grafeas-v1 0.2.1 → 0.4.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (39) hide show
  1. checksums.yaml +4 -4
  2. data/.yardopts +1 -1
  3. data/README.md +1 -1
  4. data/lib/grafeas/v1/attestation_pb.rb +6 -1
  5. data/lib/grafeas/v1/build_pb.rb +5 -1
  6. data/lib/grafeas/v1/common_pb.rb +13 -0
  7. data/lib/grafeas/v1/compliance_pb.rb +48 -0
  8. data/lib/grafeas/v1/cvss_pb.rb +62 -0
  9. data/lib/grafeas/v1/deployment_pb.rb +1 -1
  10. data/lib/grafeas/v1/discovery_pb.rb +4 -2
  11. data/lib/grafeas/v1/dsse_attestation_pb.rb +31 -0
  12. data/lib/grafeas/v1/grafeas/client.rb +375 -121
  13. data/lib/grafeas/v1/grafeas_pb.rb +9 -2
  14. data/lib/grafeas/v1/intoto_provenance_pb.rb +49 -0
  15. data/lib/grafeas/v1/intoto_statement_pb.rb +31 -0
  16. data/lib/grafeas/v1/package_pb.rb +1 -0
  17. data/lib/grafeas/v1/provenance_pb.rb +1 -1
  18. data/lib/grafeas/v1/severity_pb.rb +23 -0
  19. data/lib/grafeas/v1/slsa_provenance_pb.rb +54 -0
  20. data/lib/grafeas/v1/upgrade_pb.rb +2 -2
  21. data/lib/grafeas/v1/version.rb +1 -1
  22. data/lib/grafeas/v1/vulnerability_pb.rb +9 -11
  23. data/proto_docs/google/api/field_behavior.rb +7 -1
  24. data/proto_docs/google/api/resource.rb +10 -71
  25. data/proto_docs/grafeas/v1/attestation.rb +21 -0
  26. data/proto_docs/grafeas/v1/build.rb +11 -1
  27. data/proto_docs/grafeas/v1/common.rb +31 -2
  28. data/proto_docs/grafeas/v1/compliance.rb +98 -0
  29. data/proto_docs/grafeas/v1/cvss.rb +105 -0
  30. data/proto_docs/grafeas/v1/discovery.rb +3 -0
  31. data/proto_docs/grafeas/v1/dsse_attestation.rb +59 -0
  32. data/proto_docs/grafeas/v1/grafeas.rb +15 -0
  33. data/proto_docs/grafeas/v1/intoto_provenance.rb +134 -0
  34. data/proto_docs/grafeas/v1/intoto_statement.rb +65 -0
  35. data/proto_docs/grafeas/v1/package.rb +8 -0
  36. data/proto_docs/grafeas/v1/severity.rb +43 -0
  37. data/proto_docs/grafeas/v1/slsa_provenance.rb +152 -0
  38. data/proto_docs/grafeas/v1/vulnerability.rb +25 -21
  39. metadata +17 -5
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 750eb45e2d0d3f6c54b89bf78403d3441e23ec128d63e1ef330140eb2b3ab1f1
4
- data.tar.gz: 2478516d978fc149263ca911c073d3b3a3840c160591385f2f16e3a08e20de95
3
+ metadata.gz: 7298ad05fa42dba9994b498bce80a3939994613c7a827c1f8579d90706a822af
4
+ data.tar.gz: 748a285b37351c52e5e241ea50015d9547572c071935c6bf2bbac57dd9866c19
5
5
  SHA512:
6
- metadata.gz: '000782a0af0875dbe518da1cf04882cb5bb09a504995d581fd32be3fe2820026a847abe676fc1484d28b1da19fcdbf9528f693f0afe461dad535364eae45b619'
7
- data.tar.gz: e687ff57d530c5d3af691229df7ce7ef7d172c9eec7aae29a9bb2d4ac0320ef6e06016a60a48ae35bfcd0233693c3d1d25842e9a0703370b1869dc9df712cf89
6
+ metadata.gz: '019f77652b634e657a86f6064923a3d0c5ae6b13a7de33d3dbf310f9bfd5ba328cf896ed6056303ed24fb844701da13aca92baeb6f976530d57c84525a0ba233'
7
+ data.tar.gz: dff13064655fc342f13844aeb0ea9bb98489d5026aad0140a3a98e8bb3f1a8504da40d09ff89692b3a1949743764953e18f5ef13f2fa7c5442b4f46cf2098f8d
data/.yardopts CHANGED
@@ -1,5 +1,5 @@
1
1
  --no-private
2
- --title=Grafeas V1 API
2
+ --title="Grafeas V1 API"
3
3
  --exclude _pb\.rb$
4
4
  --markup markdown
5
5
  --markup-provider redcarpet
data/README.md CHANGED
@@ -24,7 +24,7 @@ $ gem install grafeas-v1
24
24
  require "grafeas/v1"
25
25
 
26
26
  client = ::Grafeas::V1::Grafeas::Client.new
27
- request = my_create_request
27
+ request = ::Grafeas::V1::GetOccurrenceRequest.new # (request fields as keyword arguments...)
