@maxim_mazurok/gapi.client.osconfig-v1alpha 0.0.20231124 → 0.0.20231204

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (6) hide show
  1. package/index.d.ts +1266 -1961
  2. package/package.json +6 -6
  3. package/readme.md +17 -12
  4. package/tests.ts +0 -599
  5. package/tsconfig.json +0 -18
  6. package/tslint.json +0 -6
package/index.d.ts CHANGED
@@ -9,1971 +9,1276 @@
9
9
  // This file was generated by https://github.com/Maxim-Mazurok/google-api-typings-generator. Please do not edit it manually.
10
10
  // In case of any problems please post issue to https://github.com/Maxim-Mazurok/google-api-typings-generator
11
11
  // Generated from: https://osconfig.googleapis.com/$discovery/rest?version=v1alpha
12
- // Revision: 20231124
12
+ // Revision: 20231204
13
13
 
14
14
  /// <reference types="gapi.client" />
15
15
 
16
16
  declare namespace gapi.client {
17
- /** Load OS Config API v1alpha */
18
- function load(urlOrObject: "https://osconfig.googleapis.com/$discovery/rest?version=v1alpha"): Promise<void>;
19
- /** @deprecated Please load APIs with discovery documents. */
20
- function load(name: "osconfig", version: "v1alpha"): Promise<void>;
21
- /** @deprecated Please load APIs with discovery documents. */
22
- function load(name: "osconfig", version: "v1alpha", callback: () => any): void;
17
+ /** Load OS Config API v1alpha */
18
+ function load(
19
+ urlOrObject: 'https://osconfig.googleapis.com/$discovery/rest?version=v1alpha'
20
+ ): Promise<void>;
21
+ /** @deprecated Please load APIs with discovery documents. */
22
+ function load(name: 'osconfig', version: 'v1alpha'): Promise<void>;
23
+ /** @deprecated Please load APIs with discovery documents. */
24
+ function load(
25
+ name: 'osconfig',
26
+ version: 'v1alpha',
27
+ callback: () => any
28
+ ): void;
23
29
 
24
- namespace osconfig {
25
- // tslint:disable-next-line:no-empty-interface
26
- interface CancelOperationRequest {
27
- }
28
- interface CVSSv3 {
29
- /** This metric describes the conditions beyond the attacker's control that must exist in order to exploit the vulnerability. */
30
- attackComplexity?:
31
- string;
32
- /** This metric reflects the context by which vulnerability exploitation is possible. */
33
- attackVector?:
34
- string;
35
- /** This metric measures the impact to the availability of the impacted component resulting from a successfully exploited vulnerability. */
36
- availabilityImpact?:
37
- string;
38
- /** The base score is a function of the base metric scores. https://www.first.org/cvss/specification-document#Base-Metrics */
39
- baseScore?:
40
- number;
41
- /** This metric measures the impact to the confidentiality of the information resources managed by a software component due to a successfully exploited vulnerability. */
42
- confidentialityImpact?:
43
- string;
44
- /** The Exploitability sub-score equation is derived from the Base Exploitability metrics. https://www.first.org/cvss/specification-document#2-1-Exploitability-Metrics */
45
- exploitabilityScore?:
46
- number;
47
- /** The Impact sub-score equation is derived from the Base Impact metrics. */
48
- impactScore?:
49
- number;
50
- /** This metric measures the impact to integrity of a successfully exploited vulnerability. */
51
- integrityImpact?:
52
- string;
53
- /** This metric describes the level of privileges an attacker must possess before successfully exploiting the vulnerability. */
54
- privilegesRequired?:
55
- string;
56
- /** The Scope metric captures whether a vulnerability in one vulnerable component impacts resources in components beyond its security scope. */
57
- scope?:
58
- string;
59
- /** This metric captures the requirement for a human user, other than the attacker, to participate in the successful compromise of the vulnerable component. */
60
- userInteraction?:
61
- string;
62
- }
63
- interface Date {
64
- /** Day of a month. Must be from 1 to 31 and valid for the year and month, or 0 to specify a year by itself or a year and month where the day isn't significant. */
65
- day?:
66
- number;
67
- /** Month of a year. Must be from 1 to 12, or 0 to specify a year without a month and day. */
68
- month?:
69
- number;
70
- /** Year of the date. Must be from 1 to 9999, or 0 to specify a date without a year. */
71
- year?:
72
- number;
73
- }
74
- // tslint:disable-next-line:no-empty-interface
75
- interface Empty {
76
- }
77
- interface FixedOrPercent {
78
- /** Specifies a fixed value. */
79
- fixed?:
80
- number;
81
- /** Specifies the relative value defined as a percentage, which will be multiplied by a reference value. */
82
- percent?:
83
- number;
84
- }
85
- interface GoogleCloudOsconfigV1__OSPolicyAssignmentOperationMetadata {
86
- /** The OS policy assignment API method. */
87
- apiMethod?:
88
- string;
89
- /** Reference to the `OSPolicyAssignment` API resource. Format: `projects/{project_number}/locations/{location}/osPolicyAssignments/{os_policy_assignment_id@revision_id}` */
90
- osPolicyAssignment?:
91
- string;
92
- /** Rollout start time */
93
- rolloutStartTime?:
94
- string;
95
- /** State of the rollout */
96
- rolloutState?:
97
- string;
98
- /** Rollout update time */
99
- rolloutUpdateTime?:
100
- string;
101
- }
102
- interface InstanceOSPoliciesCompliance {
103
- /**
104
- * Output only. Detailed compliance state of the VM. This field is populated only when compliance state is `UNKNOWN`. It may contain one of the following values: *
105
- * `no-compliance-data`: Compliance data is not available for this VM. * `no-agent-detected`: OS Config agent is not detected for this VM. * `config-not-supported-by-agent`: The
106
- * version of the OS Config agent running on this VM does not support configuration management. * `inactive`: VM is not running. * `internal-service-errors`: There were internal
107
- * service errors encountered while enforcing compliance. * `agent-errors`: OS config agent encountered errors while enforcing compliance.
108
- */
109
- detailedState?:
110
- string;
111
- /** Output only. The reason for the `detailed_state` of the VM (if any). */
112
- detailedStateReason?:
113
- string;
114
- /** Output only. The Compute Engine VM instance name. */
115
- instance?:
116
- string;
117
- /** Output only. Timestamp of the last compliance check for the VM. */
118
- lastComplianceCheckTime?:
119
- string;
120
- /** Output only. Unique identifier for the last compliance run. This id will be logged by the OS config agent during a compliance run and can be used for debugging and tracing purpose. */
121
- lastComplianceRunId?:
122
- string;
123
- /** Output only. The `InstanceOSPoliciesCompliance` API resource name. Format: `projects/{project_number}/locations/{location}/instanceOSPoliciesCompliances/{instance_id}` */
124
- name?:
125
- string;
126
- /** Output only. Compliance data for each `OSPolicy` that is applied to the VM. */
127
- osPolicyCompliances?:
128
- InstanceOSPoliciesComplianceOSPolicyCompliance[];
129
- /** Output only. Compliance state of the VM. */
130
- state?:
131
- string;
132
- }
133
- interface InstanceOSPoliciesComplianceOSPolicyCompliance {
134
- /**
135
- * Reference to the `OSPolicyAssignment` API resource that the `OSPolicy` belongs to. Format:
136
- * `projects/{project_number}/locations/{location}/osPolicyAssignments/{os_policy_assignment_id@revision_id}`
137
- */
138
- osPolicyAssignment?:
139
- string;
140
- /** The OS policy id */
141
- osPolicyId?:
142
- string;
143
- /** Compliance data for each `OSPolicyResource` that is applied to the VM. */
144
- osPolicyResourceCompliances?:
145
- OSPolicyResourceCompliance[];
146
- /** Compliance state of the OS policy. */
147
- state?:
148
- string;
149
- }
150
- interface Inventory {
151
- /**
152
- * Output only. Inventory items related to the VM keyed by an opaque unique identifier for each inventory item. The identifier is unique to each distinct and addressable inventory item
153
- * and will change, when there is a new package version.
154
- */
155
- items?:
156
- { [P in string]: InventoryItem };
157
- /** Output only. The `Inventory` API resource name. Format: `projects/{project_number}/locations/{location}/instances/{instance_id}/inventory` */
158
- name?:
159
- string;
160
- /** Output only. Base level operating system information for the VM. */
161
- osInfo?:
162
- InventoryOsInfo;
163
- /** Output only. Timestamp of the last reported inventory for the VM. */
164
- updateTime?:
165
- string;
166
- }
167
- interface InventoryItem {
168
- /** Software package available to be installed on the VM instance. */
169
- availablePackage?:
170
- InventorySoftwarePackage;
171
- /** When this inventory item was first detected. */
172
- createTime?:
173
- string;
174
- /** Identifier for this item, unique across items for this VM. */
175
- id?:
176
- string;
177
- /** Software package present on the VM instance. */
178
- installedPackage?:
179
- InventorySoftwarePackage;
180
- /** The origin of this inventory item. */
181
- originType?:
182
- string;
183
- /** The specific type of inventory, correlating to its specific details. */
184
- type?:
185
- string;
186
- /** When this inventory item was last modified. */
187
- updateTime?:
188
- string;
189
- }
190
- interface InventoryOsInfo {
191
- /** The system architecture of the operating system. */
192
- architecture?:
193
- string;
194
- /** The VM hostname. */
195
- hostname?:
196
- string;
197
- /** The kernel release of the operating system. */
198
- kernelRelease?:
199
- string;
200
- /** The kernel version of the operating system. */
201
- kernelVersion?:
202
- string;
203
- /** The operating system long name. For example 'Debian GNU/Linux 9' or 'Microsoft Window Server 2019 Datacenter'. */
204
- longName?:
205
- string;
206
- /** The current version of the OS Config agent running on the VM. */
207
- osconfigAgentVersion?:
208
- string;
209
- /** The operating system short name. For example, 'windows' or 'debian'. */
210
- shortName?:
211
- string;
212
- /** The version of the operating system. */
213
- version?:
214
- string;
215
- }
216
- interface InventorySoftwarePackage {
217
- /** Details of an APT package. For details about the apt package manager, see https://wiki.debian.org/Apt. */
218
- aptPackage?:
219
- InventoryVersionedPackage;
220
- /** Details of a COS package. */
221
- cosPackage?:
222
- InventoryVersionedPackage;
223
- /** Details of a Googet package. For details about the googet package manager, see https://github.com/google/googet. */
224
- googetPackage?:
225
- InventoryVersionedPackage;
226
- /**
227
- * Details of a Windows Quick Fix engineering package. See https://docs.microsoft.com/en-us/windows/win32/cimwin32prov/win32-quickfixengineering for info in Windows Quick Fix
228
- * Engineering.
229
- */
230
- qfePackage?:
231
- InventoryWindowsQuickFixEngineeringPackage;
232
- /** Details of Windows Application. */
233
- windowsApplication?:
234
- InventoryWindowsApplication;
235
- /** Details of a Windows Update package. See https://docs.microsoft.com/en-us/windows/win32/api/_wua/ for information about Windows Update. */
236
- wuaPackage?:
237
- InventoryWindowsUpdatePackage;
238
- /** Yum package info. For details about the yum package manager, see https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/6/html/deployment_guide/ch-yum. */
239
- yumPackage?:
240
- InventoryVersionedPackage;
241
- /** Details of a Zypper package. For details about the Zypper package manager, see https://en.opensuse.org/SDB:Zypper_manual. */
242
- zypperPackage?:
243
- InventoryVersionedPackage;
244
- /** Details of a Zypper patch. For details about the Zypper package manager, see https://en.opensuse.org/SDB:Zypper_manual. */
245
- zypperPatch?:
246
- InventoryZypperPatch;
247
- }
248
- interface InventoryVersionedPackage {
249
- /** The system architecture this package is intended for. */
250
- architecture?:
251
- string;
252
- /** The name of the package. */
253
- packageName?:
254
- string;
255
- /** The version of the package. */
256
- version?:
257
- string;
258
- }
259
- interface InventoryWindowsApplication {
260
- /** The name of the application or product. */
261
- displayName?:
262
- string;
263
- /** The version of the product or application in string format. */
264
- displayVersion?:
265
- string;
266
- /** The internet address for technical support. */
267
- helpLink?:
268
- string;
269
- /**
270
- * The last time this product received service. The value of this property is replaced each time a patch is applied or removed from the product or the command-line option is used to
271
- * repair the product.
272
- */
273
- installDate?:
274
- Date;
275
- /** The name of the manufacturer for the product or application. */
276
- publisher?:
277
- string;
278
- }
279
- interface InventoryWindowsQuickFixEngineeringPackage {
280
- /** A short textual description of the QFE update. */
281
- caption?:
282
- string;
283
- /** A textual description of the QFE update. */
284
- description?:
285
- string;
286
- /** Unique identifier associated with a particular QFE update. */
287
- hotFixId?:
288
- string;
289
- /** Date that the QFE update was installed. Mapped from installed_on field. */
290
- installTime?:
291
- string;
292
- }
293
- interface InventoryWindowsUpdatePackage {
294
- /** The categories that are associated with this update package. */
295
- categories?:
296
- InventoryWindowsUpdatePackageWindowsUpdateCategory[];
297
- /** The localized description of the update package. */
298
- description?:
299
- string;
300
- /** A collection of Microsoft Knowledge Base article IDs that are associated with the update package. */
301
- kbArticleIds?:
302
- string[];
303
- /** The last published date of the update, in (UTC) date and time. */
304
- lastDeploymentChangeTime?:
305
- string;
306
- /** A collection of URLs that provide more information about the update package. */
307
- moreInfoUrls?:
308
- string[];
309
- /** The revision number of this update package. */
310
- revisionNumber?:
311
- number;
312
- /** A hyperlink to the language-specific support information for the update. */
313
- supportUrl?:
314
- string;
315
- /** The localized title of the update package. */
316
- title?:
317
- string;
318
- /** Gets the identifier of an update package. Stays the same across revisions. */
319
- updateId?:
320
- string;
321
- }
322
- interface InventoryWindowsUpdatePackageWindowsUpdateCategory {
323
- /** The identifier of the windows update category. */
324
- id?:
325
- string;
326
- /** The name of the windows update category. */
327
- name?:
328
- string;
329
- }
330
- interface InventoryZypperPatch {
331
- /** The category of the patch. */
332
- category?:
333
- string;
334
- /** The name of the patch. */
335
- patchName?:
336
- string;
337
- /** The severity specified for this patch */
338
- severity?:
339
- string;
340
- /** Any summary information provided about this patch. */
341
- summary?:
342
- string;
343
- }
344
- interface ListInstanceOSPoliciesCompliancesResponse {
345
- /** List of instance OS policies compliance objects. */
346
- instanceOsPoliciesCompliances?:
347
- InstanceOSPoliciesCompliance[];
348
- /** The pagination token to retrieve the next page of instance OS policies compliance objects. */
349
- nextPageToken?:
350
- string;
351
- }
352
- interface ListInventoriesResponse {
353
- /** List of inventory objects. */
354
- inventories?:
355
- Inventory[];
356
- /** The pagination token to retrieve the next page of inventory objects. */
357
- nextPageToken?:
358
- string;
359
- }
360
- interface ListOSPolicyAssignmentReportsResponse {
361
- /** The pagination token to retrieve the next page of OS policy assignment report objects. */
362
- nextPageToken?:
363
- string;
364
- /** List of OS policy assignment reports. */
365
- osPolicyAssignmentReports?:
366
- OSPolicyAssignmentReport[];
367
- }
368
- interface ListOSPolicyAssignmentRevisionsResponse {
369
- /** The pagination token to retrieve the next page of OS policy assignment revisions. */
370
- nextPageToken?:
371
- string;
372
- /** The OS policy assignment revisions */
373
- osPolicyAssignments?:
374
- OSPolicyAssignment[];
375
- }
376
- interface ListOSPolicyAssignmentsResponse {
377
- /** The pagination token to retrieve the next page of OS policy assignments. */
378
- nextPageToken?:
379
- string;
380
- /** The list of assignments */
381
- osPolicyAssignments?:
382
- OSPolicyAssignment[];
383
- }
384
- interface ListVulnerabilityReportsResponse {
385
- /** The pagination token to retrieve the next page of vulnerabilityReports object. */
386
- nextPageToken?:
387
- string;
388
- /** List of vulnerabilityReport objects. */
389
- vulnerabilityReports?:
390
- VulnerabilityReport[];
391
- }
392
- interface Operation {
393
- /** If the value is `false`, it means the operation is still in progress. If `true`, the operation is completed, and either `error` or `response` is available. */
394
- done?:
395
- boolean;
396
- /** The error result of the operation in case of failure or cancellation. */
397
- error?:
398
- Status;
399
- /**
400
- * Service-specific metadata associated with the operation. It typically contains progress information and common metadata such as create time. Some services might not provide such
401
- * metadata. Any method that returns a long-running operation should document the metadata type, if any.
402
- */
403
- metadata?:
404
- { [P in string]: any };
405
- /**
406
- * The server-assigned name, which is only unique within the same service that originally returns it. If you use the default HTTP mapping, the `name` should be a resource name ending
407
- * with `operations/{unique_id}`.
408
- */
409
- name?:
410
- string;
411
- /**
412
- * The normal, successful response of the operation. If the original method returns no data on success, such as `Delete`, the response is `google.protobuf.Empty`. If the original
413
- * method is standard `Get`/`Create`/`Update`, the response should be the resource. For other methods, the response should have the type `XxxResponse`, where `Xxx` is the original
414
- * method name. For example, if the original method name is `TakeSnapshot()`, the inferred response type is `TakeSnapshotResponse`.
415
- */
416
- response?:
417
- { [P in string]: any };
418
- }
419
- interface OSPolicy {
420
- /**
421
- * This flag determines the OS policy compliance status when none of the resource groups within the policy are applicable for a VM. Set this value to `true` if the policy needs to be
422
- * reported as compliant even if the policy has nothing to validate or enforce.
423
- */
424
- allowNoResourceGroupMatch?:
425
- boolean;
426
- /** Policy description. Length of the description is limited to 1024 characters. */
427
- description?:
428
- string;
429
- /**
430
- * Required. The id of the OS policy with the following restrictions: * Must contain only lowercase letters, numbers, and hyphens. * Must start with a letter. * Must be between 1-63
431
- * characters. * Must end with a number or a letter. * Must be unique within the assignment.
