diff --git a/docs/dyn/securitycenter_v1.folders.sources.findings.html b/docs/dyn/securitycenter_v1.folders.sources.findings.html index 0c95b96118..83365b2314 100644 --- a/docs/dyn/securitycenter_v1.folders.sources.findings.html +++ b/docs/dyn/securitycenter_v1.folders.sources.findings.html @@ -419,6 +419,14 @@
getEventThreatDetectionSettings(name, x__xgafv=None)
Get the EventThreatDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetEventThreatDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateEventThreatDetectionSettings for this purpose.
-
- getOnboardingState(name, x__xgafv=None)
Retrieve the OnboardingState of a resource.
getRapidVulnerabilityDetectionSettings(name, x__xgafv=None)
Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.
@@ -214,26 +211,6 @@getOnboardingState(name, x__xgafv=None)
- Retrieve the OnboardingState of a resource. - -Args: - name: string, Required. The name of the OnboardingState to retrieve. Formats: * organizations/{organization}/onboardingState * folders/{folder}/onboardingState * projects/{project}/onboardingState (required) - x__xgafv: string, V1 error format. - Allowed values - 1 - v1 error format - 2 - v2 error format - -Returns: - An object of the form: - - { # Resource capturing onboarding information for a given CRM resource. - "name": "A String", # The resource name of the OnboardingState. Format: organizations/{organization}/onboardingState Format: folders/{folder}/onboardingState Format: projects/{project}/onboardingState - "onboardingLevel": "A String", # Describes the level a given organization, folder, or project is onboarded with SCC. If the resource wasn't onboarded, NOT_FOUND would have been thrown. -}-
getRapidVulnerabilityDetectionSettings(name, x__xgafv=None)
Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose. diff --git a/docs/dyn/securitycenter_v1beta2.organizations.html b/docs/dyn/securitycenter_v1beta2.organizations.html index 2e3e819c44..e3fe44c1e0 100644 --- a/docs/dyn/securitycenter_v1beta2.organizations.html +++ b/docs/dyn/securitycenter_v1beta2.organizations.html @@ -113,9 +113,6 @@Instance Methods
getEventThreatDetectionSettings(name, x__xgafv=None)
Get the EventThreatDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetEventThreatDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateEventThreatDetectionSettings for this purpose.
--
-getOnboardingState(name, x__xgafv=None)
Retrieve the OnboardingState of a resource.
getRapidVulnerabilityDetectionSettings(name, x__xgafv=None)
Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.
@@ -217,26 +214,6 @@Method Details
}
getOnboardingState(name, x__xgafv=None)
- Retrieve the OnboardingState of a resource. - -Args: - name: string, Required. The name of the OnboardingState to retrieve. Formats: * organizations/{organization}/onboardingState * folders/{folder}/onboardingState * projects/{project}/onboardingState (required) - x__xgafv: string, V1 error format. - Allowed values - 1 - v1 error format - 2 - v2 error format - -Returns: - An object of the form: - - { # Resource capturing onboarding information for a given CRM resource. - "name": "A String", # The resource name of the OnboardingState. Format: organizations/{organization}/onboardingState Format: folders/{folder}/onboardingState Format: projects/{project}/onboardingState - "onboardingLevel": "A String", # Describes the level a given organization, folder, or project is onboarded with SCC. If the resource wasn't onboarded, NOT_FOUND would have been thrown. -}-
getRapidVulnerabilityDetectionSettings(name, x__xgafv=None)
Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose. diff --git a/docs/dyn/securitycenter_v1beta2.projects.html b/docs/dyn/securitycenter_v1beta2.projects.html index fa21a6ee6a..eead39c5e0 100644 --- a/docs/dyn/securitycenter_v1beta2.projects.html +++ b/docs/dyn/securitycenter_v1beta2.projects.html @@ -118,9 +118,6 @@Instance Methods
getEventThreatDetectionSettings(name, x__xgafv=None)
Get the EventThreatDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetEventThreatDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateEventThreatDetectionSettings for this purpose.
--
-getOnboardingState(name, x__xgafv=None)
Retrieve the OnboardingState of a resource.
getRapidVulnerabilityDetectionSettings(name, x__xgafv=None)
Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.
