Returns the muteConfigs Resource.
+ +Returns the notificationConfigs Resource.
+ diff --git a/docs/dyn/securitycenter_v1.folders.notificationConfigs.html b/docs/dyn/securitycenter_v1.folders.notificationConfigs.html new file mode 100644 index 00000000000..bc3669298cd --- /dev/null +++ b/docs/dyn/securitycenter_v1.folders.notificationConfigs.html @@ -0,0 +1,271 @@ + + + +
+ close()
Close httplib2 connections.
+
+ create(parent, body=None, configId=None, x__xgafv=None)
Creates a notification config.
+ +Deletes a notification config.
+ +Gets a notification config.
+
+ list(parent, pageSize=None, pageToken=None, x__xgafv=None)
Lists notification configs.
+ +Retrieves the next page of results.
+
+ patch(name, body=None, updateMask=None, x__xgafv=None)
Updates a notification config. The following update fields are allowed: description, pubsub_topic, streaming_config.filter
+close()
+ Close httplib2 connections.+
create(parent, body=None, configId=None, x__xgafv=None)
+ Creates a notification config.
+
+Args:
+ parent: string, Required. Resource name of the new notification config's parent. Its format is "organizations/[organization_id]", "folders/[folder_id]", or "projects/[project_id]". (required)
+ body: object, The request body.
+ The object takes the form of:
+
+{ # Cloud Security Command Center (Cloud SCC) notification configs. A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.
+ "description": "A String", # The description of the notification config (max of 1024 characters).
+ "name": "A String", # The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/notificationConfigs/notify_public_bucket".
+ "pubsubTopic": "A String", # The Pub/Sub topic to send notifications to. Its format is "projects/[project_id]/topics/[topic]".
+ "serviceAccount": "A String", # Output only. The service account that needs "pubsub.topics.publish" permission to publish to the Pub/Sub topic.
+ "streamingConfig": { # The config for streaming-based notifications, which send each event as soon as it is detected. # The config for triggering streaming-based notifications.
+ "filter": "A String", # Expression that defines the filter to apply across create/update events of assets or findings as specified by the event type. The expression is a list of zero or more restrictions combined via logical operators `AND` and `OR`. Parentheses are supported, and `OR` has higher precedence than `AND`. Restrictions have the form ` ` and may have a `-` character in front of them to indicate negation. The fields map to those defined in the corresponding resource. The supported operators are: * `=` for all value types. * `>`, `<`, `>=`, `<=` for integer values. * `:`, meaning substring matching, for strings. The supported value types are: * string literals in quotes. * integer literals without quotes. * boolean literals `true` and `false` without quotes.
+ },
+}
+
+ configId: string, Required. Unique identifier provided by the client within the parent scope. It must be between 1 and 128 characters, and contains alphanumeric characters, underscores or hyphens only.
+ x__xgafv: string, V1 error format.
+ Allowed values
+ 1 - v1 error format
+ 2 - v2 error format
+
+Returns:
+ An object of the form:
+
+ { # Cloud Security Command Center (Cloud SCC) notification configs. A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.
+ "description": "A String", # The description of the notification config (max of 1024 characters).
+ "name": "A String", # The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/notificationConfigs/notify_public_bucket".
+ "pubsubTopic": "A String", # The Pub/Sub topic to send notifications to. Its format is "projects/[project_id]/topics/[topic]".
+ "serviceAccount": "A String", # Output only. The service account that needs "pubsub.topics.publish" permission to publish to the Pub/Sub topic.
+ "streamingConfig": { # The config for streaming-based notifications, which send each event as soon as it is detected. # The config for triggering streaming-based notifications.
+ "filter": "A String", # Expression that defines the filter to apply across create/update events of assets or findings as specified by the event type. The expression is a list of zero or more restrictions combined via logical operators `AND` and `OR`. Parentheses are supported, and `OR` has higher precedence than `AND`. Restrictions have the form ` ` and may have a `-` character in front of them to indicate negation. The fields map to those defined in the corresponding resource. The supported operators are: * `=` for all value types. * `>`, `<`, `>=`, `<=` for integer values. * `:`, meaning substring matching, for strings. The supported value types are: * string literals in quotes. * integer literals without quotes. * boolean literals `true` and `false` without quotes.
