From 08e8c1610e13c397f07886ba1cdba44002a18d66 Mon Sep 17 00:00:00 2001 From: Yoshi Automation Date: Tue, 3 Oct 2023 14:18:42 +0000 Subject: [PATCH] feat(securitycenter): update the api #### securitycenter:v1 The following keys were added: - schemas.Finding.properties.loadBalancers (Total Keys: 2) - schemas.Finding.properties.securityPosture.$ref (Total Keys: 1) - schemas.Kubernetes.properties.objects (Total Keys: 2) - schemas.LoadBalancer (Total Keys: 3) - schemas.Object (Total Keys: 6) - schemas.SecurityPosture (Total Keys: 6) #### securitycenter:v1beta2 The following keys were deleted: - resources.folders.methods.getOnboardingState (Total Keys: 11) - resources.organizations.methods.getOnboardingState (Total Keys: 11) - resources.projects.methods.getOnboardingState (Total Keys: 11) - schemas.OnboardingState (Total Keys: 4) The following keys were added: - schemas.Finding.properties.loadBalancers (Total Keys: 2) - schemas.Finding.properties.securityPosture.$ref (Total Keys: 1) - schemas.Kubernetes.properties.objects (Total Keys: 2) - schemas.LoadBalancer (Total Keys: 3) - schemas.Object (Total Keys: 6) - schemas.SecurityPosture (Total Keys: 6) --- ...itycenter_v1.folders.sources.findings.html | 100 +++++++++++ .../securitycenter_v1.folders.sources.html | 2 +- ...ter_v1.organizations.sources.findings.html | 140 +++++++++++++++ ...curitycenter_v1.organizations.sources.html | 12 +- ...tycenter_v1.projects.sources.findings.html | 100 +++++++++++ .../securitycenter_v1.projects.sources.html | 2 +- docs/dyn/securitycenter_v1beta2.folders.html | 23 --- .../securitycenter_v1beta2.organizations.html | 23 --- docs/dyn/securitycenter_v1beta2.projects.html | 23 --- .../documents/securitycenter.v1.json | 83 ++++++++- .../documents/securitycenter.v1beta1.json | 2 +- .../documents/securitycenter.v1beta2.json | 163 ++++++++---------- 12 files changed, 501 insertions(+), 172 deletions(-) diff --git a/docs/dyn/securitycenter_v1.folders.sources.findings.html b/docs/dyn/securitycenter_v1.folders.sources.findings.html index 0c95b961180..83365b23141 100644 --- a/docs/dyn/securitycenter_v1.folders.sources.findings.html +++ b/docs/dyn/securitycenter_v1.folders.sources.findings.html @@ -419,6 +419,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -453,6 +461,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -526,6 +539,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", @@ -830,6 +850,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -864,6 +892,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -937,6 +970,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", @@ -1204,6 +1244,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -1238,6 +1286,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -1311,6 +1364,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", @@ -1591,6 +1651,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -1625,6 +1693,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -1698,6 +1771,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", @@ -1979,6 +2059,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -2013,6 +2101,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -2086,6 +2179,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", diff --git a/docs/dyn/securitycenter_v1.folders.sources.html b/docs/dyn/securitycenter_v1.folders.sources.html index e25843c544d..0b33c61c808 100644 --- a/docs/dyn/securitycenter_v1.folders.sources.html +++ b/docs/dyn/securitycenter_v1.folders.sources.html @@ -114,7 +114,7 @@

