grafeas-v1 0.2.0 → 0.3.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/.yardopts +1 -1
- data/README.md +1 -1
- data/lib/grafeas/v1/attestation_pb.rb +6 -1
- data/lib/grafeas/v1/build_pb.rb +5 -1
- data/lib/grafeas/v1/common_pb.rb +13 -0
- data/lib/grafeas/v1/compliance_pb.rb +48 -0
- data/lib/grafeas/v1/deployment_pb.rb +1 -1
- data/lib/grafeas/v1/discovery_pb.rb +2 -2
- data/lib/grafeas/v1/dsse_attestation_pb.rb +31 -0
- data/lib/grafeas/v1/grafeas/client.rb +375 -121
- data/lib/grafeas/v1/grafeas_pb.rb +9 -2
- data/lib/grafeas/v1/grafeas_services_pb.rb +1 -1
- data/lib/grafeas/v1/intoto_provenance_pb.rb +49 -0
- data/lib/grafeas/v1/intoto_statement_pb.rb +31 -0
- data/lib/grafeas/v1/package_pb.rb +1 -0
- data/lib/grafeas/v1/provenance_pb.rb +1 -1
- data/lib/grafeas/v1/slsa_provenance_pb.rb +54 -0
- data/lib/grafeas/v1/upgrade_pb.rb +2 -2
- data/lib/grafeas/v1/version.rb +1 -1
- data/lib/grafeas/v1/vulnerability_pb.rb +13 -2
- data/proto_docs/google/api/field_behavior.rb +7 -1
- data/proto_docs/google/api/resource.rb +10 -71
- data/proto_docs/grafeas/v1/attestation.rb +21 -0
- data/proto_docs/grafeas/v1/build.rb +11 -1
- data/proto_docs/grafeas/v1/common.rb +31 -2
- data/proto_docs/grafeas/v1/compliance.rb +98 -0
- data/proto_docs/grafeas/v1/dsse_attestation.rb +59 -0
- data/proto_docs/grafeas/v1/grafeas.rb +15 -0
- data/proto_docs/grafeas/v1/intoto_provenance.rb +134 -0
- data/proto_docs/grafeas/v1/intoto_statement.rb +65 -0
- data/proto_docs/grafeas/v1/package.rb +8 -0
- data/proto_docs/grafeas/v1/slsa_provenance.rb +152 -0
- data/proto_docs/grafeas/v1/vulnerability.rb +38 -0
- metadata +23 -7
| @@ -0,0 +1,59 @@ | |
| 1 | 
            +
            # frozen_string_literal: true
         | 
| 2 | 
            +
             | 
| 3 | 
            +
            # Copyright 2021 Google LLC
         | 
| 4 | 
            +
            #
         | 
| 5 | 
            +
            # Licensed under the Apache License, Version 2.0 (the "License");
         | 
| 6 | 
            +
            # you may not use this file except in compliance with the License.
         | 
| 7 | 
            +
            # You may obtain a copy of the License at
         | 
| 8 | 
            +
            #
         | 
| 9 | 
            +
            #     https://www.apache.org/licenses/LICENSE-2.0
         | 
| 10 | 
            +
            #
         | 
| 11 | 
            +
            # Unless required by applicable law or agreed to in writing, software
         | 
| 12 | 
            +
            # distributed under the License is distributed on an "AS IS" BASIS,
         | 
| 13 | 
            +
            # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
         | 
| 14 | 
            +
            # See the License for the specific language governing permissions and
         | 
| 15 | 
            +
            # limitations under the License.
         | 
| 16 | 
            +
             | 
| 17 | 
            +
            # Auto-generated by gapic-generator-ruby. DO NOT EDIT!
         | 
| 18 | 
            +
             | 
| 19 | 
            +
             | 
| 20 | 
            +
            module Grafeas
         | 
| 21 | 
            +
              module V1
         | 
| 22 | 
            +
                # @!attribute [rw] hint
         | 
| 23 | 
            +
                #   @return [::Grafeas::V1::DSSEAttestationNote::DSSEHint]
         | 
| 24 | 
            +
                #     DSSEHint hints at the purpose of the attestation authority.
         | 
| 25 | 
            +
                class DSSEAttestationNote
         | 
| 26 | 
            +
                  include ::Google::Protobuf::MessageExts
         | 
| 27 | 
            +
                  extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 28 | 
            +
             | 
| 29 | 
            +
                  # This submessage provides human-readable hints about the purpose of the
         | 
| 30 | 
            +
                  # authority. Because the name of a note acts as its resource reference, it is
         | 
| 31 | 
            +
                  # important to disambiguate the canonical name of the Note (which might be a
         | 
| 32 | 
            +
                  # UUID for security purposes) from "readable" names more suitable for debug
         | 
| 33 | 
            +
                  # output. Note that these hints should not be used to look up authorities in
         | 
| 34 | 
            +
                  # security sensitive contexts, such as when looking up attestations to
         | 
| 35 | 
            +
                  # verify.
         | 
| 36 | 
            +
                  # @!attribute [rw] human_readable_name
         | 
| 37 | 
            +
                  #   @return [::String]
         | 
| 38 | 
            +
                  #     Required. The human readable name of this attestation authority, for
         | 
| 39 | 
            +
                  #     example "cloudbuild-prod".
         | 
| 40 | 
            +
                  class DSSEHint
         | 
| 41 | 
            +
                    include ::Google::Protobuf::MessageExts
         | 
| 42 | 
            +
                    extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 43 | 
            +
                  end
         | 
| 44 | 
            +
                end
         | 
| 45 | 
            +
             | 
| 46 | 
            +
                # Deprecated. Prefer to use a regular Occurrence, and populate the
         | 
| 47 | 
            +
                # Envelope at the top level of the Occurrence.
         | 
| 48 | 
            +
                # @!attribute [rw] envelope
         | 
| 49 | 
            +
                #   @return [::Grafeas::V1::Envelope]
         | 
| 50 | 
            +
                #     If doing something security critical, make sure to verify the signatures in
         | 
| 51 | 
            +
                #     this metadata.
         | 
| 52 | 
            +
                # @!attribute [rw] statement
         | 
| 53 | 
            +
                #   @return [::Grafeas::V1::InTotoStatement]
         | 
| 54 | 
            +
                class DSSEAttestationOccurrence
         | 
| 55 | 
            +
                  include ::Google::Protobuf::MessageExts
         | 
| 56 | 
            +
                  extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 57 | 
            +
                end
         | 
| 58 | 
            +
              end
         | 
| 59 | 
            +
            end
         | 
| @@ -72,6 +72,15 @@ module Grafeas | |
| 72 72 | 
             
