:
 - Google LLC
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2019-06-21 00:00:00.000000000 Z
+date: 2019-07-09 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: google-gax
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.3'
+        version: '1.7'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.3'
+        version: '1.7'
 - !ruby/object:Gem::Dependency
   name: grpc-google-iam-v1
   requirement: !ruby/object:Gem::Requirement