@maxim_mazurok/gapi.client.containeranalysis-v1alpha1 0.1.20260305 → 0.2.20260313

package/index.d.ts

@@ -9,7 +9,7 @@
 // This file was generated by https://github.com/Maxim-Mazurok/google-api-typings-generator. Please do not edit it manually.
 // In case of any problems please post issue to https://github.com/Maxim-Mazurok/google-api-typings-generator
 // Generated from: https://containeranalysis.googleapis.com/$discovery/rest?version=v1alpha1
-// Revision: 20260305
+// Revision: 20260313
 
 /// <reference types="gapi.client" />
 
@@ -58,7 +58,12 @@ declare namespace gapi.client {
       /** A one sentence description of this Vex. */
       shortDescription?: string;
       /** Provides the state of this Vulnerability assessment. */
-      state?: string;
+      state?:
+        | 'STATE_UNSPECIFIED'
+        | 'AFFECTED'
+        | 'NOT_AFFECTED'
+        | 'FIXED'
+        | 'UNDER_INVESTIGATION';
       /** The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc. */
       vulnerabilityId?: string;
     }
@@ -154,7 +159,7 @@ declare namespace gapi.client {
       /** An Id for the key used to sign. This could be either an Id for the key stored in `public_key` (such as the Id or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service). */
       keyId?: string;
       /** The type of the key, either stored in `public_key` or referenced in `key_id` */
-      keyType?: string;
+      keyType?: 'KEY_TYPE_UNSPECIFIED' | 'PGP_ASCII_ARMORED' | 'PKIX_PEM';
       /** Public key of the builder which can be used to verify that the related findings are valid and unchanged. If `key_type` is empty, this defaults to PEM encoded public keys. This field may be empty if `key_id` references an external key. For Cloud Build based signatures, this is a PEM encoded public key. To verify the Cloud Build signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from `BuildDetails` are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: `openssl sha256 -verify public.pem -signature signature.bin signed.bin` */
       publicKey?: string;
       /** Signature of the related `BuildProvenance`, encoded in a base64 string. */
@@ -191,7 +196,18 @@ declare namespace gapi.client {
       /** A list of environment variables which are encrypted using a Cloud Key Management Service crypto key. These values must be specified in the build's `Secret`. */
       secretEnv?: string[];
       /** Output only. Status of the build step. At this time, build step status is only updated on build completion; step status is not updated in real-time as the build progresses. */
-      status?: string;
+      status?:
+        | 'STATUS_UNKNOWN'
+        | 'PENDING'
+        | 'QUEUING'
+        | 'QUEUED'
+        | 'WORKING'
+        | 'SUCCESS'
+        | 'FAILURE'
+        | 'INTERNAL_ERROR'
+        | 'TIMEOUT'
+        | 'CANCELLED'
+        | 'EXPIRED';
       /** Time limit for executing this build step. If not defined, the step has no time limit and will be allowed to continue to run until either it completes or the build itself times out. */
       timeout?: string;
       /** Output only. Stores timing information for executing this build step. */
@@ -215,7 +231,13 @@ declare namespace gapi.client {
       /** The profile level of this CIS benchmark check. */
       profileLevel?: number;
       /** The severity level of this CIS benchmark check. */
-      severity?: string;
+      severity?:
+        | 'SEVERITY_UNSPECIFIED'
+        | 'MINIMAL'
+        | 'LOW'
+        | 'MEDIUM'
+        | 'HIGH'
+        | 'CRITICAL';
     }
     interface Command {
       /** Command-line arguments used when executing this Command. */
@@ -285,7 +307,7 @@ declare namespace gapi.client {
       /** Optional. An optional comment for this manual approval result. */
       comment?: string;
       /** Required. The decision of this manual approval. */
-      decision?: string;
+      decision?: 'DECISION_UNSPECIFIED' | 'APPROVED' | 'REJECTED';
       /** Optional. An optional URL tied to this manual approval result. This field is essentially the same as comment, except that it will be rendered by the UI differently. An example use case is a link to an external job that approved this Build. */
       url?: string;
     }
@@ -300,6 +322,8 @@ declare namespace gapi.client {
       npmPackages?: ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsNpmPackage[];
       /** A list of objects to be uploaded to Cloud Storage upon successful completion of all build steps. Files in the workspace matching specified paths globs will be uploaded to the specified Cloud Storage location using the builder service account's credentials. The location and generation of the uploaded objects will be stored in the Build resource's results field. If any objects fail to be pushed, the build is marked FAILURE. */
       objects?: ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsArtifactObjects;
+      /** Optional. A list of OCI images to be uploaded to Artifact Registry upon successful completion of all build steps. OCI images in the specified paths will be uploaded to the specified Artifact Registry repository using the builder service account's credentials. If any images fail to be pushed, the build is marked FAILURE. */
+      oci?: ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsOci[];
       /** A list of Python packages to be uploaded to Artifact Registry upon successful completion of all build steps. The build service account credentials will be used to perform the upload. If any objects fail to be pushed, the build is marked FAILURE. */
       pythonPackages?: ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsPythonPackage[];
     }
@@ -345,6 +369,14 @@ declare namespace gapi.client {
       /** Artifact Registry repository, in the form "https://$REGION-npm.pkg.dev/$PROJECT/$REPOSITORY" Npm package in the workspace specified by path will be zipped and uploaded to Artifact Registry with this location as a prefix. */
       repository?: string;
     }
+    interface ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsOci {
+      /** Required. Path on the local file system where to find the container to upload. e.g. /workspace/my-image.tar */
+      file?: string;
+      /** Required. Registry path to upload the container to. e.g. us-east1-docker.pkg.dev/my-project/my-repo/my-image */
+      registryPath?: string;
