google-api-python-client 2.161.0__py2.py3-none-any.whl → 2.163.0__py2.py3-none-any.whl

googleapiclient/discovery_cache/documents/securitycenter.v1beta1.json

@@ -913,7 +913,7 @@
 }
 }
 },
-"revision": "20250116",
+"revision": "20250221",
 "rootUrl": "https://securitycenter.googleapis.com/",
 "schemas": {
 "Access": {
@@ -1017,6 +1017,20 @@
 },
 "type": "object"
 },
+"Allowed": {
+"description": "Allowed IP rule.",
+"id": "Allowed",
+"properties": {
+"ipRules": {
+"description": "Optional. Optional list of allowed IP rules.",
+"items": {
+"$ref": "IpRule"
+},
+"type": "array"
+}
+},
+"type": "object"
+},
 "Application": {
 "description": "Represents an application associated with a finding.",
 "id": "Application",
@@ -2105,6 +2119,20 @@
 },
 "type": "object"
 },
+"Denied": {
+"description": "Denied IP rule.",
+"id": "Denied",
+"properties": {
+"ipRules": {
+"description": "Optional. Optional list of denied IP rules.",
+"items": {
+"$ref": "IpRule"
+},
+"type": "array"
+}
+},
+"type": "object"
+},
 "Detection": {
 "description": "Memory hash detection contributing to the binary family match.",
 "id": "Detection",
@@ -2467,6 +2495,14 @@
 "$ref": "Indicator",
 "description": "Represents what's commonly known as an *indicator of compromise* (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. For more information, see [Indicator of compromise](https://en.wikipedia.org/wiki/Indicator_of_compromise)."
 },
+"ipRules": {
+"$ref": "IpRules",
+"description": "IP rules associated with the finding."
+},
+"job": {
+"$ref": "Job",
+"description": "Job associated with the finding."
+},
 "kernelRootkit": {
 "$ref": "KernelRootkit",
 "description": "Signature of the kernel rootkit."
@@ -2532,6 +2568,13 @@
 "description": "The [relative resource name](https://cloud.google.com/apis/design/resource_names#relative_resource_name) of the finding. Example: \"organizations/{organization_id}/sources/{source_id}/findings/{finding_id}\", \"folders/{folder_id}/sources/{source_id}/findings/{finding_id}\", \"projects/{project_id}/sources/{source_id}/findings/{finding_id}\".",
 "type": "string"
 },
+"networks": {
+"description": "Represents the VPC networks that the resource is attached to.",
+"items": {
+"$ref": "Network"
+},
+"type": "array"
+},
 "nextSteps": {
 "description": "Steps to address the finding.",
 "type": "string"
@@ -3791,6 +3834,20 @@
 },
 "type": "object"
 },
+"GoogleCloudSecuritycenterV2Allowed": {
+"description": "Allowed IP rule.",
+"id": "GoogleCloudSecuritycenterV2Allowed",
+"properties": {
+"ipRules": {
+"description": "Optional. Optional list of allowed IP rules.",
+"items": {
+"$ref": "GoogleCloudSecuritycenterV2IpRule"
+},
+"type": "array"
+}
+},
+"type": "object"
+},
 "GoogleCloudSecuritycenterV2Application": {
 "description": "Represents an application associated with a finding.",
 "id": "GoogleCloudSecuritycenterV2Application",
@@ -4763,6 +4820,20 @@
 },
 "type": "object"
 },
+"GoogleCloudSecuritycenterV2Denied": {
+"description": "Denied IP rule.",
+"id": "GoogleCloudSecuritycenterV2Denied",
+"properties": {
+"ipRules": {
+"description": "Optional. Optional list of denied IP rules.",
+"items": {
+"$ref": "GoogleCloudSecuritycenterV2IpRule"
+},
+"type": "array"
+}
+},
+"type": "object"
+},
 "GoogleCloudSecuritycenterV2Detection": {
 "description": "Memory hash detection contributing to the binary family match.",
 "id": "GoogleCloudSecuritycenterV2Detection",
@@ -5156,6 +5227,14 @@
 "$ref": "GoogleCloudSecuritycenterV2Indicator",
 "description": "Represents what's commonly known as an *indicator of compromise* (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. For more information, see [Indicator of compromise](https://en.wikipedia.org/wiki/Indicator_of_compromise)."
 },
+"ipRules": {
+"$ref": "GoogleCloudSecuritycenterV2IpRules",
+"description": "IP rules associated with the finding."
+},
+"job": {
+"$ref": "GoogleCloudSecuritycenterV2Job",
+"description": "Job associated with the finding."
+},
 "kernelRootkit": {
 "$ref": "GoogleCloudSecuritycenterV2KernelRootkit",
 "description": "Signature of the kernel rootkit."
