google-api-python-client 2.169.0__py3-none-any.whl → 2.171.0__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (211) hide show
  1. {google_api_python_client-2.169.0.dist-info → google_api_python_client-2.171.0.dist-info}/METADATA +14 -2
  2. {google_api_python_client-2.169.0.dist-info → google_api_python_client-2.171.0.dist-info}/RECORD +211 -206
  3. {google_api_python_client-2.169.0.dist-info → google_api_python_client-2.171.0.dist-info}/WHEEL +1 -1
  4. googleapiclient/discovery_cache/documents/admin.directory_v1.json +29 -5
  5. googleapiclient/discovery_cache/documents/admin.directoryv1.json +29 -5
  6. googleapiclient/discovery_cache/documents/admin.reports_v1.json +4 -4
  7. googleapiclient/discovery_cache/documents/admin.reportsv1.json +4 -4
  8. googleapiclient/discovery_cache/documents/adsense.v2.json +2 -2
  9. googleapiclient/discovery_cache/documents/aiplatform.v1.json +823 -32
  10. googleapiclient/discovery_cache/documents/aiplatform.v1beta1.json +1254 -207
  11. googleapiclient/discovery_cache/documents/alloydb.v1.json +69 -12
  12. googleapiclient/discovery_cache/documents/alloydb.v1alpha.json +74 -12
  13. googleapiclient/discovery_cache/documents/alloydb.v1beta.json +74 -12
  14. googleapiclient/discovery_cache/documents/analyticshub.v1.json +37 -36
  15. googleapiclient/discovery_cache/documents/analyticshub.v1beta1.json +71 -19
  16. googleapiclient/discovery_cache/documents/androidmanagement.v1.json +888 -18
  17. googleapiclient/discovery_cache/documents/androidpublisher.v3.json +485 -16
  18. googleapiclient/discovery_cache/documents/apigee.v1.json +17 -15
  19. googleapiclient/discovery_cache/documents/apihub.v1.json +5865 -0
  20. googleapiclient/discovery_cache/documents/apim.v1alpha.json +8 -2
  21. googleapiclient/discovery_cache/documents/appengine.v1.json +111 -1
  22. googleapiclient/discovery_cache/documents/appengine.v1alpha.json +52 -1
  23. googleapiclient/discovery_cache/documents/appengine.v1beta.json +111 -1
  24. googleapiclient/discovery_cache/documents/areainsights.v1.json +2 -2
  25. googleapiclient/discovery_cache/documents/artifactregistry.v1.json +31 -5
  26. googleapiclient/discovery_cache/documents/artifactregistry.v1beta1.json +29 -3
  27. googleapiclient/discovery_cache/documents/artifactregistry.v1beta2.json +13 -3
  28. googleapiclient/discovery_cache/documents/assuredworkloads.v1.json +113 -5
  29. googleapiclient/discovery_cache/documents/assuredworkloads.v1beta1.json +113 -5
  30. googleapiclient/discovery_cache/documents/backupdr.v1.json +327 -5
  31. googleapiclient/discovery_cache/documents/baremetalsolution.v2.json +3 -3
  32. googleapiclient/discovery_cache/documents/batch.v1.json +13 -1
  33. googleapiclient/discovery_cache/documents/bigquery.v2.json +52 -8
  34. googleapiclient/discovery_cache/documents/bigquerydatatransfer.v1.json +25 -25
  35. googleapiclient/discovery_cache/documents/bigqueryreservation.v1.json +395 -24
  36. googleapiclient/discovery_cache/documents/bigtableadmin.v2.json +98 -3
  37. googleapiclient/discovery_cache/documents/blogger.v2.json +3 -1
  38. googleapiclient/discovery_cache/documents/blogger.v3.json +3 -1
  39. googleapiclient/discovery_cache/documents/certificatemanager.v1.json +7 -1
  40. googleapiclient/discovery_cache/documents/chat.v1.json +38 -39
  41. googleapiclient/discovery_cache/documents/chromemanagement.v1.json +49 -1
  42. googleapiclient/discovery_cache/documents/chromepolicy.v1.json +2 -2
  43. googleapiclient/discovery_cache/documents/civicinfo.v2.json +1 -391
  44. googleapiclient/discovery_cache/documents/classroom.v1.json +48 -2
  45. googleapiclient/discovery_cache/documents/cloudbuild.v1.json +50 -4
  46. googleapiclient/discovery_cache/documents/cloudfunctions.v1.json +12 -2
  47. googleapiclient/discovery_cache/documents/cloudfunctions.v2.json +2 -2
  48. googleapiclient/discovery_cache/documents/cloudfunctions.v2alpha.json +2 -2
  49. googleapiclient/discovery_cache/documents/cloudfunctions.v2beta.json +2 -2
  50. googleapiclient/discovery_cache/documents/cloudkms.v1.json +315 -7
  51. googleapiclient/discovery_cache/documents/cloudresourcemanager.v3.json +151 -6
  52. googleapiclient/discovery_cache/documents/cloudsupport.v2.json +5 -5
  53. googleapiclient/discovery_cache/documents/cloudsupport.v2beta.json +5 -5
  54. googleapiclient/discovery_cache/documents/composer.v1.json +35 -1
  55. googleapiclient/discovery_cache/documents/composer.v1beta1.json +2 -2
  56. googleapiclient/discovery_cache/documents/compute.alpha.json +999 -56
  57. googleapiclient/discovery_cache/documents/compute.beta.json +25236 -22039
  58. googleapiclient/discovery_cache/documents/compute.v1.json +2785 -458
  59. googleapiclient/discovery_cache/documents/connectors.v1.json +873 -188
  60. googleapiclient/discovery_cache/documents/connectors.v2.json +14 -1
  61. googleapiclient/discovery_cache/documents/contactcenterinsights.v1.json +2991 -357
  62. googleapiclient/discovery_cache/documents/container.v1.json +87 -1
  63. googleapiclient/discovery_cache/documents/container.v1beta1.json +87 -1
  64. googleapiclient/discovery_cache/documents/containeranalysis.v1.json +110 -8
  65. googleapiclient/discovery_cache/documents/containeranalysis.v1alpha1.json +110 -10
  66. googleapiclient/discovery_cache/documents/containeranalysis.v1beta1.json +2 -2
  67. googleapiclient/discovery_cache/documents/datacatalog.v1.json +5 -5
  68. googleapiclient/discovery_cache/documents/datacatalog.v1beta1.json +3 -3
  69. googleapiclient/discovery_cache/documents/dataflow.v1b3.json +114 -3
  70. googleapiclient/discovery_cache/documents/dataform.v1beta1.json +5 -1
  71. googleapiclient/discovery_cache/documents/datamigration.v1.json +58 -2