                # @!attribute [rw] upgrade
         | 
| 73 73 | 
             
                #   @return [::Grafeas::V1::UpgradeOccurrence]
         | 
| 74 74 | 
             
                #     Describes an available package upgrade on the linked resource.
         | 
| 75 | 
            +
                # @!attribute [rw] compliance
         | 
| 76 | 
            +
                #   @return [::Grafeas::V1::ComplianceOccurrence]
         | 
| 77 | 
            +
                #     Describes a compliance violation on a linked resource.
         | 
| 78 | 
            +
                # @!attribute [rw] dsse_attestation
         | 
| 79 | 
            +
                #   @return [::Grafeas::V1::DSSEAttestationOccurrence]
         | 
| 80 | 
            +
                #     Describes an attestation of an artifact using dsse.
         | 
| 81 | 
            +
                # @!attribute [rw] envelope
         | 
| 82 | 
            +
                #   @return [::Grafeas::V1::Envelope]
         | 
| 83 | 
            +
                #     https://github.com/secure-systems-lab/dsse
         | 
| 75 84 | 
             
                class Occurrence
         | 
| 76 85 | 
             
                  include ::Google::Protobuf::MessageExts
         | 
| 77 86 | 
             
                  extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| @@ -133,6 +142,12 @@ module Grafeas | |
| 133 142 | 
             
                # @!attribute [rw] upgrade
         | 
| 134 143 | 
             
                #   @return [::Grafeas::V1::UpgradeNote]
         | 
| 135 144 | 
             
                #     A note describing available package upgrades.
         | 
| 145 | 
            +
                # @!attribute [rw] compliance
         | 
| 146 | 
            +
                #   @return [::Grafeas::V1::ComplianceNote]
         | 
| 147 | 
            +
                #     A note describing a compliance check.
         | 
| 148 | 
            +
                # @!attribute [rw] dsse_attestation
         | 
| 149 | 
            +
                #   @return [::Grafeas::V1::DSSEAttestationNote]
         | 
| 150 | 
            +
                #     A note describing a dsse attestation note.
         | 
| 136 151 | 
             