+      /** Optional. Tags to apply to the uploaded image. e.g. latest, 1.0.0 */
+      tags?: string[];
+    }
     interface ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsPythonPackage {
       /** Path globs used to match files in the build's workspace. For Python/ Twine, this is usually `dist/*`, and sometimes additionally an `.asc` file. */
       paths?: string[];
@@ -399,7 +431,17 @@ declare namespace gapi.client {
       /** Output only. Time at which execution of the build was started. */
       startTime?: string;
       /** Output only. Status of the build. */
-      status?: string;
+      status?:
+        | 'STATUS_UNKNOWN'
+        | 'PENDING'
+        | 'QUEUED'
+        | 'WORKING'
+        | 'SUCCESS'
+        | 'FAILURE'
+        | 'INTERNAL_ERROR'
+        | 'TIMEOUT'
+        | 'CANCELLED'
+        | 'EXPIRED';
       /** Output only. Customer-readable message about the current status. */
       statusDetail?: string;
       /** Required. The operations to be performed on the workspace. */
@@ -423,19 +465,34 @@ declare namespace gapi.client {
       /** Output only. Result of manual approval for this Build. */
       result?: ContaineranalysisGoogleDevtoolsCloudbuildV1ApprovalResult;
       /** Output only. The state of this build's approval. */
-      state?: string;
+      state?:
+        | 'STATE_UNSPECIFIED'
+        | 'PENDING'
+        | 'APPROVED'
+        | 'REJECTED'
+        | 'CANCELLED';
     }
     interface ContaineranalysisGoogleDevtoolsCloudbuildV1BuildFailureInfo {
       /** Explains the failure issue in more detail using hard-coded text. */
       detail?: string;
       /** The name of the failure. */
-      type?: string;
+      type?:
+        | 'FAILURE_TYPE_UNSPECIFIED'
+        | 'PUSH_FAILED'
+        | 'PUSH_IMAGE_NOT_FOUND'
+        | 'PUSH_NOT_AUTHORIZED'
+        | 'LOGGING_FAILURE'
+        | 'USER_BUILD_STEP'
+        | 'FETCH_SOURCE_FAILED';
     }
     interface ContaineranalysisGoogleDevtoolsCloudbuildV1BuildOptions {
       /** Option to include built-in and custom substitutions as env variables for all build steps. */
       automapSubstitutions?: boolean;
       /** Optional. Option to specify how default logs buckets are setup. */
-      defaultLogsBucketBehavior?: string;
+      defaultLogsBucketBehavior?:
+        | 'DEFAULT_LOGS_BUCKET_BEHAVIOR_UNSPECIFIED'
+        | 'REGIONAL_USER_OWNED_BUCKET'
+        | 'LEGACY_BUCKET';
       /** Requested disk size for the VM that runs the build. Note that this is *NOT* "disk free"; some of the space will be used by the operating system and build utilities. Also note that this is the minimum disk size that will be allocated for the build -- the build may run with a larger disk than requested. At present, the maximum disk size is 4000GB; builds that request more than the maximum are rejected with an error. */
       diskSizeGb?: string;
       /** Option to specify whether or not to apply bash style string operations to the substitutions. NOTE: this is always enabled for triggered builds and cannot be overridden in the build configuration file. */
@@ -445,23 +502,41 @@ declare namespace gapi.client {
       /** A list of global environment variable definitions that will exist for all build steps in this build. If a variable is defined in both globally and in a build step, the variable will use the build step value. The elements are of the form "KEY=VALUE" for the environment variable "KEY" being given the value "VALUE". */
       env?: string[];
       /** Option to specify the logging mode, which determines if and where build logs are stored. */
-      logging?: string;
+      logging?:
+        | 'LOGGING_UNSPECIFIED'
+        | 'LEGACY'
+        | 'GCS_ONLY'
+        | 'STACKDRIVER_ONLY'
+        | 'CLOUD_LOGGING_ONLY'
+        | 'NONE';
       /** Option to define build log streaming behavior to Cloud Storage. */
-      logStreamingOption?: string;
+      logStreamingOption?: 'STREAM_DEFAULT' | 'STREAM_ON' | 'STREAM_OFF';
       /** Compute Engine machine type on which to run the build. */
-      machineType?: string;
+      machineType?:
+        | 'UNSPECIFIED'
+        | 'N1_HIGHCPU_8'
+        | 'N1_HIGHCPU_32'
+        | 'E2_HIGHCPU_8'
+        | 'E2_HIGHCPU_32'
+        | 'E2_MEDIUM';
       /** Optional. Specification for execution on a `WorkerPool`. See [running builds in a private pool](https://cloud.google.com/build/docs/private-pools/run-builds-in-private-pool) for more information. */
       pool?: ContaineranalysisGoogleDevtoolsCloudbuildV1BuildOptionsPoolOption;
       /** Optional. Option to specify the Pub/Sub topic to receive build status updates. */
       pubsubTopic?: string;
       /** Requested verifiability options. */
-      requestedVerifyOption?: string;
+      requestedVerifyOption?: 'NOT_VERIFIED' | 'VERIFIED';
       /** A list of global environment variables, which are encrypted using a Cloud Key Management Service crypto key. These values must be specified in the build's `Secret`. These variables will be available to all build steps in this build. */
       secretEnv?: string[];
       /** Requested hash for SourceProvenance. */
-      sourceProvenanceHash?: string[];
+      sourceProvenanceHash?:
+        | 'NONE'
+        | 'SHA256'
+        | 'MD5'
+        | 'GO_MODULE_H1'
+        | 'SHA512'
+        | 'DIRSUM_SHA256'[];
       /** Option to specify behavior when there is an error in the substitution checks. NOTE: this is always set to ALLOW_LOOSE for triggered builds and cannot be overridden in the build configuration file. */
-      substitutionOption?: string;
+      substitutionOption?: 'MUST_MATCH' | 'ALLOW_LOOSE';
       /** Global list of volumes to mount for ALL build steps Each volume is created as an empty volume prior to starting the build process. Upon completion of the build, volumes and their contents are discarded. Global volume names and paths cannot conflict with the volumes defined a build step. Using a global volume in a build with only one step is not valid as it is indicative of a build request with an incorrect configuration. */
       volumes?: ContaineranalysisGoogleDevtoolsCloudbuildV1Volume[];
       /** This field deprecated; please use `pool.name` instead. */
@@ -499,7 +574,17 @@ declare namespace gapi.client {
