grafeas-v1 0.15.0 → 0.16.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/lib/grafeas/v1/build_pb.rb +1 -1
- data/lib/grafeas/v1/common_pb.rb +1 -1
- data/lib/grafeas/v1/compliance_pb.rb +1 -1
- data/lib/grafeas/v1/discovery_pb.rb +3 -1
- data/lib/grafeas/v1/grafeas/rest/client.rb +1616 -0
- data/lib/grafeas/v1/grafeas/rest/service_stub.rb +939 -0
- data/lib/grafeas/v1/grafeas/rest.rb +60 -0
- data/lib/grafeas/v1/grafeas.rb +6 -0
- data/lib/grafeas/v1/grafeas_pb.rb +3 -1
- data/lib/grafeas/v1/intoto_statement_pb.rb +12 -1
- data/lib/grafeas/v1/rest.rb +33 -0
- data/lib/grafeas/v1/sbom_pb.rb +46 -0
- data/lib/grafeas/v1/version.rb +1 -1
- data/lib/grafeas/v1/vex_pb.rb +1 -1
- data/lib/grafeas/v1/vulnerability_pb.rb +1 -1
- data/lib/grafeas/v1.rb +5 -0
- data/proto_docs/google/api/client.rb +4 -0
- data/proto_docs/grafeas/v1/build.rb +6 -0
- data/proto_docs/grafeas/v1/common.rb +3 -0
- data/proto_docs/grafeas/v1/compliance.rb +2 -0
- data/proto_docs/grafeas/v1/discovery.rb +28 -0
- data/proto_docs/grafeas/v1/grafeas.rb +6 -0
- data/proto_docs/grafeas/v1/intoto_statement.rb +119 -0
- data/proto_docs/grafeas/v1/sbom.rb +105 -0
- data/proto_docs/grafeas/v1/vex.rb +6 -0
- data/proto_docs/grafeas/v1/vulnerability.rb +9 -0
- metadata +8 -2
@@ -0,0 +1,105 @@
|
|
1
|
+
# frozen_string_literal: true
|
2
|
+
|
3
|
+
# Copyright 2024 Google LLC
|
4
|
+
#
|
5
|
+
# Licensed under the Apache License, Version 2.0 (the "License");
|
6
|
+
# you may not use this file except in compliance with the License.
|
7
|
+
# You may obtain a copy of the License at
|
8
|
+
#
|
9
|
+
# https://www.apache.org/licenses/LICENSE-2.0
|
10
|
+
#
|
11
|
+
# Unless required by applicable law or agreed to in writing, software
|
12
|
+
# distributed under the License is distributed on an "AS IS" BASIS,
|
13
|
+
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
14
|
+
# See the License for the specific language governing permissions and
|
15
|
+
# limitations under the License.
|
16
|
+
|
17
|
+
# Auto-generated by gapic-generator-ruby. DO NOT EDIT!
|
18
|
+
|
19
|
+
|
20
|
+
module Grafeas
|
21
|
+
module V1
|
22
|
+
# The note representing an SBOM reference.
|
23
|
+
# @!attribute [rw] format
|
24
|
+
# @return [::String]
|
25
|
+
# The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...
|
26
|
+
# @!attribute [rw] version
|
27
|
+
# @return [::String]
|
28
|
+
# The version of the format that the SBOM takes. E.g. if the format
|
29
|
+
# is spdx, the version may be 2.3.
|
30
|
+
class SBOMReferenceNote
|
31
|
+
include ::Google::Protobuf::MessageExts
|
32
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
33
|
+
end
|
34
|
+
|
35
|
+
# The occurrence representing an SBOM reference as applied to a specific
|
36
|
+
# resource. The occurrence follows the DSSE specification. See
|
37
|
+
# https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more
|
38
|
+
# details.
|
39
|
+
# @!attribute [rw] payload
|
40
|
+
# @return [::Grafeas::V1::SbomReferenceIntotoPayload]
|
41
|
+
# The actual payload that contains the SBOM reference data.
|
42
|
+
# @!attribute [rw] payload_type
|
43
|
+
# @return [::String]
|
44
|
+
# The kind of payload that SbomReferenceIntotoPayload takes. Since it's in
|
45
|
+