432
- */
433
- id?:
434
- string;
435
- /** Required. Policy mode */
436
- mode?:
437
- string;
438
- /**
439
- * Required. List of resource groups for the policy. For a particular VM, resource groups are evaluated in the order specified and the first resource group that is applicable is
440
- * selected and the rest are ignored. If none of the resource groups are applicable for a VM, the VM is considered to be non-compliant w.r.t this policy. This behavior can be toggled
441
- * by the flag `allow_no_resource_group_match`
442
- */
443
- resourceGroups?:
444
- OSPolicyResourceGroup[];
445
- }
446
- interface OSPolicyAssignment {
447
- /**
448
- * Output only. Indicates that this revision has been successfully rolled out in this zone and new VMs will be assigned OS policies from this revision. For a given OS policy
449
- * assignment, there is only one revision with a value of `true` for this field.
450
- */
451
- baseline?:
452
- boolean;
453
- /** Output only. Indicates that this revision deletes the OS policy assignment. */
454
- deleted?:
455
- boolean;
456
- /** OS policy assignment description. Length of the description is limited to 1024 characters. */
457
- description?:
458
- string;
459
- /** The etag for this OS policy assignment. If this is provided on update, it must match the server's etag. */
460
- etag?:
461
- string;
462
- /** Required. Filter to select VMs. */
463
- instanceFilter?:
464
- OSPolicyAssignmentInstanceFilter;
465
- /** Resource name. Format: `projects/{project_number}/locations/{location}/osPolicyAssignments/{os_policy_assignment_id}` This field is ignored when you create an OS policy assignment. */
466
- name?:
467
- string;
468
- /** Required. List of OS policies to be applied to the VMs. */
469
- osPolicies?:
470
- OSPolicy[];
471
- /** Output only. Indicates that reconciliation is in progress for the revision. This value is `true` when the `rollout_state` is one of: * IN_PROGRESS * CANCELLING */
472
- reconciling?:
473
- boolean;
474
- /** Output only. The timestamp that the revision was created. */
475
- revisionCreateTime?:
476
- string;
477
- /** Output only. The assignment revision ID A new revision is committed whenever a rollout is triggered for a OS policy assignment */
478
- revisionId?:
479
- string;
480
- /**
481
- * Required. Rollout to deploy the OS policy assignment. A rollout is triggered in the following situations: 1) OSPolicyAssignment is created. 2) OSPolicyAssignment is updated and the
482
- * update contains changes to one of the following fields: - instance_filter - os_policies 3) OSPolicyAssignment is deleted.
483
- */
484
- rollout?:
485
- OSPolicyAssignmentRollout;
486
- /** Output only. OS policy assignment rollout state */
487
- rolloutState?:
488
- string;
489
- /** Output only. Server generated unique id for the OS policy assignment resource. */
490
- uid?:
491
- string;
492
- }
493
- interface OSPolicyAssignmentInstanceFilter {
494
- /** Target all VMs in the project. If true, no other criteria is permitted. */
495
- all?:
496
- boolean;
497
- /** List of label sets used for VM exclusion. If the list has more than one label set, the VM is excluded if any of the label sets are applicable for the VM. */
498
- exclusionLabels?:
499
- OSPolicyAssignmentLabelSet[];
500
- /** List of label sets used for VM inclusion. If the list has more than one `LabelSet`, the VM is included if any of the label sets are applicable for the VM. */
501
- inclusionLabels?:
502
- OSPolicyAssignmentLabelSet[];
503
- /** List of inventories to select VMs. A VM is selected if its inventory data matches at least one of the following inventories. */
504
- inventories?:
505
- OSPolicyAssignmentInstanceFilterInventory[];
506
- /** Deprecated. Use the `inventories` field instead. A VM is selected if it's OS short name matches with any of the values provided in this list. */
507
- osShortNames?:
508
- string[];
509
- }
510
- interface OSPolicyAssignmentInstanceFilterInventory {
511
- /** Required. The OS short name */
512
- osShortName?:
513
- string;
514
- /**
515
- * The OS version Prefix matches are supported if asterisk(*) is provided as the last character. For example, to match all versions with a major version of `7`, specify the following
516
- * value for this field `7.*` An empty string matches all OS versions.
517
- */
518
- osVersion?:
519
- string;
520
- }
521
- interface OSPolicyAssignmentLabelSet {
522
- /** Labels are identified by key/value pairs in this map. A VM should contain all the key/value pairs specified in this map to be selected. */
523
- labels?:
524
- { [P in string]: string };
525
- }
526
- interface OSPolicyAssignmentOperationMetadata {
527
- /** The OS policy assignment API method. */
528
- apiMethod?:
529
- string;
530
- /** Reference to the `OSPolicyAssignment` API resource. Format: `projects/{project_number}/locations/{location}/osPolicyAssignments/{os_policy_assignment_id@revision_id}` */
531
- osPolicyAssignment?:
532
- string;
533
- /** Rollout start time */
534
- rolloutStartTime?:
535
- string;
536
- /** State of the rollout */
537
- rolloutState?:
538
- string;
539
- /** Rollout update time */
540
- rolloutUpdateTime?:
541
- string;
542
- }
543
- interface OSPolicyAssignmentReport {
544
- /** The Compute Engine VM instance name. */
545
- instance?:
546
- string;
547
- /**
548
- * Unique identifier of the last attempted run to apply the OS policies associated with this assignment on the VM. This ID is logged by the OS Config agent while applying the OS
549
- * policies associated with this assignment on the VM. NOTE: If the service is unable to successfully connect to the agent for this run, then this id will not be available in the agent
550
- * logs.
551
- */
552
- lastRunId?:
553
- string;
554
- /**
555
- * The `OSPolicyAssignmentReport` API resource name. Format:
556
- * `projects/{project_number}/locations/{location}/instances/{instance_id}/osPolicyAssignments/{os_policy_assignment_id}/report`
557
- */
558
- name?:
559
- string;
560
- /**
561
- * Reference to the `OSPolicyAssignment` API resource that the `OSPolicy` belongs to. Format:
562
- * `projects/{project_number}/locations/{location}/osPolicyAssignments/{os_policy_assignment_id@revision_id}`
563
- */
564
- osPolicyAssignment?:
565
- string;
566
- /** Compliance data for each `OSPolicy` that is applied to the VM. */
567
- osPolicyCompliances?:
568
- OSPolicyAssignmentReportOSPolicyCompliance[];
569
- /** Timestamp for when the report was last generated. */
570
- updateTime?:
571
- string;
572
- }
573
- interface OSPolicyAssignmentReportOSPolicyCompliance {
574
- /** The compliance state of the OS policy. */
575
- complianceState?:
576
- string;
577
- /**
578
- * The reason for the OS policy to be in an unknown compliance state. This field is always populated when `compliance_state` is `UNKNOWN`. If populated, the field can contain one of
579
- * the following values: * `vm-not-running`: The VM was not running. * `os-policies-not-supported-by-agent`: The version of the OS Config agent running on the VM does not support
580
- * running OS policies. * `no-agent-detected`: The OS Config agent is not detected for the VM. * `resource-execution-errors`: The OS Config agent encountered errors while executing one
581
- * or more resources in the policy. See `os_policy_resource_compliances` for details. * `task-timeout`: The task sent to the agent to apply the policy timed out. *
582
- * `unexpected-agent-state`: The OS Config agent did not report the final status of the task that attempted to apply the policy. Instead, the agent unexpectedly started working on a
583
- * different task. This mostly happens when the agent or VM unexpectedly restarts while applying OS policies. * `internal-service-errors`: Internal service errors were encountered
584
- * while attempting to apply the policy.
585
- */
586
- complianceStateReason?:
587
- string;
588
- /** The OS policy id */
589
- osPolicyId?:
590
- string;
591
- /** Compliance data for each resource within the policy that is applied to the VM. */
592
- osPolicyResourceCompliances?:
593
- OSPolicyAssignmentReportOSPolicyComplianceOSPolicyResourceCompliance[];
594
- }
595
- interface OSPolicyAssignmentReportOSPolicyComplianceOSPolicyResourceCompliance {
596
- /** The compliance state of the resource. */
597
- complianceState?:
598
- string;
599
- /**
600
- * A reason for the resource to be in the given compliance state. This field is always populated when `compliance_state` is `UNKNOWN`. The following values are supported when
601
- * `compliance_state == UNKNOWN` * `execution-errors`: Errors were encountered by the agent while executing the resource and the compliance state couldn't be determined. *
602
- * `execution-skipped-by-agent`: Resource execution was skipped by the agent because errors were encountered while executing prior resources in the OS policy. *
603
- * `os-policy-execution-attempt-failed`: The execution of the OS policy containing this resource failed and the compliance state couldn't be determined.
604
- */
605
- complianceStateReason?:
606
- string;
607
- /** Ordered list of configuration completed by the agent for the OS policy resource. */
608
- configSteps?:
609
- OSPolicyAssignmentReportOSPolicyComplianceOSPolicyResourceComplianceOSPolicyResourceConfigStep[];
610
- /** ExecResource specific output. */
611
- execResourceOutput?:
612
- OSPolicyAssignmentReportOSPolicyComplianceOSPolicyResourceComplianceExecResourceOutput;
613
- /** The ID of the OS policy resource. */
614
- osPolicyResourceId?:
615
- string;
616
- }
617
- interface OSPolicyAssignmentReportOSPolicyComplianceOSPolicyResourceComplianceExecResourceOutput {
618
- /** Output from enforcement phase output file (if run). Output size is limited to 100K bytes. */
619
- enforcementOutput?:
620
- string;
621
- }
622
- interface OSPolicyAssignmentReportOSPolicyComplianceOSPolicyResourceComplianceOSPolicyResourceConfigStep {
623
- /** An error message recorded during the execution of this step. Only populated if errors were encountered during this step execution. */
624
- errorMessage?:
625
- string;
626
- /** Configuration step type. */
627
- type?:
628
- string;
629
- }
630
- interface OSPolicyAssignmentRollout {
631
- /** Required. The maximum number (or percentage) of VMs per zone to disrupt at any given moment. */
632
- disruptionBudget?:
633
- FixedOrPercent;
634
- /**
635
- * Required. This determines the minimum duration of time to wait after the configuration changes are applied through the current rollout. A VM continues to count towards the
636
- * `disruption_budget` at least until this duration of time has passed after configuration changes are applied.
637
- */
638
- minWaitDuration?:
639
- string;
640
- }
641
- interface OSPolicyInventoryFilter {
642
- /** Required. The OS short name */
643
- osShortName?:
644
- string;
645
- /**
646
- * The OS version Prefix matches are supported if asterisk(*) is provided as the last character. For example, to match all versions with a major version of `7`, specify the following
647
- * value for this field `7.*` An empty string matches all OS versions.
648
- */
649
- osVersion?:
650
- string;
651
- }
652
- interface OSPolicyOSFilter {
653
- /** This should match OS short name emitted by the OS inventory agent. An empty value matches any OS. */
654
- osShortName?:
655
- string;
656
- /**
657
- * This value should match the version emitted by the OS inventory agent. Prefix matches are supported if asterisk(*) is provided as the last character. For example, to match all
658
- * versions with a major version of `7`, specify the following value for this field `7.*`
659
- */
660
- osVersion?:
661
- string;
662
- }
663
- interface OSPolicyResource {
664
- /** Exec resource */
665
- exec?:
666
- OSPolicyResourceExecResource;
667
- /** File resource */
668
- file?:
669
- OSPolicyResourceFileResource;
670
- /**
671
- * Required. The id of the resource with the following restrictions: * Must contain only lowercase letters, numbers, and hyphens. * Must start with a letter. * Must be between 1-63
672
- * characters. * Must end with a number or a letter. * Must be unique within the OS policy.
673
- */
674
- id?:
675
- string;
676
- /** Package resource */
677
- pkg?:
678
- OSPolicyResourcePackageResource;
679
- /** Package repository resource */
680
- repository?:
681
- OSPolicyResourceRepositoryResource;
682
- }
683
- interface OSPolicyResourceCompliance {
684
- /** Ordered list of configuration steps taken by the agent for the OS policy resource. */
685
- configSteps?:
686
- OSPolicyResourceConfigStep[];
687
- /** ExecResource specific output. */
688
- execResourceOutput?:
689
- OSPolicyResourceComplianceExecResourceOutput;
690
- /** The id of the OS policy resource. */
691
- osPolicyResourceId?:
692
- string;
693
- /** Compliance state of the OS policy resource. */
694
- state?:
695
- string;
696
- }
697
- interface OSPolicyResourceComplianceExecResourceOutput {
698
- /** Output from Enforcement phase output file (if run). Output size is limited to 100K bytes. */
699
- enforcementOutput?:
700
- string;
701
- }
702
- interface OSPolicyResourceConfigStep {
703
- /** An error message recorded during the execution of this step. Only populated when outcome is FAILED. */
704
- errorMessage?:
705
- string;
706
- /** Outcome of the configuration step. */
707
- outcome?:
708
- string;
709
- /** Configuration step type. */
710
- type?:
711
- string;
712
- }
713
- interface OSPolicyResourceExecResource {
714
- /** What to run to bring this resource into the desired state. An exit code of 100 indicates "success", any other exit code indicates a failure running enforce. */
715
- enforce?:
716
- OSPolicyResourceExecResourceExec;
717
- /**
718
- * Required. What to run to validate this resource is in the desired state. An exit code of 100 indicates "in desired state", and exit code of 101 indicates "not in desired state". Any
719
- * other exit code indicates a failure running validate.
720
- */
721
- validate?:
722
- OSPolicyResourceExecResourceExec;
723
- }
724
- interface OSPolicyResourceExecResourceExec {
725
- /** Optional arguments to pass to the source during execution. */
726
- args?:
727
- string[];
728
- /** A remote or local file. */
729
- file?:
730
- OSPolicyResourceFile;
731
- /** Required. The script interpreter to use. */
732
- interpreter?:
733
- string;
734
- /**
735
- * Only recorded for enforce Exec. Path to an output file (that is created by this Exec) whose content will be recorded in OSPolicyResourceCompliance after a successful run. Absence or
736
- * failure to read this file will result in this ExecResource being non-compliant. Output file size is limited to 100K bytes.
737
- */
738
- outputFilePath?:
739
- string;
740
- /** An inline script. The size of the script is limited to 32KiB. */
741
- script?:
742
- string;
743
- }
744
- interface OSPolicyResourceFile {
745
- /**
746
- * Defaults to false. When false, files are subject to validations based on the file type: Remote: A checksum must be specified. Cloud Storage: An object generation number must be
747
- * specified.
748
- */
749
- allowInsecure?:
750
- boolean;
751
- /** A Cloud Storage object. */
752
- gcs?:
753
- OSPolicyResourceFileGcs;
754
- /** A local path within the VM to use. */
755
- localPath?:
756
- string;
757
- /** A generic remote file. */
758
- remote?:
759
- OSPolicyResourceFileRemote;
760
- }
761
- interface OSPolicyResourceFileGcs {
762
- /** Required. Bucket of the Cloud Storage object. */
763
- bucket?:
764
- string;
765
- /** Generation number of the Cloud Storage object. */
766
- generation?:
767
- string;
768
- /** Required. Name of the Cloud Storage object. */
769
- object?:
770
- string;
771
- }
772
- interface OSPolicyResourceFileRemote {
773
- /** SHA256 checksum of the remote file. */
774
- sha256Checksum?:
775
- string;
776
- /** Required. URI from which to fetch the object. It should contain both the protocol and path following the format `{protocol}://{location}`. */
777
- uri?:
778
- string;
779
- }
780
- interface OSPolicyResourceFileResource {
781
- /** A a file with this content. The size of the content is limited to 32KiB. */
782
- content?:
783
- string;
784
- /** A remote or local source. */
785
- file?:
786
- OSPolicyResourceFile;
787
- /** Required. The absolute path of the file within the VM. */
788
- path?:
789
- string;
790
- /**
791
- * Consists of three octal digits which represent, in order, the permissions of the owner, group, and other users for the file (similarly to the numeric mode used in the linux chmod
792
- * utility). Each digit represents a three bit number with the 4 bit corresponding to the read permissions, the 2 bit corresponds to the write bit, and the one bit corresponds to the
793
- * execute permission. Default behavior is 755. Below are some examples of permissions and their associated values: read, write, and execute: 7 read and execute: 5 read and write: 6
794
- * read only: 4
795
- */
796
- permissions?:
797
- string;
798
- /** Required. Desired state of the file. */
799
- state?:
800
- string;
801
- }
802
- interface OSPolicyResourceGroup {
803
- /**
804
- * List of inventory filters for the resource group. The resources in this resource group are applied to the target VM if it satisfies at least one of the following inventory filters.
805
- * For example, to apply this resource group to VMs running either `RHEL` or `CentOS` operating systems, specify 2 items for the list with following values:
806
- * inventory_filters[0].os_short_name='rhel' and inventory_filters[1].os_short_name='centos' If the list is empty, this resource group will be applied to the target VM unconditionally.