                class Note
         | 
| 137 152 | 
             
                  include ::Google::Protobuf::MessageExts
         | 
| 138 153 | 
             
                  extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| @@ -0,0 +1,134 @@ | |
| 1 | 
            +
            # frozen_string_literal: true
         | 
| 2 | 
            +
             | 
| 3 | 
            +
            # Copyright 2021 Google LLC
         | 
| 4 | 
            +
            #
         | 
| 5 | 
            +
            # Licensed under the Apache License, Version 2.0 (the "License");
         | 
| 6 | 
            +
            # you may not use this file except in compliance with the License.
         | 
| 7 | 
            +
            # You may obtain a copy of the License at
         | 
| 8 | 
            +
            #
         | 
| 9 | 
            +
            #     https://www.apache.org/licenses/LICENSE-2.0
         | 
| 10 | 
            +
            #
         | 
| 11 | 
            +
            # Unless required by applicable law or agreed to in writing, software
         | 
| 12 | 
            +
            # distributed under the License is distributed on an "AS IS" BASIS,
         | 
| 13 | 
            +
            # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
         | 
| 14 | 
            +
            # See the License for the specific language governing permissions and
         | 
| 15 | 
            +
            # limitations under the License.
         | 
| 16 | 
            +
             | 
| 17 | 
            +
            # Auto-generated by gapic-generator-ruby. DO NOT EDIT!
         | 
| 18 | 
            +
             | 
| 19 | 
            +
             | 
| 20 | 
            +
            module Grafeas
         | 
| 21 | 
            +
              module V1
         | 
| 22 | 
            +
                # Steps taken to build the artifact.
         | 
| 23 | 
            +
                # For a TaskRun, typically each container corresponds to one step in the
         | 
| 24 | 
            +
                # recipe.
         | 
| 25 | 
            +
                # @!attribute [rw] type
         | 
| 26 | 
            +
                #   @return [::String]
         | 
| 27 | 
            +
                #     URI indicating what type of recipe was performed. It determines the meaning
         | 
| 28 | 
            +
                #     of recipe.entryPoint, recipe.arguments, recipe.environment, and materials.
         | 
| 29 | 
            +
                # @!attribute [rw] defined_in_material
         | 
| 30 | 
            +
                #   @return [::Integer]
         | 
| 31 | 
            +
                #     Index in materials containing the recipe steps that are not implied by
         | 
| 32 | 
            +
                #     recipe.type. For example, if the recipe type were "make", then this would
         | 
| 33 | 
            +
                #     point to the source containing the Makefile, not the make program itself.
         | 
| 34 | 
            +
                #     Set to -1 if the recipe doesn't come from a material, as zero is default
         | 
| 35 | 
            +
                #     unset value for int64.
         | 
| 36 | 
            +
                # @!attribute [rw] entry_point
         | 
| 37 | 
            +
                #   @return [::String]
         | 
| 38 | 
            +
                #     String identifying the entry point into the build.
         | 
| 39 | 
            +
                #     This is often a path to a configuration file and/or a target label within
         | 
| 40 | 
            +
                #     that file. The syntax and meaning are defined by recipe.type. For example,
         | 
| 41 | 
            +
                #     if the recipe type were "make", then this would reference the directory in
         | 
| 42 | 
            +
                #     which to run make as well as which target to use.
         | 
| 43 | 
            +
                # @!attribute [rw] arguments
         | 
| 44 | 
            +
                #   @return [::Array<::Google::Protobuf::Any>]
         | 
| 45 | 
            +
                #     Collection of all external inputs that influenced the build on top of
         | 
| 46 | 
            +
                #     recipe.definedInMaterial and recipe.entryPoint. For example, if the recipe
         | 
| 47 | 
            +
                #     type were "make", then this might be the flags passed to make aside from
         | 
| 48 | 
            +
                #     the target, which is captured in recipe.entryPoint. Since the arguments
         | 
| 49 | 
            +
                #     field can greatly vary in structure, depending on the builder and recipe
         | 
| 50 | 
            +
                #     type, this is of form "Any".
         | 
| 51 | 
            +
                # @!attribute [rw] environment
         | 
| 52 | 
            +
                #   @return [::Array<::Google::Protobuf::Any>]
         | 
| 53 | 
            +
                #     Any other builder-controlled inputs necessary for correctly evaluating the
         | 
| 54 | 
            +
                #     recipe. Usually only needed for reproducing the build but not evaluated as
         | 
| 55 | 
            +
                #     part of policy. Since the environment field can greatly vary in structure,
         | 
| 56 | 
            +
                #     depending on the builder and recipe type, this is of form "Any".
         | 
| 57 | 
            +
                class Recipe
         | 
| 58 | 
            +
                  include ::Google::Protobuf::MessageExts
         | 
| 59 | 
            +
                  extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 60 | 
            +
                end
         | 
| 61 | 
            +
             | 
| 62 | 
            +
                # Indicates that the builder claims certain fields in this message to be
         | 
| 63 | 
            +
                # complete.
         | 
| 64 | 
            +
                # @!attribute [rw] arguments
         | 
| 65 | 
            +
                #   @return [::Boolean]
         | 
| 66 | 
            +
                #     If true, the builder claims that recipe.arguments is complete, meaning that
         | 
| 67 | 
            +
                #     all external inputs are properly captured in the recipe.
         | 
| 68 | 
            +
                # @!attribute [rw] environment
         | 
| 69 | 
            +
                #   @return [::Boolean]
         | 
| 70 | 
            +
                #     If true, the builder claims that recipe.environment is claimed to be
         | 
| 71 | 
            +
                #     complete.
         | 
| 72 | 
            +
                # @!attribute [rw] materials
         | 
| 73 | 
            +
                #   @return [::Boolean]
         | 
| 74 | 
            +
                #     If true, the builder claims that materials are complete, usually through
         | 
| 75 | 
            +
                #     some controls to prevent network access. Sometimes called "hermetic".
         | 
| 76 | 
            +
                class Completeness
         | 
| 77 | 
            +
                  include ::Google::Protobuf::MessageExts
         | 
| 78 | 
            +
                  extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 79 | 
            +
                end
         | 
| 80 | 
            +
             | 
| 81 | 
            +
                # Other properties of the build.
         | 
| 82 | 
            +
                # @!attribute [rw] build_invocation_id
         | 
| 83 | 
            +
                #   @return [::String]
         | 
| 84 | 
            +
                #     Identifies the particular build invocation, which can be useful for finding
         | 
| 85 | 
            +
                #     associated logs or other ad-hoc analysis. The value SHOULD be globally
         | 
| 86 | 
            +
                #     unique, per in-toto Provenance spec.
         | 
| 87 | 
            +
                # @!attribute [rw] build_started_on
         | 
| 88 | 
            +
                #   @return [::Google::Protobuf::Timestamp]
         | 
| 89 | 
            +
                #     The timestamp of when the build started.
         | 
| 90 | 
            +
                # @!attribute [rw] build_finished_on
         | 
| 91 | 
            +
                #   @return [::Google::Protobuf::Timestamp]
         | 
| 92 | 
            +
                #     The timestamp of when the build completed.
         | 
| 93 | 
            +