# the intoto format, this value is expected to be
|
46
|
+
# 'application/vnd.in-toto+json'.
|
47
|
+
# @!attribute [rw] signatures
|
48
|
+
# @return [::Array<::Grafeas::V1::EnvelopeSignature>]
|
49
|
+
# The signatures over the payload.
|
50
|
+
class SBOMReferenceOccurrence
|
51
|
+
include ::Google::Protobuf::MessageExts
|
52
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
53
|
+
end
|
54
|
+
|
55
|
+
# The actual payload that contains the SBOM Reference data.
|
56
|
+
# The payload follows the intoto statement specification. See
|
57
|
+
# https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md
|
58
|
+
# for more details.
|
59
|
+
# @!attribute [rw] type
|
60
|
+
# @return [::String]
|
61
|
+
# Identifier for the schema of the Statement.
|
62
|
+
# @!attribute [rw] predicate_type
|
63
|
+
# @return [::String]
|
64
|
+
# URI identifying the type of the Predicate.
|
65
|
+
# @!attribute [rw] subject
|
66
|
+
# @return [::Array<::Grafeas::V1::Subject>]
|
67
|
+
# Set of software artifacts that the attestation applies to. Each element
|
68
|
+
# represents a single software artifact.
|
69
|
+
# @!attribute [rw] predicate
|
70
|
+
# @return [::Grafeas::V1::SbomReferenceIntotoPredicate]
|
71
|
+
# Additional parameters of the Predicate. Includes the actual data about the
|
72
|
+
# SBOM.
|
73
|
+
class SbomReferenceIntotoPayload
|
74
|
+
include ::Google::Protobuf::MessageExts
|
75
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
76
|
+
end
|
77
|
+
|
78
|
+
# A predicate which describes the SBOM being referenced.
|
79
|
+
# @!attribute [rw] referrer_id
|
80
|
+
# @return [::String]
|
81
|
+
# The person or system referring this predicate to the consumer.
|
82
|
+
# @!attribute [rw] location
|
83
|
+
# @return [::String]
|
84
|
+
# The location of the SBOM.
|
85
|
+
# @!attribute [rw] mime_type
|
86
|
+
# @return [::String]
|
87
|
+
# The mime type of the SBOM.
|
88
|
+
# @!attribute [rw] digest
|
89
|
+
# @return [::Google::Protobuf::Map{::String => ::String}]
|
90
|
+
# A map of algorithm to digest of the contents of the SBOM.
|
91
|
+
class SbomReferenceIntotoPredicate
|
92
|
+
include ::Google::Protobuf::MessageExts
|
93
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
94
|
+
|
95
|
+
# @!attribute [rw] key
|
96
|
+
# @return [::String]
|
97
|
+
# @!attribute [rw] value
|
98
|
+
# @return [::String]
|
99
|
+
class DigestEntry
|
100
|
+
include ::Google::Protobuf::MessageExts
|
101
|
+
extend ::Google::Protobuf::MessageExts::ClassMethods
|
102
|
+
end
|
103
|
+
end
|
104
|
+
end
|
105
|
+
end
|
@@ -95,9 +95,15 @@ module Grafeas
|
|
95
95
|
# Assessment provides all information that is related to a single
|
96
96
|
# vulnerability for this product.
|
97
97
|
# @!attribute [rw] cve
|
98
|
+
# @deprecated This field is deprecated and may be removed in the next major version update.
|
98
99
|
# @return [::String]
|
99
100
|
# Holds the MITRE standard Common Vulnerabilities and Exposures (CVE)
|
100
101
|
# tracking number for the vulnerability.
|
102
|
+
# Deprecated: Use vulnerability_id instead to denote CVEs.
|
103
|
+
# @!attribute [rw] vulnerability_id
|
104
|
+
# @return [::String]
|
105
|
+
# The vulnerability identifier for this Assessment. Will hold one of
|