  72. googleapiclient/discovery_cache/documents/dataplex.v1.json +990 -4
  73. googleapiclient/discovery_cache/documents/dataproc.v1.json +96 -300
  74. googleapiclient/discovery_cache/documents/datastream.v1.json +57 -5
  75. googleapiclient/discovery_cache/documents/developerconnect.v1.json +5 -3
  76. googleapiclient/discovery_cache/documents/dialogflow.v2.json +5 -1
  77. googleapiclient/discovery_cache/documents/dialogflow.v2beta1.json +5 -1
  78. googleapiclient/discovery_cache/documents/discoveryengine.v1.json +523 -44
  79. googleapiclient/discovery_cache/documents/discoveryengine.v1alpha.json +527 -59
  80. googleapiclient/discovery_cache/documents/discoveryengine.v1beta.json +519 -59
  81. googleapiclient/discovery_cache/documents/displayvideo.v2.json +4 -4
  82. googleapiclient/discovery_cache/documents/displayvideo.v3.json +43 -43
  83. googleapiclient/discovery_cache/documents/displayvideo.v4.json +35 -35
  84. googleapiclient/discovery_cache/documents/dlp.v2.json +36 -4
  85. googleapiclient/discovery_cache/documents/documentai.v1.json +12 -11
  86. googleapiclient/discovery_cache/documents/documentai.v1beta3.json +28 -11
  87. googleapiclient/discovery_cache/documents/doubleclicksearch.v2.json +2 -2
  88. googleapiclient/discovery_cache/documents/drive.v2.json +10 -4
  89. googleapiclient/discovery_cache/documents/drive.v3.json +15 -3
  90. googleapiclient/discovery_cache/documents/driveactivity.v2.json +2 -2
  91. googleapiclient/discovery_cache/documents/essentialcontacts.v1.json +3 -2
  92. googleapiclient/discovery_cache/documents/firebaseapphosting.v1.json +2642 -0
  93. googleapiclient/discovery_cache/documents/firebaseapphosting.v1beta.json +2714 -0
  94. googleapiclient/discovery_cache/documents/firebaseml.v2beta.json +328 -5
  95. googleapiclient/discovery_cache/documents/forms.v1.json +9 -9
  96. googleapiclient/discovery_cache/documents/gkebackup.v1.json +77 -3
  97. googleapiclient/discovery_cache/documents/gkehub.v1.json +1 -1
  98. googleapiclient/discovery_cache/documents/gkehub.v1alpha.json +1 -1
  99. googleapiclient/discovery_cache/documents/gkehub.v1beta.json +1 -1
  100. googleapiclient/discovery_cache/documents/gkehub.v2.json +1 -1
  101. googleapiclient/discovery_cache/documents/gkehub.v2alpha.json +1 -1
  102. googleapiclient/discovery_cache/documents/gkehub.v2beta.json +1 -1
  103. googleapiclient/discovery_cache/documents/gkeonprem.v1.json +29 -1
  104. googleapiclient/discovery_cache/documents/gmailpostmastertools.v1.json +1 -1
  105. googleapiclient/discovery_cache/documents/gmailpostmastertools.v1beta1.json +1 -1
  106. googleapiclient/discovery_cache/documents/healthcare.v1.json +23 -23
  107. googleapiclient/discovery_cache/documents/healthcare.v1beta1.json +28 -28
  108. googleapiclient/discovery_cache/documents/iam.v1.json +24 -20
  109. googleapiclient/discovery_cache/documents/iam.v2.json +2 -2
  110. googleapiclient/discovery_cache/documents/iam.v2beta.json +2 -2
  111. googleapiclient/discovery_cache/documents/iap.v1.json +12 -5
  112. googleapiclient/discovery_cache/documents/integrations.v1.json +469 -33
  113. googleapiclient/discovery_cache/documents/kmsinventory.v1.json +10 -6
  114. googleapiclient/discovery_cache/documents/language.v1.json +15 -1
  115. googleapiclient/discovery_cache/documents/language.v1beta2.json +15 -1
  116. googleapiclient/discovery_cache/documents/language.v2.json +15 -1
  117. googleapiclient/discovery_cache/documents/lifesciences.v2beta.json +7 -1
  118. googleapiclient/discovery_cache/documents/logging.v2.json +6 -6
  119. googleapiclient/discovery_cache/documents/managedkafka.v1.json +1897 -1
  120. googleapiclient/discovery_cache/documents/memcache.v1.json +11 -1
  121. googleapiclient/discovery_cache/documents/memcache.v1beta2.json +11 -1
  122. googleapiclient/discovery_cache/documents/merchantapi.accounts_v1beta.json +20 -20
  123. googleapiclient/discovery_cache/documents/merchantapi.datasources_v1beta.json +5 -5
  124. googleapiclient/discovery_cache/documents/merchantapi.issueresolution_v1beta.json +999 -0
  125. googleapiclient/discovery_cache/documents/merchantapi.lfp_v1beta.json +3 -3
  126. googleapiclient/discovery_cache/documents/merchantapi.ordertracking_v1beta.json +566 -0
  127. googleapiclient/discovery_cache/documents/merchantapi.reports_v1beta.json +2 -2
  128. googleapiclient/discovery_cache/documents/metastore.v1.json +37 -1
  129. googleapiclient/discovery_cache/documents/metastore.v1alpha.json +37 -1
  130. googleapiclient/discovery_cache/documents/metastore.v1beta.json +37 -1
  131. googleapiclient/discovery_cache/documents/migrationcenter.v1.json +48 -1
  132. googleapiclient/discovery_cache/documents/migrationcenter.v1alpha1.json +8 -56
  133. googleapiclient/discovery_cache/documents/monitoring.v1.json +6 -1
  134. googleapiclient/discovery_cache/documents/monitoring.v3.json +2 -2
  135. googleapiclient/discovery_cache/documents/netapp.v1.json +68 -9
  136. googleapiclient/discovery_cache/documents/netapp.v1beta1.json +142 -15
  137. googleapiclient/discovery_cache/documents/networkconnectivity.v1.json +166 -19
  138. googleapiclient/discovery_cache/documents/networkconnectivity.v1alpha1.json +3 -3
  139. googleapiclient/discovery_cache/documents/networkmanagement.v1.json +42 -11
  140. googleapiclient/discovery_cache/documents/networkmanagement.v1beta1.json +291 -5
  141. googleapiclient/discovery_cache/documents/networksecurity.v1.json +1 -8
  142. googleapiclient/discovery_cache/documents/networksecurity.v1beta1.json +545 -8
  143. googleapiclient/discovery_cache/documents/networkservices.v1.json +37 -3
