grafeas-v1 0.2.1 → 0.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (39) hide show
  1. checksums.yaml +4 -4
  2. data/.yardopts +1 -1
  3. data/README.md +1 -1
  4. data/lib/grafeas/v1/attestation_pb.rb +6 -1
  5. data/lib/grafeas/v1/build_pb.rb +5 -1
  6. data/lib/grafeas/v1/common_pb.rb +13 -0
  7. data/lib/grafeas/v1/compliance_pb.rb +48 -0
  8. data/lib/grafeas/v1/cvss_pb.rb +62 -0
  9. data/lib/grafeas/v1/deployment_pb.rb +1 -1
  10. data/lib/grafeas/v1/discovery_pb.rb +4 -2
  11. data/lib/grafeas/v1/dsse_attestation_pb.rb +31 -0
  12. data/lib/grafeas/v1/grafeas/client.rb +375 -121
  13. data/lib/grafeas/v1/grafeas_pb.rb +9 -2
  14. data/lib/grafeas/v1/intoto_provenance_pb.rb +49 -0
  15. data/lib/grafeas/v1/intoto_statement_pb.rb +31 -0
  16. data/lib/grafeas/v1/package_pb.rb +1 -0
  17. data/lib/grafeas/v1/provenance_pb.rb +1 -1
  18. data/lib/grafeas/v1/severity_pb.rb +23 -0
  19. data/lib/grafeas/v1/slsa_provenance_pb.rb +54 -0
  20. data/lib/grafeas/v1/upgrade_pb.rb +2 -2
  21. data/lib/grafeas/v1/version.rb +1 -1
  22. data/lib/grafeas/v1/vulnerability_pb.rb +9 -11
  23. data/proto_docs/google/api/field_behavior.rb +7 -1
  24. data/proto_docs/google/api/resource.rb +10 -71
  25. data/proto_docs/grafeas/v1/attestation.rb +21 -0
  26. data/proto_docs/grafeas/v1/build.rb +11 -1
  27. data/proto_docs/grafeas/v1/common.rb +31 -2
  28. data/proto_docs/grafeas/v1/compliance.rb +98 -0
  29. data/proto_docs/grafeas/v1/cvss.rb +105 -0
  30. data/proto_docs/grafeas/v1/discovery.rb +3 -0
  31. data/proto_docs/grafeas/v1/dsse_attestation.rb +59 -0
  32. data/proto_docs/grafeas/v1/grafeas.rb +15 -0
  33. data/proto_docs/grafeas/v1/intoto_provenance.rb +134 -0
  34. data/proto_docs/grafeas/v1/intoto_statement.rb +65 -0
  35. data/proto_docs/grafeas/v1/package.rb +8 -0
  36. data/proto_docs/grafeas/v1/severity.rb +43 -0
  37. data/proto_docs/grafeas/v1/slsa_provenance.rb +152 -0
  38. data/proto_docs/grafeas/v1/vulnerability.rb +25 -21
  39. metadata +17 -5
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 750eb45e2d0d3f6c54b89bf78403d3441e23ec128d63e1ef330140eb2b3ab1f1
4
- data.tar.gz: 2478516d978fc149263ca911c073d3b3a3840c160591385f2f16e3a08e20de95
3
+ metadata.gz: 7298ad05fa42dba9994b498bce80a3939994613c7a827c1f8579d90706a822af
4
+ data.tar.gz: 748a285b37351c52e5e241ea50015d9547572c071935c6bf2bbac57dd9866c19
5
5
  SHA512:
6
- metadata.gz: '000782a0af0875dbe518da1cf04882cb5bb09a504995d581fd32be3fe2820026a847abe676fc1484d28b1da19fcdbf9528f693f0afe461dad535364eae45b619'
7
- data.tar.gz: e687ff57d530c5d3af691229df7ce7ef7d172c9eec7aae29a9bb2d4ac0320ef6e06016a60a48ae35bfcd0233693c3d1d25842e9a0703370b1869dc9df712cf89
6
+ metadata.gz: '019f77652b634e657a86f6064923a3d0c5ae6b13a7de33d3dbf310f9bfd5ba328cf896ed6056303ed24fb844701da13aca92baeb6f976530d57c84525a0ba233'
7
+ data.tar.gz: dff13064655fc342f13844aeb0ea9bb98489d5026aad0140a3a98e8bb3f1a8504da40d09ff89692b3a1949743764953e18f5ef13f2fa7c5442b4f46cf2098f8d
data/.yardopts CHANGED
@@ -1,5 +1,5 @@
1
1
  --no-private
2
- --title=Grafeas V1 API
2
+ --title="Grafeas V1 API"
3
3
  --exclude _pb\.rb$
4
4
  --markup markdown
5
5
  --markup-provider redcarpet
data/README.md CHANGED
@@ -24,7 +24,7 @@ $ gem install grafeas-v1
24
24
  require "grafeas/v1"
25
25
 
26
26
  client = ::Grafeas::V1::Grafeas::Client.new
27
- request = my_create_request
27
+ request = ::Grafeas::V1::GetOccurrenceRequest.new # (request fields as keyword arguments...)