                # @!attribute [rw] completeness
         | 
| 94 | 
            +
                #   @return [::Grafeas::V1::Completeness]
         | 
| 95 | 
            +
                #     Indicates that the builder claims certain fields in this message to be
         | 
| 96 | 
            +
                #     complete.
         | 
| 97 | 
            +
                # @!attribute [rw] reproducible
         | 
| 98 | 
            +
                #   @return [::Boolean]
         | 
| 99 | 
            +
                #     If true, the builder claims that running the recipe on materials will
         | 
| 100 | 
            +
                #     produce bit-for-bit identical output.
         | 
| 101 | 
            +
                class Metadata
         | 
| 102 | 
            +
                  include ::Google::Protobuf::MessageExts
         | 
| 103 | 
            +
                  extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 104 | 
            +
                end
         | 
| 105 | 
            +
             | 
| 106 | 
            +
                # @!attribute [rw] id
         | 
| 107 | 
            +
                #   @return [::String]
         | 
| 108 | 
            +
                class BuilderConfig
         | 
| 109 | 
            +
                  include ::Google::Protobuf::MessageExts
         | 
| 110 | 
            +
                  extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 111 | 
            +
                end
         | 
| 112 | 
            +
             | 
| 113 | 
            +
                # @!attribute [rw] builder_config
         | 
| 114 | 
            +
                #   @return [::Grafeas::V1::BuilderConfig]
         | 
| 115 | 
            +
                # @!attribute [rw] recipe
         | 
| 116 | 
            +
                #   @return [::Grafeas::V1::Recipe]
         | 
| 117 | 
            +
                #     Identifies the configuration used for the build.
         | 
| 118 | 
            +
                #     When combined with materials, this SHOULD fully describe the build,
         | 
| 119 | 
            +
                #     such that re-running this recipe results in bit-for-bit identical output
         | 
| 120 | 
            +
                #     (if the build is reproducible).
         | 
| 121 | 
            +
                # @!attribute [rw] metadata
         | 
| 122 | 
            +
                #   @return [::Grafeas::V1::Metadata]
         | 
| 123 | 
            +
                # @!attribute [rw] materials
         | 
| 124 | 
            +
                #   @return [::Array<::String>]
         | 
| 125 | 
            +
                #     The collection of artifacts that influenced the build including sources,
         | 
| 126 | 
            +
                #     dependencies, build tools, base images, and so on. This is considered to be
         | 
| 127 | 
            +
                #     incomplete unless metadata.completeness.materials is true. Unset or null is
         | 
| 128 | 
            +
                #     equivalent to empty.
         | 
| 129 | 
            +
                class InTotoProvenance
         | 
| 130 | 
            +
                  include ::Google::Protobuf::MessageExts
         | 
| 131 | 
            +
                  extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 132 | 
            +
                end
         | 
| 133 | 
            +
              end
         | 
| 134 | 
            +
            end
         | 
| @@ -0,0 +1,65 @@ | |
| 1 | 
            +
            # frozen_string_literal: true
         | 
| 2 | 
            +
             | 
| 3 | 
            +
            # Copyright 2021 Google LLC
         | 
| 4 | 
            +
            #
         | 
| 5 | 
            +
            # Licensed under the Apache License, Version 2.0 (the "License");
         | 
| 6 | 
            +
            # you may not use this file except in compliance with the License.
         | 
| 7 | 
            +
            # You may obtain a copy of the License at
         | 
| 8 | 
            +
            #
         | 
| 9 | 
            +
            #     https://www.apache.org/licenses/LICENSE-2.0
         | 
| 10 | 
            +
            #
         | 
| 11 | 
            +
            # Unless required by applicable law or agreed to in writing, software
         | 
| 12 | 
            +
            # distributed under the License is distributed on an "AS IS" BASIS,
         | 
| 13 | 
            +
            # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
         | 
| 14 | 
            +
            # See the License for the specific language governing permissions and
         | 
| 15 | 
            +
            # limitations under the License.
         | 
| 16 | 
            +
             | 
| 17 | 
            +
            # Auto-generated by gapic-generator-ruby. DO NOT EDIT!
         | 
| 18 | 
            +
             | 
| 19 | 
            +
             | 
| 20 | 
            +
            module Grafeas
         | 
| 21 | 
            +
              module V1
         | 
| 22 | 
            +
                # Spec defined at
         | 
| 23 | 
            +
                # https://github.com/in-toto/attestation/tree/main/spec#statement The
         | 
| 24 | 
            +
                # serialized InTotoStatement will be stored as Envelope.payload.
         | 
| 25 | 
            +
                # Envelope.payloadType is always "application/vnd.in-toto+json".
         | 
| 26 | 
            +
                # @!attribute [rw] type
         | 
| 27 | 
            +
                #   @return [::String]
         | 
| 28 | 
            +
                #     Always `https://in-toto.io/Statement/v0.1`.
         | 
| 29 | 
            +
                # @!attribute [rw] subject
         | 
| 30 | 
            +
                #   @return [::Array<::Grafeas::V1::Subject>]
         | 
| 31 | 
            +
                # @!attribute [rw] predicate_type
         | 
| 32 | 
            +
                #   @return [::String]
         | 
| 33 | 
            +
                #     `https://slsa.dev/provenance/v0.1` for SlsaProvenance.
         | 
| 34 | 
            +
                # @!attribute [rw] provenance
         | 
| 35 | 
            +
                #   @return [::Grafeas::V1::InTotoProvenance]
         | 
| 36 | 
            +
                # @!attribute [rw] slsa_provenance
         | 
| 37 | 
            +
                #   @return [::Grafeas::V1::SlsaProvenance]
         | 
| 38 | 
            +
                class InTotoStatement
         | 
| 39 | 
            +
                  include ::Google::Protobuf::MessageExts
         | 
| 40 | 
            +
                  extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 41 | 
            +
                end
         | 
| 42 | 
            +
             | 
| 43 | 
            +
                # @!attribute [rw] name
         | 
| 44 | 
            +
                #   @return [::String]
         | 
| 45 | 
            +
                # @!attribute [rw] digest
         | 
| 46 | 
            +
                #   @return [::Google::Protobuf::Map{::String => ::String}]
         | 
| 47 | 
            +
                #     `"<ALGORITHM>": "<HEX_VALUE>"`
         | 
| 48 | 
            +
                #     Algorithms can be e.g. sha256, sha512
         | 
| 49 | 
            +
                #     See
         | 
| 50 | 
            +
                #     https://github.com/in-toto/attestation/blob/main/spec/field_types.md#DigestSet
         | 
| 51 | 
            +
                class Subject
         | 
| 52 | 
            +
                  include ::Google::Protobuf::MessageExts
         | 
| 53 | 
            +
                  extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 54 | 
            +
             | 
| 55 | 
            +
                  # @!attribute [rw] key
         | 
| 56 | 
            +
                  #   @return [::String]
         | 
| 57 | 
            +
                  # @!attribute [rw] value
         | 
| 58 | 
            +
                  #   @return [::String]
         | 
| 59 | 
            +
                  class DigestEntry
         | 
| 60 | 
            +
                    include ::Google::Protobuf::MessageExts
         | 
| 61 | 
            +
                    extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 62 | 
            +
                  end
         | 
| 63 | 
            +
                end
         | 
| 64 | 
            +
              end
         | 
| 65 | 
            +
            end
         | 
| @@ -101,6 +101,14 @@ module Grafeas | |
| 101 101 | 
             
