From 985124a112fa88e2bac8905dbaf0e574aa32a24f Mon Sep 17 00:00:00 2001 From: Yoshi Automation Date: Wed, 24 May 2023 18:27:04 +0000 Subject: [PATCH] feat(containeranalysis): update the api #### containeranalysis:v1 The following keys were deleted: - resources.projects.resources.resources.methods.generatePackagesSummary (Total Keys: 12) - schemas.GeneratePackagesSummaryRequest (Total Keys: 2) - schemas.LicensesSummary (Total Keys: 5) - schemas.PackagesSummaryResponse (Total Keys: 4) The following keys were added: - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1Artifacts.properties.npmPackages (Total Keys: 2) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsNpmPackage (Total Keys: 4) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1GitSource (Total Keys: 3) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1Results.properties.npmPackages (Total Keys: 2) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1Source.properties.gitSource.$ref (Total Keys: 1) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedNpmPackage (Total Keys: 6) - schemas.Note.properties.sbomReference.$ref (Total Keys: 1) - schemas.Occurrence.properties.sbomReference.$ref (Total Keys: 1) - schemas.SBOMReferenceNote (Total Keys: 4) - schemas.SBOMReferenceOccurrence (Total Keys: 6) - schemas.SbomReferenceIntotoPayload (Total Keys: 7) - schemas.SbomReferenceIntotoPredicate (Total Keys: 7) #### containeranalysis:v1alpha1 The following keys were added: - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1Artifacts.properties.npmPackages (Total Keys: 2) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsNpmPackage (Total Keys: 4) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1GitSource (Total Keys: 3) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1Results.properties.npmPackages (Total Keys: 2) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1Source.properties.gitSource.$ref (Total Keys: 1) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedNpmPackage (Total Keys: 6) #### containeranalysis:v1beta1 The following keys were added: - resources.projects.resources.resources.methods.generatePackagesSummary (Total Keys: 12) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1Artifacts.properties.npmPackages (Total Keys: 2) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsNpmPackage (Total Keys: 4) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1GitSource (Total Keys: 3) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1Results.properties.npmPackages (Total Keys: 2) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1Source.properties.gitSource.$ref (Total Keys: 1) - schemas.ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedNpmPackage (Total Keys: 6) - schemas.GeneratePackagesSummaryRequest (Total Keys: 2) - schemas.LicensesSummary (Total Keys: 5) - schemas.PackagesSummaryResponse (Total Keys: 4) --- docs/dyn/containeranalysis_v1.projects.html | 5 - .../containeranalysis_v1.projects.notes.html | 32 ++ ...nalysis_v1.projects.notes.occurrences.html | 29 ++ ...aineranalysis_v1.projects.occurrences.html | 236 ++++++++++++++ .../containeranalysis_v1beta1.projects.html | 5 + ...eranalysis_v1beta1.projects.resources.html | 120 +++++++ .../documents/containeranalysis.v1.json | 295 ++++++++++++------ .../documents/containeranalysis.v1alpha1.json | 86 ++++- .../documents/containeranalysis.v1beta1.json | 166 +++++++++- 9 files changed, 870 insertions(+), 104 deletions(-) create mode 100644 docs/dyn/containeranalysis_v1beta1.projects.resources.html diff --git a/docs/dyn/containeranalysis_v1.projects.html b/docs/dyn/containeranalysis_v1.projects.html index 9f0862168e6..ca9c83e58db 100644 --- a/docs/dyn/containeranalysis_v1.projects.html +++ b/docs/dyn/containeranalysis_v1.projects.html @@ -84,11 +84,6 @@

Instance Methods

Returns the occurrences Resource.

-

- resources() -

-

Returns the resources Resource.

-

close()

Close httplib2 connections.

diff --git a/docs/dyn/containeranalysis_v1.projects.notes.html b/docs/dyn/containeranalysis_v1.projects.notes.html index 7668edcd995..043d4acbcaa 100644 --- a/docs/dyn/containeranalysis_v1.projects.notes.html +++ b/docs/dyn/containeranalysis_v1.projects.notes.html @@ -232,6 +232,10 @@

Method Details

"url": "A String", # Specific URL associated with the resource. }, ], + "sbomReference": { # The note representing an SBOM reference. # A note describing an SBOM reference. + "format": "A String", # The format that SBOM takes. E.g. may be spdx, cyclonedx, etc... + "version": "A String", # The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3. + }, "shortDescription": "A String", # A one sentence description of this note. "updateTime": "A String", # Output only. The time this note was last updated. This field can be used as a filter in list requests. "upgrade": { # An Upgrade Note represents a potential upgrade of a package to a given version. For each package version combination (i.e. bash 4.0, bash 4.1, bash 4.1.2), there will be an Upgrade Note. For Windows, windows_update field represents the information related to the update. # A note describing available package upgrades. @@ -526,6 +530,10 @@

Method Details

"url": "A String", # Specific URL associated with the resource. }, ], + "sbomReference": { # The note representing an SBOM reference. # A note describing an SBOM reference. + "format": "A String", # The format that SBOM takes. E.g. may be spdx, cyclonedx, etc... + "version": "A String", # The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3. + }, "shortDescription": "A String", # A one sentence description of this note. "updateTime": "A String", # Output only. The time this note was last updated. This field can be used as a filter in list requests. "upgrade": { # An Upgrade Note represents a potential upgrade of a package to a given version. For each package version combination (i.e. bash 4.0, bash 4.1, bash 4.1.2), there will be an Upgrade Note. For Windows, windows_update field represents the information related to the update. # A note describing available package upgrades. @@ -825,6 +833,10 @@

Method Details

"url": "A String", # Specific URL associated with the resource. }, ], + "sbomReference": { # The note representing an SBOM reference. # A note describing an SBOM reference. + "format": "A String", # The format that SBOM takes. E.g. may be spdx, cyclonedx, etc... + "version": "A String", # The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3. + }, "shortDescription": "A String", # A one sentence description of this note. "updateTime": "A String", # Output only. The time this note was last updated. This field can be used as a filter in list requests. "upgrade": { # An Upgrade Note represents a potential upgrade of a package to a given version. For each package version combination (i.e. bash 4.0, bash 4.1, bash 4.1.2), there will be an Upgrade Note. For Windows, windows_update field represents the information related to the update. # A note describing available package upgrades. @@ -1116,6 +1128,10 @@

Method Details

"url": "A String", # Specific URL associated with the resource. }, ], + "sbomReference": { # The note representing an SBOM reference. # A note describing an SBOM reference. + "format": "A String", # The format that SBOM takes. E.g. may be spdx, cyclonedx, etc... + "version": "A String", # The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3. + }, "shortDescription": "A String", # A one sentence description of this note. "updateTime": "A String", # Output only. The time this note was last updated. This field can be used as a filter in list requests. "upgrade": { # An Upgrade Note represents a potential upgrade of a package to a given version. For each package version combination (i.e. bash 4.0, bash 4.1, bash 4.1.2), there will be an Upgrade Note. For Windows, windows_update field represents the information related to the update. # A note describing available package upgrades. @@ -1431,6 +1447,10 @@

Method Details

"url": "A String", # Specific URL associated with the resource. }, ], + "sbomReference": { # The note representing an SBOM reference. # A note describing an SBOM reference. + "format": "A String", # The format that SBOM takes. E.g. may be spdx, cyclonedx, etc... + "version": "A String", # The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3. + }, "shortDescription": "A String", # A one sentence description of this note. "updateTime": "A String", # Output only. The time this note was last updated. This field can be used as a filter in list requests. "upgrade": { # An Upgrade Note represents a potential upgrade of a package to a given version. For each package version combination (i.e. bash 4.0, bash 4.1, bash 4.1.2), there will be an Upgrade Note. For Windows, windows_update field represents the information related to the update. # A note describing available package upgrades. @@ -1777,6 +1797,10 @@