28
28
  response = client.get_occurrence request
29
29
  ```
30
30
 
@@ -1,9 +1,9 @@
1
1
  # Generated by the protocol buffer compiler. DO NOT EDIT!
2
2
  # source: grafeas/v1/attestation.proto
3
3
 
4
+ require 'grafeas/v1/common_pb'
4
5
  require 'google/protobuf'
5
6
 
6
- require 'grafeas/v1/common_pb'
7
7
  Google::Protobuf::DescriptorPool.generated_pool.build do
8
8
  add_file("grafeas/v1/attestation.proto", :syntax => :proto3) do
9
9
  add_message "grafeas.v1.AttestationNote" do
@@ -12,9 +12,13 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
12
12
  add_message "grafeas.v1.AttestationNote.Hint" do
13
13
  optional :human_readable_name, :string, 1
14
14
  end
15
+ add_message "grafeas.v1.Jwt" do
16
+ optional :compact_jwt, :string, 1
17
+ end
15
18
  add_message "grafeas.v1.AttestationOccurrence" do
16
19
  optional :serialized_payload, :bytes, 1
17
20
  repeated :signatures, :message, 2, "grafeas.v1.Signature"
21
+ repeated :jwts, :message, 3, "grafeas.v1.Jwt"
18
22
  end
19
23
  end
20
24
  end
@@ -23,6 +27,7 @@ module Grafeas
23
27
  module V1
24
28
  AttestationNote = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.AttestationNote").msgclass
25
29
  AttestationNote::Hint = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.AttestationNote.Hint").msgclass
30
+ Jwt = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.Jwt").msgclass
26
31
  AttestationOccurrence = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.AttestationOccurrence").msgclass