  144. googleapiclient/discovery_cache/documents/networkservices.v1beta1.json +78 -3
  145. googleapiclient/discovery_cache/documents/notebooks.v1.json +7 -1
  146. googleapiclient/discovery_cache/documents/notebooks.v2.json +54 -14
  147. googleapiclient/discovery_cache/documents/ondemandscanning.v1.json +118 -4
  148. googleapiclient/discovery_cache/documents/ondemandscanning.v1beta1.json +118 -4
  149. googleapiclient/discovery_cache/documents/oracledatabase.v1.json +11 -6
  150. googleapiclient/discovery_cache/documents/osconfig.v1.json +37 -1
  151. googleapiclient/discovery_cache/documents/osconfig.v1alpha.json +37 -1
  152. googleapiclient/discovery_cache/documents/osconfig.v1beta.json +37 -1
  153. googleapiclient/discovery_cache/documents/osconfig.v2.json +40 -4
  154. googleapiclient/discovery_cache/documents/osconfig.v2beta.json +40 -4
  155. googleapiclient/discovery_cache/documents/oslogin.v1.json +4 -4
  156. googleapiclient/discovery_cache/documents/oslogin.v1alpha.json +10 -10
  157. googleapiclient/discovery_cache/documents/oslogin.v1beta.json +7 -7
  158. googleapiclient/discovery_cache/documents/paymentsresellersubscription.v1.json +7 -5
  159. googleapiclient/discovery_cache/documents/people.v1.json +2 -2
  160. googleapiclient/discovery_cache/documents/places.v1.json +8 -4
  161. googleapiclient/discovery_cache/documents/playintegrity.v1.json +108 -1
  162. googleapiclient/discovery_cache/documents/realtimebidding.v1.json +7 -1
  163. googleapiclient/discovery_cache/documents/recaptchaenterprise.v1.json +80 -2
  164. googleapiclient/discovery_cache/documents/redis.v1.json +5 -4
  165. googleapiclient/discovery_cache/documents/redis.v1beta1.json +5 -4
  166. googleapiclient/discovery_cache/documents/reseller.v1.json +3 -3
  167. googleapiclient/discovery_cache/documents/retail.v2.json +30 -20
  168. googleapiclient/discovery_cache/documents/retail.v2alpha.json +59 -9
  169. googleapiclient/discovery_cache/documents/retail.v2beta.json +37 -21
  170. googleapiclient/discovery_cache/documents/run.v1.json +93 -2
  171. googleapiclient/discovery_cache/documents/run.v2.json +61 -26
  172. googleapiclient/discovery_cache/documents/safebrowsing.v5.json +393 -1
  173. googleapiclient/discovery_cache/documents/script.v1.json +1 -107
  174. googleapiclient/discovery_cache/documents/securitycenter.v1.json +421 -12
  175. googleapiclient/discovery_cache/documents/securitycenter.v1beta1.json +417 -11
  176. googleapiclient/discovery_cache/documents/securitycenter.v1beta2.json +417 -11
  177. googleapiclient/discovery_cache/documents/serviceconsumermanagement.v1.json +101 -2
  178. googleapiclient/discovery_cache/documents/serviceconsumermanagement.v1beta1.json +113 -2
  179. googleapiclient/discovery_cache/documents/servicecontrol.v2.json +3 -3
  180. googleapiclient/discovery_cache/documents/servicemanagement.v1.json +101 -2
  181. googleapiclient/discovery_cache/documents/servicenetworking.v1.json +103 -4
  182. googleapiclient/discovery_cache/documents/servicenetworking.v1beta.json +101 -2
  183. googleapiclient/discovery_cache/documents/serviceusage.v1.json +101 -2
  184. googleapiclient/discovery_cache/documents/serviceusage.v1beta1.json +101 -2
  185. googleapiclient/discovery_cache/documents/sheets.v4.json +23 -2
  186. googleapiclient/discovery_cache/documents/solar.v1.json +7 -7
  187. googleapiclient/discovery_cache/documents/spanner.v1.json +57 -17
  188. googleapiclient/discovery_cache/documents/sqladmin.v1.json +143 -24
  189. googleapiclient/discovery_cache/documents/sqladmin.v1beta4.json +139 -23
  190. googleapiclient/discovery_cache/documents/storage.v1.json +38 -4
  191. googleapiclient/discovery_cache/documents/storagetransfer.v1.json +30 -5
  192. googleapiclient/discovery_cache/documents/sts.v1.json +7 -2
  193. googleapiclient/discovery_cache/documents/sts.v1beta.json +7 -2
  194. googleapiclient/discovery_cache/documents/tasks.v1.json +2 -2
  195. googleapiclient/discovery_cache/documents/texttospeech.v1.json +11 -3
  196. googleapiclient/discovery_cache/documents/texttospeech.v1beta1.json +11 -3
  197. googleapiclient/discovery_cache/documents/trafficdirector.v3.json +10 -6
  198. googleapiclient/discovery_cache/documents/vault.v1.json +18 -1
  199. googleapiclient/discovery_cache/documents/videointelligence.v1.json +156 -1
  200. googleapiclient/discovery_cache/documents/videointelligence.v1beta2.json +156 -1
  201. googleapiclient/discovery_cache/documents/videointelligence.v1p1beta1.json +156 -1
  202. googleapiclient/discovery_cache/documents/videointelligence.v1p2beta1.json +156 -1
  203. googleapiclient/discovery_cache/documents/videointelligence.v1p3beta1.json +156 -1
  204. googleapiclient/discovery_cache/documents/vmmigration.v1.json +70 -3
  205. googleapiclient/discovery_cache/documents/vmmigration.v1alpha1.json +70 -3
  206. googleapiclient/discovery_cache/documents/walletobjects.v1.json +23 -23
  207. googleapiclient/discovery_cache/documents/workloadmanager.v1.json +5 -251
  208. googleapiclient/discovery_cache/documents/workspaceevents.v1.json +2 -2
  209. googleapiclient/version.py +1 -1
  210. {google_api_python_client-2.169.0.dist-info → google_api_python_client-2.171.0.dist-info/licenses}/LICENSE +0 -0
  211. {google_api_python_client-2.169.0.dist-info → google_api_python_client-2.171.0.dist-info}/top_level.txt +0 -0
@@ -2093,6 +2093,40 @@
2093
2093
  "scopes": [
2094
2094
  "https://www.googleapis.com/auth/cloud-platform"
2095
2095
  ]
2096
+ },
2097
+ "patch": {
2098
+ "description": "Updates the parameters of a single ServiceBinding.",
2099
+ "flatPath": "v1beta1/projects/{projectsId}/locations/{locationsId}/serviceBindings/{serviceBindingsId}",
2100
+ "httpMethod": "PATCH",