@@ -5221,6 +5300,13 @@
 "description": "The [relative resource name](https://cloud.google.com/apis/design/resource_names#relative_resource_name) of the finding. The following list shows some examples: + `organizations/{organization_id}/sources/{source_id}/findings/{finding_id}` + `organizations/{organization_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}` + `folders/{folder_id}/sources/{source_id}/findings/{finding_id}` + `folders/{folder_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}` + `projects/{project_id}/sources/{source_id}/findings/{finding_id}` + `projects/{project_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}`",
 "type": "string"
 },
+"networks": {
+"description": "Represents the VPC networks that the resource is attached to.",
+"items": {
+"$ref": "GoogleCloudSecuritycenterV2Network"
+},
+"type": "array"
+},
 "nextSteps": {
 "description": "Steps to address the finding.",
 "type": "string"
@@ -5429,6 +5515,74 @@
 },
 "type": "object"
 },
+"GoogleCloudSecuritycenterV2IpRule": {
+"description": "IP rule information.",
+"id": "GoogleCloudSecuritycenterV2IpRule",
+"properties": {
+"portRanges": {
+"description": "Optional. An optional list of ports to which this rule applies. This field is only applicable for the UDP or (S)TCP protocols. Each entry must be either an integer or a range including a min and max port number.",
+"items": {
+"$ref": "GoogleCloudSecuritycenterV2PortRange"
+},
+"type": "array"
+},
+"protocol": {
+"description": "The IP protocol this rule applies to. This value can either be one of the following well known protocol strings (TCP, UDP, ICMP, ESP, AH, IPIP, SCTP) or a string representation of the integer value.",
+"type": "string"
+}
+},
+"type": "object"
+},
+"GoogleCloudSecuritycenterV2IpRules": {
+"description": "IP rules associated with the finding.",
+"id": "GoogleCloudSecuritycenterV2IpRules",
+"properties": {
+"allowed": {
+"$ref": "GoogleCloudSecuritycenterV2Allowed",
+"description": "Tuple with allowed rules."
+},
+"denied": {
+"$ref": "GoogleCloudSecuritycenterV2Denied",
+"description": "Tuple with denied rules."
+},
+"destinationIpRanges": {
+"description": "If destination IP ranges are specified, the firewall rule applies only to traffic that has a destination IP address in these ranges. These ranges must be expressed in CIDR format. Only supports IPv4.",
+"items": {
+"type": "string"
+},
+"type": "array"
+},
+"direction": {
+"description": "The direction that the rule is applicable to, one of ingress or egress.",
+"enum": [
+"DIRECTION_UNSPECIFIED",
+"INGRESS",
+"EGRESS"
+],
+"enumDescriptions": [
+"Unspecified direction value.",
+"Ingress direction value.",
+"Egress direction value."
+],
+"type": "string"
+},
+"exposedServices": {
+"description": "Name of the network protocol service, such as FTP, that is exposed by the open port. Follows the naming convention available at: https://www.iana.org/assignments/service-names-port-numbers/service-names-port-numbers.xhtml.",
+"items": {
+"type": "string"
+},
+"type": "array"
+},
+"sourceIpRanges": {
+"description": "If source IP ranges are specified, the firewall rule applies only to traffic that has a source IP address in these ranges. These ranges must be expressed in CIDR format. Only supports IPv4.",
+"items": {
+"type": "string"
+},
+"type": "array"
+}
+},
+"type": "object"
+},
 "GoogleCloudSecuritycenterV2Issue": {
 "description": "Security Command Center Issue.",
 "id": "GoogleCloudSecuritycenterV2Issue",
@@ -5826,6 +5980,45 @@
 },
 "type": "object"
 },
+"GoogleCloudSecuritycenterV2Job": {
+"description": "Describes a job",
+"id": "GoogleCloudSecuritycenterV2Job",
+"properties": {
+"errorCode": {
+"description": "Optional. If the job did not complete successfully, this field describes why.",
+"format": "int32",
+"type": "integer"
+},
+"location": {
+"description": "Optional. Gives the location where the job ran, such as `US` or `europe-west1`",
+"type": "string"
+},
+"name": {
+"description": "The fully-qualified name for a job. e.g. `projects//jobs/`",