       /** A list of environment variables which are encrypted using a Cloud Key Management Service crypto key. These values must be specified in the build's `Secret`. */
       secretEnv?: string[];
       /** Output only. Status of the build step. At this time, build step status is only updated on build completion; step status is not updated in real-time as the build progresses. */
-      status?: string;
+      status?:
+        | 'STATUS_UNKNOWN'
+        | 'PENDING'
+        | 'QUEUED'
+        | 'WORKING'
+        | 'SUCCESS'
+        | 'FAILURE'
+        | 'INTERNAL_ERROR'
+        | 'TIMEOUT'
+        | 'CANCELLED'
+        | 'EXPIRED';
       /** Time limit for executing this build step. If not defined, the step has no time limit and will be allowed to continue to run until either it completes or the build itself times out. */
       timeout?: string;
       /** Output only. Stores timing information for executing this build step. */
@@ -511,7 +596,7 @@ declare namespace gapi.client {
     }
     interface ContaineranalysisGoogleDevtoolsCloudbuildV1BuildWarning {
       /** The priority for this warning. */
-      priority?: string;
+      priority?: 'PRIORITY_UNSPECIFIED' | 'INFO' | 'WARNING' | 'ALERT';
       /** Explanation of the warning generated. */
       text?: string;
     }
@@ -522,6 +607,11 @@ declare namespace gapi.client {
       digest?: string;
       /** Name used to push the container image to Google Container Registry, as presented to `docker push`. */
       name?: string;
+      /** Output only. The OCI media type of the artifact. Non-OCI images, such as Docker images, will have an unspecified value. */
+      ociMediaType?:
+        | 'OCI_MEDIA_TYPE_UNSPECIFIED'
+        | 'IMAGE_MANIFEST'
+        | 'IMAGE_INDEX';
       /** Output only. Stores timing information for pushing the specified image. */
       pushTiming?: ContaineranalysisGoogleDevtoolsCloudbuildV1TimeSpan;
     }
@@ -587,7 +677,13 @@ declare namespace gapi.client {
     }
     interface ContaineranalysisGoogleDevtoolsCloudbuildV1Hash {
       /** The type of hash that was performed. */
-      type?: string;
+      type?:
+        | 'NONE'
+        | 'SHA256'
+        | 'MD5'
+        | 'GO_MODULE_H1'
+        | 'SHA512'
+        | 'DIRSUM_SHA256';
       /** The hash value. */
       value?: string;
     }
@@ -693,7 +789,7 @@ declare namespace gapi.client {
       /** Required. Cloud Storage object containing the source. This object must be a zipped (`.zip`) or gzipped archive file (`.tar.gz`) containing source to build. */
       object?: string;
       /** Optional. Option to specify the tool to fetch the source file for the build. */
-      sourceFetcher?: string;
+      sourceFetcher?: 'SOURCE_FETCHER_UNSPECIFIED' | 'GSUTIL' | 'GCS_FETCHER';
     }
     interface ContaineranalysisGoogleDevtoolsCloudbuildV1StorageSourceManifest {
       /** Required. Cloud Storage bucket containing the source manifest (see [Bucket Name Requirements](https://cloud.google.com/storage/docs/bucket-naming#requirements)). */
@@ -763,27 +859,65 @@ declare namespace gapi.client {
     }
     interface CVSS {
       /** Defined in CVSS v3, CVSS v2 */
-      attackComplexity?: string;
+      attackComplexity?:
+        | 'ATTACK_COMPLEXITY_UNSPECIFIED'
+        | 'ATTACK_COMPLEXITY_LOW'
+        | 'ATTACK_COMPLEXITY_HIGH'
+        | 'ATTACK_COMPLEXITY_MEDIUM';
       /** Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2 */
-      attackVector?: string;
+      attackVector?:
+        | 'ATTACK_VECTOR_UNSPECIFIED'
+        | 'ATTACK_VECTOR_NETWORK'
+        | 'ATTACK_VECTOR_ADJACENT'
+        | 'ATTACK_VECTOR_LOCAL'
+        | 'ATTACK_VECTOR_PHYSICAL';
       /** Defined in CVSS v2 */
-      authentication?: string;
+      authentication?:
+        | 'AUTHENTICATION_UNSPECIFIED'
+        | 'AUTHENTICATION_MULTIPLE'
+        | 'AUTHENTICATION_SINGLE'
+        | 'AUTHENTICATION_NONE';
       /** Defined in CVSS v3, CVSS v2 */
-      availabilityImpact?: string;
+      availabilityImpact?:
+        | 'IMPACT_UNSPECIFIED'
+        | 'IMPACT_HIGH'
+        | 'IMPACT_LOW'
+        | 'IMPACT_NONE'
+        | 'IMPACT_PARTIAL'
+        | 'IMPACT_COMPLETE';
       /** The base score is a function of the base metric scores. */
       baseScore?: number;
       /** Defined in CVSS v3, CVSS v2 */
-      confidentialityImpact?: string;
+      confidentialityImpact?:
+        | 'IMPACT_UNSPECIFIED'
+        | 'IMPACT_HIGH'
+        | 'IMPACT_LOW'
+        | 'IMPACT_NONE'
+        | 'IMPACT_PARTIAL'
+        | 'IMPACT_COMPLETE';
       exploitabilityScore?: number;
       impactScore?: number;
       /** Defined in CVSS v3, CVSS v2 */
-      integrityImpact?: string;
+      integrityImpact?:
+        | 'IMPACT_UNSPECIFIED'
+        | 'IMPACT_HIGH'
+        | 'IMPACT_LOW'
+        | 'IMPACT_NONE'
+        | 'IMPACT_PARTIAL'
+        | 'IMPACT_COMPLETE';
       /** Defined in CVSS v3 */
-      privilegesRequired?: string;
+      privilegesRequired?:
+        | 'PRIVILEGES_REQUIRED_UNSPECIFIED'
+        | 'PRIVILEGES_REQUIRED_NONE'
+        | 'PRIVILEGES_REQUIRED_LOW'
+        | 'PRIVILEGES_REQUIRED_HIGH';
       /** Defined in CVSS v3 */
-      scope?: string;
+      scope?: 'SCOPE_UNSPECIFIED' | 'SCOPE_UNCHANGED' | 'SCOPE_CHANGED';
       /** Defined in CVSS v3 */
-      userInteraction?: string;
+      userInteraction?:
+        | 'USER_INTERACTION_UNSPECIFIED'
+        | 'USER_INTERACTION_NONE'
+        | 'USER_INTERACTION_REQUIRED';
     }
     interface Deployable {
       /** Resource URI for the artifact being deployed. */
@@ -797,7 +931,7 @@ declare namespace gapi.client {
       /** Beginning of the lifetime of this deployment. */
       deployTime?: string;
       /** Platform hosting this deployment. */
-      platform?: string;
+      platform?: 'PLATFORM_UNSPECIFIED' | 'GKE' | 'FLEX' | 'CUSTOM';
       /** Resource URI for the artifact being deployed taken from the deployable field with the same name. */
       resourceUri?: string[];
       /** End of the lifetime of this deployment. */
@@ -851,13 +985,23 @@ declare namespace gapi.client {
       /** Indicates any errors encountered during analysis of a resource. There could be 0 or more of these errors. */
       analysisError?: Status[];
       /** The status of discovery for the resource. */
-      analysisStatus?: string;
+      analysisStatus?:
+        | 'ANALYSIS_STATUS_UNSPECIFIED'