2101
+ "id": "networkservices.projects.locations.serviceBindings.patch",
2102
+ "parameterOrder": [
2103
+ "name"
2104
+ ],
2105
+ "parameters": {
2106
+ "name": {
2107
+ "description": "Identifier. Name of the ServiceBinding resource. It matches pattern `projects/*/locations/*/serviceBindings/`.",
2108
+ "location": "path",
2109
+ "pattern": "^projects/[^/]+/locations/[^/]+/serviceBindings/[^/]+$",
2110
+ "required": true,
2111
+ "type": "string"
2112
+ },
2113
+ "updateMask": {
2114
+ "description": "Optional. Field mask is used to specify the fields to be overwritten in the ServiceBinding resource by the update. The fields specified in the update_mask are relative to the resource, not the full request. A field will be overwritten if it is in the mask. If the user does not provide a mask then all fields will be overwritten.",
2115
+ "format": "google-fieldmask",
2116
+ "location": "query",
2117
+ "type": "string"
2118
+ }
2119
+ },
2120
+ "path": "v1beta1/{+name}",
2121
+ "request": {
2122
+ "$ref": "ServiceBinding"
2123
+ },
2124
+ "response": {
2125
+ "$ref": "Operation"
2126
+ },
2127
+ "scopes": [
2128
+ "https://www.googleapis.com/auth/cloud-platform"
2129
+ ]
2096
2130
  }
2097
2131
  }
2098
2132
  },
@@ -2879,7 +2913,7 @@
2879
2913
  }
2880
2914
  }
2881
2915
  },
2882
- "revision": "20250410",
2916
+ "revision": "20250521",
2883
2917
  "rootUrl": "https://networkservices.googleapis.com/",
2884
2918
  "schemas": {
2885
2919
  "AuthzExtension": {
@@ -3034,6 +3068,10 @@
3034
3068
  "description": "Identifier. Name of the EndpointPolicy resource. It matches pattern `projects/{project}/locations/global/endpointPolicies/{endpoint_policy}`.",
3035
3069
  "type": "string"
3036
3070
  },
3071
+ "securityPolicy": {
3072
+ "description": "Optional. A URL referring to a SecurityPolicy resource. SecurityPolicy is used to enforce rate limiting policy on the inbound traffic at the identified backends. If this field is not set, rate limiting is disabled for this endpoint.",
3073
+ "type": "string"
3074
+ },
3037
3075
  "serverTlsPolicy": {
3038
3076
  "description": "Optional. A URL referring to ServerTlsPolicy resource. ServerTlsPolicy is used to determine the authentication policy to be applied to terminate the inbound traffic at the identified backends. If this field is not set, authentication is disabled(open) for this endpoint.",
3039
3077
  "type": "string"
@@ -3180,7 +3218,7 @@
3180
3218
  "type": "array"
3181
3219
  },
3182
3220
  "timeout": {
3183
- "description": "Optional. Specifies the timeout for each individual message on the stream. The timeout must be between `10`-`1000` milliseconds. Required for callout extensions. This field is not supported for plugin extensions. Setting it results in a validation error.",
3221
+ "description": "Optional. Specifies the timeout for each individual message on the stream. The timeout must be between `10`-`10000` milliseconds. Required for callout extensions. This field is not supported for plugin extensions. Setting it results in a validation error.",
3184
3222
  "format": "google-duration",
3185
3223
  "type": "string"
3186
3224
  }
@@ -4038,7 +4076,7 @@
4038
4076
  "type": "object"
4039
4077
  },
4040
4078
  "HttpRouteRequestMirrorPolicy": {
4041
- "description": "Specifies the policy on how requests are shadowed to a separate mirrored destination service. The proxy does not wait for responses from the shadow service. Prior to sending traffic to the shadow service, the host/authority header is suffixed with -shadow.",
4079
+ "description": "Specifies the policy on how requests are shadowed to a separate mirrored destination service. The proxy does not wait for responses from the shadow service. Prior to sending traffic to the shadow service, the host/authority header is suffixed with -shadow. Mirroring is currently not supported for Cloud Run destinations.",
4042
4080
  "id": "HttpRouteRequestMirrorPolicy",
4043
4081
  "properties": {
4044
4082
  "destination": {
@@ -5245,6 +5283,10 @@
5245
5283
  "$ref": "ServiceLbPolicyFailoverConfig",
5246
5284
  "description": "Optional. Configuration related to health based failover."
5247
5285
  },
5286
+ "isolationConfig": {
5287
+ "$ref": "ServiceLbPolicyIsolationConfig",
5288
+ "description": "Optional. Configuration to provide isolation support for the associated Backend Service."
5289
+ },
5248
5290
  "labels": {
5249
5291
  "additionalProperties": {
5250
5292
  "type": "string"
@@ -5306,6 +5348,39 @@
5306
5348
  },
5307
5349
  "type": "object"
5308
5350
  },
5351
+ "ServiceLbPolicyIsolationConfig": {
5352
+ "description": "Configuration to provide isolation support for the associated Backend Service.",
5353
+ "id": "ServiceLbPolicyIsolationConfig",
5354
+ "properties": {
5355
+ "isolationGranularity": {
5356
+ "description": "Optional. The isolation granularity of the load balancer.",
5357
+ "enum": [
5358
+ "ISOLATION_GRANULARITY_UNSPECIFIED",
5359
+ "REGION"
5360
+ ],
5361
+ "enumDescriptions": [
5362
+ "No isolation is configured for the backend service. Traffic can overflow based on the load balancing algorithm.",
5363
+ "Traffic for this service will be isolated at the cloud region level."
5364
+ ],
5365
+ "type": "string"
5366
+ },
5367
+ "isolationMode": {
5368
+ "description": "Optional. The isolation mode of the load balancer.",
5369
+ "enum": [
5370
+ "ISOLATION_MODE_UNSPECIFIED",
5371
+ "NEAREST",
5372
+ "STRICT"
5373
+ ],
5374
+ "enumDescriptions": [
5375
+ "No isolation mode is configured for the backend service.",
5376
+ "Traffic will be sent to the nearest region.",
5377
+ "Traffic will fail if no serving backends are available in the same region as the load balancer."