28
28
  response = client.get_occurrence request
29
29
  ```
30
30
 
@@ -1,9 +1,9 @@
1
1
  # Generated by the protocol buffer compiler. DO NOT EDIT!
2
2
  # source: grafeas/v1/attestation.proto
3
3
 
4
+ require 'grafeas/v1/common_pb'
4
5
  require 'google/protobuf'
5
6
 
6
- require 'grafeas/v1/common_pb'
7
7
  Google::Protobuf::DescriptorPool.generated_pool.build do
8
8
  add_file("grafeas/v1/attestation.proto", :syntax => :proto3) do
9
9
  add_message "grafeas.v1.AttestationNote" do
@@ -12,9 +12,13 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
12
12
  add_message "grafeas.v1.AttestationNote.Hint" do
13
13
  optional :human_readable_name, :string, 1
14
14
  end
15
+ add_message "grafeas.v1.Jwt" do
16
+ optional :compact_jwt, :string, 1
17
+ end
15
18
  add_message "grafeas.v1.AttestationOccurrence" do
16
19
  optional :serialized_payload, :bytes, 1
17
20
  repeated :signatures, :message, 2, "grafeas.v1.Signature"
21
+ repeated :jwts, :message, 3, "grafeas.v1.Jwt"
18
22
  end
19
23
  end
20
24
  end
@@ -23,6 +27,7 @@ module Grafeas
23
27
  module V1
24
28
  AttestationNote = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.AttestationNote").msgclass
25
29
  AttestationNote::Hint = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.AttestationNote.Hint").msgclass
30
+ Jwt = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.Jwt").msgclass
26
31
  AttestationOccurrence = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.AttestationOccurrence").msgclass