                # @!attribute [rw] revision
         | 
| 102 102 | 
             
                #   @return [::String]
         | 
| 103 103 | 
             
                #     The iteration of the package build from the above version.
         | 
| 104 | 
            +
                # @!attribute [rw] inclusive
         | 
| 105 | 
            +
                #   @return [::Boolean]
         | 
| 106 | 
            +
                #     Whether this version is specifying part of an inclusive range. Grafeas
         | 
| 107 | 
            +
                #     does not have the capability to specify version ranges; instead we have
         | 
| 108 | 
            +
                #     fields that specify start version and end versions. At times this is
         | 
| 109 | 
            +
                #     insufficient - we also need to specify whether the version is included in
         | 
| 110 | 
            +
                #     the range or is excluded from the range. This boolean is expected to be set
         | 
| 111 | 
            +
                #     to true when the version is included in a range.
         | 
| 104 112 | 
             
                # @!attribute [rw] kind
         | 
| 105 113 | 
             
                #   @return [::Grafeas::V1::Version::VersionKind]
         | 
| 106 114 | 
             
                #     Required. Distinguishes between sentinel MIN/MAX versions and normal
         | 
| @@ -0,0 +1,152 @@ | |
| 1 | 
            +
            # frozen_string_literal: true
         | 
| 2 | 
            +
             | 
| 3 | 
            +
            # Copyright 2021 Google LLC
         | 
| 4 | 
            +
            #
         | 
| 5 | 
            +
            # Licensed under the Apache License, Version 2.0 (the "License");
         | 
| 6 | 
            +
            # you may not use this file except in compliance with the License.
         | 
| 7 | 
            +
            # You may obtain a copy of the License at
         | 
| 8 | 
            +
            #
         | 
| 9 | 
            +
            #     https://www.apache.org/licenses/LICENSE-2.0
         | 
| 10 | 
            +
            #
         | 
| 11 | 
            +
            # Unless required by applicable law or agreed to in writing, software
         | 
| 12 | 
            +
            # distributed under the License is distributed on an "AS IS" BASIS,
         | 
| 13 | 
            +
            # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
         | 
| 14 | 
            +
            # See the License for the specific language governing permissions and
         | 
| 15 | 
            +
            # limitations under the License.
         | 
| 16 | 
            +
             | 
| 17 | 
            +
            # Auto-generated by gapic-generator-ruby. DO NOT EDIT!
         | 
| 18 | 
            +
             | 
| 19 | 
            +
             | 
| 20 | 
            +
            module Grafeas
         | 
| 21 | 
            +
              module V1
         | 
| 22 | 
            +
                # @!attribute [rw] builder
         | 
| 23 | 
            +
                #   @return [::Grafeas::V1::SlsaProvenance::SlsaBuilder]
         | 
| 24 | 
            +
                # @!attribute [rw] recipe
         | 
| 25 | 
            +
                #   @return [::Grafeas::V1::SlsaProvenance::SlsaRecipe]
         | 
| 26 | 
            +
                #     Identifies the configuration used for the build.
         | 
| 27 | 
            +
                #     When combined with materials, this SHOULD fully describe the build,
         | 
| 28 | 
            +
                #     such that re-running this recipe results in bit-for-bit identical output
         | 
| 29 | 
            +
                #     (if the build is reproducible).
         | 
| 30 | 
            +
                # @!attribute [rw] metadata
         | 
| 31 | 
            +
                #   @return [::Grafeas::V1::SlsaProvenance::SlsaMetadata]
         | 
| 32 | 
            +
                # @!attribute [rw] materials
         | 
| 33 | 
            +
                #   @return [::Array<::Grafeas::V1::SlsaProvenance::Material>]
         | 
| 34 | 
            +
                #     The collection of artifacts that influenced the build including sources,
         | 
| 35 | 
            +
                #     dependencies, build tools, base images, and so on. This is considered to be
         | 
| 36 | 
            +
                #     incomplete unless metadata.completeness.materials is true. Unset or null is
         | 
| 37 | 
            +
                #     equivalent to empty.
         | 
| 38 | 
            +
                class SlsaProvenance
         | 
| 39 | 
            +
                  include ::Google::Protobuf::MessageExts
         | 
| 40 | 
            +
                  extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 41 | 
            +
             | 
| 42 | 
            +
                  # Steps taken to build the artifact.
         | 
| 43 | 
            +
                  # For a TaskRun, typically each container corresponds to one step in the
         | 
| 44 | 
            +
                  # recipe.
         | 
| 45 | 
            +
                  # @!attribute [rw] type
         | 
| 46 | 
            +
                  #   @return [::String]
         | 
| 47 | 
            +
                  #     URI indicating what type of recipe was performed. It determines the
         | 
| 48 | 
            +
                  #     meaning of recipe.entryPoint, recipe.arguments, recipe.environment, and
         | 
| 49 | 
            +
                  #     materials.
         | 
| 50 | 
            +
                  # @!attribute [rw] defined_in_material
         | 
| 51 | 
            +
                  #   @return [::Integer]
         | 
| 52 | 
            +
                  #     Index in materials containing the recipe steps that are not implied by
         | 
| 53 | 
            +
                  #     recipe.type. For example, if the recipe type were "make", then this would
         | 
| 54 | 
            +
                  #     point to the source containing the Makefile, not the make program itself.
         | 
| 55 | 
            +
                  #     Set to -1 if the recipe doesn't come from a material, as zero is default
         | 
| 56 | 
            +
                  #     unset value for int64.
         | 
| 57 | 
            +
                  # @!attribute [rw] entry_point
         | 
| 58 | 
            +
                  #   @return [::String]
         | 
| 59 | 
            +
                  #     String identifying the entry point into the build.
         | 
| 60 | 
            +
                  #     This is often a path to a configuration file and/or a target label within
         | 
| 61 | 
            +
                  #     that file. The syntax and meaning are defined by recipe.type. For
         | 
| 62 | 
            +
                  #     example, if the recipe type were "make", then this would reference the
         | 
| 63 | 
            +
                  #     directory in which to run make as well as which target to use.
         | 
| 64 | 
            +
                  # @!attribute [rw] arguments
         | 
| 65 | 
            +
                  #   @return [::Google::Protobuf::Any]
         | 
| 66 | 
            +
                  #     Collection of all external inputs that influenced the build on top of