27
32
  end
28
33
  end
@@ -1,9 +1,11 @@
1
1
  # Generated by the protocol buffer compiler. DO NOT EDIT!
2
2
  # source: grafeas/v1/build.proto
3
3
 
4
+ require 'grafeas/v1/intoto_provenance_pb'
5
+ require 'grafeas/v1/intoto_statement_pb'
6
+ require 'grafeas/v1/provenance_pb'
4
7
  require 'google/protobuf'
5
8
 
6
- require 'grafeas/v1/provenance_pb'
7
9
  Google::Protobuf::DescriptorPool.generated_pool.build do
8
10
  add_file("grafeas/v1/build.proto", :syntax => :proto3) do
9
11
  add_message "grafeas.v1.BuildNote" do
@@ -12,6 +14,8 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
12
14
  add_message "grafeas.v1.BuildOccurrence" do
13
15
  optional :provenance, :message, 1, "grafeas.v1.BuildProvenance"
14
16
  optional :provenance_bytes, :string, 2
17
+ optional :intoto_provenance, :message, 3, "grafeas.v1.InTotoProvenance"
18
+ optional :intoto_statement, :message, 4, "grafeas.v1.InTotoStatement"
15
19
  end
16
20
  end
17
21
  end
@@ -13,6 +13,15 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
13
13
  optional :signature, :bytes, 1
14
14
  optional :public_key_id, :string, 2
15
15
  end
16
+ add_message "grafeas.v1.Envelope" do
17
+ optional :payload, :bytes, 1
18
+ optional :payload_type, :string, 2
19
+ repeated :signatures, :message, 3, "grafeas.v1.EnvelopeSignature"
20
+ end
21
+ add_message "grafeas.v1.EnvelopeSignature" do
22
+ optional :sig, :bytes, 1
23
+ optional :keyid, :string, 2
24
+ end
16
25
  add_enum "grafeas.v1.NoteKind" do
17
26
  value :NOTE_KIND_UNSPECIFIED, 0
18
27
  value :VULNERABILITY, 1
@@ -23,6 +32,8 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
23
32
  value :DISCOVERY, 6
24
33
  value :ATTESTATION, 7
25
34
  value :UPGRADE, 8
35
+ value :COMPLIANCE, 9
36
+ value :DSSE_ATTESTATION, 10
26
37
  end
27
38
  end
28
39
  end
@@ -31,6 +42,8 @@ module Grafeas
31
42
  module V1
32
43
  RelatedUrl = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.RelatedUrl").msgclass
33
44
  Signature = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.Signature").msgclass
45
+ Envelope = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.Envelope").msgclass
46
+ EnvelopeSignature = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.EnvelopeSignature").msgclass
34
47
  NoteKind = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.NoteKind").enummodule
35
48
  end
36
49
  end
@@ -0,0 +1,48 @@
1
+ # Generated by the protocol buffer compiler. DO NOT EDIT!
2
+ # source: grafeas/v1/compliance.proto
3
+
4
+ require 'grafeas/v1/severity_pb'
5
+ require 'google/protobuf'
6
+
7
+ Google::Protobuf::DescriptorPool.generated_pool.build do
8
+ add_file("grafeas/v1/compliance.proto", :syntax => :proto3) do
9
+ add_message "grafeas.v1.ComplianceNote" do
10
+ optional :title, :string, 1
11
+ optional :description, :string, 2
12
+ repeated :version, :message, 3, "grafeas.v1.ComplianceVersion"
13
+ optional :rationale, :string, 4
14
+ optional :remediation, :string, 5
15
+ optional :scan_instructions, :bytes, 7
16
+ oneof :compliance_type do
17
+ optional :cis_benchmark, :message, 6, "grafeas.v1.ComplianceNote.CisBenchmark"
18
+ end
19
+ end
20
+ add_message "grafeas.v1.ComplianceNote.CisBenchmark" do
21
+ optional :profile_level, :int32, 1
22
+ optional :severity, :enum, 2, "grafeas.v1.Severity"
23
+ end
24
+ add_message "grafeas.v1.ComplianceVersion" do
25
+ optional :cpe_uri, :string, 1
26
+ optional :version, :string, 2
27
+ end
28
+ add_message "grafeas.v1.ComplianceOccurrence" do
29
+ repeated :non_compliant_files, :message, 2, "grafeas.v1.NonCompliantFile"
30
+ optional :non_compliance_reason, :string, 3
31
+ end
32
+ add_message "grafeas.v1.NonCompliantFile" do
33
+ optional :path, :string, 1
34
+ optional :display_command, :string, 2
35
+ optional :reason, :string, 3
36
+ end
37
+ end
38
+ end
39
+
40
+ module Grafeas
41
+ module V1
42
+ ComplianceNote = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.ComplianceNote").msgclass
43