27
32
  end
28
33
  end
@@ -1,9 +1,11 @@
1
1
  # Generated by the protocol buffer compiler. DO NOT EDIT!
2
2
  # source: grafeas/v1/build.proto
3
3
 
4
+ require 'grafeas/v1/intoto_provenance_pb'
5
+ require 'grafeas/v1/intoto_statement_pb'
6
+ require 'grafeas/v1/provenance_pb'
4
7
  require 'google/protobuf'
5
8
 
6
- require 'grafeas/v1/provenance_pb'
7
9
  Google::Protobuf::DescriptorPool.generated_pool.build do
8
10
  add_file("grafeas/v1/build.proto", :syntax => :proto3) do
9
11
  add_message "grafeas.v1.BuildNote" do
@@ -12,6 +14,8 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
12
14
  add_message "grafeas.v1.BuildOccurrence" do
13
15
  optional :provenance, :message, 1, "grafeas.v1.BuildProvenance"
14
16
  optional :provenance_bytes, :string, 2
17
+ optional :intoto_provenance, :message, 3, "grafeas.v1.InTotoProvenance"
18
+ optional :intoto_statement, :message, 4, "grafeas.v1.InTotoStatement"
15
19
  end
16
20
  end
17
21
  end
@@ -13,6 +13,15 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
13
13
  optional :signature, :bytes, 1
14
14
  optional :public_key_id, :string, 2
15
15
  end
16
+ add_message "grafeas.v1.Envelope" do
17
+ optional :payload, :bytes, 1
18
+ optional :payload_type, :string, 2
19
+ repeated :signatures, :message, 3, "grafeas.v1.EnvelopeSignature"
20
+ end
21
+ add_message "grafeas.v1.EnvelopeSignature" do
22
+ optional :sig, :bytes, 1
23
+ optional :keyid, :string, 2
24
+ end
16
25
  add_enum "grafeas.v1.NoteKind" do
17
26
  value :NOTE_KIND_UNSPECIFIED, 0
18
27
  value :VULNERABILITY, 1
@@ -23,6 +32,8 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
23
32
  value :DISCOVERY, 6
24
33
  value :ATTESTATION, 7
25
34
  value :UPGRADE, 8
35
+ value :COMPLIANCE, 9
36
+ value :DSSE_ATTESTATION, 10
26
37
  end
27
38
  end
28
39
  end
@@ -31,6 +42,8 @@ module Grafeas
31
42
  module V1
32
43
  RelatedUrl = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.RelatedUrl").msgclass
33
44
  Signature = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.Signature").msgclass
45
+ Envelope = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.Envelope").msgclass
46
+ EnvelopeSignature = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.EnvelopeSignature").msgclass
34
47
  NoteKind = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.NoteKind").enummodule
35
48
  end
36
49
  end
@@ -0,0 +1,48 @@
1
+ # Generated by the protocol buffer compiler. DO NOT EDIT!
2
+ # source: grafeas/v1/compliance.proto
3
+
4
+ require 'grafeas/v1/severity_pb'
5
+ require 'google/protobuf'
6
+
7
+ Google::Protobuf::DescriptorPool.generated_pool.build do
8
+ add_file("grafeas/v1/compliance.proto", :syntax => :proto3) do
9
+ add_message "grafeas.v1.ComplianceNote" do
10
+ optional :title, :string, 1
11
+ optional :description, :string, 2
12
+ repeated :version, :message, 3, "grafeas.v1.ComplianceVersion"
13
+ optional :rationale, :string, 4
14
+ optional :remediation, :string, 5
15
+ optional :scan_instructions, :bytes, 7
16
+ oneof :compliance_type do
17
+ optional :cis_benchmark, :message, 6, "grafeas.v1.ComplianceNote.CisBenchmark"
18
+ end
19
+ end
20
+ add_message "grafeas.v1.ComplianceNote.CisBenchmark" do
21
+ optional :profile_level, :int32, 1
22
+ optional :severity, :enum, 2, "grafeas.v1.Severity"
23
+ end
24
+ add_message "grafeas.v1.ComplianceVersion" do
25
+ optional :cpe_uri, :string, 1
26
+ optional :version, :string, 2
27
+ end
28
+ add_message "grafeas.v1.ComplianceOccurrence" do
29
+ repeated :non_compliant_files, :message, 2, "grafeas.v1.NonCompliantFile"
30
+ optional :non_compliance_reason, :string, 3
31
+ end
32
+ add_message "grafeas.v1.NonCompliantFile" do
33
+ optional :path, :string, 1
34
+ optional :display_command, :string, 2
35
+ optional :reason, :string, 3
36
+ end
37
+ end
38
+ end
39
+
40
+ module Grafeas
41
+ module V1
42
+ ComplianceNote = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.ComplianceNote").msgclass
43