+        | 'PENDING'
+        | 'SCANNING'
+        | 'COMPLETE'
+        | 'FINISHED_SUCCESS'
+        | 'FINISHED_FAILED'
+        | 'FINISHED_UNSUPPORTED';
       /** When an error is encountered this will contain a LocalizedMessage under details to show to the user. The LocalizedMessage output only and populated by the API. */
       analysisStatusError?: Status;
       /** The time occurrences related to this discovery occurrence were archived. */
       archiveTime?: string;
       /** Whether the resource is continuously analyzed. */
-      continuousAnalysis?: string;
+      continuousAnalysis?:
+        | 'CONTINUOUS_ANALYSIS_UNSPECIFIED'
+        | 'ACTIVE'
+        | 'INACTIVE';
       /** The CPE of the resource being scanned. */
       cpe?: string;
       /** Optional. Files that make up the resource described by the occurrence. */
@@ -875,11 +1019,29 @@ declare namespace gapi.client {
     }
     interface Discovery {
       /** The kind of analysis that is handled by this discovery. */
-      analysisKind?: string;
+      analysisKind?:
+        | 'KIND_UNSPECIFIED'
+        | 'PACKAGE_VULNERABILITY'
+        | 'BUILD_DETAILS'
+        | 'IMAGE_BASIS'
+        | 'PACKAGE_MANAGER'
+        | 'DEPLOYABLE'
+        | 'DISCOVERY'
+        | 'ATTESTATION_AUTHORITY'
+        | 'UPGRADE'
+        | 'COMPLIANCE'
+        | 'SBOM'
+        | 'SPDX_PACKAGE'
+        | 'SPDX_FILE'
+        | 'SPDX_RELATIONSHIP'
+        | 'DSSE_ATTESTATION'
+        | 'VULNERABILITY_ASSESSMENT'
+        | 'SBOM_REFERENCE'
+        | 'SECRET';
     }
     interface Distribution {
       /** The CPU architecture for which packages in this distribution channel were built */
-      architecture?: string;
+      architecture?: 'ARCHITECTURE_UNSPECIFIED' | 'X86' | 'X64';
       /** The cpe_uri in [cpe format](https://cpe.mitre.org/specification/) denoting the package manager version distributing a package. */
       cpeUri?: string;
       /** The distribution channel-specific description of this package. */
@@ -963,7 +1125,12 @@ declare namespace gapi.client {
     }
     interface ExternalRef {
       /** An External Reference allows a Package to reference an external source of additional information, metadata, enumerations, asset identifiers, or downloadable content believed to be relevant to the Package */
-      category?: string;
+      category?:
+        | 'CATEGORY_UNSPECIFIED'
+        | 'SECURITY'
+        | 'PACKAGE_MANAGER'
+        | 'PERSISTENT_ID'
+        | 'OTHER';
       /** Human-readable information about the purpose and target of the reference */
       comment?: string;
       /** The unique string with no spaces necessary to access the package-specific information, metadata, or content within the target location */
@@ -986,12 +1153,26 @@ declare namespace gapi.client {
       filePath?: string;
       /** Each package found in a file should have its own layer metadata (that is, information from the origin layer of the package). */
       layerDetails?: LayerDetails;
+      /** Line number in the file where the package is found. Optional field that only applies to source repository scanning. */
+      lineNumber?: number;
     }
     interface FileNote {
       /** Provide a unique identifier to match analysis information on each specific file in a package */
       checksum?: string[];
       /** This field provides information about the type of file identified */
-      fileType?: string;
+      fileType?:
+        | 'FILE_TYPE_UNSPECIFIED'
+        | 'SOURCE'
+        | 'BINARY'
+        | 'ARCHIVE'
+        | 'APPLICATION'
+        | 'AUDIO'
+        | 'IMAGE'
+        | 'TEXT'
+        | 'VIDEO'
+        | 'DOCUMENTATION'
+        | 'SPDX'
+        | 'OTHER';
       /** Identify the full path and filename that corresponds to the file information in this section */
       title?: string;
     }
@@ -1035,7 +1216,7 @@ declare namespace gapi.client {
     }
     interface GoogleDevtoolsContaineranalysisV1alpha1AliasContext {
       /** The alias kind. */
-      kind?: string;
+      kind?: 'KIND_UNSPECIFIED' | 'FIXED' | 'MOVABLE' | 'OTHER';
       /** The alias name. */
       name?: string;
     }
@@ -1139,19 +1320,19 @@ declare namespace gapi.client {
     }
     interface Hash {
       /** The type of hash that was performed. */
-      type?: string;
+      type?: 'NONE' | 'SHA256' | 'GO_MODULE_H1' | 'DIRSUM_SHA256';
       /** The hash value. */
       value?: string;
     }
     interface IdentifierHelper {
       /** The field that is set in the API proto. */
-      field?: string;
+      field?: 'IDENTIFIER_HELPER_FIELD_UNSPECIFIED' | 'GENERIC_URI';
       /** Contains a URI which is vendor-specific. Example: The artifact repository URL of an image. */
       genericUri?: string;
     }
     interface Installation {
       /** Output only. The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages. */
-      architecture?: string;
+      architecture?: 'ARCHITECTURE_UNSPECIFIED' | 'X86' | 'X64';
       /** Output only. The cpe_uri in [CPE format](https://cpe.mitre.org/specification/) denoting the package manager version distributing a package. The cpe_uri will be blank for language packages. */
       cpeUri?: string;
       /** Licenses that have been declared by the authors of the package. */
@@ -1199,13 +1380,37 @@ declare namespace gapi.client {
       /** Additional details on why this justification was chosen. */
       details?: string;
       /** The justification type for this vulnerability. */
-      justificationType?: string;
+      justificationType?:
+        | 'JUSTIFICATION_TYPE_UNSPECIFIED'
+        | 'COMPONENT_NOT_PRESENT'
+        | 'VULNERABLE_CODE_NOT_PRESENT'
+        | 'VULNERABLE_CODE_NOT_IN_EXECUTE_PATH'
+        | 'VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARY'
+        | 'INLINE_MITIGATIONS_ALREADY_EXIST';
     }
     interface Layer {
       /** The recovered arguments to the Dockerfile directive. */
       arguments?: string;
       /** The recovered Dockerfile directive used to construct this layer. */
-      directive?: string;
+      directive?:
+        | 'DIRECTIVE_UNSPECIFIED'
+        | 'MAINTAINER'
+        | 'RUN'
+        | 'CMD'
+        | 'LABEL'
+        | 'EXPOSE'
+        | 'ENV'
+        | 'ADD'
+        | 'COPY'
+        | 'ENTRYPOINT'
+        | 'VOLUME'
+        | 'USER'
+        | 'WORKDIR'
