grafeas-v1 0.15.0 → 0.16.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -0,0 +1,105 @@
1
+ # frozen_string_literal: true
2
+
3
+ # Copyright 2024 Google LLC
4
+ #
5
+ # Licensed under the Apache License, Version 2.0 (the "License");
6
+ # you may not use this file except in compliance with the License.
7
+ # You may obtain a copy of the License at
8
+ #
9
+ # https://www.apache.org/licenses/LICENSE-2.0
10
+ #
11
+ # Unless required by applicable law or agreed to in writing, software
12
+ # distributed under the License is distributed on an "AS IS" BASIS,
13
+ # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14
+ # See the License for the specific language governing permissions and
15
+ # limitations under the License.
16
+
17
+ # Auto-generated by gapic-generator-ruby. DO NOT EDIT!
18
+
19
+
20
+ module Grafeas
21
+ module V1
22
+ # The note representing an SBOM reference.
23
+ # @!attribute [rw] format
24
+ # @return [::String]
25
+ # The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
26
+ # @!attribute [rw] version
27
+ # @return [::String]
28
+ # The version of the format that the SBOM takes. E.g. if the format
29
+ # is spdx, the version may be 2.3.
30
+ class SBOMReferenceNote
31
+ include ::Google::Protobuf::MessageExts
32
+ extend ::Google::Protobuf::MessageExts::ClassMethods
33
+ end
34
+
35
+ # The occurrence representing an SBOM reference as applied to a specific
36
+ # resource. The occurrence follows the DSSE specification. See
37
+ # https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more
38
+ # details.
39
+ # @!attribute [rw] payload
40
+ # @return [::Grafeas::V1::SbomReferenceIntotoPayload]
41
+ # The actual payload that contains the SBOM reference data.
42
+ # @!attribute [rw] payload_type
43
+ # @return [::String]
44
+ # The kind of payload that SbomReferenceIntotoPayload takes. Since it's in
45
+ # the intoto format, this value is expected to be
46
+ # 'application/vnd.in-toto+json'.
47
+ # @!attribute [rw] signatures
48
+ # @return [::Array<::Grafeas::V1::EnvelopeSignature>]
49
+ # The signatures over the payload.
50
+ class SBOMReferenceOccurrence
51
+ include ::Google::Protobuf::MessageExts
52
+ extend ::Google::Protobuf::MessageExts::ClassMethods
53
+ end
54
+
55
+ # The actual payload that contains the SBOM Reference data.
56
+ # The payload follows the intoto statement specification. See
57
+ # https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md
58
+ # for more details.
59
+ # @!attribute [rw] type
60
+ # @return [::String]
61
+ # Identifier for the schema of the Statement.
62
+ # @!attribute [rw] predicate_type
63
+ # @return [::String]
64
+ # URI identifying the type of the Predicate.
65
+ # @!attribute [rw] subject
66
+ # @return [::Array<::Grafeas::V1::Subject>]
67
+ # Set of software artifacts that the attestation applies to. Each element
68
+ # represents a single software artifact.
69
+ # @!attribute [rw] predicate
70
+ # @return [::Grafeas::V1::SbomReferenceIntotoPredicate]
71
+ # Additional parameters of the Predicate. Includes the actual data about the
72
+ # SBOM.
73
+ class SbomReferenceIntotoPayload
74
+ include ::Google::Protobuf::MessageExts
75
+ extend ::Google::Protobuf::MessageExts::ClassMethods
76
+ end
77
+
78
+ # A predicate which describes the SBOM being referenced.
79
+ # @!attribute [rw] referrer_id
80
+ # @return [::String]
81
+ # The person or system referring this predicate to the consumer.
82
+ # @!attribute [rw] location
83
+ # @return [::String]
84
+ # The location of the SBOM.
85
+ # @!attribute [rw] mime_type
86
+ # @return [::String]
87
+ # The mime type of the SBOM.
88
+ # @!attribute [rw] digest
89
+ # @return [::Google::Protobuf::Map{::String => ::String}]
90
+ # A map of algorithm to digest of the contents of the SBOM.
91
+ class SbomReferenceIntotoPredicate
92
+ include ::Google::Protobuf::MessageExts
93
+ extend ::Google::Protobuf::MessageExts::ClassMethods
94
+
95
+ # @!attribute [rw] key
96
+ # @return [::String]
97
+ # @!attribute [rw] value
98
+ # @return [::String]
99
+ class DigestEntry
100
+ include ::Google::Protobuf::MessageExts
101
+ extend ::Google::Protobuf::MessageExts::ClassMethods
102
+ end
103
+ end
104
+ end
105
+ end
@@ -95,9 +95,15 @@ module Grafeas
95
95
  # Assessment provides all information that is related to a single
96
96
  # vulnerability for this product.
97
97
  # @!attribute [rw] cve
98
+ # @deprecated This field is deprecated and may be removed in the next major version update.