Method Details

"url": "A String", # Specific URL associated with the resource. }, ], + "sbomReference": { # The note representing an SBOM reference. # A note describing an SBOM reference. + "format": "A String", # The format that SBOM takes. E.g. may be spdx, cyclonedx, etc... + "version": "A String", # The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3. + }, "shortDescription": "A String", # A one sentence description of this note. "updateTime": "A String", # Output only. The time this note was last updated. This field can be used as a filter in list requests. "upgrade": { # An Upgrade Note represents a potential upgrade of a package to a given version. For each package version combination (i.e. bash 4.0, bash 4.1, bash 4.1.2), there will be an Upgrade Note. For Windows, windows_update field represents the information related to the update. # A note describing available package upgrades. @@ -2085,6 +2109,10 @@

Method Details

"url": "A String", # Specific URL associated with the resource. }, ], + "sbomReference": { # The note representing an SBOM reference. # A note describing an SBOM reference. + "format": "A String", # The format that SBOM takes. E.g. may be spdx, cyclonedx, etc... + "version": "A String", # The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3. + }, "shortDescription": "A String", # A one sentence description of this note. "updateTime": "A String", # Output only. The time this note was last updated. This field can be used as a filter in list requests. "upgrade": { # An Upgrade Note represents a potential upgrade of a package to a given version. For each package version combination (i.e. bash 4.0, bash 4.1, bash 4.1.2), there will be an Upgrade Note. For Windows, windows_update field represents the information related to the update. # A note describing available package upgrades. @@ -2376,6 +2404,10 @@

Method Details

"url": "A String", # Specific URL associated with the resource. }, ], + "sbomReference": { # The note representing an SBOM reference. # A note describing an SBOM reference. + "format": "A String", # The format that SBOM takes. E.g. may be spdx, cyclonedx, etc... + "version": "A String", # The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3. + }, "shortDescription": "A String", # A one sentence description of this note. "updateTime": "A String", # Output only. The time this note was last updated. This field can be used as a filter in list requests. "upgrade": { # An Upgrade Note represents a potential upgrade of a package to a given version. For each package version combination (i.e. bash 4.0, bash 4.1, bash 4.1.2), there will be an Upgrade Note. For Windows, windows_update field represents the information related to the update. # A note describing available package upgrades. diff --git a/docs/dyn/containeranalysis_v1.projects.notes.occurrences.html b/docs/dyn/containeranalysis_v1.projects.notes.occurrences.html index a3b5f29c850..3ad1ea45518 100644 --- a/docs/dyn/containeranalysis_v1.projects.notes.occurrences.html +++ b/docs/dyn/containeranalysis_v1.projects.notes.occurrences.html @@ -657,6 +657,35 @@

Method Details

}, "remediation": "A String", # A description of actions that can be taken to remedy the note. "resourceUri": "A String", # Required. Immutable. A URI that represents the resource for which the occurrence applies. For example, `https://gcr.io/project/image@sha256:123abc` for a Docker image. + "sbomReference": { # The occurrence representing an SBOM reference as applied to a specific resource. The occurrence follows the DSSE specification. See https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more details. # Describes a specific SBOM reference occurrences. + "payload": { # The actual payload that contains the SBOM Reference data. The payload follows the intoto statement specification. See https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md for more details. # The actual payload that contains the SBOM reference data. + "_type": "A String", # Identifier for the schema of the Statement. + "predicate": { # A predicate which describes the SBOM being referenced. # Additional parameters of the Predicate. Includes the actual data about the SBOM. + "digest": { # A map of algorithm to digest of the contents of the SBOM. + "a_key": "A String", + }, + "location": "A String", # The location of the SBOM. + "mimeType": "A String", # The mime type of the SBOM. + "referrerId": "A String", # The person or system referring this predicate to the consumer. + }, + "predicateType": "A String", # URI identifying the type of the Predicate. + "subject": [ # Set of software artifacts that the attestation applies to. Each element represents a single software artifact. + { + "digest": { # `"": ""` Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob/main/spec/field_types.md#DigestSet + "a_key": "A String", + }, + "name": "A String", + }, + ], + }, + "payloadType": "A String", # The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'. + "signatures": [ # The signatures over the payload. + { + "keyid": "A String", + "sig": "A String", + }, + ], + }, "updateTime": "A String", # Output only. The time this occurrence was last updated. "upgrade": { # An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability). For Windows, both distribution and windows_update contain information for the Windows update. # Describes an available package upgrade on the linked resource. "distribution": { # The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE). Some distributions have additional metadata around updates, classifying them into various categories and severities. # Metadata about the upgrade for available for the specific operating system for the resource_url. This allows efficient filtering, as well as making it easier to use the occurrence. diff --git a/docs/dyn/containeranalysis_v1.projects.occurrences.html b/docs/dyn/containeranalysis_v1.projects.occurrences.html index 5d0187b42cf..9dbc0b4c9e7 100644 --- a/docs/dyn/containeranalysis_v1.projects.occurrences.html +++ b/docs/dyn/containeranalysis_v1.projects.occurrences.html @@ -673,6 +673,35 @@

Method Details

}, "remediation": "A String", # A description of actions that can be taken to remedy the note. "resourceUri": "A String", # Required. Immutable. A URI that represents the resource for which the occurrence applies. For example, `https://gcr.io/project/image@sha256:123abc` for a Docker image. + "sbomReference": { # The occurrence representing an SBOM reference as applied to a specific resource. The occurrence follows the DSSE specification. See https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more details. # Describes a specific SBOM reference occurrences. + "payload": { # The actual payload that contains the SBOM Reference data. The payload follows the intoto statement specification. See https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md for more details. # The actual payload that contains the SBOM reference data. + "_type": "A String", # Identifier for the schema of the Statement. + "predicate": { # A predicate which describes the SBOM being referenced. # Additional parameters of the Predicate. Includes the actual data about the SBOM. + "digest": { # A map of algorithm to digest of the contents of the SBOM. + "a_key": "A String", + }, + "location": "A String", # The location of the SBOM. + "mimeType": "A String", # The mime type of the SBOM. + "referrerId": "A String", # The person or system referring this predicate to the consumer. + }, + "predicateType": "A String", # URI identifying the type of the Predicate. + "subject": [ # Set of software artifacts that the attestation applies to. Each element represents a single software artifact. + { + "digest": { # `"": ""` Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob/main/spec/field_types.md#DigestSet + "a_key": "A String", + }, + "name": "A String", + }, + ], + }, + "payloadType": "A String", # The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'. + "signatures": [ # The signatures over the payload. + { + "keyid": "A String", + "sig": "A String", + }, + ], + }, "updateTime": "A String", # Output only. The time this occurrence was last updated. "upgrade": { # An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability). For Windows, both distribution and windows_update contain information for the Windows update. # Describes an available package upgrade on the linked resource. "distribution": { # The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE). Some distributions have additional metadata around updates, classifying them into various categories and severities. # Metadata about the upgrade for available for the specific operating system for the resource_url. This allows efficient filtering, as well as making it easier to use the occurrence. @@ -1378,6 +1407,35 @@