+"type": "string"
+},
+"state": {
+"description": "Output only. State of the job, such as `RUNNING` or `PENDING`.",
+"enum": [
+"JOB_STATE_UNSPECIFIED",
+"PENDING",
+"RUNNING",
+"SUCCEEDED",
+"FAILED"
+],
+"enumDescriptions": [
+"Unspecified represents an unknown state and should not be used.",
+"Job is scheduled and pending for run",
+"Job in progress",
+"Job has completed with success",
+"Job has completed but with failure"
+],
+"readOnly": true,
+"type": "string"
+}
+},
+"type": "object"
+},
 "GoogleCloudSecuritycenterV2KernelRootkit": {
 "description": "Kernel mode rootkit signatures.",
 "id": "GoogleCloudSecuritycenterV2KernelRootkit",
@@ -6055,6 +6248,7 @@
 "MULTI_HOP_PROXY",
 "ACCOUNT_MANIPULATION",
 "ADDITIONAL_CLOUD_CREDENTIALS",
+"ADDITIONAL_CLOUD_ROLES",
 "SSH_AUTHORIZED_KEYS",
 "ADDITIONAL_CONTAINER_CLUSTER_ROLES",
 "INGRESS_TOOL_TRANSFER",
@@ -6124,6 +6318,7 @@
 "T1090.003",
 "T1098",
 "T1098.001",
+"T1098.003",
 "T1098.004",
 "T1098.006",
 "T1105",
@@ -6238,6 +6433,7 @@
 "MULTI_HOP_PROXY",
 "ACCOUNT_MANIPULATION",
 "ADDITIONAL_CLOUD_CREDENTIALS",
+"ADDITIONAL_CLOUD_ROLES",
 "SSH_AUTHORIZED_KEYS",
 "ADDITIONAL_CONTAINER_CLUSTER_ROLES",
 "INGRESS_TOOL_TRANSFER",
@@ -6307,6 +6503,7 @@
 "T1090.003",
 "T1098",
 "T1098.001",
+"T1098.003",
 "T1098.004",
 "T1098.006",
 "T1105",
@@ -6433,6 +6630,17 @@
 },
 "type": "object"
 },
+"GoogleCloudSecuritycenterV2Network": {
+"description": "Contains information about a VPC network associated with the finding.",
+"id": "GoogleCloudSecuritycenterV2Network",
+"properties": {
+"name": {
+"description": "The name of the VPC network resource, for example, `//compute.googleapis.com/projects/my-project/global/networks/my-network`.",
+"type": "string"
+}
+},
+"type": "object"
+},
 "GoogleCloudSecuritycenterV2Node": {
 "description": "Kubernetes nodes associated with the finding.",
 "id": "GoogleCloudSecuritycenterV2Node",
@@ -6540,7 +6748,7 @@
 "id": "GoogleCloudSecuritycenterV2OrgPolicy",
 "properties": {
 "name": {
-"description": "The resource name of the org policy. Example: \"organizations/{organization_id}/policies/{constraint_name}\"",
+"description": "Identifier. The resource name of the org policy. Example: \"organizations/{organization_id}/policies/{constraint_name}\"",
 "type": "string"
 }
 },
@@ -6617,6 +6825,23 @@
 },
 "type": "object"
 },
+"GoogleCloudSecuritycenterV2PortRange": {
+"description": "A port range which is inclusive of the min and max values. Values are between 0 and 2^16-1. The max can be equal / must be not smaller than the min value. If min and max are equal this indicates that it is a single port.",
+"id": "GoogleCloudSecuritycenterV2PortRange",
+"properties": {
+"max": {
+"description": "Maximum port value.",
+"format": "int64",
+"type": "string"
+},
+"min": {
+"description": "Minimum port value.",
+"format": "int64",
+"type": "string"
+}
+},
+"type": "object"
+},
 "GoogleCloudSecuritycenterV2Process": {
 "description": "Represents an operating system process.",
 "id": "GoogleCloudSecuritycenterV2Process",
@@ -7502,6 +7727,113 @@
 },
 "type": "object"
 },
+"IpRule": {
+"description": "IP rule information.",
+"id": "IpRule",
+"properties": {
+"portRanges": {
+"description": "Optional. An optional list of ports to which this rule applies. This field is only applicable for the UDP or (S)TCP protocols. Each entry must be either an integer or a range including a min and max port number.",
+"items": {
+"$ref": "PortRange"
+},
+"type": "array"
+},
+"protocol": {
+"description": "The IP protocol this rule applies to. This value can either be one of the following well known protocol strings (TCP, UDP, ICMP, ESP, AH, IPIP, SCTP) or a string representation of the integer value.",
+"type": "string"
+}
+},
+"type": "object"
+},
+"IpRules": {
+"description": "IP rules associated with the finding.",
+"id": "IpRules",
+"properties": {
+"allowed": {
+"$ref": "Allowed",
+"description": "Tuple with allowed rules."
+},
+"denied": {
+"$ref": "Denied",
+"description": "Tuple with denied rules."