+ ComplianceNote::CisBenchmark = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.ComplianceNote.CisBenchmark").msgclass
44
+ ComplianceVersion = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.ComplianceVersion").msgclass
45
+ ComplianceOccurrence = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.ComplianceOccurrence").msgclass
46
+ NonCompliantFile = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.NonCompliantFile").msgclass
47
+ end
48
+ end
@@ -52,6 +52,60 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
52
52
  value :IMPACT_LOW, 2
53
53
  value :IMPACT_NONE, 3
54
54
  end
55
+ add_message "grafeas.v1.CVSS" do
56
+ optional :base_score, :float, 1
57
+ optional :exploitability_score, :float, 2
58
+ optional :impact_score, :float, 3
59
+ optional :attack_vector, :enum, 4, "grafeas.v1.CVSS.AttackVector"
60
+ optional :attack_complexity, :enum, 5, "grafeas.v1.CVSS.AttackComplexity"
61
+ optional :authentication, :enum, 6, "grafeas.v1.CVSS.Authentication"
62
+ optional :privileges_required, :enum, 7, "grafeas.v1.CVSS.PrivilegesRequired"
63
+ optional :user_interaction, :enum, 8, "grafeas.v1.CVSS.UserInteraction"
64
+ optional :scope, :enum, 9, "grafeas.v1.CVSS.Scope"
65
+ optional :confidentiality_impact, :enum, 10, "grafeas.v1.CVSS.Impact"
66
+ optional :integrity_impact, :enum, 11, "grafeas.v1.CVSS.Impact"
67
+ optional :availability_impact, :enum, 12, "grafeas.v1.CVSS.Impact"
68
+ end
69
+ add_enum "grafeas.v1.CVSS.AttackVector" do
70
+ value :ATTACK_VECTOR_UNSPECIFIED, 0
71
+ value :ATTACK_VECTOR_NETWORK, 1
72
+ value :ATTACK_VECTOR_ADJACENT, 2
73
+ value :ATTACK_VECTOR_LOCAL, 3
74
+ value :ATTACK_VECTOR_PHYSICAL, 4
75
+ end
76
+ add_enum "grafeas.v1.CVSS.AttackComplexity" do
77
+ value :ATTACK_COMPLEXITY_UNSPECIFIED, 0
78
+ value :ATTACK_COMPLEXITY_LOW, 1
79
+ value :ATTACK_COMPLEXITY_HIGH, 2
80
+ end
81
+ add_enum "grafeas.v1.CVSS.Authentication" do
82
+ value :AUTHENTICATION_UNSPECIFIED, 0
83
+ value :AUTHENTICATION_MULTIPLE, 1
84
+ value :AUTHENTICATION_SINGLE, 2
85
+ value :AUTHENTICATION_NONE, 3
86
+ end
87
+ add_enum "grafeas.v1.CVSS.PrivilegesRequired" do
88
+ value :PRIVILEGES_REQUIRED_UNSPECIFIED, 0
89
+ value :PRIVILEGES_REQUIRED_NONE, 1
90
+ value :PRIVILEGES_REQUIRED_LOW, 2
91
+ value :PRIVILEGES_REQUIRED_HIGH, 3
92
+ end
93
+ add_enum "grafeas.v1.CVSS.UserInteraction" do
94
+ value :USER_INTERACTION_UNSPECIFIED, 0
95
+ value :USER_INTERACTION_NONE, 1
96
+ value :USER_INTERACTION_REQUIRED, 2
97
+ end
98
+ add_enum "grafeas.v1.CVSS.Scope" do
99
+ value :SCOPE_UNSPECIFIED, 0
100
+ value :SCOPE_UNCHANGED, 1
101
+ value :SCOPE_CHANGED, 2
102
+ end
103
+ add_enum "grafeas.v1.CVSS.Impact" do
104
+ value :IMPACT_UNSPECIFIED, 0
105
+ value :IMPACT_HIGH, 1
106
+ value :IMPACT_LOW, 2
107
+ value :IMPACT_NONE, 3
108
+ end
55
109
  end
56
110
  end
57
111
 
@@ -64,5 +118,13 @@ module Grafeas
64
118
  CVSSv3::UserInteraction = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSSv3.UserInteraction").enummodule
65
119
  CVSSv3::Scope = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSSv3.Scope").enummodule
66
120
  CVSSv3::Impact = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSSv3.Impact").enummodule
121
+ CVSS = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS").msgclass
122
+ CVSS::AttackVector = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.AttackVector").enummodule
123
+ CVSS::AttackComplexity = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.AttackComplexity").enummodule
124
+ CVSS::Authentication = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.Authentication").enummodule
125
+ CVSS::PrivilegesRequired = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.PrivilegesRequired").enummodule
126
+ CVSS::UserInteraction = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.UserInteraction").enummodule
127
+ CVSS::Scope = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.Scope").enummodule
128
+ CVSS::Impact = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.CVSS.Impact").enummodule