+        | 'ARG'
+        | 'ONBUILD'
+        | 'STOPSIGNAL'
+        | 'HEALTHCHECK'
+        | 'SHELL';
     }
     interface LayerDetails {
       /** The base images the layer is found within. */
@@ -1303,7 +1508,25 @@ declare namespace gapi.client {
       /** Time of expiration for this note, null if note does not expire. */
       expirationTime?: string;
       /** Output only. This explicitly denotes which kind of note is specified. This field can be used as a filter in list requests. */
-      kind?: string;
+      kind?:
+        | 'KIND_UNSPECIFIED'
+        | 'PACKAGE_VULNERABILITY'
+        | 'BUILD_DETAILS'
+        | 'IMAGE_BASIS'
+        | 'PACKAGE_MANAGER'
+        | 'DEPLOYABLE'
+        | 'DISCOVERY'
+        | 'ATTESTATION_AUTHORITY'
+        | 'UPGRADE'
+        | 'COMPLIANCE'
+        | 'SBOM'
+        | 'SPDX_PACKAGE'
+        | 'SPDX_FILE'
+        | 'SPDX_RELATIONSHIP'
+        | 'DSSE_ATTESTATION'
+        | 'VULNERABILITY_ASSESSMENT'
+        | 'SBOM_REFERENCE'
+        | 'SECRET';
       /** A detailed description of this `Note`. */
       longDescription?: string;
       /** The name of the note in the form "projects/{provider_project_id}/notes/{NOTE_ID}" */
@@ -1357,7 +1580,25 @@ declare namespace gapi.client {
       /** Describes the installation of a package on the linked resource. */
       installation?: Installation;
       /** Output only. This explicitly denotes which of the `Occurrence` details are specified. This field can be used as a filter in list requests. */
-      kind?: string;
+      kind?:
+        | 'KIND_UNSPECIFIED'
+        | 'PACKAGE_VULNERABILITY'
+        | 'BUILD_DETAILS'
+        | 'IMAGE_BASIS'
+        | 'PACKAGE_MANAGER'
+        | 'DEPLOYABLE'
+        | 'DISCOVERY'
+        | 'ATTESTATION_AUTHORITY'
+        | 'UPGRADE'
+        | 'COMPLIANCE'
+        | 'SBOM'
+        | 'SPDX_PACKAGE'
+        | 'SPDX_FILE'
+        | 'SPDX_RELATIONSHIP'
+        | 'DSSE_ATTESTATION'
+        | 'VULNERABILITY_ASSESSMENT'
+        | 'SBOM_REFERENCE'
+        | 'SECRET';
       /** Output only. The name of the `Occurrence` in the form "projects/{project_id}/occurrences/{OCCURRENCE_ID}" */
       name?: string;
       /** An analysis note associated with this image, in the form "providers/{provider_id}/notes/{NOTE_ID}" This field can be used as a filter in list requests. */
@@ -1401,7 +1642,7 @@ declare namespace gapi.client {
     }
     interface Package {
       /** The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages. */
-      architecture?: string;
+      architecture?: 'ARCHITECTURE_UNSPECIFIED' | 'X86' | 'X64';
       /** The cpe_uri in [CPE format](https://cpe.mitre.org/specification/) denoting the package manager version distributing a package. The cpe_uri will be blank for language packages. */
       cpeUri?: string;
       /** The description of this package. */
@@ -1485,7 +1726,13 @@ declare namespace gapi.client {
       /** The location of the vulnerability. */
       affectedLocation?: VulnerabilityLocation;
       /** Output only. The distro or language system assigned severity for this vulnerability when that is available and note provider assigned severity when distro or language system has not yet assigned a severity for this vulnerability. */
-      effectiveSeverity?: string;
+      effectiveSeverity?:
+        | 'SEVERITY_UNSPECIFIED'
+        | 'MINIMAL'
+        | 'LOW'
+        | 'MEDIUM'
+        | 'HIGH'
+        | 'CRITICAL';
       /** The location of the available fix for vulnerability. */
       fixedLocation?: VulnerabilityLocation;
       /** The type of package (e.g. OS, MAVEN, GO). */
@@ -1494,7 +1741,7 @@ declare namespace gapi.client {
     }
     interface PgpSignedAttestation {
       /** Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema). */
-      contentType?: string;
+      contentType?: 'CONTENT_TYPE_UNSPECIFIED' | 'SIMPLE_SIGNING_JSON';
       /** The cryptographic fingerprint of the key used to generate the signature, as output by, e.g. `gpg --list-keys`. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character hexadecimal string. See https://tools.ietf.org/html/rfc4880#section-12.2 for details. Implementations may choose to acknowledge "LONG", "SHORT", or other abbreviated key IDs, but only the full fingerprint is guaranteed to work. In gpg, the full fingerprint can be retrieved from the `fpr` field returned when calling --list-keys with --with-colons. For example: ``` gpg --with-colons --with-fingerprint --force-v4-certs \ --list-keys attester@example.com tru::1:1513631572:0:3:1:5 pub:...... fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB: ``` Above, the fingerprint is `24FF6481B76AC91E66A00AC657A93A81EF3AE6FB`. */
       pgpKeyId?: string;
       /** The raw content of the signature, as output by GNU Privacy Guard (GPG) or equivalent. Since this message only supports attached signatures, the payload that was signed must be attached. While the signature format supported is dependent on the verification implementation, currently only ASCII-armored (`--armor` to gpg), non-clearsigned (`--sign` rather than `--clearsign` to gpg) are supported. Concretely, `gpg --sign --armor --output=signature.gpg payload.json` will create the signature content expected in this field in `signature.gpg` for the `payload.json` attestation payload. */
@@ -1549,7 +1796,51 @@ declare namespace gapi.client {
     }
     interface RelationshipNote {
       /** The type of relationship between the source and target SPDX elements */
-      type?: string;
+      type?:
+        | 'RELATIONSHIP_TYPE_UNSPECIFIED'
+        | 'DESCRIBES'
+        | 'DESCRIBED_BY'
+        | 'CONTAINS'
+        | 'CONTAINED_BY'
+        | 'DEPENDS_ON'
+        | 'DEPENDENCY_OF'
+        | 'DEPENDENCY_MANIFEST_OF'
+        | 'BUILD_DEPENDENCY_OF'
+        | 'DEV_DEPENDENCY_OF'
+        | 'OPTIONAL_DEPENDENCY_OF'
+        | 'PROVIDED_DEPENDENCY_OF'
+        | 'TEST_DEPENDENCY_OF'
+        | 'RUNTIME_DEPENDENCY_OF'
+        | 'EXAMPLE_OF'
+        | 'GENERATES'
+        | 'GENERATED_FROM'
+        | 'ANCESTOR_OF'
+        | 'DESCENDANT_OF'
+        | 'VARIANT_OF'
+        | 'DISTRIBUTION_ARTIFACT'
+        | 'PATCH_FOR'
+        | 'PATCH_APPLIED'
+        | 'COPY_OF'
+        | 'FILE_ADDED'
+        | 'FILE_DELETED'
+        | 'FILE_MODIFIED'
+        | 'EXPANDED_FROM_ARCHIVE'