+ ComplianceNote::CisBenchmark = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.ComplianceNote.CisBenchmark").msgclass
44
+ ComplianceVersion = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.ComplianceVersion").msgclass
45
+ ComplianceOccurrence = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.ComplianceOccurrence").msgclass
46
+ NonCompliantFile = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.NonCompliantFile").msgclass
47
+ end
48
+ end
@@ -52,6 +52,60 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
52
52
  value :IMPACT_LOW, 2
53
53
  value :IMPACT_NONE, 3
54
54
  end
55
+ add_message "grafeas.v1.CVSS" do
56
+ optional :base_score, :float, 1
57
+ optional :exploitability_score, :float, 2
58
+ optional :impact_score, :float, 3
59
+ optional :attack_vector, :enum, 4, "grafeas.v1.CVSS.AttackVector"
60
+ optional :attack_complexity, :enum, 5, "grafeas.v1.CVSS.AttackComplexity"
61
+ optional :authentication, :enum, 6, "grafeas.v1.CVSS.Authentication"
62
+ optional :privileges_required, :enum, 7, "grafeas.v1.CVSS.PrivilegesRequired"
63
+ optional :user_interaction, :enum, 8, "grafeas.v1.CVSS.UserInteraction"
64
+ optional :scope, :enum, 9, "grafeas.v1.CVSS.Scope"
65
+ optional :confidentiality_impact, :enum, 10, "grafeas.v1.CVSS.Impact"
66
+ optional :integrity_impact, :enum, 11, "grafeas.v1.CVSS.Impact"
67
+ optional :availability_impact, :enum, 12, "grafeas.v1.CVSS.Impact"
68
+ end
69
+ add_enum "grafeas.v1.CVSS.AttackVector" do
70
+ value :ATTACK_VECTOR_UNSPECIFIED, 0
71
+ value :ATTACK_VECTOR_NETWORK, 1
72
+ value :ATTACK_VECTOR_ADJACENT, 2
73
+ value :ATTACK_VECTOR_LOCAL, 3
74
+ value :ATTACK_VECTOR_PHYSICAL, 4
75
+ end
76
+ add_enum "grafeas.v1.CVSS.AttackComplexity" do
77
+ value :ATTACK_COMPLEXITY_UNSPECIFIED, 0
78
+ value :ATTACK_COMPLEXITY_LOW, 1
79
+ value :ATTACK_COMPLEXITY_HIGH, 2
80
+ end
81
+ add_enum "grafeas.v1.CVSS.Authentication" do
82
+ value :AUTHENTICATION_UNSPECIFIED, 0
83
+ value :AUTHENTICATION_MULTIPLE, 1
84
+ value :AUTHENTICATION_SINGLE, 2
85
+ value :AUTHENTICATION_NONE, 3
86
+ end
87
+ add_enum "grafeas.v1.CVSS.PrivilegesRequired" do
88
+ value :PRIVILEGES_REQUIRED_UNSPECIFIED, 0
89
+ value :PRIVILEGES_REQUIRED_NONE, 1
90
+ value :PRIVILEGES_REQUIRED_LOW, 2
91
+ value :PRIVILEGES_REQUIRED_HIGH, 3
92
+ end
93
+ add_enum "grafeas.v1.CVSS.UserInteraction" do
94
+ value :USER_INTERACTION_UNSPECIFIED, 0
95
+ value :USER_INTERACTION_NONE, 1
96
+ value :USER_INTERACTION_REQUIRED, 2
97
+ end
98
+ add_enum "grafeas.v1.CVSS.Scope" do
99
+ value :SCOPE_UNSPECIFIED, 0
100
+ value :SCOPE_UNCHANGED, 1
101
+ value :SCOPE_CHANGED, 2
102
+ end
103
+ add_enum "grafeas.v1.CVSS.Impact" do
104
+ value :IMPACT_UNSPECIFIED, 0
105
+ value :IMPACT_HIGH, 1
106
+ value :IMPACT_LOW, 2
107
+ value :IMPACT_NONE, 3
108
+ end
55
109
  end
56
110
  end
57
111
 
@@ -64,5 +118,13 @@ module Grafeas
64
118
  CVSSv3::UserInteraction = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSSv3.UserInteraction").enummodule
65
119
  CVSSv3::Scope = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSSv3.Scope").enummodule
66
120
  CVSSv3::Impact = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSSv3.Impact").enummodule
121
+ CVSS = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS").msgclass
122
+ CVSS::AttackVector = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.AttackVector").enummodule
123
+ CVSS::AttackComplexity = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.AttackComplexity").enummodule
124
+ CVSS::Authentication = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.Authentication").enummodule
125
+ CVSS::PrivilegesRequired = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.PrivilegesRequired").enummodule
126
+ CVSS::UserInteraction = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.UserInteraction").enummodule
127
+ CVSS::Scope = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.Scope").enummodule
128
+ CVSS::Impact = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.Impact").enummodule