         | 
| 67 | 
            +
                  #     recipe.definedInMaterial and recipe.entryPoint. For example, if the
         | 
| 68 | 
            +
                  #     recipe type were "make", then this might be the flags passed to make
         | 
| 69 | 
            +
                  #     aside from the target, which is captured in recipe.entryPoint. Depending
         | 
| 70 | 
            +
                  #     on the recipe Type, the structure may be different.
         | 
| 71 | 
            +
                  # @!attribute [rw] environment
         | 
| 72 | 
            +
                  #   @return [::Google::Protobuf::Any]
         | 
| 73 | 
            +
                  #     Any other builder-controlled inputs necessary for correctly evaluating
         | 
| 74 | 
            +
                  #     the recipe. Usually only needed for reproducing the build but not
         | 
| 75 | 
            +
                  #     evaluated as part of policy. Depending on the recipe Type, the structure
         | 
| 76 | 
            +
                  #     may be different.
         | 
| 77 | 
            +
                  class SlsaRecipe
         | 
| 78 | 
            +
                    include ::Google::Protobuf::MessageExts
         | 
| 79 | 
            +
                    extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 80 | 
            +
                  end
         | 
| 81 | 
            +
             | 
| 82 | 
            +
                  # Indicates that the builder claims certain fields in this message to be
         | 
| 83 | 
            +
                  # complete.
         | 
| 84 | 
            +
                  # @!attribute [rw] arguments
         | 
| 85 | 
            +
                  #   @return [::Boolean]
         | 
| 86 | 
            +
                  #     If true, the builder claims that recipe.arguments is complete, meaning
         | 
| 87 | 
            +
                  #     that all external inputs are properly captured in the recipe.
         | 
| 88 | 
            +
                  # @!attribute [rw] environment
         | 
| 89 | 
            +
                  #   @return [::Boolean]
         | 
| 90 | 
            +
                  #     If true, the builder claims that recipe.environment is claimed to be
         | 
| 91 | 
            +
                  #     complete.
         | 
| 92 | 
            +
                  # @!attribute [rw] materials
         | 
| 93 | 
            +
                  #   @return [::Boolean]
         | 
| 94 | 
            +
                  #     If true, the builder claims that materials are complete, usually through
         | 
| 95 | 
            +
                  #     some controls to prevent network access. Sometimes called "hermetic".
         | 
| 96 | 
            +
                  class SlsaCompleteness
         | 
| 97 | 
            +
                    include ::Google::Protobuf::MessageExts
         | 
| 98 | 
            +
                    extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 99 | 
            +
                  end
         | 
| 100 | 
            +
             | 
| 101 | 
            +
                  # Other properties of the build.
         | 
| 102 | 
            +
                  # @!attribute [rw] build_invocation_id
         | 
| 103 | 
            +
                  #   @return [::String]
         | 
| 104 | 
            +
                  #     Identifies the particular build invocation, which can be useful for
         | 
| 105 | 
            +
                  #     finding associated logs or other ad-hoc analysis. The value SHOULD be
         | 
| 106 | 
            +
                  #     globally unique, per in-toto Provenance spec.
         | 
| 107 | 
            +
                  # @!attribute [rw] build_started_on
         | 
| 108 | 
            +
                  #   @return [::Google::Protobuf::Timestamp]
         | 
| 109 | 
            +
                  #     The timestamp of when the build started.
         | 
| 110 | 
            +
                  # @!attribute [rw] build_finished_on
         | 
| 111 | 
            +
                  #   @return [::Google::Protobuf::Timestamp]
         | 
| 112 | 
            +
                  #     The timestamp of when the build completed.
         | 
| 113 | 
            +
                  # @!attribute [rw] completeness
         | 
| 114 | 
            +
                  #   @return [::Grafeas::V1::SlsaProvenance::SlsaCompleteness]
         | 
| 115 | 
            +
                  #     Indicates that the builder claims certain fields in this message to be
         | 
| 116 | 
            +
                  #     complete.
         | 
| 117 | 
            +
                  # @!attribute [rw] reproducible
         | 
| 118 | 
            +
                  #   @return [::Boolean]
         | 
| 119 | 
            +
                  #     If true, the builder claims that running the recipe on materials will
         | 
| 120 | 
            +
                  #     produce bit-for-bit identical output.
         | 
| 121 | 
            +
                  class SlsaMetadata
         | 
| 122 | 
            +
                    include ::Google::Protobuf::MessageExts
         | 
| 123 | 
            +
                    extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 124 | 
            +
                  end
         | 
| 125 | 
            +
             | 
| 126 | 
            +
                  # @!attribute [rw] id
         | 
| 127 | 
            +
                  #   @return [::String]
         | 
| 128 | 
            +
                  class SlsaBuilder
         | 
| 129 | 
            +
                    include ::Google::Protobuf::MessageExts
         | 
| 130 | 
            +
                    extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 131 | 
            +
                  end
         | 
| 132 | 
            +
             | 
| 133 | 
            +
                  # @!attribute [rw] uri
         | 
| 134 | 
            +
                  #   @return [::String]
         | 
| 135 | 
            +
                  # @!attribute [rw] digest
         | 
| 136 | 
            +
                  #   @return [::Google::Protobuf::Map{::String => ::String}]
         | 
| 137 | 
            +
                  class Material
         | 
| 138 | 
            +
                    include ::Google::Protobuf::MessageExts
         | 
| 139 | 
            +
                    extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 140 | 
            +
             | 
| 141 | 
            +
                    # @!attribute [rw] key
         | 
| 142 | 
            +
                    #   @return [::String]
         | 
| 143 | 
            +
                    # @!attribute [rw] value
         | 
| 144 | 
            +
                    #   @return [::String]
         | 
| 145 | 
            +
                    class DigestEntry
         | 
| 146 | 
            +
                      include ::Google::Protobuf::MessageExts
         | 
| 147 | 
            +
                      extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 148 | 
            +
                    end
         | 
| 149 | 
            +
                  end
         | 
| 150 | 
            +
                end
         | 
| 151 | 
            +
              end
         | 
| 152 | 
            +
            end
         | 
| @@ -109,6 +109,12 @@ module Grafeas | |
| 109 109 | 
             