+        | 'DYNAMIC_LINK'
+        | 'STATIC_LINK'
+        | 'DATA_FILE_OF'
+        | 'TEST_CASE_OF'
+        | 'BUILD_TOOL_OF'
+        | 'DEV_TOOL_OF'
+        | 'TEST_OF'
+        | 'TEST_TOOL_OF'
+        | 'DOCUMENTATION_OF'
+        | 'OPTIONAL_COMPONENT_OF'
+        | 'METAFILE_OF'
+        | 'PACKAGE_OF'
+        | 'AMENDS'
+        | 'PREREQUISITE_FOR'
+        | 'HAS_PREREQUISITE'
+        | 'OTHER';
     }
     interface RelationshipOccurrence {
       /** A place for the SPDX file creator to record any general comments about the relationship */
@@ -1559,13 +1850,63 @@ declare namespace gapi.client {
       /** Also referred to as SPDXRef-B The target SPDC element (file, package, etc) In cases where there are "known unknowns", the use of the keyword NOASSERTION can be used The keywords NONE can be used to indicate that an SPDX element (package/file/snippet) has no other elements connected by some relationship to it */
       target?: string;
       /** Output only. The type of relationship between the source and target SPDX elements */
-      type?: string;
+      type?:
+        | 'RELATIONSHIP_TYPE_UNSPECIFIED'
+        | 'DESCRIBES'
+        | 'DESCRIBED_BY'
+        | 'CONTAINS'
+        | 'CONTAINED_BY'
+        | 'DEPENDS_ON'
+        | 'DEPENDENCY_OF'
+        | 'DEPENDENCY_MANIFEST_OF'
+        | 'BUILD_DEPENDENCY_OF'
+        | 'DEV_DEPENDENCY_OF'
+        | 'OPTIONAL_DEPENDENCY_OF'
+        | 'PROVIDED_DEPENDENCY_OF'
+        | 'TEST_DEPENDENCY_OF'
+        | 'RUNTIME_DEPENDENCY_OF'
+        | 'EXAMPLE_OF'
+        | 'GENERATES'
+        | 'GENERATED_FROM'
+        | 'ANCESTOR_OF'
+        | 'DESCENDANT_OF'
+        | 'VARIANT_OF'
+        | 'DISTRIBUTION_ARTIFACT'
+        | 'PATCH_FOR'
+        | 'PATCH_APPLIED'
+        | 'COPY_OF'
+        | 'FILE_ADDED'
+        | 'FILE_DELETED'
+        | 'FILE_MODIFIED'
+        | 'EXPANDED_FROM_ARCHIVE'
+        | 'DYNAMIC_LINK'
+        | 'STATIC_LINK'
+        | 'DATA_FILE_OF'
+        | 'TEST_CASE_OF'
+        | 'BUILD_TOOL_OF'
+        | 'DEV_TOOL_OF'
+        | 'TEST_OF'
+        | 'TEST_TOOL_OF'
+        | 'DOCUMENTATION_OF'
+        | 'OPTIONAL_COMPONENT_OF'
+        | 'METAFILE_OF'
+        | 'PACKAGE_OF'
+        | 'AMENDS'
+        | 'PREREQUISITE_FOR'
+        | 'HAS_PREREQUISITE'
+        | 'OTHER';
     }
     interface Remediation {
       /** Contains a comprehensive human-readable discussion of the remediation. */
       details?: string;
       /** The type of remediation that can be applied. */
-      remediationType?: string;
+      remediationType?:
+        | 'REMEDIATION_TYPE_UNSPECIFIED'
+        | 'MITIGATION'
+        | 'NO_FIX_PLANNED'
+        | 'NONE_AVAILABLE'
+        | 'VENDOR_FIX'
+        | 'WORKAROUND';
       /** Contains the URL where to obtain the remediation. */
       remediationUri?: URI;
     }
@@ -1647,7 +1988,7 @@ declare namespace gapi.client {
       /** Output only. If there was an error generating an SBOM, this will indicate what that error was. */
       error?: string;
       /** Output only. The progress of the SBOM generation. */
-      sbomState?: string;
+      sbomState?: 'SBOM_STATE_UNSPECIFIED' | 'PENDING' | 'COMPLETE';
     }
     interface ScanConfig {
       /** Output only. The time this scan config was created. */
@@ -1668,7 +2009,30 @@ declare namespace gapi.client {
     interface SecretNote {}
     interface SecretOccurrence {
       /** Required. Type of secret. */
-      kind?: string;
+      kind?:
+        | 'SECRET_KIND_UNSPECIFIED'
+        | 'SECRET_KIND_UNKNOWN'
+        | 'SECRET_KIND_GCP_SERVICE_ACCOUNT_KEY'
+        | 'SECRET_KIND_GCP_API_KEY'
+        | 'SECRET_KIND_GCP_OAUTH2_CLIENT_CREDENTIALS'
+        | 'SECRET_KIND_GCP_OAUTH2_ACCESS_TOKEN'
+        | 'SECRET_KIND_ANTHROPIC_ADMIN_API_KEY'
+        | 'SECRET_KIND_ANTHROPIC_API_KEY'
+        | 'SECRET_KIND_AZURE_ACCESS_TOKEN'
+        | 'SECRET_KIND_AZURE_IDENTITY_TOKEN'
+        | 'SECRET_KIND_DOCKER_HUB_PERSONAL_ACCESS_TOKEN'
+        | 'SECRET_KIND_GITHUB_APP_REFRESH_TOKEN'
+        | 'SECRET_KIND_GITHUB_APP_SERVER_TO_SERVER_TOKEN'
+        | 'SECRET_KIND_GITHUB_APP_USER_TO_SERVER_TOKEN'
+        | 'SECRET_KIND_GITHUB_CLASSIC_PERSONAL_ACCESS_TOKEN'
+        | 'SECRET_KIND_GITHUB_FINE_GRAINED_PERSONAL_ACCESS_TOKEN'
+        | 'SECRET_KIND_GITHUB_OAUTH_TOKEN'
+        | 'SECRET_KIND_HUGGINGFACE_API_KEY'
+        | 'SECRET_KIND_OPENAI_API_KEY'
+        | 'SECRET_KIND_PERPLEXITY_API_KEY'
+        | 'SECRET_KIND_STRIPE_SECRET_KEY'
+        | 'SECRET_KIND_STRIPE_RESTRICTED_KEY'
+        | 'SECRET_KIND_STRIPE_WEBHOOK_SECRET';
       /** Optional. Locations where the secret is detected. */
       locations?: SecretLocation[];
       /** Optional. Status of the secret. */
@@ -1678,7 +2042,7 @@ declare namespace gapi.client {
       /** Optional. Optional message about the status code. */
       message?: string;
       /** Optional. The status of the secret. */
-      status?: string;
+      status?: 'STATUS_UNSPECIFIED' | 'UNKNOWN' | 'VALID' | 'INVALID';
       /** Optional. The time the secret status was last updated. */
       updateTime?: string;
     }
@@ -1690,7 +2054,13 @@ declare namespace gapi.client {
       /** The number of occurrences with the severity. */
       count?: string;
       /** The severity of the occurrences. */
-      severity?: string;
+      severity?:
+        | 'SEVERITY_UNSPECIFIED'
+        | 'MINIMAL'
+        | 'LOW'
+        | 'MEDIUM'
+        | 'HIGH'
+        | 'CRITICAL';
     }
     interface SlsaBuilder {
       /** id is the id of the slsa provenance builder */
@@ -1855,7 +2225,7 @@ declare namespace gapi.client {
       /** Whether this version is vulnerable, when defining the version bounds. For example, if the minimum version is 2.0, inclusive=true would say 2.0 is vulnerable, while inclusive=false would say it's not */
       inclusive?: boolean;
       /** Distinguish between sentinel MIN/MAX versions and normal versions. If kind is not NORMAL, then the other fields are ignored. */
-      kind?: string;
+      kind?: 'NORMAL' | 'MINIMUM' | 'MAXIMUM';
       /** The main part of the version name. */
       name?: string;
       /** The iteration of the package build from the above version. */
@@ -1875,7 +2245,12 @@ declare namespace gapi.client {
       /** Specifies details on how to handle (and presumably, fix) a vulnerability. */