Method Details

}, "remediation": "A String", # A description of actions that can be taken to remedy the note. "resourceUri": "A String", # Required. Immutable. A URI that represents the resource for which the occurrence applies. For example, `https://gcr.io/project/image@sha256:123abc` for a Docker image. + "sbomReference": { # The occurrence representing an SBOM reference as applied to a specific resource. The occurrence follows the DSSE specification. See https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more details. # Describes a specific SBOM reference occurrences. + "payload": { # The actual payload that contains the SBOM Reference data. The payload follows the intoto statement specification. See https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md for more details. # The actual payload that contains the SBOM reference data. + "_type": "A String", # Identifier for the schema of the Statement. + "predicate": { # A predicate which describes the SBOM being referenced. # Additional parameters of the Predicate. Includes the actual data about the SBOM. + "digest": { # A map of algorithm to digest of the contents of the SBOM. + "a_key": "A String", + }, + "location": "A String", # The location of the SBOM. + "mimeType": "A String", # The mime type of the SBOM. + "referrerId": "A String", # The person or system referring this predicate to the consumer. + }, + "predicateType": "A String", # URI identifying the type of the Predicate. + "subject": [ # Set of software artifacts that the attestation applies to. Each element represents a single software artifact. + { + "digest": { # `"": ""` Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob/main/spec/field_types.md#DigestSet + "a_key": "A String", + }, + "name": "A String", + }, + ], + }, + "payloadType": "A String", # The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'. + "signatures": [ # The signatures over the payload. + { + "keyid": "A String", + "sig": "A String", + }, + ], + }, "updateTime": "A String", # Output only. The time this occurrence was last updated. "upgrade": { # An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability). For Windows, both distribution and windows_update contain information for the Windows update. # Describes an available package upgrade on the linked resource. "distribution": { # The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE). Some distributions have additional metadata around updates, classifying them into various categories and severities. # Metadata about the upgrade for available for the specific operating system for the resource_url. This allows efficient filtering, as well as making it easier to use the occurrence. @@ -2088,6 +2146,35 @@

Method Details

}, "remediation": "A String", # A description of actions that can be taken to remedy the note. "resourceUri": "A String", # Required. Immutable. A URI that represents the resource for which the occurrence applies. For example, `https://gcr.io/project/image@sha256:123abc` for a Docker image. + "sbomReference": { # The occurrence representing an SBOM reference as applied to a specific resource. The occurrence follows the DSSE specification. See https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more details. # Describes a specific SBOM reference occurrences. + "payload": { # The actual payload that contains the SBOM Reference data. The payload follows the intoto statement specification. See https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md for more details. # The actual payload that contains the SBOM reference data. + "_type": "A String", # Identifier for the schema of the Statement. + "predicate": { # A predicate which describes the SBOM being referenced. # Additional parameters of the Predicate. Includes the actual data about the SBOM. + "digest": { # A map of algorithm to digest of the contents of the SBOM. + "a_key": "A String", + }, + "location": "A String", # The location of the SBOM. + "mimeType": "A String", # The mime type of the SBOM. + "referrerId": "A String", # The person or system referring this predicate to the consumer. + }, + "predicateType": "A String", # URI identifying the type of the Predicate. + "subject": [ # Set of software artifacts that the attestation applies to. Each element represents a single software artifact. + { + "digest": { # `"": ""` Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob/main/spec/field_types.md#DigestSet + "a_key": "A String", + }, + "name": "A String", + }, + ], + }, + "payloadType": "A String", # The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'. + "signatures": [ # The signatures over the payload. + { + "keyid": "A String", + "sig": "A String", + }, + ], + }, "updateTime": "A String", # Output only. The time this occurrence was last updated. "upgrade": { # An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability). For Windows, both distribution and windows_update contain information for the Windows update. # Describes an available package upgrade on the linked resource. "distribution": { # The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE). Some distributions have additional metadata around updates, classifying them into various categories and severities. # Metadata about the upgrade for available for the specific operating system for the resource_url. This allows efficient filtering, as well as making it easier to use the occurrence. @@ -2789,6 +2876,35 @@

Method Details

}, "remediation": "A String", # A description of actions that can be taken to remedy the note. "resourceUri": "A String", # Required. Immutable. A URI that represents the resource for which the occurrence applies. For example, `https://gcr.io/project/image@sha256:123abc` for a Docker image. + "sbomReference": { # The occurrence representing an SBOM reference as applied to a specific resource. The occurrence follows the DSSE specification. See https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more details. # Describes a specific SBOM reference occurrences. + "payload": { # The actual payload that contains the SBOM Reference data. The payload follows the intoto statement specification. See https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md for more details. # The actual payload that contains the SBOM reference data. + "_type": "A String", # Identifier for the schema of the Statement. + "predicate": { # A predicate which describes the SBOM being referenced. # Additional parameters of the Predicate. Includes the actual data about the SBOM. + "digest": { # A map of algorithm to digest of the contents of the SBOM. + "a_key": "A String", + }, + "location": "A String", # The location of the SBOM. + "mimeType": "A String", # The mime type of the SBOM. + "referrerId": "A String", # The person or system referring this predicate to the consumer. + }, + "predicateType": "A String", # URI identifying the type of the Predicate. + "subject": [ # Set of software artifacts that the attestation applies to. Each element represents a single software artifact. + { + "digest": { # `"": ""` Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob/main/spec/field_types.md#DigestSet + "a_key": "A String", + }, + "name": "A String", + }, + ], + }, + "payloadType": "A String", # The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'. + "signatures": [ # The signatures over the payload. + { + "keyid": "A String", + "sig": "A String", + }, + ], + }, "updateTime": "A String", # Output only. The time this occurrence was last updated. "upgrade": { # An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability). For Windows, both distribution and windows_update contain information for the Windows update. # Describes an available package upgrade on the linked resource. "distribution": { # The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE). Some distributions have additional metadata around updates, classifying them into various categories and severities. # Metadata about the upgrade for available for the specific operating system for the resource_url. This allows efficient filtering, as well as making it easier to use the occurrence. @@ -3515,6 +3631,35 @@

Method Details

}, "remediation": "A String", # A description of actions that can be taken to remedy the note. "resourceUri": "A String", # Required. Immutable. A URI that represents the resource for which the occurrence applies. For example, `https://gcr.io/project/image@sha256:123abc` for a Docker image. + "sbomReference": { # The occurrence representing an SBOM reference as applied to a specific resource. The occurrence follows the DSSE specification. See https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more details. # Describes a specific SBOM reference occurrences. + "payload": { # The actual payload that contains the SBOM Reference data. The payload follows the intoto statement specification. See https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md for more details. # The actual payload that contains the SBOM reference data. + "_type": "A String", # Identifier for the schema of the Statement. + "predicate": { # A predicate which describes the SBOM being referenced. # Additional parameters of the Predicate. Includes the actual data about the SBOM. + "digest": { # A map of algorithm to digest of the contents of the SBOM. + "a_key": "A String", + }, + "location": "A String", # The location of the SBOM. + "mimeType": "A String", # The mime type of the SBOM. + "referrerId": "A String", # The person or system referring this predicate to the consumer. + }, + "predicateType": "A String", # URI identifying the type of the Predicate. + "subject": [ # Set of software artifacts that the attestation applies to. Each element represents a single software artifact. + { + "digest": { # `"": ""` Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob/main/spec/field_types.md#DigestSet + "a_key": "A String", + }, + "name": "A String", + }, + ], + }, + "payloadType": "A String", # The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'. + "signatures": [ # The signatures over the payload. + { + "keyid": "A String", + "sig": "A String", + }, + ], + }, "updateTime": "A String", # Output only. The time this occurrence was last updated. "upgrade": { # An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability). For Windows, both distribution and windows_update contain information for the Windows update. # Describes an available package upgrade on the linked resource. "distribution": { # The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE). Some distributions have additional metadata around updates, classifying them into various categories and severities. # Metadata about the upgrade for available for the specific operating system for the resource_url. This allows efficient filtering, as well as making it easier to use the occurrence. @@ -3826,6 +3971,10 @@

Method Details

"url": "A String", # Specific URL associated with the resource. }, ], + "sbomReference": { # The note representing an SBOM reference. # A note describing an SBOM reference. + "format": "A String", # The format that SBOM takes. E.g. may be spdx, cyclonedx, etc... + "version": "A String", # The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3. + }, "shortDescription": "A String", # A one sentence description of this note. "updateTime": "A String", # Output only. The time this note was last updated. This field can be used as a filter in list requests. "upgrade": { # An Upgrade Note represents a potential upgrade of a package to a given version. For each package version combination (i.e. bash 4.0, bash 4.1, bash 4.1.2), there will be an Upgrade Note. For Windows, windows_update field represents the information related to the update. # A note describing available package upgrades. @@ -4596,6 +4745,35 @@

