grafeas-v1 0.2.1 → 0.4.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 750eb45e2d0d3f6c54b89bf78403d3441e23ec128d63e1ef330140eb2b3ab1f1
-  data.tar.gz: 2478516d978fc149263ca911c073d3b3a3840c160591385f2f16e3a08e20de95
+  metadata.gz: 7298ad05fa42dba9994b498bce80a3939994613c7a827c1f8579d90706a822af
+  data.tar.gz: 748a285b37351c52e5e241ea50015d9547572c071935c6bf2bbac57dd9866c19
 SHA512:
-  metadata.gz: '000782a0af0875dbe518da1cf04882cb5bb09a504995d581fd32be3fe2820026a847abe676fc1484d28b1da19fcdbf9528f693f0afe461dad535364eae45b619'
-  data.tar.gz: e687ff57d530c5d3af691229df7ce7ef7d172c9eec7aae29a9bb2d4ac0320ef6e06016a60a48ae35bfcd0233693c3d1d25842e9a0703370b1869dc9df712cf89
+  metadata.gz: '019f77652b634e657a86f6064923a3d0c5ae6b13a7de33d3dbf310f9bfd5ba328cf896ed6056303ed24fb844701da13aca92baeb6f976530d57c84525a0ba233'
+  data.tar.gz: dff13064655fc342f13844aeb0ea9bb98489d5026aad0140a3a98e8bb3f1a8504da40d09ff89692b3a1949743764953e18f5ef13f2fa7c5442b4f46cf2098f8d

data/.yardopts

@@ -1,5 +1,5 @@
 --no-private
---title=Grafeas V1 API
+--title="Grafeas V1 API"
 --exclude _pb\.rb$
 --markup markdown
 --markup-provider redcarpet

data/README.md

@@ -24,7 +24,7 @@ $ gem install grafeas-v1
 require "grafeas/v1"
 