807
- */
808
- inventoryFilters?:
809
- OSPolicyInventoryFilter[];
810
- /** Deprecated. Use the `inventory_filters` field instead. Used to specify the OS filter for a resource group */
811
- osFilter?:
812
- OSPolicyOSFilter;
813
- /** Required. List of resources configured for this resource group. The resources are executed in the exact order specified here. */
814
- resources?:
815
- OSPolicyResource[];
816
- }
817
- interface OSPolicyResourcePackageResource {
818
- /** A package managed by Apt. */
819
- apt?:
820
- OSPolicyResourcePackageResourceAPT;
821
- /** A deb package file. */
822
- deb?:
823
- OSPolicyResourcePackageResourceDeb;
824
- /** Required. The desired state the agent should maintain for this package. */
825
- desiredState?:
826
- string;
827
- /** A package managed by GooGet. */
828
- googet?:
829
- OSPolicyResourcePackageResourceGooGet;
830
- /** An MSI package. */
831
- msi?:
832
- OSPolicyResourcePackageResourceMSI;
833
- /** An rpm package file. */
834
- rpm?:
835
- OSPolicyResourcePackageResourceRPM;
836
- /** A package managed by YUM. */
837
- yum?:
838
- OSPolicyResourcePackageResourceYUM;
839
- /** A package managed by Zypper. */
840
- zypper?:
841
- OSPolicyResourcePackageResourceZypper;
842
- }
843
- interface OSPolicyResourcePackageResourceAPT {
844
- /** Required. Package name. */
845
- name?:
846
- string;
847
- }
848
- interface OSPolicyResourcePackageResourceDeb {
849
- /** Whether dependencies should also be installed. - install when false: `dpkg -i package` - install when true: `apt-get update && apt-get -y install package.deb` */
850
- pullDeps?:
851
- boolean;
852
- /** Required. A deb package. */
853
- source?:
854
- OSPolicyResourceFile;
855
- }
856
- interface OSPolicyResourcePackageResourceGooGet {
857
- /** Required. Package name. */
858
- name?:
859
- string;
860
- }
861
- interface OSPolicyResourcePackageResourceMSI {
862
- /** Additional properties to use during installation. This should be in the format of Property=Setting. Appended to the defaults of `ACTION=INSTALL REBOOT=ReallySuppress`. */
863
- properties?:
864
- string[];
865
- /** Required. The MSI package. */
866
- source?:
867
- OSPolicyResourceFile;
868
- }
869
- interface OSPolicyResourcePackageResourceRPM {
870
- /**
871
- * Whether dependencies should also be installed. - install when false: `rpm --upgrade --replacepkgs package.rpm` - install when true: `yum -y install package.rpm` or `zypper -y
872
- * install package.rpm`
873
- */
874
- pullDeps?:
875
- boolean;
876
- /** Required. An rpm package. */
877
- source?:
878
- OSPolicyResourceFile;
879
- }
880
- interface OSPolicyResourcePackageResourceYUM {
881
- /** Required. Package name. */
882
- name?:
883
- string;
884
- }
885
- interface OSPolicyResourcePackageResourceZypper {
886
- /** Required. Package name. */
887
- name?:
888
- string;
889
- }
890
- interface OSPolicyResourceRepositoryResource {
891
- /** An Apt Repository. */
892
- apt?:
893
- OSPolicyResourceRepositoryResourceAptRepository;
894
- /** A Goo Repository. */
895
- goo?:
896
- OSPolicyResourceRepositoryResourceGooRepository;
897
- /** A Yum Repository. */
898
- yum?:
899
- OSPolicyResourceRepositoryResourceYumRepository;
900
- /** A Zypper Repository. */
901
- zypper?:
902
- OSPolicyResourceRepositoryResourceZypperRepository;
903
- }
904
- interface OSPolicyResourceRepositoryResourceAptRepository {
905
- /** Required. Type of archive files in this repository. */
906
- archiveType?:
907
- string;
908
- /** Required. List of components for this repository. Must contain at least one item. */
909
- components?:
910
- string[];
911
- /** Required. Distribution of this repository. */
912
- distribution?:
913
- string;
914
- /** URI of the key file for this repository. The agent maintains a keyring at `/etc/apt/trusted.gpg.d/osconfig_agent_managed.gpg`. */
915
- gpgKey?:
916
- string;
917
- /** Required. URI for this repository. */
918
- uri?:
919
- string;
920
- }
921
- interface OSPolicyResourceRepositoryResourceGooRepository {
922
- /** Required. The name of the repository. */
923
- name?:
924
- string;
925
- /** Required. The url of the repository. */
926
- url?:
927
- string;
928
- }
929
- interface OSPolicyResourceRepositoryResourceYumRepository {
930
- /** Required. The location of the repository directory. */
931
- baseUrl?:
932
- string;
933
- /** The display name of the repository. */
934
- displayName?:
935
- string;
936
- /** URIs of GPG keys. */
937
- gpgKeys?:
938
- string[];
939
- /**
940
- * Required. A one word, unique name for this repository. This is the `repo id` in the yum config file and also the `display_name` if `display_name` is omitted. This id is also used as
941
- * the unique identifier when checking for resource conflicts.
942
- */
943
- id?:
944
- string;
945
- }
946
- interface OSPolicyResourceRepositoryResourceZypperRepository {
947
- /** Required. The location of the repository directory. */
948
- baseUrl?:
949
- string;
950
- /** The display name of the repository. */
951
- displayName?:
952
- string;
953
- /** URIs of GPG keys. */
954
- gpgKeys?:
955
- string[];
956
- /**
957
- * Required. A one word, unique name for this repository. This is the `repo id` in the zypper config file and also the `display_name` if `display_name` is omitted. This id is also used
958
- * as the unique identifier when checking for GuestPolicy conflicts.
959
- */
960
- id?:
961
- string;
962
- }
963
- interface Status {
964
- /** The status code, which should be an enum value of google.rpc.Code. */
965
- code?:
966
- number;
967
- /** A list of messages that carry the error details. There is a common set of message types for APIs to use. */
968
- details?:
969
- Array<{ [P in string]: any }>;
970
- /**
971
- * A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the
972
- * client.
973
- */
974
- message?:
975
- string;
976
- }
977
- interface VulnerabilityReport {
978
- /** Output only. The `vulnerabilityReport` API resource name. Format: `projects/{project_number}/locations/{location}/instances/{instance_id}/vulnerabilityReport` */
979
- name?:
980
- string;
981
- /** Output only. The timestamp for when the last vulnerability report was generated for the VM. */
982
- updateTime?:
983
- string;
984
- /** Output only. List of vulnerabilities affecting the VM. */
985
- vulnerabilities?:
986
- VulnerabilityReportVulnerability[];
987
- }
988
- interface VulnerabilityReportVulnerability {
989
- /**
990
- * Corresponds to the `AVAILABLE_PACKAGE` inventory item on the VM. If the vulnerability report was not updated after the VM inventory update, these values might not display in VM
991
- * inventory. If there is no available fix, the field is empty. The `inventory_item` value specifies the latest `SoftwarePackage` available to the VM that fixes the vulnerability.
992
- */
993
- availableInventoryItemIds?:
994
- string[];
995
- /** The timestamp for when the vulnerability was first detected. */
996
- createTime?:
997
- string;
998
- /** Contains metadata as per the upstream feed of the operating system and NVD. */
999
- details?:
1000
- VulnerabilityReportVulnerabilityDetails;
1001
- /**
1002
- * Corresponds to the `INSTALLED_PACKAGE` inventory item on the VM. This field displays the inventory items affected by this vulnerability. If the vulnerability report was not updated
1003
- * after the VM inventory update, these values might not display in VM inventory. For some distros, this field may be empty.
1004
- */
1005
- installedInventoryItemIds?:
1006
- string[];
1007
- /** List of items affected by the vulnerability. */
1008
- items?:
1009
- VulnerabilityReportVulnerabilityItem[];
1010
- /** The timestamp for when the vulnerability was last modified. */
1011
- updateTime?:
1012
- string;
1013
- }
1014
- interface VulnerabilityReportVulnerabilityDetails {
1015
- /** The CVE of the vulnerability. CVE cannot be empty and the combination of should be unique across vulnerabilities for a VM. */
1016
- cve?:
1017
- string;
1018
- /** The CVSS V2 score of this vulnerability. CVSS V2 score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity. */
1019
- cvssV2Score?:
1020
- number;
1021
- /** The full description of the CVSSv3 for this vulnerability from NVD. */
1022
- cvssV3?:
1023
- CVSSv3;
1024
- /** The note or description describing the vulnerability from the distro. */
1025
- description?:
1026
- string;
1027
- /** Corresponds to the references attached to the `VulnerabilityDetails`. */
1028
- references?:
1029
- VulnerabilityReportVulnerabilityDetailsReference[];
1030
- /** Assigned severity/impact ranking from the distro. */
1031
- severity?:
1032
- string;
1033
- }
1034
- interface VulnerabilityReportVulnerabilityDetailsReference {
1035
- /** The source of the reference e.g. NVD. */
1036
- source?:
1037
- string;
1038
- /** The url of the reference. */
1039
- url?:
1040
- string;
1041
- }
1042
- interface VulnerabilityReportVulnerabilityItem {
1043
- /**
1044
- * Corresponds to the `AVAILABLE_PACKAGE` inventory item on the VM. If the vulnerability report was not updated after the VM inventory update, these values might not display in VM
1045
- * inventory. If there is no available fix, the field is empty. The `inventory_item` value specifies the latest `SoftwarePackage` available to the VM that fixes the vulnerability.
1046
- */
1047
- availableInventoryItemId?:
1048
- string;
1049
- /** The recommended [CPE URI](https://cpe.mitre.org/specification/) update that contains a fix for this vulnerability. */
1050
- fixedCpeUri?:
1051
- string;
1052
- /**
1053
- * Corresponds to the `INSTALLED_PACKAGE` inventory item on the VM. This field displays the inventory items affected by this vulnerability. If the vulnerability report was not updated
1054
- * after the VM inventory update, these values might not display in VM inventory. For some operating systems, this field might be empty.
1055
- */
1056
- installedInventoryItemId?:
1057
- string;
1058
- /** The upstream OS patch, packages or KB that fixes the vulnerability. */
1059
- upstreamFix?:
1060
- string;
1061
- }
1062
- interface InstanceOSPoliciesCompliancesResource {
1063
- /** Get OS policies compliance data for the specified Compute Engine VM instance. */
1064
- get(request?: {
1065
- /** V1 error format. */
1066
- "$.xgafv"?:
1067
- string;
1068
- /** OAuth access token. */
1069
- access_token?:
1070
- string;
1071
- /** Data format for response. */
1072
- alt?:
1073
- string;
1074
- /** JSONP */
1075
- callback?:
1076
- string;
1077
- /** Selector specifying which fields to include in a partial response. */
1078
- fields?:
1079
- string;
1080
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1081
- key?:
1082
- string;
1083
- /**
1084
- * Required. API resource name for instance OS policies compliance resource. Format: `projects/{project}/locations/{location}/instanceOSPoliciesCompliances/{instance}` For
1085
- * `{project}`, either Compute Engine project-number or project-id can be provided. For `{instance}`, either Compute Engine VM instance-id or instance-name can be provided.
1086
- */
1087
- name:
1088
- string;
1089
- /** OAuth 2.0 token for the current user. */
1090
- oauth_token?:
1091
- string;
1092
- /** Returns response with indentations and line breaks. */
1093
- prettyPrint?:
1094
- boolean;
1095
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1096
- quotaUser?:
1097
- string;
1098
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1099
- upload_protocol?:
1100
- string;
1101
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1102
- uploadType?:
1103
- string;
1104
- }): Request<InstanceOSPoliciesCompliance>;
1105
- /** List OS policies compliance data for all Compute Engine VM instances in the specified zone. */
1106
- list(request?: {
1107
- /** V1 error format. */
1108
- "$.xgafv"?:
1109
- string;
1110
- /** OAuth access token. */
1111
- access_token?:
1112
- string;
1113
- /** Data format for response. */
1114
- alt?:
1115
- string;
1116
- /** JSONP */
1117
- callback?:
1118
- string;
1119
- /** Selector specifying which fields to include in a partial response. */
1120
- fields?:
1121
- string;
1122
- /** If provided, this field specifies the criteria that must be met by a `InstanceOSPoliciesCompliance` API resource to be included in the response. */
1123
- filter?:
1124
- string;
1125
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1126
- key?:
1127
- string;
1128
- /** OAuth 2.0 token for the current user. */
1129
- oauth_token?:
1130
- string;
1131
- /** The maximum number of results to return. */
1132
- pageSize?:
1133
- number;
1134
- /** A pagination token returned from a previous call to `ListInstanceOSPoliciesCompliances` that indicates where this listing should continue from. */
1135
- pageToken?:
1136
- string;
1137
- /** Required. The parent resource name. Format: `projects/{project}/locations/{location}` For `{project}`, either Compute Engine project-number or project-id can be provided. */
1138
- parent:
1139
- string;
1140
- /** Returns response with indentations and line breaks. */
1141
- prettyPrint?:
1142
- boolean;
1143
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1144
- quotaUser?:
1145
- string;
1146
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1147
- upload_protocol?:
1148
- string;
1149
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1150
- uploadType?:
1151
- string;
1152
- }): Request<ListInstanceOSPoliciesCompliancesResponse>;
1153
- }
1154
- interface InventoriesResource {
1155
- /** Get inventory data for the specified VM instance. If the VM has no associated inventory, the message `NOT_FOUND` is returned. */
1156
- get(request?: {
1157
- /** V1 error format. */
1158
- "$.xgafv"?:
1159
- string;
1160
- /** OAuth access token. */
1161
- access_token?:
1162
- string;
1163
- /** Data format for response. */
1164
- alt?:
1165
- string;
1166
- /** JSONP */
1167
- callback?:
1168
- string;
1169
- /** Selector specifying which fields to include in a partial response. */
1170
- fields?:
1171
- string;
1172
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1173
- key?:
1174
- string;
1175
- /**
1176
- * Required. API resource name for inventory resource. Format: `projects/{project}/locations/{location}/instances/{instance}/inventory` For `{project}`, either `project-number` or
1177
- * `project-id` can be provided. For `{instance}`, either Compute Engine `instance-id` or `instance-name` can be provided.
1178
- */
1179
- name:
1180
- string;
1181
- /** OAuth 2.0 token for the current user. */
1182
- oauth_token?:
1183
- string;
1184
- /** Returns response with indentations and line breaks. */
1185
- prettyPrint?:
1186
- boolean;
1187
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1188
- quotaUser?:
1189
- string;
1190
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1191
- upload_protocol?:
1192
- string;
1193
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1194
- uploadType?:
1195
- string;
1196
- /** Inventory view indicating what information should be included in the inventory resource. If unspecified, the default view is BASIC. */
1197
- view?:
1198
- string;
1199
- }): Request<Inventory>;
1200
- /** List inventory data for all VM instances in the specified zone. */
1201
- list(request?: {
1202
- /** V1 error format. */
1203
- "$.xgafv"?:
1204
- string;
1205
- /** OAuth access token. */
1206
- access_token?:
1207
- string;
1208
- /** Data format for response. */
1209
- alt?:
1210
- string;
1211
- /** JSONP */
1212
- callback?:
1213
- string;
1214
- /** Selector specifying which fields to include in a partial response. */
1215
- fields?:
1216
- string;
1217
- /** If provided, this field specifies the criteria that must be met by a `Inventory` API resource to be included in the response. */
1218
- filter?:
1219
- string;
1220
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1221
- key?:
1222
- string;
1223
- /** OAuth 2.0 token for the current user. */
1224
- oauth_token?:
1225
- string;
1226
- /** The maximum number of results to return. */
1227
- pageSize?:
1228
- number;
1229
- /** A pagination token returned from a previous call to `ListInventories` that indicates where this listing should continue from. */
1230
- pageToken?:
1231
- string;
1232
- /** Required. The parent resource name. Format: `projects/{project}/locations/{location}/instances/-` For `{project}`, either `project-number` or `project-id` can be provided. */
1233
- parent:
1234
- string;
1235
- /** Returns response with indentations and line breaks. */
1236
- prettyPrint?:
1237
- boolean;
1238
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1239
- quotaUser?:
1240
- string;
1241
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1242
- upload_protocol?:
1243
- string;
1244
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1245
- uploadType?:
1246
- string;
1247
- /** Inventory view indicating what information should be included in the inventory resource. If unspecified, the default view is BASIC. */
1248
- view?:
1249
- string;
1250
- }): Request<ListInventoriesResponse>;
1251
- }
1252
- interface ReportsResource {
1253
- /** Get the OS policy assignment report for the specified Compute Engine VM instance. */
1254
- get(request?: {
1255
- /** V1 error format. */
1256
- "$.xgafv"?:
1257
- string;
1258
- /** OAuth access token. */
1259
- access_token?:
1260
- string;
1261
- /** Data format for response. */
1262
- alt?:
1263
- string;
1264
- /** JSONP */
1265
- callback?:
1266
- string;
1267
- /** Selector specifying which fields to include in a partial response. */
1268
- fields?:
1269
- string;
1270
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1271
- key?:
1272
- string;
1273
- /**
1274
- * Required. API resource name for OS policy assignment report. Format: `/projects/{project}/locations/{location}/instances/{instance}/osPolicyAssignments/{assignment}/report` For
1275
- * `{project}`, either `project-number` or `project-id` can be provided. For `{instance_id}`, either Compute Engine `instance-id` or `instance-name` can be provided. For
1276
- * `{assignment_id}`, the OSPolicyAssignment id must be provided.
1277
- */
1278
- name:
1279
- string;
1280
- /** OAuth 2.0 token for the current user. */
1281
- oauth_token?:
1282
- string;
1283
- /** Returns response with indentations and line breaks. */
1284
- prettyPrint?:
1285
- boolean;
1286
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1287
- quotaUser?:
1288
- string;
1289
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1290
- upload_protocol?:
1291
- string;
1292
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1293
- uploadType?:
1294
- string;
1295
- }): Request<OSPolicyAssignmentReport>;
1296
- /** List OS policy assignment reports for all Compute Engine VM instances in the specified zone. */
1297
- list(request?: {
1298
- /** V1 error format. */
1299
- "$.xgafv"?:
1300
- string;
1301
- /** OAuth access token. */
1302
- access_token?:
1303
- string;
1304
- /** Data format for response. */
1305
- alt?:
1306
- string;
1307
- /** JSONP */
1308
- callback?:
1309
- string;
1310
- /** Selector specifying which fields to include in a partial response. */
1311
- fields?:
1312
- string;
1313
- /** If provided, this field specifies the criteria that must be met by the `OSPolicyAssignmentReport` API resource that is included in the response. */
1314
- filter?:
1315
- string;
1316
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1317
- key?:
1318
- string;
1319
- /** OAuth 2.0 token for the current user. */
1320
- oauth_token?:
1321
- string;
1322
- /** The maximum number of results to return. */
1323
- pageSize?:
1324
- number;
1325
- /** A pagination token returned from a previous call to the `ListOSPolicyAssignmentReports` method that indicates where this listing should continue from. */
1326
- pageToken?:
1327
- string;
1328
- /**
1329
- * Required. The parent resource name. Format: `projects/{project}/locations/{location}/instances/{instance}/osPolicyAssignments/{assignment}/reports` For `{project}`, either
1330
- * `project-number` or `project-id` can be provided. For `{instance}`, either `instance-name`, `instance-id`, or `-` can be provided. If '-' is provided, the response will include
1331
- * OSPolicyAssignmentReports for all instances in the project/location. For `{assignment}`, either `assignment-id` or `-` can be provided. If '-' is provided, the response will
1332
- * include OSPolicyAssignmentReports for all OSPolicyAssignments in the project/location. Either {instance} or {assignment} must be `-`. For example:
1333
- * `projects/{project}/locations/{location}/instances/{instance}/osPolicyAssignments/-/reports` returns all reports for the instance
1334
- * `projects/{project}/locations/{location}/instances/-/osPolicyAssignments/{assignment-id}/reports` returns all the reports for the given assignment across all instances.