5378
+ ],
5379
+ "type": "string"
5380
+ }
5381
+ },
5382
+ "type": "object"
5383
+ },
5309
5384
  "Status": {
5310
5385
  "description": "The `Status` type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. It is used by [gRPC](https://github.com/grpc). Each `Status` message contains three pieces of data: error code, error message, and error details. You can find out more about this error model and how to work with it in the [API Design Guide](https://cloud.google.com/apis/design/errors).",
5311
5386
  "id": "Status",
@@ -143,6 +143,12 @@
143
143
  "name"
144
144
  ],
145
145
  "parameters": {
146
+ "extraLocationTypes": {
147
+ "description": "Optional. A list of extra location types that should be used as conditions for controlling the visibility of the locations.",
148
+ "location": "query",
149
+ "repeated": true,
150
+ "type": "string"
151
+ },
146
152
  "filter": {
147
153
  "description": "A filter to narrow down results to a preferred subset. The filtering language accepts strings like `\"displayName=tokyo\"`, and is documented in more detail in [AIP-160](https://google.aip.dev/160).",
148
154
  "location": "query",
@@ -2008,7 +2014,7 @@
2008
2014
  }
2009
2015
  }
2010
2016
  },
2011
- "revision": "20241204",
2017
+ "revision": "20250430",
2012
2018
  "rootUrl": "https://notebooks.googleapis.com/",
2013
2019
  "schemas": {
2014
2020
  "AcceleratorConfig": {
@@ -143,6 +143,12 @@
143
143
  "name"
144
144
  ],
145
145
  "parameters": {
146
+ "extraLocationTypes": {
147
+ "description": "Optional. A list of extra location types that should be used as conditions for controlling the visibility of the locations.",
148
+ "location": "query",
149
+ "repeated": true,
150
+ "type": "string"
151
+ },
146
152
  "filter": {
147
153
  "description": "A filter to narrow down results to a preferred subset. The filtering language accepts strings like `\"displayName=tokyo\"`, and is documented in more detail in [AIP-160](https://google.aip.dev/160).",
148
154
  "location": "query",
@@ -904,7 +910,7 @@
904
910
  }
905
911
  }
906
912
  },
907
- "revision": "20250319",
913
+ "revision": "20250507",
908
914
  "rootUrl": "https://notebooks.googleapis.com/",
909
915
  "schemas": {
910
916
  "AcceleratorConfig": {
@@ -1071,21 +1077,13 @@
1071
1077
  "description": "Optional. Defines the type of technology used by the confidential instance.",
1072
1078
  "enum": [
1073
1079
  "CONFIDENTIAL_INSTANCE_TYPE_UNSPECIFIED",
1074
- "SEV",
1075
- "SEV_SNP",
1076
- "TDX"
1080
+ "SEV"
1077
1081
  ],
1078
1082
  "enumDescriptions": [
1079
1083
  "No type specified. Do not use this value.",
1080
- "AMD Secure Encrypted Virtualization.",
1081
- "AMD Secure Encrypted Virtualization - Secure Nested Paging.",
1082
- "Intel Trust Domain eXtension."
1084
+ "AMD Secure Encrypted Virtualization."
1083
1085
  ],
1084
1086
  "type": "string"
1085
- },
1086
- "enableConfidentialCompute": {
1087
- "description": "Optional. Defines whether the instance should have confidential compute enabled.",
1088
- "type": "boolean"
1089
1087
  }
1090
1088
  },
1091
1089
  "type": "object"
@@ -1385,6 +1383,10 @@
1385
1383
  },
1386
1384
  "type": "array"
1387
1385
  },
1386
+ "reservationAffinity": {
1387
+ "$ref": "ReservationAffinity",
1388
+ "description": "Optional. Specifies the reservations that this instance can consume from."
1389
+ },
1388
1390
  "serviceAccounts": {
1389
1391
  "description": "Optional. The service account that serves as an identity for the VM instance. Currently supports only one service account.",
1390
1392
  "items": {
@@ -1446,6 +1448,10 @@
1446
1448
  "description": "Optional. If true, the notebook instance will not register with the proxy.",
1447
1449
  "type": "boolean"
1448
1450
  },
1451
+ "enableDeletionProtection": {
1452
+ "description": "Optional. If true, deletion protection will be enabled for this Workbench Instance. If false, deletion protection will be disabled for this Workbench Instance.",
1453
+ "type": "boolean"
1454
+ },
1449
1455
  "enableThirdPartyIdentity": {
1450
1456
  "description": "Optional. Flag that specifies that a notebook can be accessed with third party identity provider.",
1451
1457
  "type": "boolean"
@@ -1487,7 +1493,7 @@
1487
1493
  "type": "string"
1488
1494
  },
1489
1495
  "instanceOwners": {
1490
- "description": "Optional. Input only. The owner of this instance after creation. Format: `alias@example.com` Currently supports one owner only. If not specified, all of the service account users of your VM instance's service account can use the instance.",
1496
+ "description": "Optional. The owner of this instance after creation. Format: `alias@example.com` Currently supports one owner only. If not specified, all of the service account users of your VM instance's service account can use the instance.",
1491
1497
  "items": {
1492
1498
  "type": "string"
1493
1499
  },
@@ -1819,6 +1825,40 @@
1819
1825
  },
1820
1826
  "type": "object"
1821
1827
  },
1828
+ "ReservationAffinity": {
1829
+ "description": "A reservation that an instance can consume from.",
1830
+ "id": "ReservationAffinity",
1831
+ "properties": {
1832
+ "consumeReservationType": {
1833
+ "description": "Required. Specifies the type of reservation from which this instance can consume resources: RESERVATION_ANY (default), RESERVATION_SPECIFIC, or RESERVATION_NONE. See Consuming reserved instances for examples.",
1834
+ "enum": [
1835
+ "RESERVATION_UNSPECIFIED",
1836
+ "RESERVATION_NONE",
1837
+ "RESERVATION_ANY",
1838
+ "RESERVATION_SPECIFIC"
1839
+ ],
1840
+ "enumDescriptions": [
1841
+ "Default type.",
1842
+ "Do not consume from any allocated capacity.",
1843
+ "Consume any reservation available.",
1844
+ "Must consume from a specific reservation. Must specify key value fields for specifying the reservations."