+ },
+}
+delete(name, x__xgafv=None)
+ Deletes a notification config.
+
+Args:
+ name: string, Required. Name of the notification config to delete. Its format is "organizations/[organization_id]/notificationConfigs/[config_id]". (required)
+ x__xgafv: string, V1 error format.
+ Allowed values
+ 1 - v1 error format
+ 2 - v2 error format
+
+Returns:
+ An object of the form:
+
+ { # A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); }
+}
+get(name, x__xgafv=None)
+ Gets a notification config.
+
+Args:
+ name: string, Required. Name of the notification config to get. Its format is "organizations/[organization_id]/notificationConfigs/[config_id]". (required)
+ x__xgafv: string, V1 error format.
+ Allowed values
+ 1 - v1 error format
+ 2 - v2 error format
+
+Returns:
+ An object of the form:
+
+ { # Cloud Security Command Center (Cloud SCC) notification configs. A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.
+ "description": "A String", # The description of the notification config (max of 1024 characters).
+ "name": "A String", # The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/notificationConfigs/notify_public_bucket".
+ "pubsubTopic": "A String", # The Pub/Sub topic to send notifications to. Its format is "projects/[project_id]/topics/[topic]".
+ "serviceAccount": "A String", # Output only. The service account that needs "pubsub.topics.publish" permission to publish to the Pub/Sub topic.
+ "streamingConfig": { # The config for streaming-based notifications, which send each event as soon as it is detected. # The config for triggering streaming-based notifications.
+ "filter": "A String", # Expression that defines the filter to apply across create/update events of assets or findings as specified by the event type. The expression is a list of zero or more restrictions combined via logical operators `AND` and `OR`. Parentheses are supported, and `OR` has higher precedence than `AND`. Restrictions have the form ` ` and may have a `-` character in front of them to indicate negation. The fields map to those defined in the corresponding resource. The supported operators are: * `=` for all value types. * `>`, `<`, `>=`, `<=` for integer values. * `:`, meaning substring matching, for strings. The supported value types are: * string literals in quotes. * integer literals without quotes. * boolean literals `true` and `false` without quotes.
+ },
+}
+list(parent, pageSize=None, pageToken=None, x__xgafv=None)
+ Lists notification configs.
+
+Args:
+ parent: string, Required. Name of the organization to list notification configs. Its format is "organizations/[organization_id]", "folders/[folder_id]", or "projects/[project_id]". (required)
+ pageSize: integer, The maximum number of results to return in a single response. Default is 10, minimum is 1, maximum is 1000.
+ pageToken: string, The value returned by the last `ListNotificationConfigsResponse`; indicates that this is a continuation of a prior `ListNotificationConfigs` call, and that the system should return the next page of data.
+ x__xgafv: string, V1 error format.
+ Allowed values
+ 1 - v1 error format
+ 2 - v2 error format
+
+Returns:
+ An object of the form:
+
+ { # Response message for listing notification configs.
+ "nextPageToken": "A String", # Token to retrieve the next page of results, or empty if there are no more results.
+ "notificationConfigs": [ # Notification configs belonging to the requested parent.
+ { # Cloud Security Command Center (Cloud SCC) notification configs. A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.
+ "description": "A String", # The description of the notification config (max of 1024 characters).
+ "name": "A String", # The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/notificationConfigs/notify_public_bucket".
+ "pubsubTopic": "A String", # The Pub/Sub topic to send notifications to. Its format is "projects/[project_id]/topics/[topic]".
+ "serviceAccount": "A String", # Output only. The service account that needs "pubsub.topics.publish" permission to publish to the Pub/Sub topic.