1335
- * `projects/{project}/locations/{location}/instances/-/osPolicyAssignments/-/reports` returns all the reports for all assignments across all instances.
1336
- */
1337
- parent:
1338
- string;
1339
- /** Returns response with indentations and line breaks. */
1340
- prettyPrint?:
1341
- boolean;
1342
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1343
- quotaUser?:
1344
- string;
1345
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1346
- upload_protocol?:
1347
- string;
1348
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1349
- uploadType?:
1350
- string;
1351
- }): Request<ListOSPolicyAssignmentReportsResponse>;
1352
- }
1353
- interface OsPolicyAssignmentsResource {
1354
- reports:
1355
- ReportsResource;
1356
- }
1357
- interface VulnerabilityReportsResource {
1358
- /** Gets the vulnerability report for the specified VM instance. Only VMs with inventory data have vulnerability reports associated with them. */
1359
- get(request?: {
1360
- /** V1 error format. */
1361
- "$.xgafv"?:
1362
- string;
1363
- /** OAuth access token. */
1364
- access_token?:
1365
- string;
1366
- /** Data format for response. */
1367
- alt?:
1368
- string;
1369
- /** JSONP */
1370
- callback?:
1371
- string;
1372
- /** Selector specifying which fields to include in a partial response. */
1373
- fields?:
1374
- string;
1375
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1376
- key?:
1377
- string;
1378
- /**
1379
- * Required. API resource name for vulnerability resource. Format: `projects/{project}/locations/{location}/instances/{instance}/vulnerabilityReport` For `{project}`, either
1380
- * `project-number` or `project-id` can be provided. For `{instance}`, either Compute Engine `instance-id` or `instance-name` can be provided.
1381
- */
1382
- name:
1383
- string;
1384
- /** OAuth 2.0 token for the current user. */
1385
- oauth_token?:
1386
- string;
1387
- /** Returns response with indentations and line breaks. */
1388
- prettyPrint?:
1389
- boolean;
1390
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1391
- quotaUser?:
1392
- string;
1393
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1394
- upload_protocol?:
1395
- string;
1396
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1397
- uploadType?:
1398
- string;
1399
- }): Request<VulnerabilityReport>;
1400
- /** List vulnerability reports for all VM instances in the specified zone. */
1401
- list(request?: {
1402
- /** V1 error format. */
1403
- "$.xgafv"?:
1404
- string;
1405
- /** OAuth access token. */
1406
- access_token?:
1407
- string;
1408
- /** Data format for response. */
1409
- alt?:
1410
- string;
1411
- /** JSONP */
1412
- callback?:
1413
- string;
1414
- /** Selector specifying which fields to include in a partial response. */
1415
- fields?:
1416
- string;
1417
- /**
1418
- * This field supports filtering by the severity level for the vulnerability. For a list of severity levels, see [Severity levels for
1419
- * vulnerabilities](https://cloud.google.com/container-analysis/docs/container-scanning-overview#severity_levels_for_vulnerabilities). The filter field follows the rules described
1420
- * in the [AIP-160](https://google.aip.dev/160) guidelines as follows: + **Filter for a specific severity type**: you can list reports that contain vulnerabilities that are
1421
- * classified as medium by specifying `vulnerabilities.details.severity:MEDIUM`. + **Filter for a range of severities** : you can list reports that have vulnerabilities that are
1422
- * classified as critical or high by specifying `vulnerabilities.details.severity:HIGH OR vulnerabilities.details.severity:CRITICAL`
1423
- */
1424
- filter?:
1425
- string;
1426
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1427
- key?:
1428
- string;
1429
- /** OAuth 2.0 token for the current user. */
1430
- oauth_token?:
1431
- string;
1432
- /** The maximum number of results to return. */
1433
- pageSize?:
1434
- number;
1435
- /** A pagination token returned from a previous call to `ListVulnerabilityReports` that indicates where this listing should continue from. */
1436
- pageToken?:
1437
- string;
1438
- /** Required. The parent resource name. Format: `projects/{project}/locations/{location}/instances/-` For `{project}`, either `project-number` or `project-id` can be provided. */
1439
- parent:
1440
- string;
1441
- /** Returns response with indentations and line breaks. */
1442
- prettyPrint?:
1443
- boolean;
1444
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1445
- quotaUser?:
1446
- string;
1447
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1448
- upload_protocol?:
1449
- string;
1450
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1451
- uploadType?:
1452
- string;
1453
- }): Request<ListVulnerabilityReportsResponse>;
1454
- }
1455
- interface InstancesResource {
1456
- inventories:
1457
- InventoriesResource;
1458
- osPolicyAssignments:
1459
- OsPolicyAssignmentsResource;
1460
- vulnerabilityReports:
1461
- VulnerabilityReportsResource;
1462
- }
1463
- interface OperationsResource {
1464
- /**
1465
- * Starts asynchronous cancellation on a long-running operation. The server makes a best effort to cancel the operation, but success is not guaranteed. If the server doesn't support
1466
- * this method, it returns `google.rpc.Code.UNIMPLEMENTED`. Clients can use Operations.GetOperation or other methods to check whether the cancellation succeeded or whether the
1467
- * operation completed despite cancellation. On successful cancellation, the operation is not deleted; instead, it becomes an operation with an Operation.error value with a
1468
- * google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.
1469
- */
1470
- cancel(request: {
1471
- /** V1 error format. */
1472
- "$.xgafv"?:
1473
- string;
1474
- /** OAuth access token. */
1475
- access_token?:
1476
- string;
1477
- /** Data format for response. */
1478
- alt?:
1479
- string;
1480
- /** JSONP */
1481
- callback?:
1482
- string;
1483
- /** Selector specifying which fields to include in a partial response. */
1484
- fields?:
1485
- string;
1486
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1487
- key?:
1488
- string;
1489
- /** The name of the operation resource to be cancelled. */
1490
- name:
1491
- string;
1492
- /** OAuth 2.0 token for the current user. */
1493
- oauth_token?:
1494
- string;
1495
- /** Returns response with indentations and line breaks. */
1496
- prettyPrint?:
1497
- boolean;
1498
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1499
- quotaUser?:
1500
- string;
1501
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1502
- upload_protocol?:
1503
- string;
1504
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1505
- uploadType?:
1506
- string;
1507
- /** Request body */
1508
- resource:
1509
- CancelOperationRequest;
1510
- }): Request<{}>;
1511
- cancel(request: {
1512
- /** V1 error format. */
1513
- "$.xgafv"?:
1514
- string;
1515
- /** OAuth access token. */
1516
- access_token?:
1517
- string;
1518
- /** Data format for response. */
1519
- alt?:
1520
- string;
1521
- /** JSONP */
1522
- callback?:
1523
- string;
1524
- /** Selector specifying which fields to include in a partial response. */
1525
- fields?:
1526
- string;
1527
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1528
- key?:
1529
- string;
1530
- /** The name of the operation resource to be cancelled. */
1531
- name:
1532
- string;
1533
- /** OAuth 2.0 token for the current user. */
1534
- oauth_token?:
1535
- string;
1536
- /** Returns response with indentations and line breaks. */
1537
- prettyPrint?:
1538
- boolean;
1539
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1540
- quotaUser?:
1541
- string;
1542
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1543
- upload_protocol?:
1544
- string;
1545
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1546
- uploadType?:
1547
- string;
1548
- },
1549
- body: CancelOperationRequest): Request<{}>;
1550
- /** Gets the latest state of a long-running operation. Clients can use this method to poll the operation result at intervals as recommended by the API service. */
1551
- get(request?: {
1552
- /** V1 error format. */
1553
- "$.xgafv"?:
1554
- string;
1555
- /** OAuth access token. */
1556
- access_token?:
1557
- string;
1558
- /** Data format for response. */
1559
- alt?:
1560
- string;
1561
- /** JSONP */
1562
- callback?:
1563
- string;
1564
- /** Selector specifying which fields to include in a partial response. */
1565
- fields?:
1566
- string;
1567
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1568
- key?:
1569
- string;
1570
- /** The name of the operation resource. */
1571
- name:
1572
- string;
1573
- /** OAuth 2.0 token for the current user. */
1574
- oauth_token?:
1575
- string;
1576
- /** Returns response with indentations and line breaks. */
1577
- prettyPrint?:
1578
- boolean;
1579
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1580
- quotaUser?:
1581
- string;
1582
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1583
- upload_protocol?:
1584
- string;
1585
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1586
- uploadType?:
1587
- string;
1588
- }): Request<Operation>;
1589
- }
1590
- interface OsPolicyAssignmentsResource {
1591
- /**
1592
- * Create an OS policy assignment. This method also creates the first revision of the OS policy assignment. This method returns a long running operation (LRO) that contains the rollout
1593
- * details. The rollout can be cancelled by cancelling the LRO. For more information, see [Method:
1594
- * projects.locations.osPolicyAssignments.operations.cancel](https://cloud.google.com/compute/docs/osconfig/rest/v1alpha/projects.locations.osPolicyAssignments.operations/cancel).
1595
- */
1596
- create(request: {
1597
- /** V1 error format. */
1598
- "$.xgafv"?:
1599
- string;
1600
- /** OAuth access token. */
1601
- access_token?:
1602
- string;
1603
- /** Data format for response. */
1604
- alt?:
1605
- string;
1606
- /** JSONP */
1607
- callback?:
1608
- string;
1609
- /** Selector specifying which fields to include in a partial response. */
1610
- fields?:
1611
- string;
1612
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1613
- key?:
1614
- string;
1615
- /** OAuth 2.0 token for the current user. */
1616
- oauth_token?:
1617
- string;
1618
- /**
1619
- * Required. The logical name of the OS policy assignment in the project with the following restrictions: * Must contain only lowercase letters, numbers, and hyphens. * Must start
1620
- * with a letter. * Must be between 1-63 characters. * Must end with a number or a letter. * Must be unique within the project.
1621
- */
1622
- osPolicyAssignmentId?:
1623
- string;
1624
- /** Required. The parent resource name in the form: projects/{project}/locations/{location} */
1625
- parent:
1626
- string;
1627
- /** Returns response with indentations and line breaks. */
1628
- prettyPrint?:
1629
- boolean;
1630
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1631
- quotaUser?:
1632
- string;
1633
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1634
- upload_protocol?:
1635
- string;
1636
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1637
- uploadType?:
1638
- string;
1639
- /** Request body */
1640
- resource:
1641
- OSPolicyAssignment;
1642
- }): Request<Operation>;
1643
- create(request: {
1644
- /** V1 error format. */
1645
- "$.xgafv"?:
1646
- string;
1647
- /** OAuth access token. */
1648
- access_token?:
1649
- string;
1650
- /** Data format for response. */
1651
- alt?:
1652
- string;
1653
- /** JSONP */
1654
- callback?:
1655
- string;
1656
- /** Selector specifying which fields to include in a partial response. */
1657
- fields?:
1658
- string;
1659
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1660
- key?:
1661
- string;
1662
- /** OAuth 2.0 token for the current user. */
1663
- oauth_token?:
1664
- string;
1665
- /**
1666
- * Required. The logical name of the OS policy assignment in the project with the following restrictions: * Must contain only lowercase letters, numbers, and hyphens. * Must start
1667
- * with a letter. * Must be between 1-63 characters. * Must end with a number or a letter. * Must be unique within the project.
1668
- */
1669
- osPolicyAssignmentId?:
1670
- string;
1671
- /** Required. The parent resource name in the form: projects/{project}/locations/{location} */
1672
- parent:
1673
- string;
1674
- /** Returns response with indentations and line breaks. */
1675
- prettyPrint?:
1676
- boolean;
1677
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1678
- quotaUser?:
1679
- string;
1680
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1681
- upload_protocol?:
1682
- string;
1683
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1684
- uploadType?:
1685
- string;
1686
- },
1687
- body: OSPolicyAssignment): Request<Operation>;
1688
- /**
1689
- * Delete the OS policy assignment. This method creates a new revision of the OS policy assignment. This method returns a long running operation (LRO) that contains the rollout
1690
- * details. The rollout can be cancelled by cancelling the LRO. If the LRO completes and is not cancelled, all revisions associated with the OS policy assignment are deleted. For more
1691
- * information, see [Method:
1692
- * projects.locations.osPolicyAssignments.operations.cancel](https://cloud.google.com/compute/docs/osconfig/rest/v1alpha/projects.locations.osPolicyAssignments.operations/cancel).
1693
- */
1694
- delete(request?: {
1695
- /** V1 error format. */
1696
- "$.xgafv"?:
1697
- string;
1698
- /** OAuth access token. */
1699
- access_token?:
1700
- string;
1701
- /** Data format for response. */
1702
- alt?:
1703
- string;
1704
- /** JSONP */
1705
- callback?:
1706
- string;
1707
- /** Selector specifying which fields to include in a partial response. */
1708
- fields?:
1709
- string;
1710
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1711
- key?:
1712
- string;
1713
- /** Required. The name of the OS policy assignment to be deleted */
1714
- name:
1715
- string;
1716
- /** OAuth 2.0 token for the current user. */
1717
- oauth_token?:
1718
- string;
1719
- /** Returns response with indentations and line breaks. */
1720
- prettyPrint?:
1721
- boolean;
1722
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1723
- quotaUser?:
1724
- string;
1725
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1726
- upload_protocol?:
1727
- string;
1728
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1729
- uploadType?:
1730
- string;
1731
- }): Request<Operation>;
1732
- /**
1733
- * Retrieve an existing OS policy assignment. This method always returns the latest revision. In order to retrieve a previous revision of the assignment, also provide the revision ID
1734
- * in the `name` parameter.
1735
- */
1736
- get(request?: {
1737
- /** V1 error format. */
1738
- "$.xgafv"?:
1739
- string;
1740
- /** OAuth access token. */
1741
- access_token?:
1742
- string;
1743
- /** Data format for response. */
1744
- alt?:
1745
- string;
1746
- /** JSONP */
1747
- callback?:
1748
- string;
1749
- /** Selector specifying which fields to include in a partial response. */
1750
- fields?:
1751
- string;
1752
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1753
- key?:
1754
- string;
1755
- /** Required. The resource name of OS policy assignment. Format: `projects/{project}/locations/{location}/osPolicyAssignments/{os_policy_assignment}@{revisionId}` */
1756
- name:
1757
- string;
1758
- /** OAuth 2.0 token for the current user. */
1759
- oauth_token?:
1760
- string;
1761
- /** Returns response with indentations and line breaks. */
1762
- prettyPrint?:
1763
- boolean;
1764
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1765
- quotaUser?:
1766
- string;
1767
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1768
- upload_protocol?:
1769
- string;
1770
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1771
- uploadType?:
1772
- string;
1773
- }): Request<OSPolicyAssignment>;
1774
- /** List the OS policy assignments under the parent resource. For each OS policy assignment, the latest revision is returned. */
1775
- list(request?: {
1776
- /** V1 error format. */
1777
- "$.xgafv"?:
1778
- string;
1779
- /** OAuth access token. */
1780
- access_token?:
1781
- string;
1782
- /** Data format for response. */
1783
- alt?:
1784
- string;
1785
- /** JSONP */
1786
- callback?:
1787
- string;
1788
- /** Selector specifying which fields to include in a partial response. */
1789
- fields?:
1790
- string;
1791
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1792
- key?:
1793
- string;
1794
- /** OAuth 2.0 token for the current user. */
1795
- oauth_token?:
1796
- string;
1797
- /** The maximum number of assignments to return. */
1798
- pageSize?:
1799
- number;
1800
- /** A pagination token returned from a previous call to `ListOSPolicyAssignments` that indicates where this listing should continue from. */
1801
- pageToken?:
1802
- string;
1803
- /** Required. The parent resource name. */
1804
- parent:
1805
- string;
1806
- /** Returns response with indentations and line breaks. */
1807
- prettyPrint?:
1808
- boolean;
1809
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1810
- quotaUser?:
1811
- string;
1812
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1813
- upload_protocol?:
1814
- string;
1815
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1816
- uploadType?:
1817
- string;
1818
- }): Request<ListOSPolicyAssignmentsResponse>;
1819
- /** List the OS policy assignment revisions for a given OS policy assignment. */
1820
- listRevisions(request?: {
1821
- /** V1 error format. */
1822
- "$.xgafv"?:
1823
- string;
1824
- /** OAuth access token. */
1825
- access_token?:
1826
- string;
1827
- /** Data format for response. */
1828
- alt?:
1829
- string;
1830
- /** JSONP */
1831
- callback?:
1832
- string;
1833
- /** Selector specifying which fields to include in a partial response. */
1834
- fields?:
1835
- string;
1836
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1837
- key?:
1838
- string;
1839
- /** Required. The name of the OS policy assignment to list revisions for. */
1840
- name:
1841
- string;
1842
- /** OAuth 2.0 token for the current user. */
1843
- oauth_token?:
1844
- string;
1845
- /** The maximum number of revisions to return. */
1846
- pageSize?:
1847
- number;
1848
- /** A pagination token returned from a previous call to `ListOSPolicyAssignmentRevisions` that indicates where this listing should continue from. */
1849
- pageToken?:
1850
- string;
1851
- /** Returns response with indentations and line breaks. */
1852
- prettyPrint?:
1853
- boolean;
1854
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1855
- quotaUser?:
1856
- string;
1857
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1858
- upload_protocol?:
1859
- string;
1860
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1861
- uploadType?:
1862
- string;
1863
- }): Request<ListOSPolicyAssignmentRevisionsResponse>;
1864
- /**
1865
- * Update an existing OS policy assignment. This method creates a new revision of the OS policy assignment. This method returns a long running operation (LRO) that contains the rollout
1866
- * details. The rollout can be cancelled by cancelling the LRO. For more information, see [Method:
1867
- * projects.locations.osPolicyAssignments.operations.cancel](https://cloud.google.com/compute/docs/osconfig/rest/v1alpha/projects.locations.osPolicyAssignments.operations/cancel).