       remediations?: Remediation[];
       /** Provides the state of this Vulnerability assessment. */
-      state?: string;
+      state?:
+        | 'STATE_UNSPECIFIED'
+        | 'AFFECTED'
+        | 'NOT_AFFECTED'
+        | 'FIXED'
+        | 'UNDER_INVESTIGATION';
       /** The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc. */
       vulnerabilityId?: string;
     }
@@ -1907,7 +2282,10 @@ declare namespace gapi.client {
       /** Output only. The last time we attempted to generate an attestation. */
       lastAttemptTime?: string;
       /** Output only. The success/failure state of the latest attestation attempt. */
-      state?: string;
+      state?:
+        | 'VULNERABILITY_ATTESTATION_STATE_UNSPECIFIED'
+        | 'SUCCESS'
+        | 'FAILURE';
     }
     interface VulnerabilityDetails {
       /** Output only. The CVSS score of this vulnerability. CVSS score is on a scale of 0-10 where 0 indicates low severity and 10 indicates high severity. */
@@ -1917,9 +2295,18 @@ declare namespace gapi.client {
       /** The CVSS v3 score of this vulnerability. */
       cvssV3?: CVSS;
       /** Output only. CVSS version used to populate cvss_score and severity. */
-      cvssVersion?: string;
+      cvssVersion?:
+        | 'CVSS_VERSION_UNSPECIFIED'
+        | 'CVSS_VERSION_2'
+        | 'CVSS_VERSION_3';
       /** The distro assigned severity for this vulnerability when that is available and note provider assigned severity when distro has not yet assigned a severity for this vulnerability. When there are multiple package issues for this vulnerability, they can have different effective severities because some might come from the distro and some might come from installed language packs (e.g. Maven JARs or Go binaries). For this reason, it is advised to use the effective severity on the PackageIssue level, as this field may eventually be deprecated. In the case where multiple PackageIssues have different effective severities, the one set here will be the highest severity of any of the PackageIssues. */
-      effectiveSeverity?: string;
+      effectiveSeverity?:
+        | 'SEVERITY_UNSPECIFIED'
+        | 'MINIMAL'
+        | 'LOW'
+        | 'MEDIUM'
+        | 'HIGH'
+        | 'CRITICAL';
       /** Occurrence-specific extra details about the vulnerability. */
       extraDetails?: string;
       /** The set of affected locations and their fixes (if available) within the associated resource. */
@@ -1927,7 +2314,13 @@ declare namespace gapi.client {
       /** Risk information about the vulnerability, such as CISA, EPSS, etc. */
       risk?: Risk;
       /** Output only. The note provider assigned Severity of the vulnerability. */
-      severity?: string;
+      severity?:
+        | 'SEVERITY_UNSPECIFIED'
+        | 'MINIMAL'
+        | 'LOW'
+        | 'MEDIUM'
+        | 'HIGH'
+        | 'CRITICAL';
       /** The type of package; whether native or non native(ruby gems, node.js packages etc). This may be deprecated in the future because we can have multiple PackageIssues with different package types. */
       type?: string;
       /** VexAssessment provides all publisher provided Vex information that is related to this vulnerability for this resource. */
@@ -1951,23 +2344,32 @@ declare namespace gapi.client {
       /** The full description of the CVSS for version 2. */
       cvssV2?: CVSS;
       /** CVSS version used to populate cvss_score and severity. */
-      cvssVersion?: string;
+      cvssVersion?:
+        | 'CVSS_VERSION_UNSPECIFIED'
+        | 'CVSS_VERSION_2'
+        | 'CVSS_VERSION_3';
       /** A list of CWE for this vulnerability. For details, see: https://cwe.mitre.org/index.html */
       cwe?: string[];
       /** All information about the package to specifically identify this vulnerability. One entry per (version range and cpe_uri) the package vulnerability has manifested in. */
       details?: Detail[];
       /** Note provider assigned impact of the vulnerability */
-      severity?: string;
+      severity?:
+        | 'SEVERITY_UNSPECIFIED'
+        | 'MINIMAL'
+        | 'LOW'
+        | 'MEDIUM'
+        | 'HIGH'
+        | 'CRITICAL';
     }
     interface OccurrencesResource {
       /** Lists `Occurrences` referencing the specified `Note`. Use this method to get all occurrences referencing your `Note` across all your customer projects. */
       list(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -1998,11 +2400,11 @@ declare namespace gapi.client {
       /** Creates a new `Note`. */
       create(request: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2031,11 +2433,11 @@ declare namespace gapi.client {
       create(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -2064,11 +2466,11 @@ declare namespace gapi.client {
       /** Deletes the given `Note` from the system. */
       delete(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2091,11 +2493,11 @@ declare namespace gapi.client {
       /** Returns the requested `Note`. */
       get(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2119,11 +2521,11 @@ declare namespace gapi.client {
       getIamPolicy(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -2148,11 +2550,11 @@ declare namespace gapi.client {
       /** Lists all `Notes` for a given project. */
       list(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2183,11 +2585,11 @@ declare namespace gapi.client {
       /** Updates an existing `Note`. */
       patch(request: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2214,11 +2616,11 @@ declare namespace gapi.client {
       patch(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -2246,11 +2648,11 @@ declare namespace gapi.client {
       setIamPolicy(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -2276,11 +2678,11 @@ declare namespace gapi.client {
       testIamPermissions(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -2308,11 +2710,11 @@ declare namespace gapi.client {
       /** Creates a new `Occurrence`. Use this method to create `Occurrences` for a resource. */
       create(request: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2339,11 +2741,11 @@ declare namespace gapi.client {
       create(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -2370,11 +2772,11 @@ declare namespace gapi.client {
       /** Deletes the given `Occurrence` from the system. Use this when an `Occurrence` is no longer applicable for the given resource. */