Method Details

"nextPageToken": "A String", # Token to retrieve the next page of results, or empty if there are no more results. "sources": [ # Sources belonging to the requested parent. { # Security Command Center finding source. A finding source is an entity or a mechanism that can produce a finding. A source is like a container of findings that come from the same scanner, logger, monitor, and other tools. - "canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}" or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. + "canonicalName": "A String", # The canonical name of the finding source. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}", or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. "description": "A String", # The description of the source (max of 1024 characters). Example: "Web Security Scanner is a web security scanner for common vulnerabilities in App Engine applications. It can automatically scan and detect four common vulnerabilities, including cross-site-scripting (XSS), Flash injection, mixed content (HTTP in HTTPS), and outdated or insecure libraries." "displayName": "A String", # The source's display name. A source's display name must be unique amongst its siblings, for example, two sources with the same parent can't share the same display name. The display name must have a length between 1 and 64 characters (inclusive). "name": "A String", # The relative resource name of this source. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/sources/{source_id}" diff --git a/docs/dyn/securitycenter_v1.organizations.sources.findings.html b/docs/dyn/securitycenter_v1.organizations.sources.findings.html index 8537f905a48..a2da5e417bd 100644 --- a/docs/dyn/securitycenter_v1.organizations.sources.findings.html +++ b/docs/dyn/securitycenter_v1.organizations.sources.findings.html @@ -352,6 +352,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -386,6 +394,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -459,6 +472,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", @@ -726,6 +746,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -760,6 +788,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -833,6 +866,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", @@ -1171,6 +1211,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -1205,6 +1253,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -1278,6 +1331,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", @@ -1582,6 +1642,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -1616,6 +1684,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -1689,6 +1762,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", @@ -1956,6 +2036,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -1990,6 +2078,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -2063,6 +2156,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", @@ -2343,6 +2443,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -2377,6 +2485,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -2450,6 +2563,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", @@ -2731,6 +2851,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -2765,6 +2893,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -2838,6 +2971,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", diff --git a/docs/dyn/securitycenter_v1.organizations.sources.html b/docs/dyn/securitycenter_v1.organizations.sources.html index 8421ed9a044..cee295c3219 100644 --- a/docs/dyn/securitycenter_v1.organizations.sources.html +++ b/docs/dyn/securitycenter_v1.organizations.sources.html @@ -122,7 +122,7 @@

Method Details

The object takes the form of: { # Security Command Center finding source. A finding source is an entity or a mechanism that can produce a finding. A source is like a container of findings that come from the same scanner, logger, monitor, and other tools. - "canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}" or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. + "canonicalName": "A String", # The canonical name of the finding source. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}", or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. "description": "A String", # The description of the source (max of 1024 characters). Example: "Web Security Scanner is a web security scanner for common vulnerabilities in App Engine applications. It can automatically scan and detect four common vulnerabilities, including cross-site-scripting (XSS), Flash injection, mixed content (HTTP in HTTPS), and outdated or insecure libraries." "displayName": "A String", # The source's display name. A source's display name must be unique amongst its siblings, for example, two sources with the same parent can't share the same display name. The display name must have a length between 1 and 64 characters (inclusive). "name": "A String", # The relative resource name of this source. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/sources/{source_id}" @@ -137,7 +137,7 @@

Method Details

An object of the form: { # Security Command Center finding source. A finding source is an entity or a mechanism that can produce a finding. A source is like a container of findings that come from the same scanner, logger, monitor, and other tools. - "canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}" or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. + "canonicalName": "A String", # The canonical name of the finding source. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}", or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. "description": "A String", # The description of the source (max of 1024 characters). Example: "Web Security Scanner is a web security scanner for common vulnerabilities in App Engine applications. It can automatically scan and detect four common vulnerabilities, including cross-site-scripting (XSS), Flash injection, mixed content (HTTP in HTTPS), and outdated or insecure libraries." "displayName": "A String", # The source's display name. A source's display name must be unique amongst its siblings, for example, two sources with the same parent can't share the same display name. The display name must have a length between 1 and 64 characters (inclusive). "name": "A String", # The relative resource name of this source. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/sources/{source_id}" @@ -159,7 +159,7 @@

Method Details

An object of the form: { # Security Command Center finding source. A finding source is an entity or a mechanism that can produce a finding. A source is like a container of findings that come from the same scanner, logger, monitor, and other tools. - "canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}" or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. + "canonicalName": "A String", # The canonical name of the finding source. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}", or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. "description": "A String", # The description of the source (max of 1024 characters). Example: "Web Security Scanner is a web security scanner for common vulnerabilities in App Engine applications. It can automatically scan and detect four common vulnerabilities, including cross-site-scripting (XSS), Flash injection, mixed content (HTTP in HTTPS), and outdated or insecure libraries." "displayName": "A String", # The source's display name. A source's display name must be unique amongst its siblings, for example, two sources with the same parent can't share the same display name. The display name must have a length between 1 and 64 characters (inclusive). "name": "A String", # The relative resource name of this source. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/sources/{source_id}" @@ -242,7 +242,7 @@

