lib/google/apis/securitycenter_v1beta2/classes.rb in google-apis-securitycenter_v1beta2-0.44.0 vs lib/google/apis/securitycenter_v1beta2/classes.rb in google-apis-securitycenter_v1beta2-0.45.0
- old
+ new
@@ -208,10 +208,73 @@
@finding_category = args[:finding_category] if args.key?(:finding_category)
@name = args[:name] if args.key?(:name)
end
end
+ # The [data profile](https://cloud.google.com/dlp/docs/data-profiles) associated
+ # with the finding.
+ class CloudDlpDataProfile
+ include Google::Apis::Core::Hashable
+
+ # Name of the data profile, for example, `projects/123/locations/europe/
+ # tableProfiles/8383929`.
+ # Corresponds to the JSON property `dataProfile`
+ # @return [String]
+ attr_accessor :data_profile
+
+ def initialize(**args)
+ update!(**args)
+ end
+
+ # Update properties of this object
+ def update!(**args)
+ @data_profile = args[:data_profile] if args.key?(:data_profile)
+ end
+ end
+
+ # Details about the Cloud Data Loss Prevention (Cloud DLP) [inspection job](
+ # https://cloud.google.com/dlp/docs/concepts-job-triggers) that produced the
+ # finding.
+ class CloudDlpInspection
+ include Google::Apis::Core::Hashable
+
+ # Whether Cloud DLP scanned the complete resource or a sampled subset.
+ # Corresponds to the JSON property `fullScan`
+ # @return [Boolean]
+ attr_accessor :full_scan
+ alias_method :full_scan?, :full_scan
+
+ # The [type of information](https://cloud.google.com/dlp/docs/infotypes-
+ # reference) found, for example, `EMAIL_ADDRESS` or `STREET_ADDRESS`.
+ # Corresponds to the JSON property `infoType`
+ # @return [String]
+ attr_accessor :info_type
+
+ # The number of times Cloud DLP found this infoType within this job and resource.
+ # Corresponds to the JSON property `infoTypeCount`
+ # @return [Fixnum]
+ attr_accessor :info_type_count
+
+ # Name of the inspection job, for example, `projects/123/locations/europe/
+ # dlpJobs/i-8383929`.
+ # Corresponds to the JSON property `inspectJob`
+ # @return [String]
+ attr_accessor :inspect_job
+
+ def initialize(**args)
+ update!(**args)
+ end
+
+ # Update properties of this object
+ def update!(**args)
+ @full_scan = args[:full_scan] if args.key?(:full_scan)
+ @info_type = args[:info_type] if args.key?(:info_type)
+ @info_type_count = args[:info_type_count] if args.key?(:info_type_count)
+ @inspect_job = args[:inspect_job] if args.key?(:inspect_job)
+ end
+ end
+
# Contains compliance information about a security standard indicating unmet
# recommendations.
class Compliance
include Google::Apis::Core::Hashable
@@ -898,10 +961,23 @@
# is immutable after creation time. Example: "XSS_FLASH_INJECTION"
# Corresponds to the JSON property `category`
# @return [String]
attr_accessor :category
+ # The [data profile](https://cloud.google.com/dlp/docs/data-profiles) associated
+ # with the finding.
+ # Corresponds to the JSON property `cloudDlpDataProfile`
+ # @return [Google::Apis::SecuritycenterV1beta2::CloudDlpDataProfile]
+ attr_accessor :cloud_dlp_data_profile
+
+ # Details about the Cloud Data Loss Prevention (Cloud DLP) [inspection job](
+ # https://cloud.google.com/dlp/docs/concepts-job-triggers) that produced the
+ # finding.
+ # Corresponds to the JSON property `cloudDlpInspection`
+ # @return [Google::Apis::SecuritycenterV1beta2::CloudDlpInspection]
+ attr_accessor :cloud_dlp_inspection
+
# Contains compliance information for security standards associated to the
# finding.
# Corresponds to the JSON property `compliances`
# @return [Array<Google::Apis::SecuritycenterV1beta2::Compliance>]
attr_accessor :compliances
@@ -1015,10 +1091,16 @@
# attack.mitre.org
# Corresponds to the JSON property `mitreAttack`
# @return [Google::Apis::SecuritycenterV1beta2::MitreAttack]
attr_accessor :mitre_attack
+ # Unique identifier of the module which generated the finding. Example: folders/
+ # 598186756061/securityHealthAnalyticsSettings/customModules/56799441161885
+ # Corresponds to the JSON property `moduleName`
+ # @return [String]
+ attr_accessor :module_name
+
# Indicates the mute state of a finding (either muted, unmuted or undefined).
# Unlike other attributes of a finding, a finding provider shouldn't set the
# value of mute.
# Corresponds to the JSON property `mute`
# @return [String]
@@ -1047,10 +1129,16 @@
# Next steps associate to the finding.
# Corresponds to the JSON property `nextSteps`
# @return [String]
attr_accessor :next_steps
+ # Contains information about the org policy constraints associated with the
+ # finding.