Method Details

}, "remediation": "A String", # A description of actions that can be taken to remedy the note. "resourceUri": "A String", # Required. Immutable. A URI that represents the resource for which the occurrence applies. For example, `https://gcr.io/project/image@sha256:123abc` for a Docker image. + "sbomReference": { # The occurrence representing an SBOM reference as applied to a specific resource. The occurrence follows the DSSE specification. See https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more details. # Describes a specific SBOM reference occurrences. + "payload": { # The actual payload that contains the SBOM Reference data. The payload follows the intoto statement specification. See https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md for more details. # The actual payload that contains the SBOM reference data. + "_type": "A String", # Identifier for the schema of the Statement. + "predicate": { # A predicate which describes the SBOM being referenced. # Additional parameters of the Predicate. Includes the actual data about the SBOM. + "digest": { # A map of algorithm to digest of the contents of the SBOM. + "a_key": "A String", + }, + "location": "A String", # The location of the SBOM. + "mimeType": "A String", # The mime type of the SBOM. + "referrerId": "A String", # The person or system referring this predicate to the consumer. + }, + "predicateType": "A String", # URI identifying the type of the Predicate. + "subject": [ # Set of software artifacts that the attestation applies to. Each element represents a single software artifact. + { + "digest": { # `"": ""` Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob/main/spec/field_types.md#DigestSet + "a_key": "A String", + }, + "name": "A String", + }, + ], + }, + "payloadType": "A String", # The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'. + "signatures": [ # The signatures over the payload. + { + "keyid": "A String", + "sig": "A String", + }, + ], + }, "updateTime": "A String", # Output only. The time this occurrence was last updated. "upgrade": { # An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability). For Windows, both distribution and windows_update contain information for the Windows update. # Describes an available package upgrade on the linked resource. "distribution": { # The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE). Some distributions have additional metadata around updates, classifying them into various categories and severities. # Metadata about the upgrade for available for the specific operating system for the resource_url. This allows efficient filtering, as well as making it easier to use the occurrence. @@ -5315,6 +5493,35 @@

Method Details

}, "remediation": "A String", # A description of actions that can be taken to remedy the note. "resourceUri": "A String", # Required. Immutable. A URI that represents the resource for which the occurrence applies. For example, `https://gcr.io/project/image@sha256:123abc` for a Docker image. + "sbomReference": { # The occurrence representing an SBOM reference as applied to a specific resource. The occurrence follows the DSSE specification. See https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more details. # Describes a specific SBOM reference occurrences. + "payload": { # The actual payload that contains the SBOM Reference data. The payload follows the intoto statement specification. See https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md for more details. # The actual payload that contains the SBOM reference data. + "_type": "A String", # Identifier for the schema of the Statement. + "predicate": { # A predicate which describes the SBOM being referenced. # Additional parameters of the Predicate. Includes the actual data about the SBOM. + "digest": { # A map of algorithm to digest of the contents of the SBOM. + "a_key": "A String", + }, + "location": "A String", # The location of the SBOM. + "mimeType": "A String", # The mime type of the SBOM. + "referrerId": "A String", # The person or system referring this predicate to the consumer. + }, + "predicateType": "A String", # URI identifying the type of the Predicate. + "subject": [ # Set of software artifacts that the attestation applies to. Each element represents a single software artifact. + { + "digest": { # `"": ""` Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob/main/spec/field_types.md#DigestSet + "a_key": "A String", + }, + "name": "A String", + }, + ], + }, + "payloadType": "A String", # The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'. + "signatures": [ # The signatures over the payload. + { + "keyid": "A String", + "sig": "A String", + }, + ], + }, "updateTime": "A String", # Output only. The time this occurrence was last updated. "upgrade": { # An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability). For Windows, both distribution and windows_update contain information for the Windows update. # Describes an available package upgrade on the linked resource. "distribution": { # The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE). Some distributions have additional metadata around updates, classifying them into various categories and severities. # Metadata about the upgrade for available for the specific operating system for the resource_url. This allows efficient filtering, as well as making it easier to use the occurrence. @@ -6017,6 +6224,35 @@

Method Details

}, "remediation": "A String", # A description of actions that can be taken to remedy the note. "resourceUri": "A String", # Required. Immutable. A URI that represents the resource for which the occurrence applies. For example, `https://gcr.io/project/image@sha256:123abc` for a Docker image. + "sbomReference": { # The occurrence representing an SBOM reference as applied to a specific resource. The occurrence follows the DSSE specification. See https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more details. # Describes a specific SBOM reference occurrences. + "payload": { # The actual payload that contains the SBOM Reference data. The payload follows the intoto statement specification. See https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md for more details. # The actual payload that contains the SBOM reference data. + "_type": "A String", # Identifier for the schema of the Statement. + "predicate": { # A predicate which describes the SBOM being referenced. # Additional parameters of the Predicate. Includes the actual data about the SBOM. + "digest": { # A map of algorithm to digest of the contents of the SBOM. + "a_key": "A String", + }, + "location": "A String", # The location of the SBOM. + "mimeType": "A String", # The mime type of the SBOM. + "referrerId": "A String", # The person or system referring this predicate to the consumer. + }, + "predicateType": "A String", # URI identifying the type of the Predicate. + "subject": [ # Set of software artifacts that the attestation applies to. Each element represents a single software artifact. + { + "digest": { # `"": ""` Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob/main/spec/field_types.md#DigestSet + "a_key": "A String", + }, + "name": "A String", + }, + ], + }, + "payloadType": "A String", # The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'. + "signatures": [ # The signatures over the payload. + { + "keyid": "A String", + "sig": "A String", + }, + ], + }, "updateTime": "A String", # Output only. The time this occurrence was last updated. "upgrade": { # An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability). For Windows, both distribution and windows_update contain information for the Windows update. # Describes an available package upgrade on the linked resource. "distribution": { # The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE). Some distributions have additional metadata around updates, classifying them into various categories and severities. # Metadata about the upgrade for available for the specific operating system for the resource_url. This allows efficient filtering, as well as making it easier to use the occurrence. diff --git a/docs/dyn/containeranalysis_v1beta1.projects.html b/docs/dyn/containeranalysis_v1beta1.projects.html index bea1c3855d3..5d734aa1196 100644 --- a/docs/dyn/containeranalysis_v1beta1.projects.html +++ b/docs/dyn/containeranalysis_v1beta1.projects.html @@ -84,6 +84,11 @@

Instance Methods

Returns the occurrences Resource.

+

+ resources() +

+

Returns the resources Resource.

+

close()

Close httplib2 connections.

diff --git a/docs/dyn/containeranalysis_v1beta1.projects.resources.html b/docs/dyn/containeranalysis_v1beta1.projects.resources.html new file mode 100644 index 00000000000..80337eb74d0 --- /dev/null +++ b/docs/dyn/containeranalysis_v1beta1.projects.resources.html @@ -0,0 +1,120 @@ + + + +

Container Analysis API . projects . resources

+

Instance Methods

+

+ close()

+

Close httplib2 connections.

+

+ generatePackagesSummary(name, body=None, x__xgafv=None)

+

Gets a summary of the packages within a given resource.