                  #     The time this information was last changed at the source. This is an
         | 
| 110 110 | 
             
                  #     upstream timestamp from the underlying information source - e.g. Ubuntu
         | 
| 111 111 | 
             
                  #     security tracker.
         | 
| 112 | 
            +
                  # @!attribute [rw] source
         | 
| 113 | 
            +
                  #   @return [::String]
         | 
| 114 | 
            +
                  #     The source from which the information in this Detail was obtained.
         | 
| 115 | 
            +
                  # @!attribute [rw] vendor
         | 
| 116 | 
            +
                  #   @return [::String]
         | 
| 117 | 
            +
                  #     The name of the vendor of the product.
         | 
| 112 118 | 
             
                  class Detail
         | 
| 113 119 | 
             
                    include ::Google::Protobuf::MessageExts
         | 
| 114 120 | 
             
                    extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| @@ -161,6 +167,9 @@ module Grafeas | |
| 161 167 | 
             
                #     Output only. The CVSS score of this vulnerability. CVSS score is on a
         | 
| 162 168 | 
             
                #     scale of 0 - 10 where 0 indicates low severity and 10 indicates high
         | 
| 163 169 | 
             
                #     severity.
         | 
| 170 | 
            +
                # @!attribute [rw] cvssv3
         | 
| 171 | 
            +
                #   @return [::Grafeas::V1::VulnerabilityOccurrence::CVSSV3]
         | 
| 172 | 
            +
                #     The cvss v3 score for the vulnerability.
         | 
| 164 173 | 
             
                # @!attribute [rw] package_issue
         | 
| 165 174 | 
             
                #   @return [::Array<::Grafeas::V1::VulnerabilityOccurrence::PackageIssue>]
         | 
| 166 175 | 
             
                #     Required. The set of affected locations and their fixes (if available)
         | 
| @@ -178,6 +187,14 @@ module Grafeas | |
| 178 187 | 
             
                #   @return [::Grafeas::V1::Severity]
         | 
| 179 188 | 
             
                #     The distro assigned severity for this vulnerability when it is available,
         | 
| 180 189 | 
             
                #     otherwise this is the note provider assigned severity.
         | 
| 190 | 
            +
                #
         | 
| 191 | 
            +
                #     When there are multiple PackageIssues for this vulnerability, they can have
         | 
| 192 | 
            +
                #     different effective severities because some might be provided by the distro
         | 
| 193 | 
            +
                #     while others are provided by the language ecosystem for a language pack.
         | 
| 194 | 
            +
                #     For this reason, it is advised to use the effective severity on the
         | 
| 195 | 
            +
                #     PackageIssue level. In the case where multiple PackageIssues have differing
         | 
| 196 | 
            +
                #     effective severities, this field should be the highest severity for any of
         | 
| 197 | 
            +
                #     the PackageIssues.
         | 
| 181 198 | 
             
                # @!attribute [rw] fix_available
         | 
| 182 199 | 
             
                #   @return [::Boolean]
         | 
| 183 200 | 
             
                #     Output only. Whether at least one of the affected packages has a fix
         | 
| @@ -186,6 +203,19 @@ module Grafeas | |
| 186 203 | 
             
                  include ::Google::Protobuf::MessageExts
         | 
| 187 204 | 
             
                  extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 188 205 |  | 
| 206 | 
            +
                  # The CVSS v3 score for this vulnerability.
         | 
| 207 | 
            +
                  # @!attribute [rw] base_score
         | 
| 208 | 
            +
                  #   @return [::Float]
         | 
| 209 | 
            +
                  #     The base score for for this vulnerability according to cvss v3.
         | 
| 210 | 
            +
                  # @!attribute [rw] severity
         | 
| 211 | 
            +
                  #   @return [::Grafeas::V1::Severity]
         | 
| 212 | 
            +
                  #     The severity rating assigned to this vulnerability by vulnerability
         | 
| 213 | 
            +
                  #     provider.
         | 
| 214 | 
            +
                  class CVSSV3
         | 
| 215 | 
            +
                    include ::Google::Protobuf::MessageExts
         | 
| 216 | 
            +
                    extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
| 217 | 
            +
                  end
         | 
| 218 | 
            +
             | 
| 189 219 | 
             
                  # A detail for a distro and package this vulnerability occurrence was found
         | 
| 190 220 | 
             
                  # in and its associated fix (if one is available).
         | 
| 191 221 | 
             
                  # @!attribute [rw] affected_cpe_uri
         | 
| @@ -215,6 +245,14 @@ module Grafeas | |
| 215 245 | 
             
                  # @!attribute [rw] fix_available
         | 
| 216 246 | 
             
                  #   @return [::Boolean]
         | 
| 217 247 | 
             
                  #     Output only. Whether a fix is available for this package.
         | 
| 248 | 
            +
                  # @!attribute [rw] package_type
         | 
| 249 | 
            +
                  #   @return [::String]
         | 
| 250 | 
            +
                  #     The type of package (e.g. OS, MAVEN, GO).
         | 
| 251 | 
            +
                  # @!attribute [r] effective_severity
         | 
| 252 | 
            +
                  #   @return [::Grafeas::V1::Severity]
         | 
| 253 | 
            +
                  #     The distro or language system assigned severity for this vulnerability
         | 
| 254 | 
            +
                  #     when that is available and note provider assigned severity when it is not
         | 
| 255 | 
            +
                  #     available.
         | 
| 218 256 | 
             
                  class PackageIssue
         | 
| 219 257 | 
             
                    include ::Google::Protobuf::MessageExts
         | 
| 220 258 | 
             
                    extend ::Google::Protobuf::MessageExts::ClassMethods
         | 
    
        metadata
    CHANGED
    
    | @@ -1,29 +1,35 @@ | |
| 1 1 | 
             
            --- !ruby/object:Gem::Specification
         | 
| 2 2 | 
             
            name: grafeas-v1
         | 
| 3 3 | 
             
            version: !ruby/object:Gem::Version
         | 
| 4 | 
            -
              version: 0. | 
| 4 | 
            +
              version: 0.3.1
         | 
| 5 5 | 
             
            platform: ruby
         | 
| 6 6 | 
             
            authors:
         | 
| 7 7 | 
             
            - Google LLC
         | 
| 8 8 | 
             
            autorequire: 
         | 
| 9 9 | 
             
            bindir: bin
         | 
| 10 10 | 
             
            cert_chain: []
         | 
| 11 | 
            -
            date:  | 
| 11 | 
            +
            date: 2022-01-11 00:00:00.000000000 Z
         | 
| 12 12 | 
             
            dependencies:
         | 
| 13 13 | 
             
            - !ruby/object:Gem::Dependency
         | 
| 14 14 | 
             
              name: gapic-common
         | 
| 15 15 | 
             
              requirement: !ruby/object:Gem::Requirement
         | 
| 16 16 | 
             
                requirements:
         | 
| 17 | 
            -
                - - " | 
| 17 | 
            +
                - - ">="
         | 
| 18 | 
            +
                  - !ruby/object:Gem::Version
         | 
| 19 | 
            +
                    version: '0.7'
         | 
| 20 | 
            +
                - - "<"
         | 
| 18 21 | 
             