+ "streamingConfig": { # The config for streaming-based notifications, which send each event as soon as it is detected. # The config for triggering streaming-based notifications.
+ "filter": "A String", # Expression that defines the filter to apply across create/update events of assets or findings as specified by the event type. The expression is a list of zero or more restrictions combined via logical operators `AND` and `OR`. Parentheses are supported, and `OR` has higher precedence than `AND`. Restrictions have the form ` ` and may have a `-` character in front of them to indicate negation. The fields map to those defined in the corresponding resource. The supported operators are: * `=` for all value types. * `>`, `<`, `>=`, `<=` for integer values. * `:`, meaning substring matching, for strings. The supported value types are: * string literals in quotes. * integer literals without quotes. * boolean literals `true` and `false` without quotes.
+ },
+ },
+ ],
+}
+list_next()
+ Retrieves the next page of results. + + Args: + previous_request: The request for the previous page. (required) + previous_response: The response from the request for the previous page. (required) + + Returns: + A request object that you can call 'execute()' on to request the next + page. Returns None if there are no more items in the collection. ++
patch(name, body=None, updateMask=None, x__xgafv=None)
+ Updates a notification config. The following update fields are allowed: description, pubsub_topic, streaming_config.filter
+
+Args:
+ name: string, The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/notificationConfigs/notify_public_bucket". (required)
+ body: object, The request body.
+ The object takes the form of:
+
+{ # Cloud Security Command Center (Cloud SCC) notification configs. A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.
+ "description": "A String", # The description of the notification config (max of 1024 characters).
+ "name": "A String", # The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/notificationConfigs/notify_public_bucket".
+ "pubsubTopic": "A String", # The Pub/Sub topic to send notifications to. Its format is "projects/[project_id]/topics/[topic]".
+ "serviceAccount": "A String", # Output only. The service account that needs "pubsub.topics.publish" permission to publish to the Pub/Sub topic.
+ "streamingConfig": { # The config for streaming-based notifications, which send each event as soon as it is detected. # The config for triggering streaming-based notifications.
+ "filter": "A String", # Expression that defines the filter to apply across create/update events of assets or findings as specified by the event type. The expression is a list of zero or more restrictions combined via logical operators `AND` and `OR`. Parentheses are supported, and `OR` has higher precedence than `AND`. Restrictions have the form ` ` and may have a `-` character in front of them to indicate negation. The fields map to those defined in the corresponding resource. The supported operators are: * `=` for all value types. * `>`, `<`, `>=`, `<=` for integer values. * `:`, meaning substring matching, for strings. The supported value types are: * string literals in quotes. * integer literals without quotes. * boolean literals `true` and `false` without quotes.
+ },
+}
+
+ updateMask: string, The FieldMask to use when updating the notification config. If empty all mutable fields will be updated.
+ x__xgafv: string, V1 error format.
+ Allowed values
+ 1 - v1 error format
+ 2 - v2 error format
+
+Returns:
+ An object of the form:
+
+ { # Cloud Security Command Center (Cloud SCC) notification configs. A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.
+ "description": "A String", # The description of the notification config (max of 1024 characters).
+ "name": "A String", # The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/notificationConfigs/notify_public_bucket".
+ "pubsubTopic": "A String", # The Pub/Sub topic to send notifications to. Its format is "projects/[project_id]/topics/[topic]".
+ "serviceAccount": "A String", # Output only. The service account that needs "pubsub.topics.publish" permission to publish to the Pub/Sub topic.
+ "streamingConfig": { # The config for streaming-based notifications, which send each event as soon as it is detected. # The config for triggering streaming-based notifications.
+ "filter": "A String", # Expression that defines the filter to apply across create/update events of assets or findings as specified by the event type. The expression is a list of zero or more restrictions combined via logical operators `AND` and `OR`. Parentheses are supported, and `OR` has higher precedence than `AND`. Restrictions have the form ` ` and may have a `-` character in front of them to indicate negation. The fields map to those defined in the corresponding resource. The supported operators are: * `=` for all value types. * `>`, `<`, `>=`, `<=` for integer values. * `:`, meaning substring matching, for strings. The supported value types are: * string literals in quotes. * integer literals without quotes. * boolean literals `true` and `false` without quotes.