+

Method Details

+
+ close() + 
Close httplib2 connections.
+
+ +
+ generatePackagesSummary(name, body=None, x__xgafv=None) + 
Gets a summary of the packages within a given resource.
+
+Args:
+  name: string, Required. The name of the resource to get a packages summary for in the form of `projects/[PROJECT_ID]/resources/[RESOURCE_URL]`. (required)
+  body: object, The request body.
+    The object takes the form of:
+
+{ # GeneratePackagesSummaryRequest is the request body for the GeneratePackagesSummary API method. It just takes a single name argument, referring to the resource.
+}
+
+  x__xgafv: string, V1 error format.
+    Allowed values
+      1 - v1 error format
+      2 - v2 error format
+
+Returns:
+  An object of the form:
+
+    { # A summary of the packages found within the given resource.
+  "licensesSummary": [ # A listing by license name of each of the licenses and their counts.
+    { # Per license count
+      "count": "A String", # The number of fixable vulnerabilities associated with this resource.
+      "license": "A String", # The license of the package. Note that the format of this value is not guaranteed. It may be nil, an empty string, a boolean value (A | B), a differently formed boolean value (A OR B), etc...
+    },
+  ],
+  "resourceUrl": "A String", # The unique URL of the image or the container for which this summary applies.
+}
+
+ + \ No newline at end of file diff --git a/googleapiclient/discovery_cache/documents/containeranalysis.v1.json b/googleapiclient/discovery_cache/documents/containeranalysis.v1.json index 523ae8b794c..cc380a343bf 100644 --- a/googleapiclient/discovery_cache/documents/containeranalysis.v1.json +++ b/googleapiclient/discovery_cache/documents/containeranalysis.v1.json @@ -751,43 +751,11 @@ ] } } - }, - "resources": { - "methods": { - "generatePackagesSummary": { - "description": "Gets a summary of the packages within a given resource.", - "flatPath": "v1/projects/{projectsId}/resources/{resourcesId}:generatePackagesSummary", - "httpMethod": "POST", - "id": "containeranalysis.projects.resources.generatePackagesSummary", - "parameterOrder": [ - "name" - ], - "parameters": { - "name": { - "description": "Required. The name of the resource to get a packages summary for in the form of `projects/[PROJECT_ID]/resources/[RESOURCE_URL]`.", - "location": "path", - "pattern": "^projects/[^/]+/resources/.*$", - "required": true, - "type": "string" - } - }, - "path": "v1/{+name}:generatePackagesSummary", - "request": { - "$ref": "GeneratePackagesSummaryRequest" - }, - "response": { - "$ref": "PackagesSummaryResponse" - }, - "scopes": [ - "https://www.googleapis.com/auth/cloud-platform" - ] - } - } } } } }, - "revision": "20230331", + "revision": "20230512", "rootUrl": "https://containeranalysis.googleapis.com/", "schemas": { "AliasContext": { @@ -1273,9 +1241,11 @@ "enum": [ "ATTACK_COMPLEXITY_UNSPECIFIED", "ATTACK_COMPLEXITY_LOW", - "ATTACK_COMPLEXITY_HIGH" + "ATTACK_COMPLEXITY_HIGH", + "ATTACK_COMPLEXITY_MEDIUM" ], "enumDescriptions": [ + "", "", "", "" @@ -1320,9 +1290,13 @@ "IMPACT_UNSPECIFIED", "IMPACT_HIGH", "IMPACT_LOW", - "IMPACT_NONE" + "IMPACT_NONE", + "IMPACT_PARTIAL", + "IMPACT_COMPLETE" ], "enumDescriptions": [ + "", + "", "", "", "", @@ -1340,9 +1314,13 @@ "IMPACT_UNSPECIFIED", "IMPACT_HIGH", "IMPACT_LOW", - "IMPACT_NONE" + "IMPACT_NONE", + "IMPACT_PARTIAL", + "IMPACT_COMPLETE" ], "enumDescriptions": [ + "", + "", "", "", "", @@ -1363,9 +1341,13 @@ "IMPACT_UNSPECIFIED", "IMPACT_HIGH", "IMPACT_LOW", - "IMPACT_NONE" + "IMPACT_NONE", + "IMPACT_PARTIAL", + "IMPACT_COMPLETE" ], "enumDescriptions": [ + "", + "", "", "", "", @@ -1818,6 +1800,13 @@ }, "type": "array" }, + "npmPackages": { + "description": "A list of npm packages to be uploaded to Artifact Registry upon successful completion of all build steps. Npm packages in the specified paths will be uploaded to the specified Artifact Registry repository using the builder service account's credentials. If any packages fail to be pushed, the build is marked FAILURE.", + "items": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsNpmPackage" + }, + "type": "array" + }, "objects": { "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsArtifactObjects", "description": "A list of objects to be uploaded to Cloud Storage upon successful completion of all build steps. Files in the workspace matching specified paths globs will be uploaded to the specified Cloud Storage location using the builder service account's credentials. The location and generation of the uploaded objects will be stored in the Build resource's results field. If any objects fail to be pushed, the build is marked FAILURE." @@ -1882,6 +1871,21 @@ }, "type": "object" }, + "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsNpmPackage": { + "description": "Npm package to upload to Artifact Registry upon successful completion of all build steps.", + "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsNpmPackage", + "properties": { + "packagePath": { + "description": "Path to the package.json. e.g. workspace/path/to/package", + "type": "string" + }, + "repository": { + "description": "Artifact Registry repository, in the form \"https://$REGION-npm.pkg.dev/$PROJECT/$REPOSITORY\" Npm package in the workspace specified by path will be zipped and uploaded to Artifact Registry with this location as a prefix.", + "type": "string" + } + }, + "type": "object" + }, "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsPythonPackage": { "description": "Python package to upload to Artifact Registry upon successful completion of all build steps. A package can encapsulate multiple objects to be uploaded to a single repository.", "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsPythonPackage", @@ -2271,12 +2275,14 @@ "enum": [ "NONE", "SHA256", - "MD5" + "MD5", + "SHA512" ], "enumDescriptions": [ "No hash requested.", "Use a sha256 hash.", - "Use a md5 hash." + "Use a md5 hash.", + "Use a sha512 hash." ], "type": "string" }, @@ -2504,6 +2510,25 @@ }, "type": "object" }, + "ContaineranalysisGoogleDevtoolsCloudbuildV1GitSource": { + "description": "Location of the source in any accessible Git repository.", + "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1GitSource", + "properties": { + "dir": { + "description": "Directory, relative to the source root, in which to run the build. This must be a relative path. If a step's `dir` is specified and is an absolute path, this value is ignored for that step's execution.", + "type": "string" + }, + "revision": { + "description": "The revision to fetch from the Git repository such as a branch, a tag, a commit SHA, or any Git ref. Cloud Build uses `git fetch` to fetch the revision from the Git repository; therefore make sure that the string you provide for `revision` is parsable by the command. For information on string values accepted by `git fetch`, see https://git-scm.com/docs/gitrevisions#_specifying_revisions. For information on `git fetch`, see https://git-scm.com/docs/git-fetch.", + "type": "string" + }, + "url": { + "description": "Location of the Git repo to build. This will be used as a `git remote`, see https://git-scm.com/docs/git-remote.", + "type": "string" + } + }, + "type": "object" + }, "ContaineranalysisGoogleDevtoolsCloudbuildV1Hash": { "description": "Container message for hash values.", "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1Hash", @@ -2513,12 +2538,14 @@ "enum": [ "NONE", "SHA256", - "MD5" + "MD5", + "SHA512" ], "enumDescriptions": [ "No hash requested.", "Use a sha256 hash.", - "Use a md5 hash." + "Use a md5 hash.", + "Use a sha512 hash." ], "type": "string" }, @@ -2632,6 +2659,13 @@ }, "type": "array" }, + "npmPackages": { + "description": "Npm packages uploaded to Artifact Registry at the end of the build.", + "items": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedNpmPackage" + }, + "type": "array" + }, "numArtifacts": { "description": "Number of non-container artifacts uploaded to Cloud Storage. Only populated when artifacts are uploaded to Cloud Storage.", "format": "int64", @@ -2706,6 +2740,10 @@ "description": "Location of the source in a supported storage service.", "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1Source", "properties": { + "gitSource": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1GitSource", + "description": "If provided, get the source from this Git repository." + }, "repoSource": { "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1RepoSource", "description": "If provided, get the source from this location in a Cloud Source Repository." @@ -2825,6 +2863,26 @@ }, "type": "object" }, + "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedNpmPackage": { + "description": "An npm package uploaded to Artifact Registry