1845
+ ],
1846
+ "type": "string"
1847
+ },
1848
+ "key": {
1849
+ "description": "Optional. Corresponds to the label key of a reservation resource. To target a RESERVATION_SPECIFIC by name, use compute.googleapis.com/reservation-name as the key and specify the name of your reservation as its value.",
1850
+ "type": "string"
1851
+ },
1852
+ "values": {
1853
+ "description": "Optional. Corresponds to the label values of a reservation resource. This can be either a name to a reservation in the same project or \"projects/different-project/reservations/some-reservation-name\" to target a shared reservation in the same zone but in a different project.",
1854
+ "items": {
1855
+ "type": "string"
1856
+ },
1857
+ "type": "array"
1858
+ }
1859
+ },
1860
+ "type": "object"
1861
+ },
1822
1862
  "ResetInstanceRequest": {
1823
1863
  "description": "Request for resetting a notebook instance",
1824
1864
  "id": "ResetInstanceRequest",
@@ -1902,7 +1942,7 @@
1902
1942
  "id": "ShieldedInstanceConfig",
1903
1943
  "properties": {
1904
1944
  "enableIntegrityMonitoring": {
1905
- "description": "Optional. Defines whether the VM instance has integrity monitoring enabled. Enables monitoring and attestation of the boot integrity of the VM instance. The attestation is performed against the integrity policy baseline. This baseline is initially derived from the implicitly trusted boot image when the VM instance is created. Enabled by default.",
1945
+ "description": "Optional. Defines whether the VM instance has integrity monitoring enabled. Enables monitoring and attestation of the boot integrity of the VM instance. The attestation is performed against the integrity policy baseline. This baseline is initially derived from the implicitly trusted boot image when the VM instance is created.",
1906
1946
  "type": "boolean"
1907
1947
  },
1908
1948
  "enableSecureBoot": {
@@ -1910,7 +1950,7 @@
1910
1950
  "type": "boolean"
1911
1951
  },
1912
1952
  "enableVtpm": {
1913
- "description": "Optional. Defines whether the VM instance has the vTPM enabled. Enabled by default.",
1953
+ "description": "Optional. Defines whether the VM instance has the vTPM enabled.",
1914
1954
  "type": "boolean"
1915
1955
  }
1916
1956
  },
@@ -339,7 +339,7 @@
339
339
  }
340
340
  }
341
341
  },
342
- "revision": "20250321",
342
+ "revision": "20250519",
343
343
  "rootUrl": "https://ondemandscanning.googleapis.com/",
344
344
  "schemas": {
345
345
  "AliasContext": {
@@ -1122,6 +1122,13 @@
1122
1122
  "description": "The CPE of the resource being scanned.",
1123
1123
  "type": "string"
1124
1124
  },
1125
+ "files": {
1126
+ "description": "Files that make up the resource described by the occurrence.",
1127
+ "items": {
1128
+ "$ref": "File"
1129
+ },
1130
+ "type": "array"
1131
+ },
1125
1132
  "lastScanTime": {
1126
1133
  "description": "The last time this resource was scanned.",
1127
1134
  "format": "google-datetime",
@@ -1173,6 +1180,21 @@
1173
1180
  },
1174
1181
  "type": "object"
1175
1182
  },
1183
+ "File": {
1184
+ "id": "File",
1185
+ "properties": {
1186
+ "digest": {
1187
+ "additionalProperties": {
1188
+ "type": "string"
1189
+ },
1190
+ "type": "object"
1191
+ },
1192
+ "name": {
1193
+ "type": "string"
1194
+ }
1195
+ },
1196
+ "type": "object"
1197
+ },
1176
1198
  "FileHashes": {
1177
1199
  "description": "Container message for hashes of byte content of files, used in source messages to verify integrity of source input to the build.",
1178
1200
  "id": "FileHashes",
@@ -1307,6 +1329,10 @@
1307
1329
  },
1308
1330
  "type": "array"
1309
1331
  },
1332
+ "chainId": {
1333
+ "description": "The layer chain ID (sha256 hash) of the layer in the container image. https://github.com/opencontainers/image-spec/blob/main/config.md#layer-chainid",
1334
+ "type": "string"
1335
+ },
1310
1336
  "command": {
1311
1337
  "description": "The layer build command that was used to build the layer. This may not be found in all layers depending on how the container image is built.",
1312
1338
  "type": "string"
@@ -1647,6 +1673,10 @@
1647
1673
  },
1648
1674
  "type": "array"
1649
1675
  },
1676
+ "chainId": {
1677
+ "description": "The layer chain ID (sha256 hash) of the layer in the container image. https://github.com/opencontainers/image-spec/blob/main/config.md#layer-chainid",
1678
+ "type": "string"
1679
+ },
1650
1680
  "command": {
1651
1681
  "description": "The layer build command that was used to build the layer. This may not be found in all layers depending on how the container image is built.",
1652
1682
  "type": "string"
@@ -1870,7 +1900,8 @@
1870
1900
  "COMPLIANCE",
1871
1901
  "DSSE_ATTESTATION",
1872
1902
  "VULNERABILITY_ASSESSMENT",
1873
- "SBOM_REFERENCE"
1903
+ "SBOM_REFERENCE",
1904
+ "SECRET"
1874
1905
  ],
1875
1906
  "enumDescriptions": [
1876
1907
  "Default value. This value is unused.",
@@ -1885,7 +1916,8 @@
1885
1916
  "This represents a Compliance Note",
1886
1917
  "This represents a DSSE attestation Note",
1887
1918
  "This represents a Vulnerability Assessment.",
1888
- "This represents an SBOM Reference."
1919
+ "This represents an SBOM Reference.",
1920
+ "This represents a secret."
1889
1921
  ],
1890
1922
  "type": "string"
1891
1923
  },
@@ -1913,6 +1945,10 @@
1913
1945
  "$ref": "SBOMReferenceOccurrence",
1914
1946
  "description": "Describes a specific SBOM reference occurrences."
1915
1947
  },
1948
+ "secret": {
1949
+ "$ref": "SecretOccurrence",
1950
+ "description": "Describes a secret."
1951
+ },
1916
1952
  "updateTime": {
1917
1953
  "description": "Output only. The time this occurrence was last updated.",
1918
1954
  "format": "google-datetime",
@@ -2056,7 +2092,7 @@
2056
2092
  "NPM packages.",
2057
2093
  "Nuget (C#/.NET) packages.",
2058
2094
  "Ruby packges (from RubyGems package manager).",
2059
- "Rust packages from Cargo (Github ecosystem is `RUST`).",
2095
+ "Rust packages from Cargo (GitHub ecosystem is `RUST`).",
2060
2096
  "PHP packages from Composer package manager.",
2061
2097
  "Swift packages from Swift Package Manager (SwiftPM)."