+ },
+}
+Creates a notification config.
Args:
- parent: string, Required. Resource name of the new notification config's parent. Its format is "organizations/[organization_id]" or "projects/[project_id]". (required)
+ parent: string, Required. Resource name of the new notification config's parent. Its format is "organizations/[organization_id]", "folders/[folder_id]", or "projects/[project_id]". (required)
body: object, The request body.
The object takes the form of:
@@ -188,7 +188,7 @@ Method Details
Lists notification configs.
Args:
- parent: string, Required. Name of the organization to list notification configs. Its format is "organizations/[organization_id]" or "projects/[project_id]". (required)
+ parent: string, Required. Name of the organization to list notification configs. Its format is "organizations/[organization_id]", "folders/[folder_id]", or "projects/[project_id]". (required)
pageSize: integer, The maximum number of results to return in a single response. Default is 10, minimum is 1, maximum is 1000.
pageToken: string, The value returned by the last `ListNotificationConfigsResponse`; indicates that this is a continuation of a prior `ListNotificationConfigs` call, and that the system should return the next page of data.
x__xgafv: string, V1 error format.
diff --git a/docs/dyn/securitycenter_v1.organizations.sources.findings.html b/docs/dyn/securitycenter_v1.organizations.sources.findings.html
index bea4cc9e82b..5f9cbf53c56 100644
--- a/docs/dyn/securitycenter_v1.organizations.sources.findings.html
+++ b/docs/dyn/securitycenter_v1.organizations.sources.findings.html
@@ -142,7 +142,7 @@ Method Details
"serviceAccountKeyName": "A String", # The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
"serviceName": "A String", # This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
"userAgentFamily": "A String", # What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.
- "username": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
+ "userName": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
},
"canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
"category": "A String", # The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
@@ -470,7 +470,7 @@ Method Details
"serviceAccountKeyName": "A String", # The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
"serviceName": "A String", # This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
"userAgentFamily": "A String", # What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.
- "username": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
+ "userName": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
},
"canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
"category": "A String", # The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
@@ -869,7 +869,7 @@ Method Details
"serviceAccountKeyName": "A String", # The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
"serviceName": "A String", # This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
"userAgentFamily": "A String", # What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.
- "username": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
+ "userName": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
},
"canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
"category": "A String", # The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
@@ -1234,7 +1234,7 @@ Method Details
"serviceAccountKeyName": "A String", # The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
"serviceName": "A String", # This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
"userAgentFamily": "A String", # What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.
- "username": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
+ "userName": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
},
"canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
"category": "A String", # The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
@@ -1562,7 +1562,7 @@ Method Details
"serviceAccountKeyName": "A String", # The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
"serviceName": "A String", # This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
"userAgentFamily": "A String", # What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.
- "username": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
+ "userName": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
},
"canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
"category": "A String", # The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
@@ -1903,7 +1903,7 @@ Method Details
"serviceAccountKeyName": "A String", # The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
"serviceName": "A String", # This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
"userAgentFamily": "A String", # What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.
- "username": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
+ "userName": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
},
"canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
"category": "A String", # The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
@@ -2245,7 +2245,7 @@ Method Details
"serviceAccountKeyName": "A String", # The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
"serviceName": "A String", # This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
"userAgentFamily": "A String", # What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.
- "username": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
+ "userName": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
},
"canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
"category": "A String", # The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
diff --git a/docs/dyn/securitycenter_v1.projects.html b/docs/dyn/securitycenter_v1.projects.html
index 315859c3bf1..017bc874161 100644
--- a/docs/dyn/securitycenter_v1.projects.html
+++ b/docs/dyn/securitycenter_v1.projects.html
@@ -94,6 +94,11 @@ Instance Methods
Returns the muteConfigs Resource.