1868
- */
1869
- patch(request: {
1870
- /** V1 error format. */
1871
- "$.xgafv"?:
1872
- string;
1873
- /** OAuth access token. */
1874
- access_token?:
1875
- string;
1876
- /** Data format for response. */
1877
- alt?:
1878
- string;
1879
- /** JSONP */
1880
- callback?:
1881
- string;
1882
- /** Selector specifying which fields to include in a partial response. */
1883
- fields?:
1884
- string;
1885
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1886
- key?:
1887
- string;
1888
- /**
1889
- * Resource name. Format: `projects/{project_number}/locations/{location}/osPolicyAssignments/{os_policy_assignment_id}` This field is ignored when you create an OS policy
1890
- * assignment.
1891
- */
1892
- name:
1893
- string;
1894
- /** OAuth 2.0 token for the current user. */
1895
- oauth_token?:
1896
- string;
1897
- /** Returns response with indentations and line breaks. */
1898
- prettyPrint?:
1899
- boolean;
1900
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1901
- quotaUser?:
1902
- string;
1903
- /** Optional. Field mask that controls which fields of the assignment should be updated. */
1904
- updateMask?:
1905
- string;
1906
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1907
- upload_protocol?:
1908
- string;
1909
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1910
- uploadType?:
1911
- string;
1912
- /** Request body */
1913
- resource:
1914
- OSPolicyAssignment;
1915
- }): Request<Operation>;
1916
- patch(request: {
1917
- /** V1 error format. */
1918
- "$.xgafv"?:
1919
- string;
1920
- /** OAuth access token. */
1921
- access_token?:
1922
- string;
1923
- /** Data format for response. */
1924
- alt?:
1925
- string;
1926
- /** JSONP */
1927
- callback?:
1928
- string;
1929
- /** Selector specifying which fields to include in a partial response. */
1930
- fields?:
1931
- string;
1932
- /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1933
- key?:
1934
- string;
1935
- /**
1936
- * Resource name. Format: `projects/{project_number}/locations/{location}/osPolicyAssignments/{os_policy_assignment_id}` This field is ignored when you create an OS policy
1937
- * assignment.
1938
- */
1939
- name:
1940
- string;
1941
- /** OAuth 2.0 token for the current user. */
1942
- oauth_token?:
1943
- string;
1944
- /** Returns response with indentations and line breaks. */
1945
- prettyPrint?:
1946
- boolean;
1947
- /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1948
- quotaUser?:
1949
- string;
1950
- /** Optional. Field mask that controls which fields of the assignment should be updated. */
1951
- updateMask?:
1952
- string;
1953
- /** Upload protocol for media (e.g. "raw", "multipart"). */
1954
- upload_protocol?:
1955
- string;
1956
- /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1957
- uploadType?:
1958
- string;
1959
- },
1960
- body: OSPolicyAssignment): Request<Operation>;
1961
- operations:
1962
- OperationsResource;
1963
- }
1964
- interface LocationsResource {
1965
- instanceOSPoliciesCompliances:
1966
- InstanceOSPoliciesCompliancesResource;
1967
- instances:
1968
- InstancesResource;
1969
- osPolicyAssignments:
1970
- OsPolicyAssignmentsResource;
1971
- }
1972
- interface ProjectsResource {
1973
- locations:
1974
- LocationsResource;
1975
- }
1976
-
1977
- const projects: ProjectsResource;
30
+ namespace osconfig {
31
+ interface CancelOperationRequest {}
32
+ interface CVSSv3 {
33
+ /** This metric describes the conditions beyond the attacker's control that must exist in order to exploit the vulnerability. */
34
+ attackComplexity?: string;
35
+ /** This metric reflects the context by which vulnerability exploitation is possible. */
36
+ attackVector?: string;
37
+ /** This metric measures the impact to the availability of the impacted component resulting from a successfully exploited vulnerability. */
38
+ availabilityImpact?: string;
39
+ /** The base score is a function of the base metric scores. https://www.first.org/cvss/specification-document#Base-Metrics */
40
+ baseScore?: number;
41
+ /** This metric measures the impact to the confidentiality of the information resources managed by a software component due to a successfully exploited vulnerability. */
42
+ confidentialityImpact?: string;
43
+ /** The Exploitability sub-score equation is derived from the Base Exploitability metrics. https://www.first.org/cvss/specification-document#2-1-Exploitability-Metrics */
44
+ exploitabilityScore?: number;
45
+ /** The Impact sub-score equation is derived from the Base Impact metrics. */
46
+ impactScore?: number;
47
+ /** This metric measures the impact to integrity of a successfully exploited vulnerability. */
48
+ integrityImpact?: string;
49
+ /** This metric describes the level of privileges an attacker must possess before successfully exploiting the vulnerability. */
50
+ privilegesRequired?: string;
51
+ /** The Scope metric captures whether a vulnerability in one vulnerable component impacts resources in components beyond its security scope. */
52
+ scope?: string;
53
+ /** This metric captures the requirement for a human user, other than the attacker, to participate in the successful compromise of the vulnerable component. */
54
+ userInteraction?: string;
55
+ }
56
+ interface Date {
57
+ /** Day of a month. Must be from 1 to 31 and valid for the year and month, or 0 to specify a year by itself or a year and month where the day isn't significant. */
58
+ day?: number;
59
+ /** Month of a year. Must be from 1 to 12, or 0 to specify a year without a month and day. */
60
+ month?: number;
61
+ /** Year of the date. Must be from 1 to 9999, or 0 to specify a date without a year. */
62
+ year?: number;
63
+ }
64
+ interface Empty {}
65
+ interface FixedOrPercent {
66
+ /** Specifies a fixed value. */
67
+ fixed?: number;
68
+ /** Specifies the relative value defined as a percentage, which will be multiplied by a reference value. */
69
+ percent?: number;
70
+ }
71
+ interface GoogleCloudOsconfigV1__OSPolicyAssignmentOperationMetadata {
72
+ /** The OS policy assignment API method. */
73
+ apiMethod?: string;
74
+ /** Reference to the `OSPolicyAssignment` API resource. Format: `projects/{project_number}/locations/{location}/osPolicyAssignments/{os_policy_assignment_id@revision_id}` */
75
+ osPolicyAssignment?: string;
76
+ /** Rollout start time */
77
+ rolloutStartTime?: string;
78
+ /** State of the rollout */
79
+ rolloutState?: string;
80
+ /** Rollout update time */
81
+ rolloutUpdateTime?: string;
82
+ }
83
+ interface InstanceOSPoliciesCompliance {
84
+ /** Output only. Detailed compliance state of the VM. This field is populated only when compliance state is `UNKNOWN`. It may contain one of the following values: * `no-compliance-data`: Compliance data is not available for this VM. * `no-agent-detected`: OS Config agent is not detected for this VM. * `config-not-supported-by-agent`: The version of the OS Config agent running on this VM does not support configuration management. * `inactive`: VM is not running. * `internal-service-errors`: There were internal service errors encountered while enforcing compliance. * `agent-errors`: OS config agent encountered errors while enforcing compliance. */
85
+ detailedState?: string;
86
+ /** Output only. The reason for the `detailed_state` of the VM (if any). */
87
+ detailedStateReason?: string;
88
+ /** Output only. The Compute Engine VM instance name. */
89
+ instance?: string;
90
+ /** Output only. Timestamp of the last compliance check for the VM. */
91
+ lastComplianceCheckTime?: string;
92
+ /** Output only. Unique identifier for the last compliance run. This id will be logged by the OS config agent during a compliance run and can be used for debugging and tracing purpose. */
93
+ lastComplianceRunId?: string;
94
+ /** Output only. The `InstanceOSPoliciesCompliance` API resource name. Format: `projects/{project_number}/locations/{location}/instanceOSPoliciesCompliances/{instance_id}` */
95
+ name?: string;
96
+ /** Output only. Compliance data for each `OSPolicy` that is applied to the VM. */
97
+ osPolicyCompliances?: InstanceOSPoliciesComplianceOSPolicyCompliance[];
98
+ /** Output only. Compliance state of the VM. */
99
+ state?: string;
100
+ }
101
+ interface InstanceOSPoliciesComplianceOSPolicyCompliance {
102
+ /** Reference to the `OSPolicyAssignment` API resource that the `OSPolicy` belongs to. Format: `projects/{project_number}/locations/{location}/osPolicyAssignments/{os_policy_assignment_id@revision_id}` */
103
+ osPolicyAssignment?: string;
104
+ /** The OS policy id */
105
+ osPolicyId?: string;
106
+ /** Compliance data for each `OSPolicyResource` that is applied to the VM. */
107
+ osPolicyResourceCompliances?: OSPolicyResourceCompliance[];
108
+ /** Compliance state of the OS policy. */
109
+ state?: string;
110
+ }
111
+ interface Inventory {
112
+ /** Output only. Inventory items related to the VM keyed by an opaque unique identifier for each inventory item. The identifier is unique to each distinct and addressable inventory item and will change, when there is a new package version. */
113
+ items?: {[P in string]: InventoryItem};
114
+ /** Output only. The `Inventory` API resource name. Format: `projects/{project_number}/locations/{location}/instances/{instance_id}/inventory` */
115
+ name?: string;
116
+ /** Output only. Base level operating system information for the VM. */
117
+ osInfo?: InventoryOsInfo;
118
+ /** Output only. Timestamp of the last reported inventory for the VM. */
119
+ updateTime?: string;
120
+ }
121
+ interface InventoryItem {
122
+ /** Software package available to be installed on the VM instance. */
123
+ availablePackage?: InventorySoftwarePackage;
124
+ /** When this inventory item was first detected. */
125
+ createTime?: string;
126
+ /** Identifier for this item, unique across items for this VM. */
127
+ id?: string;
128
+ /** Software package present on the VM instance. */
129
+ installedPackage?: InventorySoftwarePackage;
130
+ /** The origin of this inventory item. */
131
+ originType?: string;
132
+ /** The specific type of inventory, correlating to its specific details. */
133
+ type?: string;
134
+ /** When this inventory item was last modified. */
135
+ updateTime?: string;
136
+ }
137
+ interface InventoryOsInfo {
138
+ /** The system architecture of the operating system. */
139
+ architecture?: string;
140
+ /** The VM hostname. */
141
+ hostname?: string;
142
+ /** The kernel release of the operating system. */
143
+ kernelRelease?: string;
144
+ /** The kernel version of the operating system. */
145
+ kernelVersion?: string;
146
+ /** The operating system long name. For example 'Debian GNU/Linux 9' or 'Microsoft Window Server 2019 Datacenter'. */
147
+ longName?: string;
148
+ /** The current version of the OS Config agent running on the VM. */
149
+ osconfigAgentVersion?: string;
150
+ /** The operating system short name. For example, 'windows' or 'debian'. */
151
+ shortName?: string;
152
+ /** The version of the operating system. */
153
+ version?: string;
154
+ }
155
+ interface InventorySoftwarePackage {
156
+ /** Details of an APT package. For details about the apt package manager, see https://wiki.debian.org/Apt. */
157
+ aptPackage?: InventoryVersionedPackage;
158
+ /** Details of a COS package. */
159
+ cosPackage?: InventoryVersionedPackage;
160
+ /** Details of a Googet package. For details about the googet package manager, see https://github.com/google/googet. */
161
+ googetPackage?: InventoryVersionedPackage;
162
+ /** Details of a Windows Quick Fix engineering package. See https://docs.microsoft.com/en-us/windows/win32/cimwin32prov/win32-quickfixengineering for info in Windows Quick Fix Engineering. */
163
+ qfePackage?: InventoryWindowsQuickFixEngineeringPackage;
164
+ /** Details of Windows Application. */
165
+ windowsApplication?: InventoryWindowsApplication;
166
+ /** Details of a Windows Update package. See https://docs.microsoft.com/en-us/windows/win32/api/_wua/ for information about Windows Update. */
167
+ wuaPackage?: InventoryWindowsUpdatePackage;
168
+ /** Yum package info. For details about the yum package manager, see https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/6/html/deployment_guide/ch-yum. */
169
+ yumPackage?: InventoryVersionedPackage;
170
+ /** Details of a Zypper package. For details about the Zypper package manager, see https://en.opensuse.org/SDB:Zypper_manual. */
171
+ zypperPackage?: InventoryVersionedPackage;
172
+ /** Details of a Zypper patch. For details about the Zypper package manager, see https://en.opensuse.org/SDB:Zypper_manual. */
173
+ zypperPatch?: InventoryZypperPatch;
174
+ }
175
+ interface InventoryVersionedPackage {
176
+ /** The system architecture this package is intended for. */
177
+ architecture?: string;
178
+ /** The name of the package. */
179
+ packageName?: string;
180
+ /** The version of the package. */
181
+ version?: string;
182
+ }
183
+ interface InventoryWindowsApplication {
184
+ /** The name of the application or product. */
185
+ displayName?: string;
186
+ /** The version of the product or application in string format. */
187
+ displayVersion?: string;
188
+ /** The internet address for technical support. */
189
+ helpLink?: string;
190
+ /** The last time this product received service. The value of this property is replaced each time a patch is applied or removed from the product or the command-line option is used to repair the product. */
191
+ installDate?: Date;
192
+ /** The name of the manufacturer for the product or application. */
193
+ publisher?: string;
194
+ }
195
+ interface InventoryWindowsQuickFixEngineeringPackage {
196
+ /** A short textual description of the QFE update. */
197
+ caption?: string;
198
+ /** A textual description of the QFE update. */
199
+ description?: string;
200
+ /** Unique identifier associated with a particular QFE update. */
201
+ hotFixId?: string;
202
+ /** Date that the QFE update was installed. Mapped from installed_on field. */
203
+ installTime?: string;
204
+ }
205
+ interface InventoryWindowsUpdatePackage {
206
+ /** The categories that are associated with this update package. */
207
+ categories?: InventoryWindowsUpdatePackageWindowsUpdateCategory[];
208
+ /** The localized description of the update package. */
209
+ description?: string;
210
+ /** A collection of Microsoft Knowledge Base article IDs that are associated with the update package. */
211
+ kbArticleIds?: string[];
212
+ /** The last published date of the update, in (UTC) date and time. */
213
+ lastDeploymentChangeTime?: string;
214
+ /** A collection of URLs that provide more information about the update package. */
215
+ moreInfoUrls?: string[];
216
+ /** The revision number of this update package. */
217
+ revisionNumber?: number;
218
+ /** A hyperlink to the language-specific support information for the update. */
219
+ supportUrl?: string;
220
+ /** The localized title of the update package. */
221
+ title?: string;
222
+ /** Gets the identifier of an update package. Stays the same across revisions. */
223
+ updateId?: string;
224
+ }
225
+ interface InventoryWindowsUpdatePackageWindowsUpdateCategory {
226
+ /** The identifier of the windows update category. */
227
+ id?: string;
228
+ /** The name of the windows update category. */
229
+ name?: string;
230
+ }
231
+ interface InventoryZypperPatch {
232
+ /** The category of the patch. */
233
+ category?: string;
234
+ /** The name of the patch. */
235
+ patchName?: string;
236
+ /** The severity specified for this patch */
237
+ severity?: string;
238
+ /** Any summary information provided about this patch. */
239
+ summary?: string;
240
+ }
241
+ interface ListInstanceOSPoliciesCompliancesResponse {
242
+ /** List of instance OS policies compliance objects. */
243
+ instanceOsPoliciesCompliances?: InstanceOSPoliciesCompliance[];
244
+ /** The pagination token to retrieve the next page of instance OS policies compliance objects. */
245
+ nextPageToken?: string;
246
+ }
247
+ interface ListInventoriesResponse {
248
+ /** List of inventory objects. */
249
+ inventories?: Inventory[];
250
+ /** The pagination token to retrieve the next page of inventory objects. */
251
+ nextPageToken?: string;
252
+ }
253
+ interface ListOSPolicyAssignmentReportsResponse {
254
+ /** The pagination token to retrieve the next page of OS policy assignment report objects. */
255
+ nextPageToken?: string;
256
+ /** List of OS policy assignment reports. */
257
+ osPolicyAssignmentReports?: OSPolicyAssignmentReport[];
258
+ }
259
+ interface ListOSPolicyAssignmentRevisionsResponse {
260
+ /** The pagination token to retrieve the next page of OS policy assignment revisions. */
261
+ nextPageToken?: string;
262
+ /** The OS policy assignment revisions */
263
+ osPolicyAssignments?: OSPolicyAssignment[];
264
+ }
265
+ interface ListOSPolicyAssignmentsResponse {
266
+ /** The pagination token to retrieve the next page of OS policy assignments. */
267
+ nextPageToken?: string;
268
+ /** The list of assignments */
269
+ osPolicyAssignments?: OSPolicyAssignment[];
270
+ }
271
+ interface ListVulnerabilityReportsResponse {
272
+ /** The pagination token to retrieve the next page of vulnerabilityReports object. */
273
+ nextPageToken?: string;
274
+ /** List of vulnerabilityReport objects. */
275
+ vulnerabilityReports?: VulnerabilityReport[];
276
+ }
277
+ interface Operation {
278
+ /** If the value is `false`, it means the operation is still in progress. If `true`, the operation is completed, and either `error` or `response` is available. */
279
+ done?: boolean;
280
+ /** The error result of the operation in case of failure or cancellation. */
281
+ error?: Status;
282
+ /** Service-specific metadata associated with the operation. It typically contains progress information and common metadata such as create time. Some services might not provide such metadata. Any method that returns a long-running operation should document the metadata type, if any. */
283
+ metadata?: {[P in string]: any};
284
+ /** The server-assigned name, which is only unique within the same service that originally returns it. If you use the default HTTP mapping, the `name` should be a resource name ending with `operations/{unique_id}`. */
285
+ name?: string;
286
+ /** The normal, successful response of the operation. If the original method returns no data on success, such as `Delete`, the response is `google.protobuf.Empty`. If the original method is standard `Get`/`Create`/`Update`, the response should be the resource. For other methods, the response should have the type `XxxResponse`, where `Xxx` is the original method name. For example, if the original method name is `TakeSnapshot()`, the inferred response type is `TakeSnapshotResponse`. */
287
+ response?: {[P in string]: any};
288
+ }
289
+ interface OSPolicy {
290
+ /** This flag determines the OS policy compliance status when none of the resource groups within the policy are applicable for a VM. Set this value to `true` if the policy needs to be reported as compliant even if the policy has nothing to validate or enforce. */
291
+ allowNoResourceGroupMatch?: boolean;
292
+ /** Policy description. Length of the description is limited to 1024 characters. */