 client = ::Grafeas::V1::Grafeas::Client.new
-request = my_create_request
+request = ::Grafeas::V1::GetOccurrenceRequest.new # (request fields as keyword arguments...)
 response = client.get_occurrence request
 ```
 

data/lib/grafeas/v1/attestation_pb.rb

@@ -1,9 +1,9 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: grafeas/v1/attestation.proto
 
+require 'grafeas/v1/common_pb'
 require 'google/protobuf'
 
-require 'grafeas/v1/common_pb'
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("grafeas/v1/attestation.proto", :syntax => :proto3) do
     add_message "grafeas.v1.AttestationNote" do
@@ -12,9 +12,13 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
     add_message "grafeas.v1.AttestationNote.Hint" do
       optional :human_readable_name, :string, 1
     end
+    add_message "grafeas.v1.Jwt" do
+      optional :compact_jwt, :string, 1
+    end
     add_message "grafeas.v1.AttestationOccurrence" do
       optional :serialized_payload, :bytes, 1
       repeated :signatures, :message, 2, "grafeas.v1.Signature"
+      repeated :jwts, :message, 3, "grafeas.v1.Jwt"
     end
   end
 end
@@ -23,6 +27,7 @@ module Grafeas
   module V1
     AttestationNote = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.AttestationNote").msgclass
     AttestationNote::Hint = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.AttestationNote.Hint").msgclass
+    Jwt = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.Jwt").msgclass
     AttestationOccurrence = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.AttestationOccurrence").msgclass
   end
 end

data/lib/grafeas/v1/build_pb.rb

@@ -1,9 +1,11 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: grafeas/v1/build.proto
 
+require 'grafeas/v1/intoto_provenance_pb'
+require 'grafeas/v1/intoto_statement_pb'
+require 'grafeas/v1/provenance_pb'
 require 'google/protobuf'
 
-require 'grafeas/v1/provenance_pb'
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("grafeas/v1/build.proto", :syntax => :proto3) do
     add_message "grafeas.v1.BuildNote" do
@@ -12,6 +14,8 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
     add_message "grafeas.v1.BuildOccurrence" do
       optional :provenance, :message, 1, "grafeas.v1.BuildProvenance"
       optional :provenance_bytes, :string, 2
+      optional :intoto_provenance, :message, 3, "grafeas.v1.InTotoProvenance"
+      optional :intoto_statement, :message, 4, "grafeas.v1.InTotoStatement"
     end
   end
 end

data/lib/grafeas/v1/common_pb.rb

@@ -13,6 +13,15 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :signature, :bytes, 1
       optional :public_key_id, :string, 2
     end
+    add_message "grafeas.v1.Envelope" do
+      optional :payload, :bytes, 1
+      optional :payload_type, :string, 2
+      repeated :signatures, :message, 3, "grafeas.v1.EnvelopeSignature"
+    end
+    add_message "grafeas.v1.EnvelopeSignature" do
+      optional :sig, :bytes, 1
+      optional :keyid, :string, 2
+    end
     add_enum "grafeas.v1.NoteKind" do
       value :NOTE_KIND_UNSPECIFIED, 0
       value :VULNERABILITY, 1
@@ -23,6 +32,8 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       value :DISCOVERY, 6
       value :ATTESTATION, 7
       value :UPGRADE, 8
+      value :COMPLIANCE, 9
+      value :DSSE_ATTESTATION, 10
     end
   end
 end
@@ -31,6 +42,8 @@ module Grafeas
   module V1
     RelatedUrl = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.RelatedUrl").msgclass
     Signature = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.Signature").msgclass
+    Envelope = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.Envelope").msgclass
+    EnvelopeSignature = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.EnvelopeSignature").msgclass
     NoteKind = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.NoteKind").enummodule
   end
 end

data/lib/grafeas/v1/compliance_pb.rb

@@ -0,0 +1,48 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: grafeas/v1/compliance.proto
+
+require 'grafeas/v1/severity_pb'
+require 'google/protobuf'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("grafeas/v1/compliance.proto", :syntax => :proto3) do
+    add_message "grafeas.v1.ComplianceNote" do
+      optional :title, :string, 1
+      optional :description, :string, 2
+      repeated :version, :message, 3, "grafeas.v1.ComplianceVersion"
+      optional :rationale, :string, 4
+      optional :remediation, :string, 5
+      optional :scan_instructions, :bytes, 7
+      oneof :compliance_type do
+        optional :cis_benchmark, :message, 6, "grafeas.v1.ComplianceNote.CisBenchmark"
+      end
+    end
+    add_message "grafeas.v1.ComplianceNote.CisBenchmark" do
+      optional :profile_level, :int32, 1
+      optional :severity, :enum, 2, "grafeas.v1.Severity"
+    end
+    add_message "grafeas.v1.ComplianceVersion" do
+      optional :cpe_uri, :string, 1
+      optional :version, :string, 2
+    end
+    add_message "grafeas.v1.ComplianceOccurrence" do
+      repeated :non_compliant_files, :message, 2, "grafeas.v1.NonCompliantFile"
+      optional :non_compliance_reason, :string, 3
+    end
+    add_message "grafeas.v1.NonCompliantFile" do
+      optional :path, :string, 1
+      optional :display_command, :string, 2
+      optional :reason, :string, 3
+    end
+  end
+end
+
+module Grafeas
+  module V1
+    ComplianceNote = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.ComplianceNote").msgclass
+    ComplianceNote::CisBenchmark = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.ComplianceNote.CisBenchmark").msgclass
+    ComplianceVersion = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.ComplianceVersion").msgclass
+    ComplianceOccurrence = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.ComplianceOccurrence").msgclass
+    NonCompliantFile = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.NonCompliantFile").msgclass
+  end
+end

data/lib/grafeas/v1/cvss_pb.rb

@@ -52,6 +52,60 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       value :IMPACT_LOW, 2
       value :IMPACT_NONE, 3
     end
+    add_message "grafeas.v1.CVSS" do