Method Details

"nextPageToken": "A String", # Token to retrieve the next page of results, or empty if there are no more results. "sources": [ # Sources belonging to the requested parent. { # Security Command Center finding source. A finding source is an entity or a mechanism that can produce a finding. A source is like a container of findings that come from the same scanner, logger, monitor, and other tools. - "canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}" or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. + "canonicalName": "A String", # The canonical name of the finding source. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}", or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. "description": "A String", # The description of the source (max of 1024 characters). Example: "Web Security Scanner is a web security scanner for common vulnerabilities in App Engine applications. It can automatically scan and detect four common vulnerabilities, including cross-site-scripting (XSS), Flash injection, mixed content (HTTP in HTTPS), and outdated or insecure libraries." "displayName": "A String", # The source's display name. A source's display name must be unique amongst its siblings, for example, two sources with the same parent can't share the same display name. The display name must have a length between 1 and 64 characters (inclusive). "name": "A String", # The relative resource name of this source. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/sources/{source_id}" @@ -275,7 +275,7 @@

Method Details

The object takes the form of: { # Security Command Center finding source. A finding source is an entity or a mechanism that can produce a finding. A source is like a container of findings that come from the same scanner, logger, monitor, and other tools. - "canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}" or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. + "canonicalName": "A String", # The canonical name of the finding source. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}", or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. "description": "A String", # The description of the source (max of 1024 characters). Example: "Web Security Scanner is a web security scanner for common vulnerabilities in App Engine applications. It can automatically scan and detect four common vulnerabilities, including cross-site-scripting (XSS), Flash injection, mixed content (HTTP in HTTPS), and outdated or insecure libraries." "displayName": "A String", # The source's display name. A source's display name must be unique amongst its siblings, for example, two sources with the same parent can't share the same display name. The display name must have a length between 1 and 64 characters (inclusive). "name": "A String", # The relative resource name of this source. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/sources/{source_id}" @@ -291,7 +291,7 @@

Method Details

An object of the form: { # Security Command Center finding source. A finding source is an entity or a mechanism that can produce a finding. A source is like a container of findings that come from the same scanner, logger, monitor, and other tools. - "canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}" or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. + "canonicalName": "A String", # The canonical name of the finding source. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}", or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. "description": "A String", # The description of the source (max of 1024 characters). Example: "Web Security Scanner is a web security scanner for common vulnerabilities in App Engine applications. It can automatically scan and detect four common vulnerabilities, including cross-site-scripting (XSS), Flash injection, mixed content (HTTP in HTTPS), and outdated or insecure libraries." "displayName": "A String", # The source's display name. A source's display name must be unique amongst its siblings, for example, two sources with the same parent can't share the same display name. The display name must have a length between 1 and 64 characters (inclusive). "name": "A String", # The relative resource name of this source. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/sources/{source_id}" diff --git a/docs/dyn/securitycenter_v1.projects.sources.findings.html b/docs/dyn/securitycenter_v1.projects.sources.findings.html index e0df7649838..3f3d717343a 100644 --- a/docs/dyn/securitycenter_v1.projects.sources.findings.html +++ b/docs/dyn/securitycenter_v1.projects.sources.findings.html @@ -419,6 +419,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -453,6 +461,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -526,6 +539,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", @@ -830,6 +850,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -864,6 +892,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -937,6 +970,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", @@ -1204,6 +1244,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -1238,6 +1286,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -1311,6 +1364,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", @@ -1591,6 +1651,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -1625,6 +1693,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -1698,6 +1771,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", @@ -1979,6 +2059,14 @@

Method Details

"name": "A String", # [Full resource name](https://google.aip.dev/122#full-resource-names) of the Compute Engine VM running the cluster node. }, ], + "objects": [ # Kubernetes objects related to the finding. + { # Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview. + "group": "A String", # Kubernetes object group, such as "policy.k8s.io/v1". + "kind": "A String", # Kubernetes object kind, such as “Namespace”. + "name": "A String", # Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/. + "ns": "A String", # Kubernetes object namespace. Must be a valid DNS label. Named "ns" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/. + }, + ], "pods": [ # Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod. { # A Kubernetes Pod. "containers": [ # Pod containers associated with this finding, if any. @@ -2013,6 +2101,11 @@

Method Details

}, ], }, + "loadBalancers": [ # The load balancers associated with the finding. + { # Contains information related to the load balancer associated with the finding. + "name": "A String", # The name of the load balancer associated with the finding. + }, + ], "mitreAttack": { # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org # MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org "additionalTactics": [ # Additional MITRE ATT&CK tactics related to this finding, if any. "A String", @@ -2086,6 +2179,13 @@