293
+ description?: string;
294
+ /** Required. The id of the OS policy with the following restrictions: * Must contain only lowercase letters, numbers, and hyphens. * Must start with a letter. * Must be between 1-63 characters. * Must end with a number or a letter. * Must be unique within the assignment. */
295
+ id?: string;
296
+ /** Required. Policy mode */
297
+ mode?: string;
298
+ /** Required. List of resource groups for the policy. For a particular VM, resource groups are evaluated in the order specified and the first resource group that is applicable is selected and the rest are ignored. If none of the resource groups are applicable for a VM, the VM is considered to be non-compliant w.r.t this policy. This behavior can be toggled by the flag `allow_no_resource_group_match` */
299
+ resourceGroups?: OSPolicyResourceGroup[];
300
+ }
301
+ interface OSPolicyAssignment {
302
+ /** Output only. Indicates that this revision has been successfully rolled out in this zone and new VMs will be assigned OS policies from this revision. For a given OS policy assignment, there is only one revision with a value of `true` for this field. */
303
+ baseline?: boolean;
304
+ /** Output only. Indicates that this revision deletes the OS policy assignment. */
305
+ deleted?: boolean;
306
+ /** OS policy assignment description. Length of the description is limited to 1024 characters. */
307
+ description?: string;
308
+ /** The etag for this OS policy assignment. If this is provided on update, it must match the server's etag. */
309
+ etag?: string;
310
+ /** Required. Filter to select VMs. */
311
+ instanceFilter?: OSPolicyAssignmentInstanceFilter;
312
+ /** Resource name. Format: `projects/{project_number}/locations/{location}/osPolicyAssignments/{os_policy_assignment_id}` This field is ignored when you create an OS policy assignment. */
313
+ name?: string;
314
+ /** Required. List of OS policies to be applied to the VMs. */
315
+ osPolicies?: OSPolicy[];
316
+ /** Output only. Indicates that reconciliation is in progress for the revision. This value is `true` when the `rollout_state` is one of: * IN_PROGRESS * CANCELLING */
317
+ reconciling?: boolean;
318
+ /** Output only. The timestamp that the revision was created. */
319
+ revisionCreateTime?: string;
320
+ /** Output only. The assignment revision ID A new revision is committed whenever a rollout is triggered for a OS policy assignment */
321
+ revisionId?: string;
322
+ /** Required. Rollout to deploy the OS policy assignment. A rollout is triggered in the following situations: 1) OSPolicyAssignment is created. 2) OSPolicyAssignment is updated and the update contains changes to one of the following fields: - instance_filter - os_policies 3) OSPolicyAssignment is deleted. */
323
+ rollout?: OSPolicyAssignmentRollout;
324
+ /** Output only. OS policy assignment rollout state */
325
+ rolloutState?: string;
326
+ /** Output only. Server generated unique id for the OS policy assignment resource. */
327
+ uid?: string;
328
+ }
329
+ interface OSPolicyAssignmentInstanceFilter {
330
+ /** Target all VMs in the project. If true, no other criteria is permitted. */
331
+ all?: boolean;
332
+ /** List of label sets used for VM exclusion. If the list has more than one label set, the VM is excluded if any of the label sets are applicable for the VM. */
333
+ exclusionLabels?: OSPolicyAssignmentLabelSet[];
334
+ /** List of label sets used for VM inclusion. If the list has more than one `LabelSet`, the VM is included if any of the label sets are applicable for the VM. */
335
+ inclusionLabels?: OSPolicyAssignmentLabelSet[];
336
+ /** List of inventories to select VMs. A VM is selected if its inventory data matches at least one of the following inventories. */
337
+ inventories?: OSPolicyAssignmentInstanceFilterInventory[];
338
+ /** Deprecated. Use the `inventories` field instead. A VM is selected if it's OS short name matches with any of the values provided in this list. */
339
+ osShortNames?: string[];
340
+ }
341
+ interface OSPolicyAssignmentInstanceFilterInventory {
342
+ /** Required. The OS short name */
343
+ osShortName?: string;
344
+ /** The OS version Prefix matches are supported if asterisk(*) is provided as the last character. For example, to match all versions with a major version of `7`, specify the following value for this field `7.*` An empty string matches all OS versions. */
345
+ osVersion?: string;
346
+ }
347
+ interface OSPolicyAssignmentLabelSet {
348
+ /** Labels are identified by key/value pairs in this map. A VM should contain all the key/value pairs specified in this map to be selected. */
349
+ labels?: {[P in string]: string};
350
+ }
351
+ interface OSPolicyAssignmentOperationMetadata {
352
+ /** The OS policy assignment API method. */
353
+ apiMethod?: string;
354
+ /** Reference to the `OSPolicyAssignment` API resource. Format: `projects/{project_number}/locations/{location}/osPolicyAssignments/{os_policy_assignment_id@revision_id}` */
355
+ osPolicyAssignment?: string;
356
+ /** Rollout start time */
357
+ rolloutStartTime?: string;
358
+ /** State of the rollout */
359
+ rolloutState?: string;
360
+ /** Rollout update time */
361
+ rolloutUpdateTime?: string;
362
+ }
363
+ interface OSPolicyAssignmentReport {
364
+ /** The Compute Engine VM instance name. */
365
+ instance?: string;
366
+ /** Unique identifier of the last attempted run to apply the OS policies associated with this assignment on the VM. This ID is logged by the OS Config agent while applying the OS policies associated with this assignment on the VM. NOTE: If the service is unable to successfully connect to the agent for this run, then this id will not be available in the agent logs. */
367
+ lastRunId?: string;
368
+ /** The `OSPolicyAssignmentReport` API resource name. Format: `projects/{project_number}/locations/{location}/instances/{instance_id}/osPolicyAssignments/{os_policy_assignment_id}/report` */
369
+ name?: string;
370
+ /** Reference to the `OSPolicyAssignment` API resource that the `OSPolicy` belongs to. Format: `projects/{project_number}/locations/{location}/osPolicyAssignments/{os_policy_assignment_id@revision_id}` */
371
+ osPolicyAssignment?: string;
372
+ /** Compliance data for each `OSPolicy` that is applied to the VM. */
373
+ osPolicyCompliances?: OSPolicyAssignmentReportOSPolicyCompliance[];
374
+ /** Timestamp for when the report was last generated. */
375
+ updateTime?: string;
376
+ }
377
+ interface OSPolicyAssignmentReportOSPolicyCompliance {
378
+ /** The compliance state of the OS policy. */
379
+ complianceState?: string;
380
+ /** The reason for the OS policy to be in an unknown compliance state. This field is always populated when `compliance_state` is `UNKNOWN`. If populated, the field can contain one of the following values: * `vm-not-running`: The VM was not running. * `os-policies-not-supported-by-agent`: The version of the OS Config agent running on the VM does not support running OS policies. * `no-agent-detected`: The OS Config agent is not detected for the VM. * `resource-execution-errors`: The OS Config agent encountered errors while executing one or more resources in the policy. See `os_policy_resource_compliances` for details. * `task-timeout`: The task sent to the agent to apply the policy timed out. * `unexpected-agent-state`: The OS Config agent did not report the final status of the task that attempted to apply the policy. Instead, the agent unexpectedly started working on a different task. This mostly happens when the agent or VM unexpectedly restarts while applying OS policies. * `internal-service-errors`: Internal service errors were encountered while attempting to apply the policy. */
381
+ complianceStateReason?: string;
382
+ /** The OS policy id */
383
+ osPolicyId?: string;
384
+ /** Compliance data for each resource within the policy that is applied to the VM. */
385
+ osPolicyResourceCompliances?: OSPolicyAssignmentReportOSPolicyComplianceOSPolicyResourceCompliance[];
386
+ }
387
+ interface OSPolicyAssignmentReportOSPolicyComplianceOSPolicyResourceCompliance {
388
+ /** The compliance state of the resource. */
389
+ complianceState?: string;
390
+ /** A reason for the resource to be in the given compliance state. This field is always populated when `compliance_state` is `UNKNOWN`. The following values are supported when `compliance_state == UNKNOWN` * `execution-errors`: Errors were encountered by the agent while executing the resource and the compliance state couldn't be determined. * `execution-skipped-by-agent`: Resource execution was skipped by the agent because errors were encountered while executing prior resources in the OS policy. * `os-policy-execution-attempt-failed`: The execution of the OS policy containing this resource failed and the compliance state couldn't be determined. */
391
+ complianceStateReason?: string;
392
+ /** Ordered list of configuration completed by the agent for the OS policy resource. */
393
+ configSteps?: OSPolicyAssignmentReportOSPolicyComplianceOSPolicyResourceComplianceOSPolicyResourceConfigStep[];
394
+ /** ExecResource specific output. */
395
+ execResourceOutput?: OSPolicyAssignmentReportOSPolicyComplianceOSPolicyResourceComplianceExecResourceOutput;
396
+ /** The ID of the OS policy resource. */
397
+ osPolicyResourceId?: string;
398
+ }
399
+ interface OSPolicyAssignmentReportOSPolicyComplianceOSPolicyResourceComplianceExecResourceOutput {
400
+ /** Output from enforcement phase output file (if run). Output size is limited to 100K bytes. */
401
+ enforcementOutput?: string;
402
+ }
403
+ interface OSPolicyAssignmentReportOSPolicyComplianceOSPolicyResourceComplianceOSPolicyResourceConfigStep {
404
+ /** An error message recorded during the execution of this step. Only populated if errors were encountered during this step execution. */
405
+ errorMessage?: string;
406
+ /** Configuration step type. */
407
+ type?: string;
408
+ }
409
+ interface OSPolicyAssignmentRollout {
410
+ /** Required. The maximum number (or percentage) of VMs per zone to disrupt at any given moment. */
411
+ disruptionBudget?: FixedOrPercent;
412
+ /** Required. This determines the minimum duration of time to wait after the configuration changes are applied through the current rollout. A VM continues to count towards the `disruption_budget` at least until this duration of time has passed after configuration changes are applied. */
413
+ minWaitDuration?: string;
414
+ }
415
+ interface OSPolicyInventoryFilter {
416
+ /** Required. The OS short name */
417
+ osShortName?: string;
418
+ /** The OS version Prefix matches are supported if asterisk(*) is provided as the last character. For example, to match all versions with a major version of `7`, specify the following value for this field `7.*` An empty string matches all OS versions. */
419
+ osVersion?: string;
420
+ }
421
+ interface OSPolicyOSFilter {
422
+ /** This should match OS short name emitted by the OS inventory agent. An empty value matches any OS. */
423
+ osShortName?: string;
424
+ /** This value should match the version emitted by the OS inventory agent. Prefix matches are supported if asterisk(*) is provided as the last character. For example, to match all versions with a major version of `7`, specify the following value for this field `7.*` */
425
+ osVersion?: string;
426
+ }
427
+ interface OSPolicyResource {
428
+ /** Exec resource */
429
+ exec?: OSPolicyResourceExecResource;
430
+ /** File resource */
431
+ file?: OSPolicyResourceFileResource;
432
+ /** Required. The id of the resource with the following restrictions: * Must contain only lowercase letters, numbers, and hyphens. * Must start with a letter. * Must be between 1-63 characters. * Must end with a number or a letter. * Must be unique within the OS policy. */
433
+ id?: string;
434
+ /** Package resource */
435
+ pkg?: OSPolicyResourcePackageResource;
436
+ /** Package repository resource */
437
+ repository?: OSPolicyResourceRepositoryResource;
438
+ }
439
+ interface OSPolicyResourceCompliance {
440
+ /** Ordered list of configuration steps taken by the agent for the OS policy resource. */
441
+ configSteps?: OSPolicyResourceConfigStep[];
442
+ /** ExecResource specific output. */
443
+ execResourceOutput?: OSPolicyResourceComplianceExecResourceOutput;
444
+ /** The id of the OS policy resource. */
445
+ osPolicyResourceId?: string;
446
+ /** Compliance state of the OS policy resource. */
447
+ state?: string;
1978
448
  }
449
+ interface OSPolicyResourceComplianceExecResourceOutput {
450
+ /** Output from Enforcement phase output file (if run). Output size is limited to 100K bytes. */
451
+ enforcementOutput?: string;
452
+ }
453
+ interface OSPolicyResourceConfigStep {
454
+ /** An error message recorded during the execution of this step. Only populated when outcome is FAILED. */
455
+ errorMessage?: string;
456
+ /** Outcome of the configuration step. */
457
+ outcome?: string;
458
+ /** Configuration step type. */
459
+ type?: string;
460
+ }
461
+ interface OSPolicyResourceExecResource {
462
+ /** What to run to bring this resource into the desired state. An exit code of 100 indicates "success", any other exit code indicates a failure running enforce. */
463
+ enforce?: OSPolicyResourceExecResourceExec;
464
+ /** Required. What to run to validate this resource is in the desired state. An exit code of 100 indicates "in desired state", and exit code of 101 indicates "not in desired state". Any other exit code indicates a failure running validate. */
465
+ validate?: OSPolicyResourceExecResourceExec;
466
+ }
467
+ interface OSPolicyResourceExecResourceExec {
468
+ /** Optional arguments to pass to the source during execution. */
469
+ args?: string[];
470
+ /** A remote or local file. */
471
+ file?: OSPolicyResourceFile;
472
+ /** Required. The script interpreter to use. */
473
+ interpreter?: string;
474
+ /** Only recorded for enforce Exec. Path to an output file (that is created by this Exec) whose content will be recorded in OSPolicyResourceCompliance after a successful run. Absence or failure to read this file will result in this ExecResource being non-compliant. Output file size is limited to 100K bytes. */
475
+ outputFilePath?: string;
476
+ /** An inline script. The size of the script is limited to 32KiB. */
477
+ script?: string;
478
+ }
479
+ interface OSPolicyResourceFile {
480
+ /** Defaults to false. When false, files are subject to validations based on the file type: Remote: A checksum must be specified. Cloud Storage: An object generation number must be specified. */
481
+ allowInsecure?: boolean;
482
+ /** A Cloud Storage object. */
483
+ gcs?: OSPolicyResourceFileGcs;
484
+ /** A local path within the VM to use. */
485
+ localPath?: string;
486
+ /** A generic remote file. */
487
+ remote?: OSPolicyResourceFileRemote;
488
+ }
489
+ interface OSPolicyResourceFileGcs {
490
+ /** Required. Bucket of the Cloud Storage object. */
491
+ bucket?: string;
492
+ /** Generation number of the Cloud Storage object. */
493
+ generation?: string;
494
+ /** Required. Name of the Cloud Storage object. */
495
+ object?: string;
496
+ }
497
+ interface OSPolicyResourceFileRemote {
498
+ /** SHA256 checksum of the remote file. */
499
+ sha256Checksum?: string;
500
+ /** Required. URI from which to fetch the object. It should contain both the protocol and path following the format `{protocol}://{location}`. */
501
+ uri?: string;
502
+ }
503
+ interface OSPolicyResourceFileResource {
504
+ /** A a file with this content. The size of the content is limited to 32KiB. */
505
+ content?: string;
506
+ /** A remote or local source. */
507
+ file?: OSPolicyResourceFile;
508
+ /** Required. The absolute path of the file within the VM. */
509
+ path?: string;
510
+ /** Consists of three octal digits which represent, in order, the permissions of the owner, group, and other users for the file (similarly to the numeric mode used in the linux chmod utility). Each digit represents a three bit number with the 4 bit corresponding to the read permissions, the 2 bit corresponds to the write bit, and the one bit corresponds to the execute permission. Default behavior is 755. Below are some examples of permissions and their associated values: read, write, and execute: 7 read and execute: 5 read and write: 6 read only: 4 */
511
+ permissions?: string;
512
+ /** Required. Desired state of the file. */
513
+ state?: string;
514
+ }
515
+ interface OSPolicyResourceGroup {
516
+ /** List of inventory filters for the resource group. The resources in this resource group are applied to the target VM if it satisfies at least one of the following inventory filters. For example, to apply this resource group to VMs running either `RHEL` or `CentOS` operating systems, specify 2 items for the list with following values: inventory_filters[0].os_short_name='rhel' and inventory_filters[1].os_short_name='centos' If the list is empty, this resource group will be applied to the target VM unconditionally. */
517
+ inventoryFilters?: OSPolicyInventoryFilter[];
518
+ /** Deprecated. Use the `inventory_filters` field instead. Used to specify the OS filter for a resource group */
519
+ osFilter?: OSPolicyOSFilter;
520
+ /** Required. List of resources configured for this resource group. The resources are executed in the exact order specified here. */
521
+ resources?: OSPolicyResource[];
522
+ }
523
+ interface OSPolicyResourcePackageResource {
524
+ /** A package managed by Apt. */
525
+ apt?: OSPolicyResourcePackageResourceAPT;
526
+ /** A deb package file. */
527
+ deb?: OSPolicyResourcePackageResourceDeb;
528
+ /** Required. The desired state the agent should maintain for this package. */
529
+ desiredState?: string;
530
+ /** A package managed by GooGet. */
531
+ googet?: OSPolicyResourcePackageResourceGooGet;
532
+ /** An MSI package. */
533
+ msi?: OSPolicyResourcePackageResourceMSI;
534
+ /** An rpm package file. */
535
+ rpm?: OSPolicyResourcePackageResourceRPM;
536
+ /** A package managed by YUM. */
537
+ yum?: OSPolicyResourcePackageResourceYUM;
538
+ /** A package managed by Zypper. */
539
+ zypper?: OSPolicyResourcePackageResourceZypper;
540
+ }
541
+ interface OSPolicyResourcePackageResourceAPT {
542
+ /** Required. Package name. */
543
+ name?: string;
544
+ }
545
+ interface OSPolicyResourcePackageResourceDeb {
546
+ /** Whether dependencies should also be installed. - install when false: `dpkg -i package` - install when true: `apt-get update && apt-get -y install package.deb` */
547
+ pullDeps?: boolean;
548
+ /** Required. A deb package. */
549
+ source?: OSPolicyResourceFile;
550
+ }
551
+ interface OSPolicyResourcePackageResourceGooGet {
552
+ /** Required. Package name. */
553
+ name?: string;
554
+ }
555
+ interface OSPolicyResourcePackageResourceMSI {
556
+ /** Additional properties to use during installation. This should be in the format of Property=Setting. Appended to the defaults of `ACTION=INSTALL REBOOT=ReallySuppress`. */
557
+ properties?: string[];
558
+ /** Required. The MSI package. */
559
+ source?: OSPolicyResourceFile;
560
+ }
561
+ interface OSPolicyResourcePackageResourceRPM {
562