+      optional :base_score, :float, 1
+      optional :exploitability_score, :float, 2
+      optional :impact_score, :float, 3
+      optional :attack_vector, :enum, 4, "grafeas.v1.CVSS.AttackVector"
+      optional :attack_complexity, :enum, 5, "grafeas.v1.CVSS.AttackComplexity"
+      optional :authentication, :enum, 6, "grafeas.v1.CVSS.Authentication"
+      optional :privileges_required, :enum, 7, "grafeas.v1.CVSS.PrivilegesRequired"
+      optional :user_interaction, :enum, 8, "grafeas.v1.CVSS.UserInteraction"
+      optional :scope, :enum, 9, "grafeas.v1.CVSS.Scope"
+      optional :confidentiality_impact, :enum, 10, "grafeas.v1.CVSS.Impact"
+      optional :integrity_impact, :enum, 11, "grafeas.v1.CVSS.Impact"
+      optional :availability_impact, :enum, 12, "grafeas.v1.CVSS.Impact"
+    end
+    add_enum "grafeas.v1.CVSS.AttackVector" do
+      value :ATTACK_VECTOR_UNSPECIFIED, 0
+      value :ATTACK_VECTOR_NETWORK, 1
+      value :ATTACK_VECTOR_ADJACENT, 2
+      value :ATTACK_VECTOR_LOCAL, 3
+      value :ATTACK_VECTOR_PHYSICAL, 4
+    end
+    add_enum "grafeas.v1.CVSS.AttackComplexity" do
+      value :ATTACK_COMPLEXITY_UNSPECIFIED, 0
+      value :ATTACK_COMPLEXITY_LOW, 1
+      value :ATTACK_COMPLEXITY_HIGH, 2
+    end
+    add_enum "grafeas.v1.CVSS.Authentication" do
+      value :AUTHENTICATION_UNSPECIFIED, 0
+      value :AUTHENTICATION_MULTIPLE, 1
+      value :AUTHENTICATION_SINGLE, 2
+      value :AUTHENTICATION_NONE, 3
+    end
+    add_enum "grafeas.v1.CVSS.PrivilegesRequired" do
+      value :PRIVILEGES_REQUIRED_UNSPECIFIED, 0
+      value :PRIVILEGES_REQUIRED_NONE, 1
+      value :PRIVILEGES_REQUIRED_LOW, 2
+      value :PRIVILEGES_REQUIRED_HIGH, 3
+    end
+    add_enum "grafeas.v1.CVSS.UserInteraction" do
+      value :USER_INTERACTION_UNSPECIFIED, 0
+      value :USER_INTERACTION_NONE, 1
+      value :USER_INTERACTION_REQUIRED, 2
+    end
+    add_enum "grafeas.v1.CVSS.Scope" do
+      value :SCOPE_UNSPECIFIED, 0
+      value :SCOPE_UNCHANGED, 1
+      value :SCOPE_CHANGED, 2
+    end
+    add_enum "grafeas.v1.CVSS.Impact" do
+      value :IMPACT_UNSPECIFIED, 0
+      value :IMPACT_HIGH, 1
+      value :IMPACT_LOW, 2
+      value :IMPACT_NONE, 3
+    end
   end
 end
 
@@ -64,5 +118,13 @@ module Grafeas
     CVSSv3::UserInteraction = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSSv3.UserInteraction").enummodule
     CVSSv3::Scope = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSSv3.Scope").enummodule
     CVSSv3::Impact = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSSv3.Impact").enummodule
+    CVSS = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS").msgclass
+    CVSS::AttackVector = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.AttackVector").enummodule
+    CVSS::AttackComplexity = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.AttackComplexity").enummodule
+    CVSS::Authentication = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.Authentication").enummodule
+    CVSS::PrivilegesRequired = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.PrivilegesRequired").enummodule
+    CVSS::UserInteraction = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.UserInteraction").enummodule
+    CVSS::Scope = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.Scope").enummodule
+    CVSS::Impact = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.Impact").enummodule
   end
 end

data/lib/grafeas/v1/deployment_pb.rb

@@ -1,9 +1,9 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: grafeas/v1/deployment.proto
 
+require 'google/protobuf/timestamp_pb'
 require 'google/protobuf'
 
-require 'google/protobuf/timestamp_pb'
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("grafeas/v1/deployment.proto", :syntax => :proto3) do
     add_message "grafeas.v1.DeploymentNote" do

data/lib/grafeas/v1/discovery_pb.rb

@@ -1,11 +1,12 @@
 # Generated by the protocol buffer compiler.  DO NOT EDIT!
 # source: grafeas/v1/discovery.proto
 
-require 'google/protobuf'
-
+require 'google/api/field_behavior_pb'
 require 'google/protobuf/timestamp_pb'
 require 'google/rpc/status_pb'
 require 'grafeas/v1/common_pb'
+require 'google/protobuf'
+
 Google::Protobuf::DescriptorPool.generated_pool.build do
   add_file("grafeas/v1/discovery.proto", :syntax => :proto3) do
     add_message "grafeas.v1.DiscoveryNote" do
@@ -17,6 +18,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
       optional :analysis_status_error, :message, 3, "google.rpc.Status"
       optional :cpe, :string, 4
       optional :last_scan_time, :message, 5, "google.protobuf.Timestamp"
+      optional :archive_time, :message, 6, "google.protobuf.Timestamp"
     end
     add_enum "grafeas.v1.DiscoveryOccurrence.ContinuousAnalysis" do
       value :CONTINUOUS_ANALYSIS_UNSPECIFIED, 0

data/lib/grafeas/v1/dsse_attestation_pb.rb

@@ -0,0 +1,31 @@
+# Generated by the protocol buffer compiler.  DO NOT EDIT!
+# source: grafeas/v1/dsse_attestation.proto
+
+require 'grafeas/v1/common_pb'
+require 'grafeas/v1/intoto_statement_pb'
+require 'google/protobuf'
+
+Google::Protobuf::DescriptorPool.generated_pool.build do
+  add_file("grafeas/v1/dsse_attestation.proto", :syntax => :proto3) do
+    add_message "grafeas.v1.DSSEAttestationNote" do
+      optional :hint, :message, 1, "grafeas.v1.DSSEAttestationNote.DSSEHint"
+    end
+    add_message "grafeas.v1.DSSEAttestationNote.DSSEHint" do
+      optional :human_readable_name, :string, 1
+    end
+    add_message "grafeas.v1.DSSEAttestationOccurrence" do
+      optional :envelope, :message, 1, "grafeas.v1.Envelope"
+      oneof :decoded_payload do
+        optional :statement, :message, 2, "grafeas.v1.InTotoStatement"
+      end
+    end
+  end
+end
+
+module Grafeas
+  module V1
+    DSSEAttestationNote = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.DSSEAttestationNote").msgclass
+    DSSEAttestationNote::DSSEHint = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.DSSEAttestationNote.DSSEHint").msgclass
+    DSSEAttestationOccurrence = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.DSSEAttestationOccurrence").msgclass
+  end
+end