2062
2098
  ],
@@ -2516,6 +2552,84 @@
2516
2552
  },
2517
2553
  "type": "object"
2518
2554
  },
2555
+ "SecretLocation": {
2556
+ "description": "The location of the secret.",
2557
+ "id": "SecretLocation",
2558
+ "properties": {
2559
+ "fileLocation": {
2560
+ "$ref": "GrafeasV1FileLocation",
2561
+ "description": "The secret is found from a file."
2562
+ }
2563
+ },
2564
+ "type": "object"
2565
+ },
2566
+ "SecretOccurrence": {
2567
+ "description": "The occurrence provides details of a secret.",
2568
+ "id": "SecretOccurrence",
2569
+ "properties": {
2570
+ "kind": {
2571
+ "description": "Required. Type of secret.",
2572
+ "enum": [
2573
+ "SECRET_KIND_UNSPECIFIED",
2574
+ "SECRET_KIND_UNKNOWN",
2575
+ "SECRET_KIND_GCP_SERVICE_ACCOUNT_KEY"
2576
+ ],
2577
+ "enumDescriptions": [
2578
+ "Unspecified",
2579
+ "The secret kind is unknown.",
2580
+ "A GCP service account key per: https://cloud.google.com/iam/docs/creating-managing-service-account-keys"
2581
+ ],
2582
+ "type": "string"
2583
+ },
2584
+ "locations": {
2585
+ "description": "Optional. Locations where the secret is detected.",
2586
+ "items": {
2587
+ "$ref": "SecretLocation"
2588
+ },
2589
+ "type": "array"
2590
+ },
2591
+ "statuses": {
2592
+ "description": "Optional. Status of the secret.",
2593
+ "items": {
2594
+ "$ref": "SecretStatus"
2595
+ },
2596
+ "type": "array"
2597
+ }
2598
+ },
2599
+ "type": "object"
2600
+ },
2601
+ "SecretStatus": {
2602
+ "description": "The status of the secret with a timestamp.",
2603
+ "id": "SecretStatus",
2604
+ "properties": {
2605
+ "message": {
2606
+ "description": "Optional. Optional message about the status code.",
2607
+ "type": "string"
2608
+ },
2609
+ "status": {
2610
+ "description": "Optional. The status of the secret.",
2611
+ "enum": [
2612
+ "STATUS_UNSPECIFIED",
2613
+ "UNKNOWN",
2614
+ "VALID",
2615
+ "INVALID"
2616
+ ],
2617
+ "enumDescriptions": [
2618
+ "Unspecified",
2619
+ "The status of the secret is unknown.",
2620
+ "The secret is valid.",
2621
+ "The secret is invalid."
2622
+ ],
2623
+ "type": "string"
2624
+ },
2625
+ "updateTime": {
2626
+ "description": "Optional. The time the secret status was last updated.",
2627
+ "format": "google-datetime",
2628
+ "type": "string"
2629
+ }
2630
+ },
2631
+ "type": "object"
2632
+ },
2519
2633
  "Signature": {
2520
2634
  "description": "Verifiers (e.g. Kritis implementations) MUST verify signatures with respect to the trust anchors defined in policy (e.g. a Kritis policy). Typically this means that the verifier has been configured with a map from `public_key_id` to public key material (and any required parameters, e.g. signing algorithm). In particular, verification implementations MUST NOT treat the signature `public_key_id` as anything more than a key lookup hint. The `public_key_id` DOES NOT validate or authenticate a public key; it only provides a mechanism for quickly selecting a public key ALREADY CONFIGURED on the verifier through a trusted channel. Verification implementations MUST reject signatures in any of the following circumstances: * The `public_key_id` is not recognized by the verifier. * The public key that `public_key_id` refers to does not verify the signature with respect to the payload. The `signature` contents SHOULD NOT be \"attached\" (where the payload is included with the serialized `signature` bytes). Verifiers MUST ignore any \"attached\" payload and only verify signatures with respect to explicitly provided payload (e.g. a `payload` field on the proto message that holds this Signature, or the canonical serialization of the proto message that holds this signature).",
2521
2635
  "id": "Signature",
@@ -339,7 +339,7 @@
339
339
  }
340
340
  }
341
341
  },
342
- "revision": "20250321",
342
+ "revision": "20250519",
343
343
  "rootUrl": "https://ondemandscanning.googleapis.com/",
344
344
  "schemas": {
345
345
  "AliasContext": {
@@ -1117,6 +1117,13 @@
1117
1117
  "description": "The CPE of the resource being scanned.",
1118
1118
  "type": "string"
1119
1119
  },
1120
+ "files": {
1121
+ "description": "Files that make up the resource described by the occurrence.",
1122
+ "items": {
1123
+ "$ref": "File"
1124
+ },
1125
+ "type": "array"
1126
+ },
1120
1127
  "lastScanTime": {
1121
1128
  "description": "The last time this resource was scanned.",
1122
1129
  "format": "google-datetime",
@@ -1168,6 +1175,21 @@
1168
1175
  },
1169
1176
  "type": "object"
1170
1177
  },
1178
+ "File": {
1179
+ "id": "File",
1180
+ "properties": {
1181
+ "digest": {
1182
+ "additionalProperties": {
1183
+ "type": "string"
1184
+ },
1185
+ "type": "object"
1186
+ },
1187
+ "name": {
1188
+ "type": "string"
1189
+ }
1190
+ },
1191
+ "type": "object"
1192
+ },
1171
1193
  "FileHashes": {
1172
1194
  "description": "Container message for hashes of byte content of files, used in source messages to verify integrity of source input to the build.",
1173
1195
  "id": "FileHashes",
@@ -1302,6 +1324,10 @@
1302
1324
  },
1303
1325
  "type": "array"
1304
1326
  },
1327
+ "chainId": {
1328
+ "description": "The layer chain ID (sha256 hash) of the layer in the container image. https://github.com/opencontainers/image-spec/blob/main/config.md#layer-chainid",
1329
+ "type": "string"
1330
+ },
1305
1331
  "command": {
1306
1332
  "description": "The layer build command that was used to build the layer. This may not be found in all layers depending on how the container image is built.",
1307
1333
  "type": "string"
@@ -1642,6 +1668,10 @@
1642
1668
  },
1643
1669
  "type": "array"
1644
1670
  },
1671
+ "chainId": {
1672
+ "description": "The layer chain ID (sha256 hash) of the layer in the container image. https://github.com/opencontainers/image-spec/blob/main/config.md#layer-chainid",
1673
+ "type": "string"
1674
+ },
1645
1675
  "command": {
1646
1676
  "description": "The layer build command that was used to build the layer. This may not be found in all layers depending on how the container image is built.",
1647
1677
  "type": "string"
@@ -1865,7 +1895,8 @@
1865
1895
  "COMPLIANCE",
1866
1896
  "DSSE_ATTESTATION",
1867
1897
  "VULNERABILITY_ASSESSMENT",
1868
- "SBOM_REFERENCE"
1898
+ "SBOM_REFERENCE",
1899
+ "SECRET"
1869
1900
  ],
1870
1901
  "enumDescriptions": [
1871
1902
  "Default value. This value is unused.",
@@ -1880,7 +1911,8 @@
1880
1911
  "This represents a Compliance Note",
1881
1912
  "This represents a DSSE attestation Note",
1882
1913
  "This represents a Vulnerability Assessment.",
1883
- "This represents an SBOM Reference."