Method Details

}, "name": "A String", # The relative resource name of the SecurityMarks. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Examples: "organizations/{organization_id}/assets/{asset_id}/securityMarks" "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks". }, + "securityPosture": { # Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud. # The security posture associated with the finding. + "changedPolicy": "A String", # The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`. + "name": "A String", # Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`. + "postureDeployment": "A String", # The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`. + "postureDeploymentResource": "A String", # The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`. + "revisionId": "A String", # The version of the posture, for example, `c7cfa2a8`. + }, "severity": "A String", # The severity of the finding. This field is managed by the source that writes the finding. "sourceProperties": { # Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only. "a_key": "", diff --git a/docs/dyn/securitycenter_v1.projects.sources.html b/docs/dyn/securitycenter_v1.projects.sources.html index 46714c5c078..6bc911bd447 100644 --- a/docs/dyn/securitycenter_v1.projects.sources.html +++ b/docs/dyn/securitycenter_v1.projects.sources.html @@ -114,7 +114,7 @@

Method Details

"nextPageToken": "A String", # Token to retrieve the next page of results, or empty if there are no more results. "sources": [ # Sources belonging to the requested parent. { # Security Command Center finding source. A finding source is an entity or a mechanism that can produce a finding. A source is like a container of findings that come from the same scanner, logger, monitor, and other tools. - "canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}" or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. + "canonicalName": "A String", # The canonical name of the finding source. It's either "organizations/{organization_id}/sources/{source_id}", "folders/{folder_id}/sources/{source_id}", or "projects/{project_number}/sources/{source_id}", depending on the closest CRM ancestor of the resource associated with the finding. "description": "A String", # The description of the source (max of 1024 characters). Example: "Web Security Scanner is a web security scanner for common vulnerabilities in App Engine applications. It can automatically scan and detect four common vulnerabilities, including cross-site-scripting (XSS), Flash injection, mixed content (HTTP in HTTPS), and outdated or insecure libraries." "displayName": "A String", # The source's display name. A source's display name must be unique amongst its siblings, for example, two sources with the same parent can't share the same display name. The display name must have a length between 1 and 64 characters (inclusive). "name": "A String", # The relative resource name of this source. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/sources/{source_id}" diff --git a/docs/dyn/securitycenter_v1beta2.folders.html b/docs/dyn/securitycenter_v1beta2.folders.html index 877b6072b8e..4537dce72f4 100644 --- a/docs/dyn/securitycenter_v1beta2.folders.html +++ b/docs/dyn/securitycenter_v1beta2.folders.html @@ -113,9 +113,6 @@

Instance Methods

getEventThreatDetectionSettings(name, x__xgafv=None)

Get the EventThreatDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetEventThreatDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateEventThreatDetectionSettings for this purpose.

-

- getOnboardingState(name, x__xgafv=None)

-

Retrieve the OnboardingState of a resource.

getRapidVulnerabilityDetectionSettings(name, x__xgafv=None)

Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.

@@ -214,26 +211,6 @@

Method Details

} -
- getOnboardingState(name, x__xgafv=None) - 
Retrieve the OnboardingState of a resource.
-
-Args:
-  name: string, Required. The name of the OnboardingState to retrieve. Formats: * organizations/{organization}/onboardingState * folders/{folder}/onboardingState * projects/{project}/onboardingState (required)
-  x__xgafv: string, V1 error format.
-    Allowed values
-      1 - v1 error format
-      2 - v2 error format
-
-Returns:
-  An object of the form:
-
-    { # Resource capturing onboarding information for a given CRM resource.
-  "name": "A String", # The resource name of the OnboardingState. Format: organizations/{organization}/onboardingState Format: folders/{folder}/onboardingState Format: projects/{project}/onboardingState
-  "onboardingLevel": "A String", # Describes the level a given organization, folder, or project is onboarded with SCC. If the resource wasn't onboarded, NOT_FOUND would have been thrown.
-}
-
-
getRapidVulnerabilityDetectionSettings(name, x__xgafv=None) 
Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.
diff --git a/docs/dyn/securitycenter_v1beta2.organizations.html b/docs/dyn/securitycenter_v1beta2.organizations.html
index 2e3e819c44c..e3fe44c1e08 100644
--- a/docs/dyn/securitycenter_v1beta2.organizations.html
+++ b/docs/dyn/securitycenter_v1beta2.organizations.html
@@ -113,9 +113,6 @@ 
Instance Methods

 

   getEventThreatDetectionSettings(name, x__xgafv=None)

 
Get the EventThreatDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetEventThreatDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateEventThreatDetectionSettings for this purpose.

-

-  getOnboardingState(name, x__xgafv=None)

-
Retrieve the OnboardingState of a resource.

 

   getRapidVulnerabilityDetectionSettings(name, x__xgafv=None)

 
Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.

@@ -217,26 +214,6 @@ 
Method Details

 }
-
- getOnboardingState(name, x__xgafv=None) - 
Retrieve the OnboardingState of a resource.
-
-Args:
-  name: string, Required. The name of the OnboardingState to retrieve. Formats: * organizations/{organization}/onboardingState * folders/{folder}/onboardingState * projects/{project}/onboardingState (required)
-  x__xgafv: string, V1 error format.
-    Allowed values
-      1 - v1 error format
-      2 - v2 error format
-
-Returns:
-  An object of the form:
-
-    { # Resource capturing onboarding information for a given CRM resource.
-  "name": "A String", # The resource name of the OnboardingState. Format: organizations/{organization}/onboardingState Format: folders/{folder}/onboardingState Format: projects/{project}/onboardingState
-  "onboardingLevel": "A String", # Describes the level a given organization, folder, or project is onboarded with SCC. If the resource wasn't onboarded, NOT_FOUND would have been thrown.
-}
-
-
getRapidVulnerabilityDetectionSettings(name, x__xgafv=None) 
Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.
diff --git a/docs/dyn/securitycenter_v1beta2.projects.html b/docs/dyn/securitycenter_v1beta2.projects.html
index fa21a6ee6a5..eead39c5e01 100644
--- a/docs/dyn/securitycenter_v1beta2.projects.html
+++ b/docs/dyn/securitycenter_v1beta2.projects.html
@@ -118,9 +118,6 @@ 
Instance Methods

 

   getEventThreatDetectionSettings(name, x__xgafv=None)

 
Get the EventThreatDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetEventThreatDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateEventThreatDetectionSettings for this purpose.

-

-  getOnboardingState(name, x__xgafv=None)

-
Retrieve the OnboardingState of a resource.

 

   getRapidVulnerabilityDetectionSettings(name, x__xgafv=None)

 
Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.