+ # Corresponds to the JSON property `orgPolicyConstraints`
+ # @return [Array<Google::Apis::SecuritycenterV1beta2::OrgPolicyConstraint>]
+ attr_accessor :org_policy_constraints
+
# The relative resource name of the source the finding belongs to. See: https://
# cloud.google.com/apis/design/resource_names#relative_resource_name This field
# is immutable after creation time. For example: "organizations/`organization_id`
# /sources/`source_id`"
# Corresponds to the JSON property `parent`
@@ -1116,10 +1204,12 @@
# Update properties of this object
def update!(**args)
@access = args[:access] if args.key?(:access)
@canonical_name = args[:canonical_name] if args.key?(:canonical_name)
@category = args[:category] if args.key?(:category)
+ @cloud_dlp_data_profile = args[:cloud_dlp_data_profile] if args.key?(:cloud_dlp_data_profile)
+ @cloud_dlp_inspection = args[:cloud_dlp_inspection] if args.key?(:cloud_dlp_inspection)
@compliances = args[:compliances] if args.key?(:compliances)
@connections = args[:connections] if args.key?(:connections)
@contacts = args[:contacts] if args.key?(:contacts)
@containers = args[:containers] if args.key?(:containers)
@create_time = args[:create_time] if args.key?(:create_time)
@@ -1134,15 +1224,17 @@
@iam_bindings = args[:iam_bindings] if args.key?(:iam_bindings)
@indicator = args[:indicator] if args.key?(:indicator)
@kernel_rootkit = args[:kernel_rootkit] if args.key?(:kernel_rootkit)
@kubernetes = args[:kubernetes] if args.key?(:kubernetes)
@mitre_attack = args[:mitre_attack] if args.key?(:mitre_attack)
+ @module_name = args[:module_name] if args.key?(:module_name)
@mute = args[:mute] if args.key?(:mute)
@mute_initiator = args[:mute_initiator] if args.key?(:mute_initiator)
@mute_update_time = args[:mute_update_time] if args.key?(:mute_update_time)
@name = args[:name] if args.key?(:name)
@next_steps = args[:next_steps] if args.key?(:next_steps)
+ @org_policy_constraints = args[:org_policy_constraints] if args.key?(:org_policy_constraints)
@parent = args[:parent] if args.key?(:parent)
@parent_display_name = args[:parent_display_name] if args.key?(:parent_display_name)
@processes = args[:processes] if args.key?(:processes)
@resource_name = args[:resource_name] if args.key?(:resource_name)
@security_marks = args[:security_marks] if args.key?(:security_marks)
@@ -1644,15 +1736,33 @@
# A resource value config is a mapping configuration of user's tag values to
# resource values. Used by the attack path simulation.
class GoogleCloudSecuritycenterV1ResourceValueConfig
include Google::Apis::Core::Hashable
+ # Output only. Timestamp this resource value config was created.
+ # Corresponds to the JSON property `createTime`
+ # @return [String]
+ attr_accessor :create_time
+
+ # Description of the resource value config.
+ # Corresponds to the JSON property `description`
+ # @return [String]
+ attr_accessor :description
+
# Name for the resource value config
# Corresponds to the JSON property `name`
# @return [String]
attr_accessor :name
+ # List of resource labels to search for, evaluated with AND. E.g. "
+ # resource_labels_selector": `"key": "value", "env": "prod"` will match
+ # resources with labels "key": "value" AND "env": "prod" https://cloud.google.
+ # com/resource-manager/docs/creating-managing-labels
+ # Corresponds to the JSON property `resourceLabelsSelector`
+ # @return [Hash<String,String>]
+ attr_accessor :resource_labels_selector
+
# Apply resource_value only to resources that match resource_type. resource_type
# will be checked with "AND" of other resources. E.g. "storage.googleapis.com/
# Bucket" with resource_value "HIGH" will apply "HIGH" value only to "storage.
# googleapis.com/Bucket" resources.
# Corresponds to the JSON property `resourceType`
@@ -1676,21 +1786,30 @@
# https://cloud.google.com/resource-manager/docs/tags/tags-creating-and-managing
# Corresponds to the JSON property `tagValues`
# @return [Array<String>]
attr_accessor :tag_values
+ # Output only. Timestamp this resource value config was last updated.
+ # Corresponds to the JSON property `updateTime`
+ # @return [String]
+ attr_accessor :update_time
+
def initialize(**args)
update!(**args)
end
# Update properties of this object
def update!(**args)
+ @create_time = args[:create_time] if args.key?(:create_time)
+ @description = args[:description] if args.key?(:description)
@name = args[:name] if args.key?(:name)
+ @resource_labels_selector = args[:resource_labels_selector] if args.key?(:resource_labels_selector)
@resource_type = args[:resource_type] if args.key?(:resource_type)
@resource_value = args[:resource_value] if args.key?(:resource_value)
@scope = args[:scope] if args.key?(:scope)
@tag_values = args[:tag_values] if args.key?(:tag_values)
+ @update_time = args[:update_time] if args.key?(:update_time)
end
end
# Response of asset discovery run
class GoogleCloudSecuritycenterV1RunAssetDiscoveryResponse
@@ -2421,9 +2540,29 @@
# Update properties of this object
def update!(**args)
@name = args[:name] if args.key?(:name)
@onboarding_level = args[:onboarding_level] if args.key?(:onboarding_level)
+ end
+ end
+
+ # Encapsulates data about a constraint associated with an organization policy.
+ class OrgPolicyConstraint
+ include Google::Apis::Core::Hashable
+
+ # The resource name of the constraint. Example: "organizations/`organization_id`/
+ # constraints/`constraint_name`"
+ # Corresponds to the JSON property `name`
+ # @return [String]
+ attr_accessor :name
+
+ def initialize(**args)
+ update!(**args)
+ end
+
+ # Update properties of this object
+ def update!(**args)
+ @name = args[:name] if args.key?(:name)
end
end
# Represents one point that an attacker passes through in this exposure path.
class PathNode