+},
+"destinationIpRanges": {
+"description": "If destination IP ranges are specified, the firewall rule applies only to traffic that has a destination IP address in these ranges. These ranges must be expressed in CIDR format. Only supports IPv4.",
+"items": {
+"type": "string"
+},
+"type": "array"
+},
+"direction": {
+"description": "The direction that the rule is applicable to, one of ingress or egress.",
+"enum": [
+"DIRECTION_UNSPECIFIED",
+"INGRESS",
+"EGRESS"
+],
+"enumDescriptions": [
+"Unspecified direction value.",
+"Ingress direction value.",
+"Egress direction value."
+],
+"type": "string"
+},
+"exposedServices": {
+"description": "Name of the network protocol service, such as FTP, that is exposed by the open port. Follows the naming convention available at: https://www.iana.org/assignments/service-names-port-numbers/service-names-port-numbers.xhtml.",
+"items": {
+"type": "string"
+},
+"type": "array"
+},
+"sourceIpRanges": {
+"description": "If source IP ranges are specified, the firewall rule applies only to traffic that has a source IP address in these ranges. These ranges must be expressed in CIDR format. Only supports IPv4.",
+"items": {
+"type": "string"
+},
+"type": "array"
+}
+},
+"type": "object"
+},
+"Job": {
+"description": "Describes a job",
+"id": "Job",
+"properties": {
+"errorCode": {
+"description": "Optional. If the job did not complete successfully, this field describes why.",
+"format": "int32",
+"type": "integer"
+},
+"location": {
+"description": "Optional. Gives the location where the job ran, such as `US` or `europe-west1`",
+"type": "string"
+},
+"name": {
+"description": "The fully-qualified name for a job. e.g. `projects//jobs/`",
+"type": "string"
+},
+"state": {
+"description": "Output only. State of the job, such as `RUNNING` or `PENDING`.",
+"enum": [
+"JOB_STATE_UNSPECIFIED",
+"PENDING",
+"RUNNING",
+"SUCCEEDED",
+"FAILED"
+],
+"enumDescriptions": [
+"Unspecified represents an unknown state and should not be used.",
+"Job is scheduled and pending for run",
+"Job in progress",
+"Job has completed with success",
+"Job has completed but with failure"
+],
+"readOnly": true,
+"type": "string"
+}
+},
+"type": "object"
+},
 "KernelRootkit": {
 "description": "Kernel mode rootkit signatures.",
 "id": "KernelRootkit",
@@ -7852,6 +8184,7 @@
 "MULTI_HOP_PROXY",
 "ACCOUNT_MANIPULATION",
 "ADDITIONAL_CLOUD_CREDENTIALS",
+"ADDITIONAL_CLOUD_ROLES",
 "SSH_AUTHORIZED_KEYS",
 "ADDITIONAL_CONTAINER_CLUSTER_ROLES",
 "INGRESS_TOOL_TRANSFER",
@@ -7921,6 +8254,7 @@
 "T1090.003",
 "T1098",
 "T1098.001",
+"T1098.003",
 "T1098.004",
 "T1098.006",
 "T1105",
@@ -8035,6 +8369,7 @@
 "MULTI_HOP_PROXY",
 "ACCOUNT_MANIPULATION",
 "ADDITIONAL_CLOUD_CREDENTIALS",
+"ADDITIONAL_CLOUD_ROLES",
 "SSH_AUTHORIZED_KEYS",
 "ADDITIONAL_CONTAINER_CLUSTER_ROLES",
 "INGRESS_TOOL_TRANSFER",
@@ -8104,6 +8439,7 @@
 "T1090.003",
 "T1098",
 "T1098.001",
+"T1098.003",
 "T1098.004",
 "T1098.006",
 "T1105",
@@ -8175,6 +8511,17 @@
 },
 "type": "object"
 },
+"Network": {
+"description": "Contains information about a VPC network associated with the finding.",
+"id": "Network",
+"properties": {
+"name": {
+"description": "The name of the VPC network resource, for example, `//compute.googleapis.com/projects/my-project/global/networks/my-network`.",
+"type": "string"
+}
+},
+"type": "object"
+},
 "Node": {
 "description": "Kubernetes nodes associated with the finding.",
 "id": "Node",
@@ -8425,6 +8772,23 @@
 },
 "type": "object"
 },
+"PortRange": {
+"description": "A port range which is inclusive of the min and max values. Values are between 0 and 2^16-1. The max can be equal / must be not smaller than the min value. If min and max are equal this indicates that it is a single port.",
+"id": "PortRange",
+"properties": {
+"max": {
+"description": "Maximum port value.",
+"format": "int64",
+"type": "string"
+},
+"min": {
+"description": "Minimum port value.",
+"format": "int64",
+"type": "string"
+}
+},
+"type": "object"
+},
 "Process": {
 "description": "Represents an operating system process.",
 "id": "Process",