using the NpmPackage directive.", + "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedNpmPackage", + "properties": { + "fileHashes": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1FileHashes", + "description": "Hash types and values of the npm package." + }, + "pushTiming": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1TimeSpan", + "description": "Output only. Stores timing information for pushing the specified artifact.", + "readOnly": true + }, + "uri": { + "description": "URI of the uploaded npm package.", + "type": "string" + } + }, + "type": "object" + }, "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedPythonPackage": { "description": "Artifact uploaded using the PythonPackage directive.", "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedPythonPackage", @@ -3059,7 +3117,8 @@ "UPGRADE", "COMPLIANCE", "DSSE_ATTESTATION", - "VULNERABILITY_ASSESSMENT" + "VULNERABILITY_ASSESSMENT", + "SBOM_REFERENCE" ], "enumDescriptions": [ "Default value. This value is unused.", @@ -3073,7 +3132,8 @@ "This represents an available package upgrade.", "This represents a Compliance Note", "This represents a DSSE attestation Note", - "This represents a Vulnerability Assessment." + "This represents a Vulnerability Assessment.", + "This represents an SBOM Reference." ], "type": "string" } @@ -3332,12 +3392,6 @@ }, "type": "object" }, - "GeneratePackagesSummaryRequest": { - "description": "GeneratePackagesSummaryRequest is the request body for the GeneratePackagesSummary API method. It just takes a single name argument, referring to the resource.", - "id": "GeneratePackagesSummaryRequest", - "properties": {}, - "type": "object" - }, "GerritSourceContext": { "description": "A SourceContext referring to a Gerrit project.", "id": "GerritSourceContext", @@ -3760,22 +3814,6 @@ }, "type": "object" }, - "LicensesSummary": { - "description": "Per license count", - "id": "LicensesSummary", - "properties": { - "count": { - "description": "The number of fixable vulnerabilities associated with this resource.", - "format": "int64", - "type": "string" - }, - "license": { - "description": "The license of the package. Note that the format of this value is not guaranteed. It may be nil, an empty string, a boolean value (A | B), a differently formed boolean value (A OR B), etc...", - "type": "string" - } - }, - "type": "object" - }, "ListNoteOccurrencesResponse": { "description": "Response for listing occurrences for a note.", "id": "ListNoteOccurrencesResponse", @@ -3968,7 +4006,8 @@ "UPGRADE", "COMPLIANCE", "DSSE_ATTESTATION", - "VULNERABILITY_ASSESSMENT" + "VULNERABILITY_ASSESSMENT", + "SBOM_REFERENCE" ], "enumDescriptions": [ "Default value. This value is unused.", @@ -3982,7 +4021,8 @@ "This represents an available package upgrade.", "This represents a Compliance Note", "This represents a DSSE attestation Note", - "This represents a Vulnerability Assessment." + "This represents a Vulnerability Assessment.", + "This represents an SBOM Reference." ], "type": "string" }, @@ -4012,6 +4052,10 @@ }, "type": "array" }, + "sbomReference": { + "$ref": "SBOMReferenceNote", + "description": "A note describing an SBOM reference." + }, "shortDescription": { "description": "A one sentence description of this note.", "type": "string" @@ -4091,7 +4135,8 @@ "UPGRADE", "COMPLIANCE", "DSSE_ATTESTATION", - "VULNERABILITY_ASSESSMENT" + "VULNERABILITY_ASSESSMENT", + "SBOM_REFERENCE" ], "enumDescriptions": [ "Default value. This value is unused.", @@ -4105,7 +4150,8 @@ "This represents an available package upgrade.", "This represents a Compliance Note", "This represents a DSSE attestation Note", - "This represents a Vulnerability Assessment." + "This represents a Vulnerability Assessment.", + "This represents an SBOM Reference." ], "type": "string" }, @@ -4129,6 +4175,10 @@ "description": "Required. Immutable. A URI that represents the resource for which the occurrence applies. For example, `https://gcr.io/project/image@sha256:123abc` for a Docker image.", "type": "string" }, + "sbomReference": { + "$ref": "SBOMReferenceOccurrence", + "description": "Describes a specific SBOM reference occurrences." + }, "updateTime": { "description": "Output only. The time this occurrence was last updated.", "format": "google-datetime", @@ -4332,24 +4382,6 @@ }, "type": "object" }, - "PackagesSummaryResponse": { - "description": "A summary of the packages found within the given resource.", - "id": "PackagesSummaryResponse", - "properties": { - "licensesSummary": { - "description": "A listing by license name of each of the licenses and their counts.", - "items": { - "$ref": "LicensesSummary" - }, - "type": "array" - }, - "resourceUrl": { - "description": "The unique URL of the image or the container for which this summary applies.", - "type": "string" - } - }, - "type": "object" - }, "Policy": { "description": "An Identity and Access Management (IAM) policy, which specifies access controls for Google Cloud resources. A `Policy` is a collection of `bindings`. A `binding` binds one or more `members`, or principals, to a single `role`. Principals can be user accounts, service accounts, Google groups, and domains (such as G Suite). A `role` is a named list of permissions; each `role` can be an IAM predefined role or a user-created custom role. For some types of Google Cloud resources, a `binding` can also specify a `condition`, which is a logical expression that allows access to a resource only if the expression evaluates to `true`. A condition can add constraints based on attributes of the request, the resource, or both. To learn which resources support conditions in their IAM policies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies). **JSON example:** { \"bindings\": [ { \"role\": \"roles/resourcemanager.organizationAdmin\", \"members\": [ \"user:mike@example.com\", \"group:admins@example.com\", \"domain:google.com\", \"serviceAccount:my-project-id@appspot.gserviceaccount.com\" ] }, { \"role\": \"roles/resourcemanager.organizationViewer\", \"members\": [ \"user:eve@example.com\" ], \"condition\": { \"title\": \"expirable access\", \"description\": \"Does not grant access after Sep 2020\", \"expression\": \"request.time < timestamp('2020-10-01T00:00:00.000Z')\", } } ], \"etag\": \"BwWWja0YfJA=\", \"version\": 3 } **YAML example:** bindings: - members: - user:mike@example.com - group:admins@example.com - domain:google.com - serviceAccount:my-project-id@appspot.gserviceaccount.com role: roles/resourcemanager.organizationAdmin - members: - user:eve@example.com role: roles/resourcemanager.organizationViewer condition: title: expirable access description: Does not grant access after Sep 2020 expression: request.time < timestamp('2020-10-01T00:00:00.000Z') etag: BwWWja0YfJA= version: 3 For a description of IAM and its features, see the [IAM documentation](https://cloud.google.com/iam/docs/).", "id": "Policy", @@ -4534,6 +4566,95 @@ }, "type": "object" }, + "SBOMReferenceNote": { + "description": "The note representing an SBOM reference.", + "id": "SBOMReferenceNote", + "properties": { + "format": { + "description": "The format that SBOM takes. E.g. may be spdx, cyclonedx, etc...", + "type": "string" + }, + "version": { + "description": "The version of the format that the SBOM takes. E.g. if the format is spdx, the version may be 2.3.", + "type": "string" + } + }, + "type": "object" + }, + "SBOMReferenceOccurrence": { + "description": "The occurrence representing an SBOM reference as applied to a specific resource. The occurrence follows the DSSE specification. See https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more details.", + "id": "SBOMReferenceOccurrence", + "properties": { + "payload": { + "$ref": "SbomReferenceIntotoPayload", + "description": "The actual payload that contains the SBOM reference data." + }, + "payloadType": { + "description": "The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'.", + "type": "string" + }, + "signatures": { + "description": "The signatures over the payload.", + "items": { + "$ref": "EnvelopeSignature" + }, + "type": "array" + } + }, + "type": "object" + }, + "SbomReferenceIntotoPayload": { + "description": "The actual payload that contains the SBOM Reference data. The payload follows the intoto statement specification. See https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md for more details.", + "id": "SbomReferenceIntotoPayload", + "properties": { + "_type": { + "description": "Identifier for the schema of the Statement.", + "type": "string" + }, + "predicate": { + "$ref": "SbomReferenceIntotoPredicate", + "description": "Additional parameters of the Predicate. Includes the actual data about the SBOM." + }, + "predicateType": { + "description": "URI identifying the type of the