@@ -219,26 +216,6 @@Method Details
}
getOnboardingState(name, x__xgafv=None)
- Retrieve the OnboardingState of a resource. - -Args: - name: string, Required. The name of the OnboardingState to retrieve. Formats: * organizations/{organization}/onboardingState * folders/{folder}/onboardingState * projects/{project}/onboardingState (required) - x__xgafv: string, V1 error format. - Allowed values - 1 - v1 error format - 2 - v2 error format - -Returns: - An object of the form: - - { # Resource capturing onboarding information for a given CRM resource. - "name": "A String", # The resource name of the OnboardingState. Format: organizations/{organization}/onboardingState Format: folders/{folder}/onboardingState Format: projects/{project}/onboardingState - "onboardingLevel": "A String", # Describes the level a given organization, folder, or project is onboarded with SCC. If the resource wasn't onboarded, NOT_FOUND would have been thrown. -}-
getRapidVulnerabilityDetectionSettings(name, x__xgafv=None)
Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose. diff --git a/googleapiclient/discovery_cache/documents/securitycenter.v1.json b/googleapiclient/discovery_cache/documents/securitycenter.v1.json index 44bf0c230e..195472a556 100644 --- a/googleapiclient/discovery_cache/documents/securitycenter.v1.json +++ b/googleapiclient/discovery_cache/documents/securitycenter.v1.json @@ -4750,7 +4750,7 @@ } } }, - "revision": "20230914", + "revision": "20231001", "rootUrl": "https://securitycenter.googleapis.com/", "schemas": { "Access": { @@ -5957,6 +5957,13 @@ "$ref": "Kubernetes", "description": "Kubernetes resources associated with the finding." }, + "loadBalancers": { + "description": "The load balancers associated with the finding.", + "items": { + "$ref": "LoadBalancer" + }, + "type": "array" + }, "mitreAttack": { "$ref": "MitreAttack", "description": "MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org" @@ -6024,6 +6031,10 @@ "description": "Output only. User specified security marks. These marks are entirely managed by the user and come from the SecurityMarks resource that belongs to the finding.", "readOnly": true }, + "securityPosture": { + "$ref": "SecurityPosture", + "description": "The security posture associated with the finding." + }, "severity": { "description": "The severity of the finding. This field is managed by the source that writes the finding.", "enum": [ @@ -7126,6 +7137,13 @@ }, "type": "array" }, + "objects": { + "description": "Kubernetes objects related to the finding.", + "items": { + "$ref": "Object" + }, + "type": "array" + }, "pods": { "description": "Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod.", "items": { @@ -7496,6 +7514,17 @@ }, "type": "object" }, + "LoadBalancer": { + "description": "Contains information related to the load balancer associated with the finding.", + "id": "LoadBalancer", + "properties": { + "name": { + "description": "The name of the load balancer associated with the finding.", + "type": "string" + } + }, + "type": "object" + }, "MemoryHashSignature": { "description": "A signature corresponding to memory page hashes.", "id": "MemoryHashSignature", @@ -7831,6 +7860,29 @@ }, "type": "object" }, + "Object": { + "description": "Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview.", + "id": "Object", + "properties": { + "group": { + "description": "Kubernetes object group, such as \"policy.k8s.io/v1\".", + "type": "string" + }, + "kind": { + "description": "Kubernetes object kind, such as \u201cNamespace\u201d.", + "type": "string" + }, + "name": { + "description": "Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/.", + "type": "string" + }, + "ns": { + "description": "Kubernetes object namespace. Must be a valid DNS label. Named \"ns\" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/.", + "type": "string" + } + }, + "type": "object" + }, "Operation": { "description": "This resource represents a long-running operation that is the result of a network API call.", "id": "Operation", @@ -8226,6 +8278,33 @@ }, "type": "object" }, + "SecurityPosture": { + "description": "Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud.", + "id": "SecurityPosture", + "properties": { + "changedPolicy": { + "description": "The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`.", + "type": "string" + }, + "name": { + "description": "Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`.", + "type": "string" + }, + "postureDeployment": { + "description": "The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`.", + "type": "string" + }, + "postureDeploymentResource": { + "description": "The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`.", + "type": "string" + }, + "revisionId": { + "description": "The