@@ -219,26 +216,6 @@ 
Method Details

 }
-
- getOnboardingState(name, x__xgafv=None) - 
Retrieve the OnboardingState of a resource.
-
-Args:
-  name: string, Required. The name of the OnboardingState to retrieve. Formats: * organizations/{organization}/onboardingState * folders/{folder}/onboardingState * projects/{project}/onboardingState (required)
-  x__xgafv: string, V1 error format.
-    Allowed values
-      1 - v1 error format
-      2 - v2 error format
-
-Returns:
-  An object of the form:
-
-    { # Resource capturing onboarding information for a given CRM resource.
-  "name": "A String", # The resource name of the OnboardingState. Format: organizations/{organization}/onboardingState Format: folders/{folder}/onboardingState Format: projects/{project}/onboardingState
-  "onboardingLevel": "A String", # Describes the level a given organization, folder, or project is onboarded with SCC. If the resource wasn't onboarded, NOT_FOUND would have been thrown.
-}
-
-
getRapidVulnerabilityDetectionSettings(name, x__xgafv=None) 
Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.
diff --git a/googleapiclient/discovery_cache/documents/securitycenter.v1.json b/googleapiclient/discovery_cache/documents/securitycenter.v1.json
index 44bf0c230e4..195472a556a 100644
--- a/googleapiclient/discovery_cache/documents/securitycenter.v1.json
+++ b/googleapiclient/discovery_cache/documents/securitycenter.v1.json
@@ -4750,7 +4750,7 @@
       }
     }
   },
-  "revision": "20230914",
+  "revision": "20231001",
   "rootUrl": "https://securitycenter.googleapis.com/",
   "schemas": {
     "Access": {
@@ -5957,6 +5957,13 @@
           "$ref": "Kubernetes",
           "description": "Kubernetes resources associated with the finding."
         },
+        "loadBalancers": {
+          "description": "The load balancers associated with the finding.",
+          "items": {
+            "$ref": "LoadBalancer"
+          },
+          "type": "array"
+        },
         "mitreAttack": {
           "$ref": "MitreAttack",
           "description": "MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org"
@@ -6024,6 +6031,10 @@
           "description": "Output only. User specified security marks. These marks are entirely managed by the user and come from the SecurityMarks resource that belongs to the finding.",
           "readOnly": true
         },
+        "securityPosture": {
+          "$ref": "SecurityPosture",
+          "description": "The security posture associated with the finding."
+        },
         "severity": {
           "description": "The severity of the finding. This field is managed by the source that writes the finding.",
           "enum": [
@@ -7126,6 +7137,13 @@
           },
           "type": "array"
         },
+        "objects": {
+          "description": "Kubernetes objects related to the finding.",
+          "items": {
+            "$ref": "Object"
+          },
+          "type": "array"
+        },
         "pods": {
           "description": "Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod.",
           "items": {
@@ -7496,6 +7514,17 @@
       },
       "type": "object"
     },
+    "LoadBalancer": {
+      "description": "Contains information related to the load balancer associated with the finding.",
+      "id": "LoadBalancer",
+      "properties": {
+        "name": {
+          "description": "The name of the load balancer associated with the finding.",
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
     "MemoryHashSignature": {
       "description": "A signature corresponding to memory page hashes.",
       "id": "MemoryHashSignature",
@@ -7831,6 +7860,29 @@
       },
       "type": "object"
     },
+    "Object": {
+      "description": "Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview.",
+      "id": "Object",
+      "properties": {
+        "group": {
+          "description": "Kubernetes object group, such as \"policy.k8s.io/v1\".",
+          "type": "string"
+        },
+        "kind": {
+          "description": "Kubernetes object kind, such as \u201cNamespace\u201d.",
+          "type": "string"
+        },
+        "name": {
+          "description": "Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/.",
+          "type": "string"
+        },
+        "ns": {
+          "description": "Kubernetes object namespace. Must be a valid DNS label. Named \"ns\" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/.",
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
     "Operation": {
       "description": "This resource represents a long-running operation that is the result of a network API call.",
       "id": "Operation",
@@ -8226,6 +8278,33 @@
       },
       "type": "object"
     },
+    "SecurityPosture": {
+      "description": "Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud.",
+      "id": "SecurityPosture",
+      "properties": {
+        "changedPolicy": {
+          "description": "The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`.",
+          "type": "string"
+        },
+        "name": {
+          "description": "Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`.",
+          "type": "string"
+        },
+        "postureDeployment": {
+          "description": "The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`.",
+          "type": "string"
+        },
+        "postureDeploymentResource": {
+          "description": "The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`.",
+          "type": "string"
+        },
+        "revisionId": {
+          "description": "The version of the posture, for example, `c7cfa2a8`.",
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
     "ServiceAccountDelegationInfo": {
       "description": "Identity delegation history of an authenticated service account.",
       "id": "ServiceAccountDelegationInfo",
@@ -8335,7 +8414,7 @@
       "id": "Source",
       "properties": {