67
129
  end
68
130
  end
@@ -1,9 +1,9 @@
1
1
  # Generated by the protocol buffer compiler. DO NOT EDIT!
2
2
  # source: grafeas/v1/deployment.proto
3
3
 
4
+ require 'google/protobuf/timestamp_pb'
4
5
  require 'google/protobuf'
5
6
 
6
- require 'google/protobuf/timestamp_pb'
7
7
  Google::Protobuf::DescriptorPool.generated_pool.build do
8
8
  add_file("grafeas/v1/deployment.proto", :syntax => :proto3) do
9
9
  add_message "grafeas.v1.DeploymentNote" do
@@ -1,11 +1,12 @@
1
1
  # Generated by the protocol buffer compiler. DO NOT EDIT!
2
2
  # source: grafeas/v1/discovery.proto
3
3
 
4
- require 'google/protobuf'
5
-
4
+ require 'google/api/field_behavior_pb'
6
5
  require 'google/protobuf/timestamp_pb'
7
6
  require 'google/rpc/status_pb'
8
7
  require 'grafeas/v1/common_pb'
8
+ require 'google/protobuf'
9
+
9
10
  Google::Protobuf::DescriptorPool.generated_pool.build do
10
11
  add_file("grafeas/v1/discovery.proto", :syntax => :proto3) do
11
12
  add_message "grafeas.v1.DiscoveryNote" do
@@ -17,6 +18,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
17
18
  optional :analysis_status_error, :message, 3, "google.rpc.Status"
18
19
  optional :cpe, :string, 4
19
20
  optional :last_scan_time, :message, 5, "google.protobuf.Timestamp"
21
+ optional :archive_time, :message, 6, "google.protobuf.Timestamp"
20
22
  end
21
23
  add_enum "grafeas.v1.DiscoveryOccurrence.ContinuousAnalysis" do
22
24
  value :CONTINUOUS_ANALYSIS_UNSPECIFIED, 0
@@ -0,0 +1,31 @@
1
+ # Generated by the protocol buffer compiler. DO NOT EDIT!
2
+ # source: grafeas/v1/dsse_attestation.proto
3
+
4
+ require 'grafeas/v1/common_pb'
5
+ require 'grafeas/v1/intoto_statement_pb'
6
+ require 'google/protobuf'
7
+
8
+ Google::Protobuf::DescriptorPool.generated_pool.build do
9
+ add_file("grafeas/v1/dsse_attestation.proto", :syntax => :proto3) do
10
+ add_message "grafeas.v1.DSSEAttestationNote" do
11
+ optional :hint, :message, 1, "grafeas.v1.DSSEAttestationNote.DSSEHint"
12
+ end
13
+ add_message "grafeas.v1.DSSEAttestationNote.DSSEHint" do
14
+ optional :human_readable_name, :string, 1
15
+ end
16
+ add_message "grafeas.v1.DSSEAttestationOccurrence" do
17
+ optional :envelope, :message, 1, "grafeas.v1.Envelope"
18
+ oneof :decoded_payload do
19
+ optional :statement, :message, 2, "grafeas.v1.InTotoStatement"
20
+ end
21
+ end
22
+ end
23
+ end
24
+
25
+ module Grafeas
26
+ module V1
27
+ DSSEAttestationNote = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.DSSEAttestationNote").msgclass
28
+ DSSEAttestationNote::DSSEHint = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.DSSEAttestationNote.DSSEHint").msgclass
29
+ DSSEAttestationOccurrence = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.DSSEAttestationOccurrence").msgclass
30
+ end
31
+ end