106
|
+
# common identifiers e.g. CVE, GHSA etc.
|
101
107
|
# @!attribute [rw] short_description
|
102
108
|
# @return [::String]
|
103
109
|
# A one sentence description of this Vex.
|
@@ -213,6 +213,9 @@ module Grafeas
|
|
213
213
|
# The cvss v2 score for the vulnerability.
|
214
214
|
# @!attribute [rw] vex_assessment
|
215
215
|
# @return [::Grafeas::V1::VulnerabilityOccurrence::VexAssessment]
|
216
|
+
# @!attribute [rw] extra_details
|
217
|
+
# @return [::String]
|
218
|
+
# Occurrence-specific extra details about the vulnerability.
|
216
219
|
class VulnerabilityOccurrence
|
217
220
|
include ::Google::Protobuf::MessageExts
|
218
221
|
extend ::Google::Protobuf::MessageExts::ClassMethods
|
@@ -265,9 +268,15 @@ module Grafeas
|
|
265
268
|
# VexAssessment provides all publisher provided Vex information that is
|
266
269
|
# related to this vulnerability.
|
267
270
|
# @!attribute [rw] cve
|
271
|
+
# @deprecated This field is deprecated and may be removed in the next major version update.
|
268
272
|
# @return [::String]
|
269
273
|
# Holds the MITRE standard Common Vulnerabilities and Exposures (CVE)
|
270
274
|
# tracking number for the vulnerability.
|
275
|
+
# Deprecated: Use vulnerability_id instead to denote CVEs.
|
276
|
+
# @!attribute [rw] vulnerability_id
|
277
|
+
# @return [::String]
|
278
|
+
# The vulnerability identifier for this Assessment. Will hold one of
|
279
|
+
# common identifiers e.g. CVE, GHSA etc.
|
271
280
|
# @!attribute [rw] related_uris
|
272
281
|
# @return [::Array<::Grafeas::V1::RelatedUrl>]
|
273
282
|
# Holds a list of references associated with this vulnerability item and
|
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: grafeas-v1
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.
|
4
|
+
version: 0.16.0
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Google LLC
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2024-
|
11
|
+
date: 2024-03-18 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: gapic-common
|
@@ -69,6 +69,9 @@ files:
|
|
69
69
|
- lib/grafeas/v1/grafeas.rb
|
70
70
|
- lib/grafeas/v1/grafeas/client.rb
|
71
71
|
- lib/grafeas/v1/grafeas/paths.rb
|
72
|
+
- lib/grafeas/v1/grafeas/rest.rb
|
73
|
+
- lib/grafeas/v1/grafeas/rest/client.rb
|
74
|
+
- lib/grafeas/v1/grafeas/rest/service_stub.rb
|
72
75
|
- lib/grafeas/v1/grafeas_pb.rb
|
73
76
|
- lib/grafeas/v1/grafeas_services_pb.rb
|
74
77
|
- lib/grafeas/v1/image_pb.rb
|
@@ -76,6 +79,8 @@ files:
|
|
76
79
|
- lib/grafeas/v1/intoto_statement_pb.rb
|
77
80
|
- lib/grafeas/v1/package_pb.rb
|
78
81
|
- lib/grafeas/v1/provenance_pb.rb
|
82
|
+
- lib/grafeas/v1/rest.rb
|
83
|
+
- lib/grafeas/v1/sbom_pb.rb
|
79
84
|
- lib/grafeas/v1/severity_pb.rb
|
80
85
|
- lib/grafeas/v1/slsa_provenance_pb.rb
|
81
86
|
- lib/grafeas/v1/slsa_provenance_zero_two_pb.rb
|
@@ -109,6 +114,7 @@ files:
|
|
109
114
|
- proto_docs/grafeas/v1/intoto_statement.rb
|
110
115
|
- proto_docs/grafeas/v1/package.rb
|
111
116
|
- proto_docs/grafeas/v1/provenance.rb
|
117
|
+
- proto_docs/grafeas/v1/sbom.rb
|
112
118
|
- proto_docs/grafeas/v1/severity.rb
|
113
119
|
- proto_docs/grafeas/v1/slsa_provenance.rb
|
114
120
|
- proto_docs/grafeas/v1/slsa_provenance_zero_two.rb
|