+
+Returns the notificationConfigs Resource.
+
diff --git a/docs/dyn/securitycenter_v1.projects.notificationConfigs.html b/docs/dyn/securitycenter_v1.projects.notificationConfigs.html
new file mode 100644
index 00000000000..5a771934bbe
--- /dev/null
+++ b/docs/dyn/securitycenter_v1.projects.notificationConfigs.html
@@ -0,0 +1,271 @@
+
+
+
+Security Command Center API . projects . notificationConfigs
+Instance Methods
+
+ close()
+Close httplib2 connections.
+
+ create(parent, body=None, configId=None, x__xgafv=None)
+Creates a notification config.
+
+Deletes a notification config.
+
+Gets a notification config.
+
+ list(parent, pageSize=None, pageToken=None, x__xgafv=None)
+Lists notification configs.
+
+Retrieves the next page of results.
+
+ patch(name, body=None, updateMask=None, x__xgafv=None)
+ Updates a notification config. The following update fields are allowed: description, pubsub_topic, streaming_config.filter
+Method Details
+
+ close()
+ Close httplib2 connections.
+
+
+
+ create(parent, body=None, configId=None, x__xgafv=None)
+ Creates a notification config.
+
+Args:
+ parent: string, Required. Resource name of the new notification config's parent. Its format is "organizations/[organization_id]", "folders/[folder_id]", or "projects/[project_id]". (required)
+ body: object, The request body.
+ The object takes the form of:
+
+{ # Cloud Security Command Center (Cloud SCC) notification configs. A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.
+ "description": "A String", # The description of the notification config (max of 1024 characters).
+ "name": "A String", # The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/notificationConfigs/notify_public_bucket".
+ "pubsubTopic": "A String", # The Pub/Sub topic to send notifications to. Its format is "projects/[project_id]/topics/[topic]".
+ "serviceAccount": "A String", # Output only. The service account that needs "pubsub.topics.publish" permission to publish to the Pub/Sub topic.
+ "streamingConfig": { # The config for streaming-based notifications, which send each event as soon as it is detected. # The config for triggering streaming-based notifications.
+ "filter": "A String", # Expression that defines the filter to apply across create/update events of assets or findings as specified by the event type. The expression is a list of zero or more restrictions combined via logical operators `AND` and `OR`. Parentheses are supported, and `OR` has higher precedence than `AND`. Restrictions have the form ` ` and may have a `-` character in front of them to indicate negation. The fields map to those defined in the corresponding resource. The supported operators are: * `=` for all value types. * `>`, `<`, `>=`, `<=` for integer values. * `:`, meaning substring matching, for strings. The supported value types are: * string literals in quotes. * integer literals without quotes. * boolean literals `true` and `false` without quotes.
+ },
+}
+
+ configId: string, Required. Unique identifier provided by the client within the parent scope. It must be between 1 and 128 characters, and contains alphanumeric characters, underscores or hyphens only.
+ x__xgafv: string, V1 error format.
+ Allowed values
+ 1 - v1 error format
+ 2 - v2 error format
+
+Returns:
+ An object of the form:
+
+ { # Cloud Security Command Center (Cloud SCC) notification configs. A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.
+ "description": "A String", # The description of the notification config (max of 1024 characters).
+ "name": "A String", # The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/notificationConfigs/notify_public_bucket".
+ "pubsubTopic": "A String", # The Pub/Sub topic to send notifications to. Its format is "projects/[project_id]/topics/[topic]".
+ "serviceAccount": "A String", # Output only. The service account that needs "pubsub.topics.publish" permission to publish to the Pub/Sub topic.
+ "streamingConfig": { # The config for streaming-based notifications, which send each event as soon as it is detected. # The config for triggering streaming-based notifications.