version of the posture, for example, `c7cfa2a8`.", + "type": "string" + } + }, + "type": "object" + }, "ServiceAccountDelegationInfo": { "description": "Identity delegation history of an authenticated service account.", "id": "ServiceAccountDelegationInfo", @@ -8335,7 +8414,7 @@ "id": "Source", "properties": { "canonicalName": { - "description": "The canonical name of the finding. It's either \"organizations/{organization_id}/sources/{source_id}\", \"folders/{folder_id}/sources/{source_id}\" or \"projects/{project_number}/sources/{source_id}\", depending on the closest CRM ancestor of the resource associated with the finding.", + "description": "The canonical name of the finding source. It's either \"organizations/{organization_id}/sources/{source_id}\", \"folders/{folder_id}/sources/{source_id}\", or \"projects/{project_number}/sources/{source_id}\", depending on the closest CRM ancestor of the resource associated with the finding.", "type": "string" }, "description": { diff --git a/googleapiclient/discovery_cache/documents/securitycenter.v1beta1.json b/googleapiclient/discovery_cache/documents/securitycenter.v1beta1.json index 8856979ae4..cebbafb4e4 100644 --- a/googleapiclient/discovery_cache/documents/securitycenter.v1beta1.json +++ b/googleapiclient/discovery_cache/documents/securitycenter.v1beta1.json @@ -896,7 +896,7 @@ } } }, - "revision": "20230914", + "revision": "20230921", "rootUrl": "https://securitycenter.googleapis.com/", "schemas": { "Access": { diff --git a/googleapiclient/discovery_cache/documents/securitycenter.v1beta2.json b/googleapiclient/discovery_cache/documents/securitycenter.v1beta2.json index d4f4b30dbf..e81a3a87aa 100644 --- a/googleapiclient/discovery_cache/documents/securitycenter.v1beta2.json +++ b/googleapiclient/discovery_cache/documents/securitycenter.v1beta2.json @@ -157,31 +157,6 @@ "https://www.googleapis.com/auth/cloud-platform" ] }, - "getOnboardingState": { - "description": "Retrieve the OnboardingState of a resource.", - "flatPath": "v1beta2/folders/{foldersId}/onboardingState", - "httpMethod": "GET", - "id": "securitycenter.folders.getOnboardingState", - "parameterOrder": [ - "name" - ], - "parameters": { - "name": { - "description": "Required. The name of the OnboardingState to retrieve. Formats: * organizations/{organization}/onboardingState * folders/{folder}/onboardingState * projects/{project}/onboardingState", - "location": "path", - "pattern": "^folders/[^/]+/onboardingState$", - "required": true, - "type": "string" - } - }, - "path": "v1beta2/{+name}", - "response": { - "$ref": "OnboardingState" - }, - "scopes": [ - "https://www.googleapis.com/auth/cloud-platform" - ] - }, "getRapidVulnerabilityDetectionSettings": { "description": "Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.", "flatPath": "v1beta2/folders/{foldersId}/rapidVulnerabilityDetectionSettings", @@ -741,31 +716,6 @@ "https://www.googleapis.com/auth/cloud-platform" ] }, - "getOnboardingState": { - "description": "Retrieve the OnboardingState of a resource.", - "flatPath": "v1beta2/organizations/{organizationsId}/onboardingState", - "httpMethod": "GET", - "id": "securitycenter.organizations.getOnboardingState", - "parameterOrder": [ - "name" - ], - "parameters": { - "name": { - "description": "Required. The name of the OnboardingState to retrieve. Formats: * organizations/{organization}/onboardingState * folders/{folder}/onboardingState * projects/{project}/onboardingState", - "location": "path", - "pattern": "^organizations/[^/]+/onboardingState$", - "required": true, - "type": "string" - } - }, - "path": "v1beta2/{+name}", - "response": { - "$ref": "OnboardingState" - }, - "scopes": [ - "https://www.googleapis.com/auth/cloud-platform" - ] - }, "getRapidVulnerabilityDetectionSettings": { "description": "Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.", "flatPath": "v1beta2/organizations/{organizationsId}/rapidVulnerabilityDetectionSettings", @@ -1350,31 +1300,6 @@ "https://www.googleapis.com/auth/cloud-platform" ] }, - "getOnboardingState": { - "description": "Retrieve the OnboardingState of a resource.", - "flatPath": "v1beta2/projects/{projectsId}/onboardingState", - "httpMethod": "GET", - "id": "securitycenter.projects.getOnboardingState", - "parameterOrder": [ - "name" - ], - "parameters": { - "name": { - "description": "Required. The name of the OnboardingState to retrieve. Formats: * organizations/{organization}/onboardingState * folders/{folder}/onboardingState * projects/{project}/onboardingState", - "location": "path", - "pattern": "^projects/[^/]+/onboardingState$", - "required": true, - "type": "string" - } - }, - "path": "v1beta2/{+name}", - "response": { - "$ref": "OnboardingState" - }, - "scopes": [ - "https://www.googleapis.com/auth/cloud-platform" - ] - }, "getRapidVulnerabilityDetectionSettings": { "description": "Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.", "flatPath": "v1beta2/projects/{projectsId}/rapidVulnerabilityDetectionSettings", @@ -1981,7 +1906,7 @@ } } }, - "revision": "20230914", + "revision": "20231001", "rootUrl": "https://securitycenter.googleapis.com/", "schemas": { "Access": { @@ -2914,6 +2839,13 @@ "$ref": "Kubernetes", "description": "Kubernetes resources associated with the finding." }, + "loadBalancers": { + "description": "The load balancers associated with the finding.", + "items": { + "$ref": "LoadBalancer" + }, + "type": "array" + }, "mitreAttack": { "$ref": "MitreAttack", "description": "MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org" @@ -2981,6 +2913,10 @@ "description": "Output only. User specified security marks. These marks are entirely managed by the user and come from the SecurityMarks resource that belongs to the finding.", "readOnly": true }, + "securityPosture": { + "$ref": "SecurityPosture", + "description": "The security posture associated with the finding." + }, "severity": { "description": "The severity of the finding. This field is managed by the source that writes the finding.", "enum": [ @@ -3906,6 +3842,13 @@ }, "type": "array" }, + "objects": { + "description": "Kubernetes objects related to the finding.", + "items": { + "$ref": "Object" + }, + "type": "array" + }, "pods": { "description": "Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod.", "items": { @@ -3938,6 +3881,17 @@ }, "type": "object" }, + "LoadBalancer": { + "description": "Contains information related to the load balancer associated with the finding.", + "id": "LoadBalancer", + "properties": { + "name": { + "description": "The name of the load balancer associated with the finding.", + "type": "string" + } + }, + "type": "object" + }, "MemoryHashSignature": { "description": "A signature corresponding to memory page hashes.", "id": "MemoryHashSignature", @@ -4245,26 +4199,24 @@ }, "type": "object" }, - "OnboardingState": { - "description": "Resource capturing onboarding information for a given CRM resource.", - "id": "OnboardingState", + "Object": { + "description": "Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview.", + "id": "Object", "properties": { + "group": { + "description": "Kubernetes object group, such as \"policy.k8s.io/v1\".", + "type": "string" + }, + "kind": { + "description": "Kubernetes object kind, such as \u201cNamespace\u201d.", + "type": "string" + }, "name": { - "description": "The resource name of the OnboardingState. Format: organizations/{organization}/onboardingState Format: folders/{folder}/onboardingState Format: projects/{project}/onboardingState", + "description": "Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/.", "type": "string" }, - "onboardingLevel": { - "description": "Describes the level a given organization, folder, or project is onboarded with SCC. If the resource wasn't onboarded, NOT_FOUND would have been thrown.", - "enum": [ - "ONBOARDING_LEVEL_UNSPECIFIED", - "ONBOARDING_LEVEL_PROJECT", - "ONBOARDING_LEVEL_ORGANIZATION" - ], - "enumDescriptions": [ - "Unused.", - "This resource is onboarded at the project level. Only possible for projects.", - "This resource is onboarded at the organization level. Possible for organizations, folders, and projects." - ], + "ns": { + "description": "Kubernetes object namespace. Must be a valid DNS label. Named \"ns\" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/.", "type": "string" } }, @@ -4549,6 +4501,33 @@ }, "type": "object" }, + "SecurityPosture": { + "description": "Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud.", + "id": "SecurityPosture", + "properties": { + "changedPolicy": { + "description": "The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`.", + "type": "string" + }, + "name": { + "description": "Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`.", + "type": "string" + }, + "postureDeployment": { + "description": "The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`.", + "type": "string" + }, + "postureDeploymentResource": { + "description": "The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`.", + "type": "string" + }, + "revisionId": { + "description": "The version of the posture, for example, `c7cfa2a8`.", + "type": "string" + } + }, + "type": "object" + }, "ServiceAccountDelegationInfo": { "description": "Identity delegation history of an authenticated service account.", "id": "ServiceAccountDelegationInfo",