98
99
  # @return [::String]
99
100
  # Holds the MITRE standard Common Vulnerabilities and Exposures (CVE)
100
101
  # tracking number for the vulnerability.
102
+ # Deprecated: Use vulnerability_id instead to denote CVEs.
103
+ # @!attribute [rw] vulnerability_id
104
+ # @return [::String]
105
+ # The vulnerability identifier for this Assessment. Will hold one of
106
+ # common identifiers e.g. CVE, GHSA etc.
101
107
  # @!attribute [rw] short_description
102
108
  # @return [::String]
103
109
  # A one sentence description of this Vex.
@@ -213,6 +213,9 @@ module Grafeas
213
213
  # The cvss v2 score for the vulnerability.
214
214
  # @!attribute [rw] vex_assessment
215
215
  # @return [::Grafeas::V1::VulnerabilityOccurrence::VexAssessment]
216
+ # @!attribute [rw] extra_details
217
+ # @return [::String]
218
+ # Occurrence-specific extra details about the vulnerability.
216
219
  class VulnerabilityOccurrence
217
220
  include ::Google::Protobuf::MessageExts
218
221
  extend ::Google::Protobuf::MessageExts::ClassMethods
@@ -265,9 +268,15 @@ module Grafeas
265
268
  # VexAssessment provides all publisher provided Vex information that is
266
269
  # related to this vulnerability.
267
270
  # @!attribute [rw] cve
271
+ # @deprecated This field is deprecated and may be removed in the next major version update.
268
272
  # @return [::String]
269
273
  # Holds the MITRE standard Common Vulnerabilities and Exposures (CVE)
270
274
  # tracking number for the vulnerability.
275
+ # Deprecated: Use vulnerability_id instead to denote CVEs.
276
+ # @!attribute [rw] vulnerability_id
277
+ # @return [::String]
278
+ # The vulnerability identifier for this Assessment. Will hold one of
279
+ # common identifiers e.g. CVE, GHSA etc.
271
280
  # @!attribute [rw] related_uris
272
281
  # @return [::Array<::Grafeas::V1::RelatedUrl>]
273
282
  # Holds a list of references associated with this vulnerability item and
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: grafeas-v1
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.15.0
4
+ version: 0.16.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Google LLC
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2024-02-26 00:00:00.000000000 Z
11
+ date: 2024-03-18 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: gapic-common
@@ -69,6 +69,9 @@ files:
69
69
  - lib/grafeas/v1/grafeas.rb
70
70
  - lib/grafeas/v1/grafeas/client.rb
71
71
  - lib/grafeas/v1/grafeas/paths.rb
72
+ - lib/grafeas/v1/grafeas/rest.rb
73
+ - lib/grafeas/v1/grafeas/rest/client.rb
74
+ - lib/grafeas/v1/grafeas/rest/service_stub.rb
72
75
  - lib/grafeas/v1/grafeas_pb.rb
73
76
  - lib/grafeas/v1/grafeas_services_pb.rb
74
77
  - lib/grafeas/v1/image_pb.rb
@@ -76,6 +79,8 @@ files:
76
79
  - lib/grafeas/v1/intoto_statement_pb.rb
77
80
  - lib/grafeas/v1/package_pb.rb
78
81
  - lib/grafeas/v1/provenance_pb.rb
82
+ - lib/grafeas/v1/rest.rb
83
+ - lib/grafeas/v1/sbom_pb.rb
79
84
  - lib/grafeas/v1/severity_pb.rb
80
85
  - lib/grafeas/v1/slsa_provenance_pb.rb
81
86
  - lib/grafeas/v1/slsa_provenance_zero_two_pb.rb
@@ -109,6 +114,7 @@ files:
109
114
  - proto_docs/grafeas/v1/intoto_statement.rb
110
115
  - proto_docs/grafeas/v1/package.rb
111
116
  - proto_docs/grafeas/v1/provenance.rb
117
+ - proto_docs/grafeas/v1/sbom.rb
112
118
  - proto_docs/grafeas/v1/severity.rb
113
119
  - proto_docs/grafeas/v1/slsa_provenance.rb
114
120
  - proto_docs/grafeas/v1/slsa_provenance_zero_two.rb