+ /** Whether dependencies should also be installed. - install when false: `rpm --upgrade --replacepkgs package.rpm` - install when true: `yum -y install package.rpm` or `zypper -y install package.rpm` */
563
+ pullDeps?: boolean;
564
+ /** Required. An rpm package. */
565
+ source?: OSPolicyResourceFile;
566
+ }
567
+ interface OSPolicyResourcePackageResourceYUM {
568
+ /** Required. Package name. */
569
+ name?: string;
570
+ }
571
+ interface OSPolicyResourcePackageResourceZypper {
572
+ /** Required. Package name. */
573
+ name?: string;
574
+ }
575
+ interface OSPolicyResourceRepositoryResource {
576
+ /** An Apt Repository. */
577
+ apt?: OSPolicyResourceRepositoryResourceAptRepository;
578
+ /** A Goo Repository. */
579
+ goo?: OSPolicyResourceRepositoryResourceGooRepository;
580
+ /** A Yum Repository. */
581
+ yum?: OSPolicyResourceRepositoryResourceYumRepository;
582
+ /** A Zypper Repository. */
583
+ zypper?: OSPolicyResourceRepositoryResourceZypperRepository;
584
+ }
585
+ interface OSPolicyResourceRepositoryResourceAptRepository {
586
+ /** Required. Type of archive files in this repository. */
587
+ archiveType?: string;
588
+ /** Required. List of components for this repository. Must contain at least one item. */
589
+ components?: string[];
590
+ /** Required. Distribution of this repository. */
591
+ distribution?: string;
592
+ /** URI of the key file for this repository. The agent maintains a keyring at `/etc/apt/trusted.gpg.d/osconfig_agent_managed.gpg`. */
593
+ gpgKey?: string;
594
+ /** Required. URI for this repository. */
595
+ uri?: string;
596
+ }
597
+ interface OSPolicyResourceRepositoryResourceGooRepository {
598
+ /** Required. The name of the repository. */
599
+ name?: string;
600
+ /** Required. The url of the repository. */
601
+ url?: string;
602
+ }
603
+ interface OSPolicyResourceRepositoryResourceYumRepository {
604
+ /** Required. The location of the repository directory. */
605
+ baseUrl?: string;
606
+ /** The display name of the repository. */
607
+ displayName?: string;
608
+ /** URIs of GPG keys. */
609
+ gpgKeys?: string[];
610
+ /** Required. A one word, unique name for this repository. This is the `repo id` in the yum config file and also the `display_name` if `display_name` is omitted. This id is also used as the unique identifier when checking for resource conflicts. */
611
+ id?: string;
612
+ }
613
+ interface OSPolicyResourceRepositoryResourceZypperRepository {
614
+ /** Required. The location of the repository directory. */
615
+ baseUrl?: string;
616
+ /** The display name of the repository. */
617
+ displayName?: string;
618
+ /** URIs of GPG keys. */
619
+ gpgKeys?: string[];
620
+ /** Required. A one word, unique name for this repository. This is the `repo id` in the zypper config file and also the `display_name` if `display_name` is omitted. This id is also used as the unique identifier when checking for GuestPolicy conflicts. */
621
+ id?: string;
622
+ }
623
+ interface Status {
624
+ /** The status code, which should be an enum value of google.rpc.Code. */
625
+ code?: number;
626
+ /** A list of messages that carry the error details. There is a common set of message types for APIs to use. */
627
+ details?: Array<{[P in string]: any}>;
628
+ /** A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client. */
629
+ message?: string;
630
+ }
631
+ interface VulnerabilityReport {
632
+ /** Output only. The `vulnerabilityReport` API resource name. Format: `projects/{project_number}/locations/{location}/instances/{instance_id}/vulnerabilityReport` */
633
+ name?: string;
634
+ /** Output only. The timestamp for when the last vulnerability report was generated for the VM. */
635
+ updateTime?: string;
636
+ /** Output only. List of vulnerabilities affecting the VM. */
637
+ vulnerabilities?: VulnerabilityReportVulnerability[];
638
+ }
639
+ interface VulnerabilityReportVulnerability {
640
+ /** Corresponds to the `AVAILABLE_PACKAGE` inventory item on the VM. If the vulnerability report was not updated after the VM inventory update, these values might not display in VM inventory. If there is no available fix, the field is empty. The `inventory_item` value specifies the latest `SoftwarePackage` available to the VM that fixes the vulnerability. */
641
+ availableInventoryItemIds?: string[];
642
+ /** The timestamp for when the vulnerability was first detected. */
643
+ createTime?: string;
644
+ /** Contains metadata as per the upstream feed of the operating system and NVD. */
645
+ details?: VulnerabilityReportVulnerabilityDetails;
646
+ /** Corresponds to the `INSTALLED_PACKAGE` inventory item on the VM. This field displays the inventory items affected by this vulnerability. If the vulnerability report was not updated after the VM inventory update, these values might not display in VM inventory. For some distros, this field may be empty. */
647
+ installedInventoryItemIds?: string[];
648
+ /** List of items affected by the vulnerability. */
649
+ items?: VulnerabilityReportVulnerabilityItem[];
650
+ /** The timestamp for when the vulnerability was last modified. */
651
+ updateTime?: string;
652
+ }
653
+ interface VulnerabilityReportVulnerabilityDetails {
654
+ /** The CVE of the vulnerability. CVE cannot be empty and the combination of should be unique across vulnerabilities for a VM. */
655
+ cve?: string;
656
+ /** The CVSS V2 score of this vulnerability. CVSS V2 score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity. */
657
+ cvssV2Score?: number;
658
+ /** The full description of the CVSSv3 for this vulnerability from NVD. */
659
+ cvssV3?: CVSSv3;
660
+ /** The note or description describing the vulnerability from the distro. */
661
+ description?: string;
662
+ /** Corresponds to the references attached to the `VulnerabilityDetails`. */
663
+ references?: VulnerabilityReportVulnerabilityDetailsReference[];
664
+ /** Assigned severity/impact ranking from the distro. */
665
+ severity?: string;
666
+ }
667
+ interface VulnerabilityReportVulnerabilityDetailsReference {
668
+ /** The source of the reference e.g. NVD. */
669
+ source?: string;
670
+ /** The url of the reference. */
671
+ url?: string;
672
+ }
673
+ interface VulnerabilityReportVulnerabilityItem {
674
+ /** Corresponds to the `AVAILABLE_PACKAGE` inventory item on the VM. If the vulnerability report was not updated after the VM inventory update, these values might not display in VM inventory. If there is no available fix, the field is empty. The `inventory_item` value specifies the latest `SoftwarePackage` available to the VM that fixes the vulnerability. */
675
+ availableInventoryItemId?: string;
676
+ /** The recommended [CPE URI](https://cpe.mitre.org/specification/) update that contains a fix for this vulnerability. */
677
+ fixedCpeUri?: string;
678
+ /** Corresponds to the `INSTALLED_PACKAGE` inventory item on the VM. This field displays the inventory items affected by this vulnerability. If the vulnerability report was not updated after the VM inventory update, these values might not display in VM inventory. For some operating systems, this field might be empty. */
679
+ installedInventoryItemId?: string;
680
+ /** The upstream OS patch, packages or KB that fixes the vulnerability. */
681
+ upstreamFix?: string;
682
+ }
683
+ interface InstanceOSPoliciesCompliancesResource {
684
+ /** Get OS policies compliance data for the specified Compute Engine VM instance. */
685
+ get(request?: {
686
+ /** V1 error format. */
687
+ '$.xgafv'?: string;
688
+ /** OAuth access token. */
689
+ access_token?: string;
690
+ /** Data format for response. */
691
+ alt?: string;
692
+ /** JSONP */
693
+ callback?: string;
694
+ /** Selector specifying which fields to include in a partial response. */
695
+ fields?: string;
696
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
697
+ key?: string;
698
+ /** Required. API resource name for instance OS policies compliance resource. Format: `projects/{project}/locations/{location}/instanceOSPoliciesCompliances/{instance}` For `{project}`, either Compute Engine project-number or project-id can be provided. For `{instance}`, either Compute Engine VM instance-id or instance-name can be provided. */
699
+ name: string;
700
+ /** OAuth 2.0 token for the current user. */
701
+ oauth_token?: string;
702
+ /** Returns response with indentations and line breaks. */
703
+ prettyPrint?: boolean;
704
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
705
+ quotaUser?: string;
706
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
707
+ upload_protocol?: string;
708
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
709
+ uploadType?: string;
710
+ }): Request<InstanceOSPoliciesCompliance>;
711
+ /** List OS policies compliance data for all Compute Engine VM instances in the specified zone. */
712
+ list(request?: {
713
+ /** V1 error format. */
714
+ '$.xgafv'?: string;
715
+ /** OAuth access token. */
716
+ access_token?: string;
717
+ /** Data format for response. */
718
+ alt?: string;
719
+ /** JSONP */
720
+ callback?: string;
721
+ /** Selector specifying which fields to include in a partial response. */
722
+ fields?: string;
723
+ /** If provided, this field specifies the criteria that must be met by a `InstanceOSPoliciesCompliance` API resource to be included in the response. */
724
+ filter?: string;
725
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
726
+ key?: string;
727
+ /** OAuth 2.0 token for the current user. */
728
+ oauth_token?: string;
729
+ /** The maximum number of results to return. */
730
+ pageSize?: number;
731
+ /** A pagination token returned from a previous call to `ListInstanceOSPoliciesCompliances` that indicates where this listing should continue from. */
732
+ pageToken?: string;
733
+ /** Required. The parent resource name. Format: `projects/{project}/locations/{location}` For `{project}`, either Compute Engine project-number or project-id can be provided. */
734
+ parent: string;
735
+ /** Returns response with indentations and line breaks. */
736
+ prettyPrint?: boolean;
737
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
738
+ quotaUser?: string;
739
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
740
+ upload_protocol?: string;
741
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
742
+ uploadType?: string;
743
+ }): Request<ListInstanceOSPoliciesCompliancesResponse>;
744
+ }
745
+ interface InventoriesResource {
746
+ /** Get inventory data for the specified VM instance. If the VM has no associated inventory, the message `NOT_FOUND` is returned. */
747
+ get(request?: {
748
+ /** V1 error format. */
749
+ '$.xgafv'?: string;
750
+ /** OAuth access token. */
751
+ access_token?: string;
752
+ /** Data format for response. */
753
+ alt?: string;
754
+ /** JSONP */
755
+ callback?: string;
756
+ /** Selector specifying which fields to include in a partial response. */
757
+ fields?: string;
758
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
759
+ key?: string;
760
+ /** Required. API resource name for inventory resource. Format: `projects/{project}/locations/{location}/instances/{instance}/inventory` For `{project}`, either `project-number` or `project-id` can be provided. For `{instance}`, either Compute Engine `instance-id` or `instance-name` can be provided. */
761
+ name: string;
762
+ /** OAuth 2.0 token for the current user. */
763
+ oauth_token?: string;
764
+ /** Returns response with indentations and line breaks. */
765
+ prettyPrint?: boolean;
766
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
767
+ quotaUser?: string;
768
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
769
+ upload_protocol?: string;
770
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
771
+ uploadType?: string;
772
+ /** Inventory view indicating what information should be included in the inventory resource. If unspecified, the default view is BASIC. */
773
+ view?: string;
774
+ }): Request<Inventory>;
775
+ /** List inventory data for all VM instances in the specified zone. */
776
+ list(request?: {
777
+ /** V1 error format. */
778
+ '$.xgafv'?: string;
779
+ /** OAuth access token. */
780
+ access_token?: string;
781
+ /** Data format for response. */
782
+ alt?: string;
783
+ /** JSONP */
784
+ callback?: string;
785
+ /** Selector specifying which fields to include in a partial response. */
786
+ fields?: string;
787
+ /** If provided, this field specifies the criteria that must be met by a `Inventory` API resource to be included in the response. */
788
+ filter?: string;
789
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
790
+ key?: string;
791
+ /** OAuth 2.0 token for the current user. */
792
+ oauth_token?: string;
793
+ /** The maximum number of results to return. */
794
+ pageSize?: number;
795
+ /** A pagination token returned from a previous call to `ListInventories` that indicates where this listing should continue from. */
796
+ pageToken?: string;
797
+ /** Required. The parent resource name. Format: `projects/{project}/locations/{location}/instances/-` For `{project}`, either `project-number` or `project-id` can be provided. */
798
+ parent: string;
799
+ /** Returns response with indentations and line breaks. */
800
+ prettyPrint?: boolean;
801
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
802
+ quotaUser?: string;
803
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
804
+ upload_protocol?: string;
805
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
806
+ uploadType?: string;
807
+ /** Inventory view indicating what information should be included in the inventory resource. If unspecified, the default view is BASIC. */
808
+ view?: string;
809
+ }): Request<ListInventoriesResponse>;
810
+ }
811
+ interface ReportsResource {
812
+ /** Get the OS policy assignment report for the specified Compute Engine VM instance. */
813
+ get(request?: {
814
+ /** V1 error format. */
815
+ '$.xgafv'?: string;
816
+ /** OAuth access token. */
817
+ access_token?: string;
818
+ /** Data format for response. */
819
+ alt?: string;
820
+ /** JSONP */
821
+ callback?: string;
822
+ /** Selector specifying which fields to include in a partial response. */
823
+ fields?: string;
824
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
825
+ key?: string;
826
+ /** Required. API resource name for OS policy assignment report. Format: `/projects/{project}/locations/{location}/instances/{instance}/osPolicyAssignments/{assignment}/report` For `{project}`, either `project-number` or `project-id` can be provided. For `{instance_id}`, either Compute Engine `instance-id` or `instance-name` can be provided. For `{assignment_id}`, the OSPolicyAssignment id must be provided. */
827
+ name: string;
828
+ /** OAuth 2.0 token for the current user. */
829
+ oauth_token?: string;
830
+ /** Returns response with indentations and line breaks. */
831
+ prettyPrint?: boolean;
832
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
833
+ quotaUser?: string;
834
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
835
+ upload_protocol?: string;
836
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
837
+ uploadType?: string;
838
+ }): Request<OSPolicyAssignmentReport>;
839
+ /** List OS policy assignment reports for all Compute Engine VM instances in the specified zone. */
840
+ list(request?: {
841
+ /** V1 error format. */
842
+ '$.xgafv'?: string;
843
+ /** OAuth access token. */
844
+ access_token?: string;
845
+ /** Data format for response. */
846
+ alt?: string;
847
+ /** JSONP */
848
+ callback?: string;
849
+ /** Selector specifying which fields to include in a partial response. */
850
+ fields?: string;
851
+ /** If provided, this field specifies the criteria that must be met by the `OSPolicyAssignmentReport` API resource that is included in the response. */
852
+ filter?: string;
853
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
854
+ key?: string;
855
+ /** OAuth 2.0 token for the current user. */
856
+ oauth_token?: string;
857
+ /** The maximum number of results to return. */
858
+ pageSize?: number;
859
+ /** A pagination token returned from a previous call to the `ListOSPolicyAssignmentReports` method that indicates where this listing should continue from. */
860
+ pageToken?: string;
861
+ /** Required. The parent resource name. Format: `projects/{project}/locations/{location}/instances/{instance}/osPolicyAssignments/{assignment}/reports` For `{project}`, either `project-number` or `project-id` can be provided. For `{instance}`, either `instance-name`, `instance-id`, or `-` can be provided. If '-' is provided, the response will include OSPolicyAssignmentReports for all instances in the project/location. For `{assignment}`, either `assignment-id` or `-` can be provided. If '-' is provided, the response will include OSPolicyAssignmentReports for all OSPolicyAssignments in the project/location. Either {instance} or {assignment} must be `-`. For example: `projects/{project}/locations/{location}/instances/{instance}/osPolicyAssignments/-/reports` returns all reports for the instance `projects/{project}/locations/{location}/instances/-/osPolicyAssignments/{assignment-id}/reports` returns all the reports for the given assignment across all instances. `projects/{project}/locations/{location}/instances/-/osPolicyAssignments/-/reports` returns all the reports for all assignments across all instances. */
862
+ parent: string;
863
+ /** Returns response with indentations and line breaks. */
864
+ prettyPrint?: boolean;
865
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
866
+ quotaUser?: string;
867
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
868
+ upload_protocol?: string;
869
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
870
+ uploadType?: string;
871
+ }): Request<ListOSPolicyAssignmentReportsResponse>;
872
+ }
873
+ interface OsPolicyAssignmentsResource {
874
+ reports: ReportsResource;
875
+ }
876
+ interface VulnerabilityReportsResource {
877
+ /** Gets the vulnerability report for the specified VM instance. Only VMs with inventory data have vulnerability reports associated with them. */
878
+ get(request?: {
879
+ /** V1 error format. */
880
+ '$.xgafv'?: string;
881
+ /** OAuth access token. */
882
+ access_token?: string;
883
+ /** Data format for response. */
884
+ alt?: string;
885
+ /** JSONP */
886
+ callback?: string;
887
+ /** Selector specifying which fields to include in a partial response. */
888
+ fields?: string;
889
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
890
+ key?: string;
891
+ /** Required. API resource name for vulnerability resource. Format: `projects/{project}/locations/{location}/instances/{instance}/vulnerabilityReport` For `{project}`, either `project-number` or `project-id` can be provided. For `{instance}`, either Compute Engine `instance-id` or `instance-name` can be provided. */
892
+ name: string;
893
+ /** OAuth 2.0 token for the current user. */
894
+ oauth_token?: string;
895
+ /** Returns response with indentations and line breaks. */
896
+ prettyPrint?: boolean;
897
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
898
+ quotaUser?: string;
899
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
900
+ upload_protocol?: string;
901
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