Predicate.", + "type": "string" + }, + "subject": { + "description": "Set of software artifacts that the attestation applies to. Each element represents a single software artifact.", + "items": { + "$ref": "Subject" + }, + "type": "array" + } + }, + "type": "object" + }, + "SbomReferenceIntotoPredicate": { + "description": "A predicate which describes the SBOM being referenced.", + "id": "SbomReferenceIntotoPredicate", + "properties": { + "digest": { + "additionalProperties": { + "type": "string" + }, + "description": "A map of algorithm to digest of the contents of the SBOM.", + "type": "object" + }, + "location": { + "description": "The location of the SBOM.", + "type": "string" + }, + "mimeType": { + "description": "The mime type of the SBOM.", + "type": "string" + }, + "referrerId": { + "description": "The person or system referring this predicate to the consumer.", + "type": "string" + } + }, + "type": "object" + }, "SetIamPolicyRequest": { "description": "Request message for `SetIamPolicy` method.", "id": "SetIamPolicyRequest", diff --git a/googleapiclient/discovery_cache/documents/containeranalysis.v1alpha1.json b/googleapiclient/discovery_cache/documents/containeranalysis.v1alpha1.json index 766939c2aed..b251d89e173 100644 --- a/googleapiclient/discovery_cache/documents/containeranalysis.v1alpha1.json +++ b/googleapiclient/discovery_cache/documents/containeranalysis.v1alpha1.json @@ -1233,7 +1233,7 @@ } } }, - "revision": "20230331", + "revision": "20230512", "rootUrl": "https://containeranalysis.googleapis.com/", "schemas": { "AnalysisCompleted": { @@ -2089,6 +2089,13 @@ }, "type": "array" }, + "npmPackages": { + "description": "A list of npm packages to be uploaded to Artifact Registry upon successful completion of all build steps. Npm packages in the specified paths will be uploaded to the specified Artifact Registry repository using the builder service account's credentials. If any packages fail to be pushed, the build is marked FAILURE.", + "items": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsNpmPackage" + }, + "type": "array" + }, "objects": { "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsArtifactObjects", "description": "A list of objects to be uploaded to Cloud Storage upon successful completion of all build steps. Files in the workspace matching specified paths globs will be uploaded to the specified Cloud Storage location using the builder service account's credentials. The location and generation of the uploaded objects will be stored in the Build resource's results field. If any objects fail to be pushed, the build is marked FAILURE." @@ -2153,6 +2160,21 @@ }, "type": "object" }, + "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsNpmPackage": { + "description": "Npm package to upload to Artifact Registry upon successful completion of all build steps.", + "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsNpmPackage", + "properties": { + "packagePath": { + "description": "Path to the package.json. e.g. workspace/path/to/package", + "type": "string" + }, + "repository": { + "description": "Artifact Registry repository, in the form \"https://$REGION-npm.pkg.dev/$PROJECT/$REPOSITORY\" Npm package in the workspace specified by path will be zipped and uploaded to Artifact Registry with this location as a prefix.", + "type": "string" + } + }, + "type": "object" + }, "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsPythonPackage": { "description": "Python package to upload to Artifact Registry upon successful completion of all build steps. A package can encapsulate multiple objects to be uploaded to a single repository.", "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsPythonPackage", @@ -2542,12 +2564,14 @@ "enum": [ "NONE", "SHA256", - "MD5" + "MD5", + "SHA512" ], "enumDescriptions": [ "No hash requested.", "Use a sha256 hash.", - "Use a md5 hash." + "Use a md5 hash.", + "Use a sha512 hash." ], "type": "string" }, @@ -2775,6 +2799,25 @@ }, "type": "object" }, + "ContaineranalysisGoogleDevtoolsCloudbuildV1GitSource": { + "description": "Location of the source in any accessible Git repository.", + "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1GitSource", + "properties": { + "dir": { + "description": "Directory, relative to the source root, in which to run the build. This must be a relative path. If a step's `dir` is specified and is an absolute path, this value is ignored for that step's execution.", + "type": "string" + }, + "revision": { + "description": "The revision to fetch from the Git repository such as a branch, a tag, a commit SHA, or any Git ref. Cloud Build uses `git fetch` to fetch the revision from the Git repository; therefore make sure that the string you provide for `revision` is parsable by the command. For information on string values accepted by `git fetch`, see https://git-scm.com/docs/gitrevisions#_specifying_revisions. For information on `git fetch`, see https://git-scm.com/docs/git-fetch.", + "type": "string" + }, + "url": { + "description": "Location of the Git repo to build. This will be used as a `git remote`, see https://git-scm.com/docs/git-remote.", + "type": "string" + } + }, + "type": "object" + }, "ContaineranalysisGoogleDevtoolsCloudbuildV1Hash": { "description": "Container message for hash values.", "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1Hash", @@ -2784,12 +2827,14 @@ "enum": [ "NONE", "SHA256", - "MD5" + "MD5", + "SHA512" ], "enumDescriptions": [ "No hash requested.", "Use a sha256 hash.", - "Use a md5 hash." + "Use a md5 hash.", + "Use a sha512 hash." ], "type": "string" }, @@ -2903,6 +2948,13 @@ }, "type": "array" }, + "npmPackages": { + "description": "Npm packages uploaded to Artifact Registry at the end of the build.", + "items": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedNpmPackage" + }, + "type": "array" + }, "numArtifacts": { "description": "Number of non-container artifacts uploaded to Cloud Storage. Only populated when artifacts are uploaded to Cloud Storage.", "format": "int64", @@ -2977,6 +3029,10 @@ "description": "Location of the source in a supported storage service.", "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1Source", "properties": { + "gitSource": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1GitSource", + "description": "If provided, get the source from this Git repository." + }, "repoSource": { "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1RepoSource", "description": "If provided, get the source from this location in a Cloud Source Repository." @@ -3096,6 +3152,26 @@ }, "type": "object" }, + "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedNpmPackage": { + "description": "An npm package uploaded to Artifact Registry using the NpmPackage directive.", + "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedNpmPackage", + "properties": { + "fileHashes": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1FileHashes", + "description": "Hash types and values of the npm package." + }, + "pushTiming": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1TimeSpan", + "description": "Output only. Stores timing information for pushing the specified artifact.", + "readOnly": true + }, + "uri": { + "description": "URI of the uploaded npm package.", + "type": "string" + } + }, + "type": "object" + }, "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedPythonPackage": { "description": "Artifact uploaded using the PythonPackage directive.", "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedPythonPackage", diff --git a/googleapiclient/discovery_cache/documents/containeranalysis.v1beta1.json b/googleapiclient/discovery_cache/documents/containeranalysis.v1beta1.json index 9f5102ff5b4..ee55f81e106 100644 --- a/googleapiclient/discovery_cache/documents/containeranalysis.v1beta1.json +++ b/googleapiclient/discovery_cache/documents/containeranalysis.v1beta1.json @@ -751,11 +751,43 @@ ] } } + }, + "resources": { + "methods": { + "generatePackagesSummary": { + "description": "Gets a summary of the packages within a given resource.", + "flatPath": "v1beta1/projects/{projectsId}/resources/{resourcesId}:generatePackagesSummary", + "httpMethod": "POST", + "id": "containeranalysis.projects.resources.generatePackagesSummary", + "parameterOrder": [ + "name" + ], + "parameters": { + "name": { + "description": "Required. The name of the resource to get a packages summary for in the form of `projects/[PROJECT_ID]/resources/[RESOURCE_URL]`.", + "location": "path", + "pattern": "^projects/[^/]+/resources/.