         "canonicalName": {
-          "description": "The canonical name of the finding. It's either \"organizations/{organization_id}/sources/{source_id}\", \"folders/{folder_id}/sources/{source_id}\" or \"projects/{project_number}/sources/{source_id}\", depending on the closest CRM ancestor of the resource associated with the finding.",
+          "description": "The canonical name of the finding source. It's either \"organizations/{organization_id}/sources/{source_id}\", \"folders/{folder_id}/sources/{source_id}\", or \"projects/{project_number}/sources/{source_id}\", depending on the closest CRM ancestor of the resource associated with the finding.",
           "type": "string"
         },
         "description": {
diff --git a/googleapiclient/discovery_cache/documents/securitycenter.v1beta1.json b/googleapiclient/discovery_cache/documents/securitycenter.v1beta1.json
index 8856979ae48..cebbafb4e4b 100644
--- a/googleapiclient/discovery_cache/documents/securitycenter.v1beta1.json
+++ b/googleapiclient/discovery_cache/documents/securitycenter.v1beta1.json
@@ -896,7 +896,7 @@
       }
     }
   },
-  "revision": "20230914",
+  "revision": "20230921",
   "rootUrl": "https://securitycenter.googleapis.com/",
   "schemas": {
     "Access": {
diff --git a/googleapiclient/discovery_cache/documents/securitycenter.v1beta2.json b/googleapiclient/discovery_cache/documents/securitycenter.v1beta2.json
index d4f4b30dbfb..e81a3a87aa5 100644
--- a/googleapiclient/discovery_cache/documents/securitycenter.v1beta2.json
+++ b/googleapiclient/discovery_cache/documents/securitycenter.v1beta2.json
@@ -157,31 +157,6 @@
             "https://www.googleapis.com/auth/cloud-platform"
           ]
         },
-        "getOnboardingState": {
-          "description": "Retrieve the OnboardingState of a resource.",
-          "flatPath": "v1beta2/folders/{foldersId}/onboardingState",
-          "httpMethod": "GET",
-          "id": "securitycenter.folders.getOnboardingState",
-          "parameterOrder": [
-            "name"
-          ],
-          "parameters": {
-            "name": {
-              "description": "Required. The name of the OnboardingState to retrieve. Formats: * organizations/{organization}/onboardingState * folders/{folder}/onboardingState * projects/{project}/onboardingState",
-              "location": "path",
-              "pattern": "^folders/[^/]+/onboardingState$",
-              "required": true,
-              "type": "string"
-            }
-          },
-          "path": "v1beta2/{+name}",
-          "response": {
-            "$ref": "OnboardingState"
-          },
-          "scopes": [
-            "https://www.googleapis.com/auth/cloud-platform"
-          ]
-        },
         "getRapidVulnerabilityDetectionSettings": {
           "description": "Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.",
           "flatPath": "v1beta2/folders/{foldersId}/rapidVulnerabilityDetectionSettings",
@@ -741,31 +716,6 @@
             "https://www.googleapis.com/auth/cloud-platform"
           ]
         },
-        "getOnboardingState": {
-          "description": "Retrieve the OnboardingState of a resource.",
-          "flatPath": "v1beta2/organizations/{organizationsId}/onboardingState",
-          "httpMethod": "GET",
-          "id": "securitycenter.organizations.getOnboardingState",
-          "parameterOrder": [
-            "name"
-          ],
-          "parameters": {
-            "name": {
-              "description": "Required. The name of the OnboardingState to retrieve. Formats: * organizations/{organization}/onboardingState * folders/{folder}/onboardingState * projects/{project}/onboardingState",
-              "location": "path",
-              "pattern": "^organizations/[^/]+/onboardingState$",
-              "required": true,
-              "type": "string"
-            }
-          },
-          "path": "v1beta2/{+name}",
-          "response": {
-            "$ref": "OnboardingState"
-          },
-          "scopes": [
-            "https://www.googleapis.com/auth/cloud-platform"
-          ]
-        },
         "getRapidVulnerabilityDetectionSettings": {
           "description": "Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.",
           "flatPath": "v1beta2/organizations/{organizationsId}/rapidVulnerabilityDetectionSettings",
@@ -1350,31 +1300,6 @@
             "https://www.googleapis.com/auth/cloud-platform"
           ]
         },
-        "getOnboardingState": {
-          "description": "Retrieve the OnboardingState of a resource.",
-          "flatPath": "v1beta2/projects/{projectsId}/onboardingState",
-          "httpMethod": "GET",
-          "id": "securitycenter.projects.getOnboardingState",
-          "parameterOrder": [
-            "name"
-          ],
-          "parameters": {
-            "name": {
-              "description": "Required. The name of the OnboardingState to retrieve. Formats: * organizations/{organization}/onboardingState * folders/{folder}/onboardingState * projects/{project}/onboardingState",
-              "location": "path",
-              "pattern": "^projects/[^/]+/onboardingState$",
-              "required": true,
-              "type": "string"
-            }
-          },
-          "path": "v1beta2/{+name}",
-          "response": {
-            "$ref": "OnboardingState"
-          },
-          "scopes": [
-            "https://www.googleapis.com/auth/cloud-platform"
-          ]
-        },
         "getRapidVulnerabilityDetectionSettings": {
           "description": "Get the RapidVulnerabilityDetectionSettings resource. In the returned settings response, a missing field only indicates that it was not explicitly set, so no assumption should be made about these fields. In other words, GetRapidVulnerabilityDetectionSettings does not calculate the effective service settings for the resource, which accounts for inherited settings and defaults. Instead, use CalculateRapidVulnerabilityDetectionSettings for this purpose.",