       delete(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2397,11 +2799,11 @@ declare namespace gapi.client {
       /** Returns the requested `Occurrence`. */
       get(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2425,11 +2827,11 @@ declare namespace gapi.client {
       getIamPolicy(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -2454,11 +2856,11 @@ declare namespace gapi.client {
       /** Gets the `Note` attached to the given `Occurrence`. */
       getNotes(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2481,11 +2883,11 @@ declare namespace gapi.client {
       /** Gets a summary of the number and severity of occurrences. */
       getVulnerabilitySummary(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2510,11 +2912,11 @@ declare namespace gapi.client {
       /** Lists active `Occurrences` for a given project matching the filters. */
       list(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2524,7 +2926,25 @@ declare namespace gapi.client {
         /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
         key?: string;
         /** The kind of occurrences to filter on. */
-        kind?: string;
+        kind?:
+          | 'KIND_UNSPECIFIED'
+          | 'PACKAGE_VULNERABILITY'
+          | 'BUILD_DETAILS'
+          | 'IMAGE_BASIS'
+          | 'PACKAGE_MANAGER'
+          | 'DEPLOYABLE'
+          | 'DISCOVERY'
+          | 'ATTESTATION_AUTHORITY'
+          | 'UPGRADE'
+          | 'COMPLIANCE'
+          | 'SBOM'
+          | 'SPDX_PACKAGE'
+          | 'SPDX_FILE'
+          | 'SPDX_RELATIONSHIP'
+          | 'DSSE_ATTESTATION'
+          | 'VULNERABILITY_ASSESSMENT'
+          | 'SBOM_REFERENCE'
+          | 'SECRET';
         /** The name field contains the project Id. For example: "projects/{project_id} @Deprecated */
         name?: string;
         /** OAuth 2.0 token for the current user. */
@@ -2547,11 +2967,11 @@ declare namespace gapi.client {
       /** Updates an existing occurrence. */
       patch(request: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2578,11 +2998,11 @@ declare namespace gapi.client {
       patch(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -2610,11 +3030,11 @@ declare namespace gapi.client {
       setIamPolicy(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -2640,11 +3060,11 @@ declare namespace gapi.client {
       testIamPermissions(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -2671,11 +3091,11 @@ declare namespace gapi.client {
       /** Creates a new `Operation`. */
       create(request: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2700,11 +3120,11 @@ declare namespace gapi.client {
       create(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -2729,11 +3149,11 @@ declare namespace gapi.client {
       /** Updates an existing operation returns an error if operation does not exist. The only valid operations are to update mark the done bit change the result. */
       patch(request: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2758,11 +3178,11 @@ declare namespace gapi.client {
       patch(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -2789,11 +3209,11 @@ declare namespace gapi.client {
       /** Gets a specific scan configuration for a project. */
       get(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2816,11 +3236,11 @@ declare namespace gapi.client {
       /** Lists scan configurations for a project. */
       list(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2849,11 +3269,11 @@ declare namespace gapi.client {
       /** Updates the scan configuration to a new value. */
       patch(request: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2880,11 +3300,11 @@ declare namespace gapi.client {
       patch(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -2919,11 +3339,11 @@ declare namespace gapi.client {
       /** Lists `Occurrences` referencing the specified `Note`. Use this method to get all occurrences referencing your `Note` across all your customer projects. */
       list(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2954,11 +3374,11 @@ declare namespace gapi.client {
       /** Creates a new `Note`. */
       create(request: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -2987,11 +3407,11 @@ declare namespace gapi.client {
       create(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -3020,11 +3440,11 @@ declare namespace gapi.client {
       /** Deletes the given `Note` from the system. */
       delete(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -3047,11 +3467,11 @@ declare namespace gapi.client {
       /** Returns the requested `Note`. */
       get(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -3075,11 +3495,11 @@ declare namespace gapi.client {
       getIamPolicy(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -3104,11 +3524,11 @@ declare namespace gapi.client {
       /** Lists all `Notes` for a given project. */
       list(request?: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -3139,11 +3559,11 @@ declare namespace gapi.client {
       /** Updates an existing `Note`. */
       patch(request: {
         /** V1 error format. */
-        '$.xgafv'?: string;
+        '$.xgafv'?: '1' | '2';
         /** OAuth access token. */
         access_token?: string;
         /** Data format for response. */
-        alt?: string;
+        alt?: 'json' | 'media' | 'proto';
         /** JSONP */
         callback?: string;
         /** Selector specifying which fields to include in a partial response. */
@@ -3170,11 +3590,11 @@ declare namespace gapi.client {
       patch(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -3202,11 +3622,11 @@ declare namespace gapi.client {
       setIamPolicy(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */
@@ -3232,11 +3652,11 @@ declare namespace gapi.client {
       testIamPermissions(
         request: {
           /** V1 error format. */
-          '$.xgafv'?: string;
+          '$.xgafv'?: '1' | '2';
           /** OAuth access token. */
           access_token?: string;
           /** Data format for response. */
-          alt?: string;
+          alt?: 'json' | 'media' | 'proto';
           /** JSONP */
           callback?: string;
           /** Selector specifying which fields to include in a partial response. */