*$", + "required": true, + "type": "string" + } + }, + "path": "v1beta1/{+name}:generatePackagesSummary", + "request": { + "$ref": "GeneratePackagesSummaryRequest" + }, + "response": { + "$ref": "PackagesSummaryResponse" + }, + "scopes": [ + "https://www.googleapis.com/auth/cloud-platform" + ] + } + } } } } }, - "revision": "20230331", + "revision": "20230505", "rootUrl": "https://containeranalysis.googleapis.com/", "schemas": { "AliasContext": { @@ -1717,6 +1749,13 @@ }, "type": "array" }, + "npmPackages": { + "description": "A list of npm packages to be uploaded to Artifact Registry upon successful completion of all build steps. Npm packages in the specified paths will be uploaded to the specified Artifact Registry repository using the builder service account's credentials. If any packages fail to be pushed, the build is marked FAILURE.", + "items": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsNpmPackage" + }, + "type": "array" + }, "objects": { "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsArtifactObjects", "description": "A list of objects to be uploaded to Cloud Storage upon successful completion of all build steps. Files in the workspace matching specified paths globs will be uploaded to the specified Cloud Storage location using the builder service account's credentials. The location and generation of the uploaded objects will be stored in the Build resource's results field. If any objects fail to be pushed, the build is marked FAILURE." @@ -1781,6 +1820,21 @@ }, "type": "object" }, + "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsNpmPackage": { + "description": "Npm package to upload to Artifact Registry upon successful completion of all build steps.", + "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsNpmPackage", + "properties": { + "packagePath": { + "description": "Path to the package.json. e.g. workspace/path/to/package", + "type": "string" + }, + "repository": { + "description": "Artifact Registry repository, in the form \"https://$REGION-npm.pkg.dev/$PROJECT/$REPOSITORY\" Npm package in the workspace specified by path will be zipped and uploaded to Artifact Registry with this location as a prefix.", + "type": "string" + } + }, + "type": "object" + }, "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsPythonPackage": { "description": "Python package to upload to Artifact Registry upon successful completion of all build steps. A package can encapsulate multiple objects to be uploaded to a single repository.", "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsPythonPackage", @@ -2170,12 +2224,14 @@ "enum": [ "NONE", "SHA256", - "MD5" + "MD5", + "SHA512" ], "enumDescriptions": [ "No hash requested.", "Use a sha256 hash.", - "Use a md5 hash." + "Use a md5 hash.", + "Use a sha512 hash." ], "type": "string" }, @@ -2403,6 +2459,25 @@ }, "type": "object" }, + "ContaineranalysisGoogleDevtoolsCloudbuildV1GitSource": { + "description": "Location of the source in any accessible Git repository.", + "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1GitSource", + "properties": { + "dir": { + "description": "Directory, relative to the source root, in which to run the build. This must be a relative path. If a step's `dir` is specified and is an absolute path, this value is ignored for that step's execution.", + "type": "string" + }, + "revision": { + "description": "The revision to fetch from the Git repository such as a branch, a tag, a commit SHA, or any Git ref. Cloud Build uses `git fetch` to fetch the revision from the Git repository; therefore make sure that the string you provide for `revision` is parsable by the command. For information on string values accepted by `git fetch`, see https://git-scm.com/docs/gitrevisions#_specifying_revisions. For information on `git fetch`, see https://git-scm.com/docs/git-fetch.", + "type": "string" + }, + "url": { + "description": "Location of the Git repo to build. This will be used as a `git remote`, see https://git-scm.com/docs/git-remote.", + "type": "string" + } + }, + "type": "object" + }, "ContaineranalysisGoogleDevtoolsCloudbuildV1Hash": { "description": "Container message for hash values.", "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1Hash", @@ -2412,12 +2487,14 @@ "enum": [ "NONE", "SHA256", - "MD5" + "MD5", + "SHA512" ], "enumDescriptions": [ "No hash requested.", "Use a sha256 hash.", - "Use a md5 hash." + "Use a md5 hash.", + "Use a sha512 hash." ], "type": "string" }, @@ -2531,6 +2608,13 @@ }, "type": "array" }, + "npmPackages": { + "description": "Npm packages uploaded to Artifact Registry at the end of the build.", + "items": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedNpmPackage" + }, + "type": "array" + }, "numArtifacts": { "description": "Number of non-container artifacts uploaded to Cloud Storage. Only populated when artifacts are uploaded to Cloud Storage.", "format": "int64", @@ -2605,6 +2689,10 @@ "description": "Location of the source in a supported storage service.", "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1Source", "properties": { + "gitSource": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1GitSource", + "description": "If provided, get the source from this Git repository." + }, "repoSource": { "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1RepoSource", "description": "If provided, get the source from this location in a Cloud Source Repository." @@ -2724,6 +2812,26 @@ }, "type": "object" }, + "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedNpmPackage": { + "description": "An npm package uploaded to Artifact Registry using the NpmPackage directive.", + "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedNpmPackage", + "properties": { + "fileHashes": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1FileHashes", + "description": "Hash types and values of the npm package." + }, + "pushTiming": { + "$ref": "ContaineranalysisGoogleDevtoolsCloudbuildV1TimeSpan", + "description": "Output only. Stores timing information for pushing the specified artifact.", + "readOnly": true + }, + "uri": { + "description": "URI of the uploaded npm package.", + "type": "string" + } + }, + "type": "object" + }, "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedPythonPackage": { "description": "Artifact uploaded using the PythonPackage directive.", "id": "ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedPythonPackage", @@ -3435,6 +3543,12 @@ }, "type": "object" }, + "GeneratePackagesSummaryRequest": { + "description": "GeneratePackagesSummaryRequest is the request body for the GeneratePackagesSummary API method. It just takes a single name argument, referring to the resource.", + "id": "GeneratePackagesSummaryRequest", + "properties": {}, + "type": "object" + }, "GenericSignedAttestation": { "description": "An attestation wrapper that uses the Grafeas `Signature` message. This attestation must define the `serialized_payload` that the `signatures` verify and any metadata necessary to interpret that plaintext. The signatures should always be over the `serialized_payload` bytestring.", "id": "GenericSignedAttestation", @@ -3755,11 +3869,15 @@ "description": "Required. The type of hash that was performed.", "enum": [ "HASH_TYPE_UNSPECIFIED", - "SHA256" + "SHA256", + "GO_MODULE_H1", + "SHA512" ], "enumDescriptions": [ "Unknown.", - "A SHA-256 hash." + "A SHA-256 hash.", + "Dirhash of a Go module's source code which is then hex-encoded. See b/244466565 and https://github.com/in-toto/attestation/pull/108.", + "A SHA-512 hash." ], "type": "string" }, @@ -3993,6 +4111,22 @@ }, "type": "object" }, + "LicensesSummary": { + "description": "Per license count", + "id": "LicensesSummary", + "properties": { + "count": { + "description": "The number of fixable vulnerabilities associated with this resource.", + "format": "int64", + "type": "string" + }, + "license": { + "description": "The license of the package. Note that the format of this value is not guaranteed. It may be nil, an empty string, a boolean value (A | B), a differently formed boolean value (A OR B), etc...", + "type": "string" + } + }, + "type": "object" + }, "Link": { "description": "This corresponds to an in-toto link.", "id": "Link", @@ -4615,6 +4749,24 @@ }, "type": "object" }, + "PackagesSummaryResponse": { + "description": "A summary of the packages found within the given resource.", + "id": "PackagesSummaryResponse", + "properties": { + "licensesSummary": { + "description": "A listing by license name of each of the licenses and their counts.", + "items": { + "$ref": "LicensesSummary" + }, + "type": "array" + }, + "resourceUrl": { + "description": "The unique URL of the image or the container for which this summary applies.", + "type": "string" + } + }, + "type": "object" + }, "PgpSignedAttestation": { "description": "An attestation wrapper with a PGP-compatible signature. This message only supports `ATTACHED` signatures, where the payload that is signed is included alongside the signature itself in the same file.", "id": "PgpSignedAttestation",