           "flatPath": "v1beta2/projects/{projectsId}/rapidVulnerabilityDetectionSettings",
@@ -1981,7 +1906,7 @@
       }
     }
   },
-  "revision": "20230914",
+  "revision": "20231001",
   "rootUrl": "https://securitycenter.googleapis.com/",
   "schemas": {
     "Access": {
@@ -2914,6 +2839,13 @@
           "$ref": "Kubernetes",
           "description": "Kubernetes resources associated with the finding."
         },
+        "loadBalancers": {
+          "description": "The load balancers associated with the finding.",
+          "items": {
+            "$ref": "LoadBalancer"
+          },
+          "type": "array"
+        },
         "mitreAttack": {
           "$ref": "MitreAttack",
           "description": "MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org"
@@ -2981,6 +2913,10 @@
           "description": "Output only. User specified security marks. These marks are entirely managed by the user and come from the SecurityMarks resource that belongs to the finding.",
           "readOnly": true
         },
+        "securityPosture": {
+          "$ref": "SecurityPosture",
+          "description": "The security posture associated with the finding."
+        },
         "severity": {
           "description": "The severity of the finding. This field is managed by the source that writes the finding.",
           "enum": [
@@ -3906,6 +3842,13 @@
           },
           "type": "array"
         },
+        "objects": {
+          "description": "Kubernetes objects related to the finding.",
+          "items": {
+            "$ref": "Object"
+          },
+          "type": "array"
+        },
         "pods": {
           "description": "Kubernetes [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod) associated with the finding. This field contains Pod records for each container that is owned by a Pod.",
           "items": {
@@ -3938,6 +3881,17 @@
       },
       "type": "object"
     },
+    "LoadBalancer": {
+      "description": "Contains information related to the load balancer associated with the finding.",
+      "id": "LoadBalancer",
+      "properties": {
+        "name": {
+          "description": "The name of the load balancer associated with the finding.",
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
     "MemoryHashSignature": {
       "description": "A signature corresponding to memory page hashes.",
       "id": "MemoryHashSignature",
@@ -4245,26 +4199,24 @@
       },
       "type": "object"
     },
-    "OnboardingState": {
-      "description": "Resource capturing onboarding information for a given CRM resource.",
-      "id": "OnboardingState",
+    "Object": {
+      "description": "Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview.",
+      "id": "Object",
       "properties": {
+        "group": {
+          "description": "Kubernetes object group, such as \"policy.k8s.io/v1\".",
+          "type": "string"
+        },
+        "kind": {
+          "description": "Kubernetes object kind, such as \u201cNamespace\u201d.",
+          "type": "string"
+        },
         "name": {
-          "description": "The resource name of the OnboardingState. Format: organizations/{organization}/onboardingState Format: folders/{folder}/onboardingState Format: projects/{project}/onboardingState",
+          "description": "Kubernetes object name. For details see https://kubernetes.io/docs/concepts/overview/working-with-objects/names/.",
           "type": "string"
         },
-        "onboardingLevel": {
-          "description": "Describes the level a given organization, folder, or project is onboarded with SCC. If the resource wasn't onboarded, NOT_FOUND would have been thrown.",
-          "enum": [
-            "ONBOARDING_LEVEL_UNSPECIFIED",
-            "ONBOARDING_LEVEL_PROJECT",
-            "ONBOARDING_LEVEL_ORGANIZATION"
-          ],
-          "enumDescriptions": [
-            "Unused.",
-            "This resource is onboarded at the project level. Only possible for projects.",
-            "This resource is onboarded at the organization level. Possible for organizations, folders, and projects."
-          ],
+        "ns": {
+          "description": "Kubernetes object namespace. Must be a valid DNS label. Named \"ns\" to avoid collision with C++ namespace keyword. For details see https://kubernetes.io/docs/tasks/administer-cluster/namespaces/.",
           "type": "string"
         }
       },
@@ -4549,6 +4501,33 @@
       },
       "type": "object"
     },
+    "SecurityPosture": {
+      "description": "Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud.",
+      "id": "SecurityPosture",
+      "properties": {
+        "changedPolicy": {
+          "description": "The name of the policy that has been updated, for example, `projects/{project_id}/policies/{constraint_name}`.",
+          "type": "string"
+        },
+        "name": {
+          "description": "Name of the posture, for example, `organizations/{org_id}/locations/{location}/postures/{posture_name}`.",
+          "type": "string"
+        },
+        "postureDeployment": {
+          "description": "The name of the posture deployment, for example, `projects/{project_id}/posturedeployments/{posture_deployment_id}`.",
+          "type": "string"
+        },
+        "postureDeploymentResource": {
+          "description": "The project, folder, or organization on which the posture is deployed, for example, `projects/{project_id}`.",
+          "type": "string"
+        },
+        "revisionId": {
+          "description": "The version of the posture, for example, `c7cfa2a8`.",
+          "type": "string"
+        }
+      },
+      "type": "object"
+    },
     "ServiceAccountDelegationInfo": {
       "description": "Identity delegation history of an authenticated service account.",
       "id": "ServiceAccountDelegationInfo",