902
+ uploadType?: string;
903
+ }): Request<VulnerabilityReport>;
904
+ /** List vulnerability reports for all VM instances in the specified zone. */
905
+ list(request?: {
906
+ /** V1 error format. */
907
+ '$.xgafv'?: string;
908
+ /** OAuth access token. */
909
+ access_token?: string;
910
+ /** Data format for response. */
911
+ alt?: string;
912
+ /** JSONP */
913
+ callback?: string;
914
+ /** Selector specifying which fields to include in a partial response. */
915
+ fields?: string;
916
+ /** This field supports filtering by the severity level for the vulnerability. For a list of severity levels, see [Severity levels for vulnerabilities](https://cloud.google.com/container-analysis/docs/container-scanning-overview#severity_levels_for_vulnerabilities). The filter field follows the rules described in the [AIP-160](https://google.aip.dev/160) guidelines as follows: + **Filter for a specific severity type**: you can list reports that contain vulnerabilities that are classified as medium by specifying `vulnerabilities.details.severity:MEDIUM`. + **Filter for a range of severities** : you can list reports that have vulnerabilities that are classified as critical or high by specifying `vulnerabilities.details.severity:HIGH OR vulnerabilities.details.severity:CRITICAL` */
917
+ filter?: string;
918
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
919
+ key?: string;
920
+ /** OAuth 2.0 token for the current user. */
921
+ oauth_token?: string;
922
+ /** The maximum number of results to return. */
923
+ pageSize?: number;
924
+ /** A pagination token returned from a previous call to `ListVulnerabilityReports` that indicates where this listing should continue from. */
925
+ pageToken?: string;
926
+ /** Required. The parent resource name. Format: `projects/{project}/locations/{location}/instances/-` For `{project}`, either `project-number` or `project-id` can be provided. */
927
+ parent: string;
928
+ /** Returns response with indentations and line breaks. */
929
+ prettyPrint?: boolean;
930
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
931
+ quotaUser?: string;
932
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
933
+ upload_protocol?: string;
934
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
935
+ uploadType?: string;
936
+ }): Request<ListVulnerabilityReportsResponse>;
937
+ }
938
+ interface InstancesResource {
939
+ inventories: InventoriesResource;
940
+ osPolicyAssignments: OsPolicyAssignmentsResource;
941
+ vulnerabilityReports: VulnerabilityReportsResource;
942
+ }
943
+ interface OperationsResource {
944
+ /** Starts asynchronous cancellation on a long-running operation. The server makes a best effort to cancel the operation, but success is not guaranteed. If the server doesn't support this method, it returns `google.rpc.Code.UNIMPLEMENTED`. Clients can use Operations.GetOperation or other methods to check whether the cancellation succeeded or whether the operation completed despite cancellation. On successful cancellation, the operation is not deleted; instead, it becomes an operation with an Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`. */
945
+ cancel(request: {
946
+ /** V1 error format. */
947
+ '$.xgafv'?: string;
948
+ /** OAuth access token. */
949
+ access_token?: string;
950
+ /** Data format for response. */
951
+ alt?: string;
952
+ /** JSONP */
953
+ callback?: string;
954
+ /** Selector specifying which fields to include in a partial response. */
955
+ fields?: string;
956
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
957
+ key?: string;
958
+ /** The name of the operation resource to be cancelled. */
959
+ name: string;
960
+ /** OAuth 2.0 token for the current user. */
961
+ oauth_token?: string;
962
+ /** Returns response with indentations and line breaks. */
963
+ prettyPrint?: boolean;
964
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
965
+ quotaUser?: string;
966
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
967
+ upload_protocol?: string;
968
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
969
+ uploadType?: string;
970
+ /** Request body */
971
+ resource: CancelOperationRequest;
972
+ }): Request<{}>;
973
+ cancel(
974
+ request: {
975
+ /** V1 error format. */
976
+ '$.xgafv'?: string;
977
+ /** OAuth access token. */
978
+ access_token?: string;
979
+ /** Data format for response. */
980
+ alt?: string;
981
+ /** JSONP */
982
+ callback?: string;
983
+ /** Selector specifying which fields to include in a partial response. */
984
+ fields?: string;
985
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
986
+ key?: string;
987
+ /** The name of the operation resource to be cancelled. */
988
+ name: string;
989
+ /** OAuth 2.0 token for the current user. */
990
+ oauth_token?: string;
991
+ /** Returns response with indentations and line breaks. */
992
+ prettyPrint?: boolean;
993
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
994
+ quotaUser?: string;
995
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
996
+ upload_protocol?: string;
997
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
998
+ uploadType?: string;
999
+ },
1000
+ body: CancelOperationRequest
1001
+ ): Request<{}>;
1002
+ /** Gets the latest state of a long-running operation. Clients can use this method to poll the operation result at intervals as recommended by the API service. */
1003
+ get(request?: {
1004
+ /** V1 error format. */
1005
+ '$.xgafv'?: string;
1006
+ /** OAuth access token. */
1007
+ access_token?: string;
1008
+ /** Data format for response. */
1009
+ alt?: string;
1010
+ /** JSONP */
1011
+ callback?: string;
1012
+ /** Selector specifying which fields to include in a partial response. */
1013
+ fields?: string;
1014
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1015
+ key?: string;
1016
+ /** The name of the operation resource. */
1017
+ name: string;
1018
+ /** OAuth 2.0 token for the current user. */
1019
+ oauth_token?: string;
1020
+ /** Returns response with indentations and line breaks. */
1021
+ prettyPrint?: boolean;
1022
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1023
+ quotaUser?: string;
1024
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
1025
+ upload_protocol?: string;
1026
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1027
+ uploadType?: string;
1028
+ }): Request<Operation>;
1029
+ }
1030
+ interface OsPolicyAssignmentsResource {
1031
+ /** Create an OS policy assignment. This method also creates the first revision of the OS policy assignment. This method returns a long running operation (LRO) that contains the rollout details. The rollout can be cancelled by cancelling the LRO. For more information, see [Method: projects.locations.osPolicyAssignments.operations.cancel](https://cloud.google.com/compute/docs/osconfig/rest/v1alpha/projects.locations.osPolicyAssignments.operations/cancel). */
1032
+ create(request: {
1033
+ /** V1 error format. */
1034
+ '$.xgafv'?: string;
1035
+ /** OAuth access token. */
1036
+ access_token?: string;
1037
+ /** Data format for response. */
1038
+ alt?: string;
1039
+ /** JSONP */
1040
+ callback?: string;
1041
+ /** Selector specifying which fields to include in a partial response. */
1042
+ fields?: string;
1043
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1044
+ key?: string;
1045
+ /** OAuth 2.0 token for the current user. */
1046
+ oauth_token?: string;
1047
+ /** Required. The logical name of the OS policy assignment in the project with the following restrictions: * Must contain only lowercase letters, numbers, and hyphens. * Must start with a letter. * Must be between 1-63 characters. * Must end with a number or a letter. * Must be unique within the project. */
1048
+ osPolicyAssignmentId?: string;
1049
+ /** Required. The parent resource name in the form: projects/{project}/locations/{location} */
1050
+ parent: string;
1051
+ /** Returns response with indentations and line breaks. */
1052
+ prettyPrint?: boolean;
1053
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1054
+ quotaUser?: string;
1055
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
1056
+ upload_protocol?: string;
1057
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1058
+ uploadType?: string;
1059
+ /** Request body */
1060
+ resource: OSPolicyAssignment;
1061
+ }): Request<Operation>;
1062
+ create(
1063
+ request: {
1064
+ /** V1 error format. */
1065
+ '$.xgafv'?: string;
1066
+ /** OAuth access token. */
1067
+ access_token?: string;
1068
+ /** Data format for response. */
1069
+ alt?: string;
1070
+ /** JSONP */
1071
+ callback?: string;
1072
+ /** Selector specifying which fields to include in a partial response. */
1073
+ fields?: string;
1074
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1075
+ key?: string;
1076
+ /** OAuth 2.0 token for the current user. */
1077
+ oauth_token?: string;
1078
+ /** Required. The logical name of the OS policy assignment in the project with the following restrictions: * Must contain only lowercase letters, numbers, and hyphens. * Must start with a letter. * Must be between 1-63 characters. * Must end with a number or a letter. * Must be unique within the project. */
1079
+ osPolicyAssignmentId?: string;
1080
+ /** Required. The parent resource name in the form: projects/{project}/locations/{location} */
1081
+ parent: string;
1082
+ /** Returns response with indentations and line breaks. */
1083
+ prettyPrint?: boolean;
1084
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1085
+ quotaUser?: string;
1086
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
1087
+ upload_protocol?: string;
1088
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1089
+ uploadType?: string;
1090
+ },
1091
+ body: OSPolicyAssignment
1092
+ ): Request<Operation>;
1093
+ /** Delete the OS policy assignment. This method creates a new revision of the OS policy assignment. This method returns a long running operation (LRO) that contains the rollout details. The rollout can be cancelled by cancelling the LRO. If the LRO completes and is not cancelled, all revisions associated with the OS policy assignment are deleted. For more information, see [Method: projects.locations.osPolicyAssignments.operations.cancel](https://cloud.google.com/compute/docs/osconfig/rest/v1alpha/projects.locations.osPolicyAssignments.operations/cancel). */
1094
+ delete(request?: {
1095
+ /** V1 error format. */
1096
+ '$.xgafv'?: string;
1097
+ /** OAuth access token. */
1098
+ access_token?: string;
1099
+ /** Data format for response. */
1100
+ alt?: string;
1101
+ /** JSONP */
1102
+ callback?: string;
1103
+ /** Selector specifying which fields to include in a partial response. */
1104
+ fields?: string;
1105
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1106
+ key?: string;
1107
+ /** Required. The name of the OS policy assignment to be deleted */
1108
+ name: string;
1109
+ /** OAuth 2.0 token for the current user. */
1110
+ oauth_token?: string;
1111
+ /** Returns response with indentations and line breaks. */
1112
+ prettyPrint?: boolean;
1113
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1114
+ quotaUser?: string;
1115
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
1116
+ upload_protocol?: string;
1117
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1118
+ uploadType?: string;
1119
+ }): Request<Operation>;
1120
+ /** Retrieve an existing OS policy assignment. This method always returns the latest revision. In order to retrieve a previous revision of the assignment, also provide the revision ID in the `name` parameter. */
1121
+ get(request?: {
1122
+ /** V1 error format. */
1123
+ '$.xgafv'?: string;
1124
+ /** OAuth access token. */
1125
+ access_token?: string;
1126
+ /** Data format for response. */
1127
+ alt?: string;
1128
+ /** JSONP */
1129
+ callback?: string;
1130
+ /** Selector specifying which fields to include in a partial response. */
1131
+ fields?: string;
1132
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1133
+ key?: string;
1134
+ /** Required. The resource name of OS policy assignment. Format: `projects/{project}/locations/{location}/osPolicyAssignments/{os_policy_assignment}@{revisionId}` */
1135
+ name: string;
1136
+ /** OAuth 2.0 token for the current user. */
1137
+ oauth_token?: string;
1138
+ /** Returns response with indentations and line breaks. */
1139
+ prettyPrint?: boolean;
1140
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1141
+ quotaUser?: string;
1142
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
1143
+ upload_protocol?: string;
1144
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1145
+ uploadType?: string;
1146
+ }): Request<OSPolicyAssignment>;
1147
+ /** List the OS policy assignments under the parent resource. For each OS policy assignment, the latest revision is returned. */
1148
+ list(request?: {
1149
+ /** V1 error format. */
1150
+ '$.xgafv'?: string;
1151
+ /** OAuth access token. */
1152
+ access_token?: string;
1153
+ /** Data format for response. */
1154
+ alt?: string;
1155
+ /** JSONP */
1156
+ callback?: string;
1157
+ /** Selector specifying which fields to include in a partial response. */
1158
+ fields?: string;
1159
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1160
+ key?: string;
1161
+ /** OAuth 2.0 token for the current user. */
1162
+ oauth_token?: string;
1163
+ /** The maximum number of assignments to return. */
1164
+ pageSize?: number;
1165
+ /** A pagination token returned from a previous call to `ListOSPolicyAssignments` that indicates where this listing should continue from. */
1166
+ pageToken?: string;
1167
+ /** Required. The parent resource name. */
1168
+ parent: string;
1169
+ /** Returns response with indentations and line breaks. */
1170
+ prettyPrint?: boolean;
1171
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1172
+ quotaUser?: string;
1173
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
1174
+ upload_protocol?: string;
1175
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1176
+ uploadType?: string;
1177
+ }): Request<ListOSPolicyAssignmentsResponse>;
1178
+ /** List the OS policy assignment revisions for a given OS policy assignment. */
1179
+ listRevisions(request?: {
1180
+ /** V1 error format. */
1181
+ '$.xgafv'?: string;
1182
+ /** OAuth access token. */
1183
+ access_token?: string;
1184
+ /** Data format for response. */
1185
+ alt?: string;
1186
+ /** JSONP */
1187
+ callback?: string;
1188
+ /** Selector specifying which fields to include in a partial response. */
1189
+ fields?: string;
1190
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1191
+ key?: string;
1192
+ /** Required. The name of the OS policy assignment to list revisions for. */
1193
+ name: string;
1194
+ /** OAuth 2.0 token for the current user. */
1195
+ oauth_token?: string;
1196
+ /** The maximum number of revisions to return. */
1197
+ pageSize?: number;
1198
+ /** A pagination token returned from a previous call to `ListOSPolicyAssignmentRevisions` that indicates where this listing should continue from. */
1199
+ pageToken?: string;
1200
+ /** Returns response with indentations and line breaks. */
1201
+ prettyPrint?: boolean;
1202
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1203
+ quotaUser?: string;
1204
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
1205
+ upload_protocol?: string;
1206
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1207
+ uploadType?: string;
1208
+ }): Request<ListOSPolicyAssignmentRevisionsResponse>;
1209
+ /** Update an existing OS policy assignment. This method creates a new revision of the OS policy assignment. This method returns a long running operation (LRO) that contains the rollout details. The rollout can be cancelled by cancelling the LRO. For more information, see [Method: projects.locations.osPolicyAssignments.operations.cancel](https://cloud.google.com/compute/docs/osconfig/rest/v1alpha/projects.locations.osPolicyAssignments.operations/cancel). */
1210
+ patch(request: {
1211
+ /** V1 error format. */
1212
+ '$.xgafv'?: string;
1213
+ /** OAuth access token. */
1214
+ access_token?: string;
1215
+ /** Data format for response. */
1216
+ alt?: string;
1217
+ /** JSONP */
1218
+ callback?: string;
1219
+ /** Selector specifying which fields to include in a partial response. */
1220
+ fields?: string;
1221
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1222
+ key?: string;
1223
+ /** Resource name. Format: `projects/{project_number}/locations/{location}/osPolicyAssignments/{os_policy_assignment_id}` This field is ignored when you create an OS policy assignment. */
1224
+ name: string;
1225
+ /** OAuth 2.0 token for the current user. */
1226
+ oauth_token?: string;
1227
+ /** Returns response with indentations and line breaks. */
1228
+ prettyPrint?: boolean;
1229
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1230
+ quotaUser?: string;
1231
+ /** Optional. Field mask that controls which fields of the assignment should be updated. */
1232
+ updateMask?: string;
1233
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
1234
+ upload_protocol?: string;
1235
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1236
+ uploadType?: string;
1237
+ /** Request body */
1238
+ resource: OSPolicyAssignment;
1239
+ }): Request<Operation>;
1240
+ patch(
1241
+ request: {
1242
+ /** V1 error format. */
1243
+ '$.xgafv'?: string;
1244
+ /** OAuth access token. */
1245
+ access_token?: string;
1246
+ /** Data format for response. */
1247
+ alt?: string;
1248
+ /** JSONP */
1249
+ callback?: string;
1250
+ /** Selector specifying which fields to include in a partial response. */
1251
+ fields?: string;
1252
+ /** API key. Your API key identifies your project and provides you with API access, quota, and reports. Required unless you provide an OAuth 2.0 token. */
1253
+ key?: string;
1254
+ /** Resource name. Format: `projects/{project_number}/locations/{location}/osPolicyAssignments/{os_policy_assignment_id}` This field is ignored when you create an OS policy assignment. */
1255
+ name: string;
1256
+ /** OAuth 2.0 token for the current user. */
1257
+ oauth_token?: string;
1258
+ /** Returns response with indentations and line breaks. */
1259
+ prettyPrint?: boolean;
1260
+ /** Available to use for quota purposes for server-side applications. Can be any arbitrary string assigned to a user, but should not exceed 40 characters. */
1261
+ quotaUser?: string;
1262
+ /** Optional. Field mask that controls which fields of the assignment should be updated. */
1263
+ updateMask?: string;
1264
+ /** Upload protocol for media (e.g. "raw", "multipart"). */
1265
+ upload_protocol?: string;
1266
+ /** Legacy upload protocol for media (e.g. "media", "multipart"). */
1267
+ uploadType?: string;
1268
+ },
1269
+ body: OSPolicyAssignment
1270
+ ): Request<Operation>;
1271
+ operations: OperationsResource;
1272
+ }
1273
+ interface LocationsResource {
1274
+ instanceOSPoliciesCompliances: InstanceOSPoliciesCompliancesResource;
1275
+ instances: InstancesResource;
1276
+ osPolicyAssignments: OsPolicyAssignmentsResource;
1277
+ }
1278
+ interface ProjectsResource {
1279
+ locations: LocationsResource;
1280
+ }
1281
+
1282
+ const projects: ProjectsResource;
1283
+ }
1979
1284
  }