67
129
  end
68
130
  end
@@ -1,9 +1,9 @@
1
1
  # Generated by the protocol buffer compiler. DO NOT EDIT!
2
2
  # source: grafeas/v1/deployment.proto
3
3
 
4
+ require 'google/protobuf/timestamp_pb'
4
5
  require 'google/protobuf'
5
6
 
6
- require 'google/protobuf/timestamp_pb'
7
7
  Google::Protobuf::DescriptorPool.generated_pool.build do
8
8
  add_file("grafeas/v1/deployment.proto", :syntax => :proto3) do
9
9
  add_message "grafeas.v1.DeploymentNote" do
@@ -1,11 +1,12 @@
1
1
  # Generated by the protocol buffer compiler. DO NOT EDIT!
2
2
  # source: grafeas/v1/discovery.proto
3
3
 
4
- require 'google/protobuf'
5
-
4
+ require 'google/api/field_behavior_pb'
6
5
  require 'google/protobuf/timestamp_pb'
7
6
  require 'google/rpc/status_pb'
8
7
  require 'grafeas/v1/common_pb'
8
+ require 'google/protobuf'
9
+
9
10
  Google::Protobuf::DescriptorPool.generated_pool.build do
10
11
  add_file("grafeas/v1/discovery.proto", :syntax => :proto3) do
11
12
  add_message "grafeas.v1.DiscoveryNote" do
@@ -17,6 +18,7 @@ Google::Protobuf::DescriptorPool.generated_pool.build do
17
18
  optional :analysis_status_error, :message, 3, "google.rpc.Status"
18
19
  optional :cpe, :string, 4
19
20
  optional :last_scan_time, :message, 5, "google.protobuf.Timestamp"
21
+ optional :archive_time, :message, 6, "google.protobuf.Timestamp"
20
22
  end
21
23
  add_enum "grafeas.v1.DiscoveryOccurrence.ContinuousAnalysis" do
22
24
  value :CONTINUOUS_ANALYSIS_UNSPECIFIED, 0
@@ -0,0 +1,31 @@
1
+ # Generated by the protocol buffer compiler. DO NOT EDIT!
2
+ # source: grafeas/v1/dsse_attestation.proto
3
+
4
+ require 'grafeas/v1/common_pb'
5
+ require 'grafeas/v1/intoto_statement_pb'
6
+ require 'google/protobuf'
7
+
8
+ Google::Protobuf::DescriptorPool.generated_pool.build do
9
+ add_file("grafeas/v1/dsse_attestation.proto", :syntax => :proto3) do
10
+ add_message "grafeas.v1.DSSEAttestationNote" do
11
+ optional :hint, :message, 1, "grafeas.v1.DSSEAttestationNote.DSSEHint"
12
+ end
13
+ add_message "grafeas.v1.DSSEAttestationNote.DSSEHint" do
14
+ optional :human_readable_name, :string, 1
15
+ end
16
+ add_message "grafeas.v1.DSSEAttestationOccurrence" do
17
+ optional :envelope, :message, 1, "grafeas.v1.Envelope"
18
+ oneof :decoded_payload do
19
+ optional :statement, :message, 2, "grafeas.v1.InTotoStatement"
20
+ end
21
+ end
22
+ end
23
+ end
24
+
25
+ module Grafeas
26
+ module V1
27
+ DSSEAttestationNote = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.DSSEAttestationNote").msgclass
28
+ DSSEAttestationNote::DSSEHint = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.DSSEAttestationNote.DSSEHint").msgclass
29
+ DSSEAttestationOccurrence = ::Google::Protobuf::DescriptorPool.generated_pool.lookup("grafeas.v1.DSSEAttestationOccurrence").msgclass
30
+ end
31
+ end