1914
+ "This represents an SBOM Reference.",
1915
+ "This represents a secret."
1884
1916
  ],
1885
1917
  "type": "string"
1886
1918
  },
@@ -1908,6 +1940,10 @@
1908
1940
  "$ref": "SBOMReferenceOccurrence",
1909
1941
  "description": "Describes a specific SBOM reference occurrences."
1910
1942
  },
1943
+ "secret": {
1944
+ "$ref": "SecretOccurrence",
1945
+ "description": "Describes a secret."
1946
+ },
1911
1947
  "updateTime": {
1912
1948
  "description": "Output only. The time this occurrence was last updated.",
1913
1949
  "format": "google-datetime",
@@ -2051,7 +2087,7 @@
2051
2087
  "NPM packages.",
2052
2088
  "Nuget (C#/.NET) packages.",
2053
2089
  "Ruby packges (from RubyGems package manager).",
2054
- "Rust packages from Cargo (Github ecosystem is `RUST`).",
2090
+ "Rust packages from Cargo (GitHub ecosystem is `RUST`).",
2055
2091
  "PHP packages from Composer package manager.",
2056
2092
  "Swift packages from Swift Package Manager (SwiftPM)."
2057
2093
  ],
@@ -2511,6 +2547,84 @@
2511
2547
  },
2512
2548
  "type": "object"
2513
2549
  },
2550
+ "SecretLocation": {
2551
+ "description": "The location of the secret.",
2552
+ "id": "SecretLocation",
2553
+ "properties": {
2554
+ "fileLocation": {
2555
+ "$ref": "GrafeasV1FileLocation",
2556
+ "description": "The secret is found from a file."
2557
+ }
2558
+ },
2559
+ "type": "object"
2560
+ },
2561
+ "SecretOccurrence": {
2562
+ "description": "The occurrence provides details of a secret.",
2563
+ "id": "SecretOccurrence",
2564
+ "properties": {
2565
+ "kind": {
2566
+ "description": "Required. Type of secret.",
2567
+ "enum": [
2568
+ "SECRET_KIND_UNSPECIFIED",
2569
+ "SECRET_KIND_UNKNOWN",
2570
+ "SECRET_KIND_GCP_SERVICE_ACCOUNT_KEY"
2571
+ ],
2572
+ "enumDescriptions": [
2573
+ "Unspecified",
2574
+ "The secret kind is unknown.",
2575
+ "A GCP service account key per: https://cloud.google.com/iam/docs/creating-managing-service-account-keys"
2576
+ ],
2577
+ "type": "string"
2578
+ },
2579
+ "locations": {
2580
+ "description": "Optional. Locations where the secret is detected.",
2581
+ "items": {
2582
+ "$ref": "SecretLocation"
2583
+ },
2584
+ "type": "array"
2585
+ },
2586
+ "statuses": {
2587
+ "description": "Optional. Status of the secret.",
2588
+ "items": {
2589
+ "$ref": "SecretStatus"
2590
+ },
2591
+ "type": "array"
2592
+ }
2593
+ },
2594
+ "type": "object"
2595
+ },
2596
+ "SecretStatus": {
2597
+ "description": "The status of the secret with a timestamp.",
2598
+ "id": "SecretStatus",
2599
+ "properties": {
2600
+ "message": {
2601
+ "description": "Optional. Optional message about the status code.",
2602
+ "type": "string"
2603
+ },
2604
+ "status": {
2605
+ "description": "Optional. The status of the secret.",
2606
+ "enum": [
2607
+ "STATUS_UNSPECIFIED",
2608
+ "UNKNOWN",
2609
+ "VALID",
2610
+ "INVALID"
2611
+ ],
2612
+ "enumDescriptions": [
2613
+ "Unspecified",
2614
+ "The status of the secret is unknown.",
2615
+ "The secret is valid.",
2616
+ "The secret is invalid."
2617
+ ],
2618
+ "type": "string"
2619
+ },
2620
+ "updateTime": {
2621
+ "description": "Optional. The time the secret status was last updated.",
2622
+ "format": "google-datetime",
2623
+ "type": "string"
2624
+ }
2625
+ },
2626
+ "type": "object"
2627
+ },
2514
2628
  "Signature": {
2515
2629
  "description": "Verifiers (e.g. Kritis implementations) MUST verify signatures with respect to the trust anchors defined in policy (e.g. a Kritis policy). Typically this means that the verifier has been configured with a map from `public_key_id` to public key material (and any required parameters, e.g. signing algorithm). In particular, verification implementations MUST NOT treat the signature `public_key_id` as anything more than a key lookup hint. The `public_key_id` DOES NOT validate or authenticate a public key; it only provides a mechanism for quickly selecting a public key ALREADY CONFIGURED on the verifier through a trusted channel. Verification implementations MUST reject signatures in any of the following circumstances: * The `public_key_id` is not recognized by the verifier. * The public key that `public_key_id` refers to does not verify the signature with respect to the payload. The `signature` contents SHOULD NOT be \"attached\" (where the payload is included with the serialized `signature` bytes). Verifiers MUST ignore any \"attached\" payload and only verify signatures with respect to explicitly provided payload (e.g. a `payload` field on the proto message that holds this Signature, or the canonical serialization of the proto message that holds this signature).",
2516
2630
  "id": "Signature",