                  - !ruby/object:Gem::Version
         | 
| 19 | 
            -
                    version:  | 
| 22 | 
            +
                    version: 2.a
         | 
| 20 23 | 
             
              type: :runtime
         | 
| 21 24 | 
             
              prerelease: false
         | 
| 22 25 | 
             
              version_requirements: !ruby/object:Gem::Requirement
         | 
| 23 26 | 
             
                requirements:
         | 
| 24 | 
            -
                - - " | 
| 27 | 
            +
                - - ">="
         | 
| 28 | 
            +
                  - !ruby/object:Gem::Version
         | 
| 29 | 
            +
                    version: '0.7'
         | 
| 30 | 
            +
                - - "<"
         | 
| 25 31 | 
             
                  - !ruby/object:Gem::Version
         | 
| 26 | 
            -
                    version:  | 
| 32 | 
            +
                    version: 2.a
         | 
| 27 33 | 
             
            - !ruby/object:Gem::Dependency
         | 
| 28 34 | 
             
              name: google-cloud-errors
         | 
| 29 35 | 
             
              requirement: !ruby/object:Gem::Requirement
         | 
| @@ -167,17 +173,22 @@ files: | |
| 167 173 | 
             
            - lib/grafeas/v1/attestation_pb.rb
         | 
| 168 174 | 
             
            - lib/grafeas/v1/build_pb.rb
         | 
| 169 175 | 
             
            - lib/grafeas/v1/common_pb.rb
         | 
| 176 | 
            +
            - lib/grafeas/v1/compliance_pb.rb
         | 
| 170 177 | 
             
            - lib/grafeas/v1/cvss_pb.rb
         | 
| 171 178 | 
             
            - lib/grafeas/v1/deployment_pb.rb
         | 
| 172 179 | 
             
            - lib/grafeas/v1/discovery_pb.rb
         | 
| 180 | 
            +
            - lib/grafeas/v1/dsse_attestation_pb.rb
         | 
| 173 181 | 
             
            - lib/grafeas/v1/grafeas.rb
         | 
| 174 182 | 
             
            - lib/grafeas/v1/grafeas/client.rb
         | 
| 175 183 | 
             
            - lib/grafeas/v1/grafeas/paths.rb
         | 
| 176 184 | 
             
            - lib/grafeas/v1/grafeas_pb.rb
         | 
| 177 185 | 
             
            - lib/grafeas/v1/grafeas_services_pb.rb
         | 
| 178 186 | 
             
            - lib/grafeas/v1/image_pb.rb
         | 
| 187 | 
            +
            - lib/grafeas/v1/intoto_provenance_pb.rb
         | 
| 188 | 
            +
            - lib/grafeas/v1/intoto_statement_pb.rb
         | 
| 179 189 | 
             
            - lib/grafeas/v1/package_pb.rb
         | 
| 180 190 | 
             
            - lib/grafeas/v1/provenance_pb.rb
         | 
| 191 | 
            +
            - lib/grafeas/v1/slsa_provenance_pb.rb
         | 
| 181 192 | 
             
            - lib/grafeas/v1/upgrade_pb.rb
         | 
| 182 193 | 
             
            - lib/grafeas/v1/version.rb
         | 
| 183 194 | 
             
            - lib/grafeas/v1/vulnerability_pb.rb
         | 
| @@ -192,13 +203,18 @@ files: | |
| 192 203 | 
             
            - proto_docs/grafeas/v1/attestation.rb
         | 
| 193 204 | 
             
            - proto_docs/grafeas/v1/build.rb
         | 
| 194 205 | 
             
            - proto_docs/grafeas/v1/common.rb
         | 
| 206 | 
            +
            - proto_docs/grafeas/v1/compliance.rb
         | 
| 195 207 | 
             
            - proto_docs/grafeas/v1/cvss.rb
         | 
| 196 208 | 
             
            - proto_docs/grafeas/v1/deployment.rb
         | 
| 197 209 | 
             
            - proto_docs/grafeas/v1/discovery.rb
         | 
| 210 | 
            +
            - proto_docs/grafeas/v1/dsse_attestation.rb
         | 
| 198 211 | 
             
            - proto_docs/grafeas/v1/grafeas.rb
         | 
| 199 212 | 
             
            - proto_docs/grafeas/v1/image.rb
         | 
| 213 | 
            +
            - proto_docs/grafeas/v1/intoto_provenance.rb
         | 
| 214 | 
            +
            - proto_docs/grafeas/v1/intoto_statement.rb
         | 
| 200 215 | 
             
            - proto_docs/grafeas/v1/package.rb
         | 
| 201 216 | 
             
            - proto_docs/grafeas/v1/provenance.rb
         | 
| 217 | 
            +
            - proto_docs/grafeas/v1/slsa_provenance.rb
         | 
| 202 218 | 
             
            - proto_docs/grafeas/v1/upgrade.rb
         | 
| 203 219 | 
             
            - proto_docs/grafeas/v1/vulnerability.rb
         | 
| 204 220 | 
             
            homepage: https://github.com/googleapis/google-cloud-ruby
         | 
| @@ -220,7 +236,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement | |
| 220 236 | 
             
                - !ruby/object:Gem::Version
         | 
| 221 237 | 
             
                  version: '0'
         | 
| 222 238 | 
             
            requirements: []
         | 
| 223 | 
            -
            rubygems_version: 3. | 
| 239 | 
            +
            rubygems_version: 3.3.4
         | 
| 224 240 | 
             
            signing_key: 
         | 
| 225 241 | 
             
            specification_version: 4
         | 
| 226 242 | 
             
            summary: API Client library for the Grafeas V1 API
         |