+ "filter": "A String", # Expression that defines the filter to apply across create/update events of assets or findings as specified by the event type. The expression is a list of zero or more restrictions combined via logical operators `AND` and `OR`. Parentheses are supported, and `OR` has higher precedence than `AND`. Restrictions have the form ` ` and may have a `-` character in front of them to indicate negation. The fields map to those defined in the corresponding resource. The supported operators are: * `=` for all value types. * `>`, `<`, `>=`, `<=` for integer values. * `:`, meaning substring matching, for strings. The supported value types are: * string literals in quotes. * integer literals without quotes. * boolean literals `true` and `false` without quotes.
+ },
+}
+
+
+
+ delete(name, x__xgafv=None)
+ Deletes a notification config.
+
+Args:
+ name: string, Required. Name of the notification config to delete. Its format is "organizations/[organization_id]/notificationConfigs/[config_id]". (required)
+ x__xgafv: string, V1 error format.
+ Allowed values
+ 1 - v1 error format
+ 2 - v2 error format
+
+Returns:
+ An object of the form:
+
+ { # A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); }
+}
+
+
+
+ get(name, x__xgafv=None)
+ Gets a notification config.
+
+Args:
+ name: string, Required. Name of the notification config to get. Its format is "organizations/[organization_id]/notificationConfigs/[config_id]". (required)
+ x__xgafv: string, V1 error format.
+ Allowed values
+ 1 - v1 error format
+ 2 - v2 error format
+
+Returns:
+ An object of the form:
+
+ { # Cloud Security Command Center (Cloud SCC) notification configs. A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.
+ "description": "A String", # The description of the notification config (max of 1024 characters).
+ "name": "A String", # The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/notificationConfigs/notify_public_bucket".
+ "pubsubTopic": "A String", # The Pub/Sub topic to send notifications to. Its format is "projects/[project_id]/topics/[topic]".
+ "serviceAccount": "A String", # Output only. The service account that needs "pubsub.topics.publish" permission to publish to the Pub/Sub topic.
+ "streamingConfig": { # The config for streaming-based notifications, which send each event as soon as it is detected. # The config for triggering streaming-based notifications.
+ "filter": "A String", # Expression that defines the filter to apply across create/update events of assets or findings as specified by the event type. The expression is a list of zero or more restrictions combined via logical operators `AND` and `OR`. Parentheses are supported, and `OR` has higher precedence than `AND`. Restrictions have the form ` ` and may have a `-` character in front of them to indicate negation. The fields map to those defined in the corresponding resource. The supported operators are: * `=` for all value types. * `>`, `<`, `>=`, `<=` for integer values. * `:`, meaning substring matching, for strings. The supported value types are: * string literals in quotes. * integer literals without quotes. * boolean literals `true` and `false` without quotes.
+ },
+}
+
+
+
+ list(parent, pageSize=None, pageToken=None, x__xgafv=None)
+ Lists notification configs.
+
+Args:
+ parent: string, Required. Name of the organization to list notification configs. Its format is "organizations/[organization_id]", "folders/[folder_id]", or "projects/[project_id]". (required)
+ pageSize: integer, The maximum number of results to return in a single response. Default is 10, minimum is 1, maximum is 1000.
+ pageToken: string, The value returned by the last `ListNotificationConfigsResponse`; indicates that this is a continuation of a prior `ListNotificationConfigs` call, and that the system should return the next page of data.
+ x__xgafv: string, V1 error format.
+ Allowed values
+ 1 - v1 error format
+ 2 - v2 error format
+
+Returns:
+ An object of the form:
+
+ { # Response message for listing notification configs.
+ "nextPageToken": "A String", # Token to retrieve the next page of results, or empty if there are no more results.
+ "notificationConfigs": [ # Notification configs belonging to the requested parent.
+ { # Cloud Security Command Center (Cloud SCC) notification configs. A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.
+ "description": "A String", # The description of the notification config (max of 1024 characters).
+ "name": "A String", # The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/notificationConfigs/notify_public_bucket".
+ "pubsubTopic": "A String", # The Pub/Sub topic to send notifications to. Its format is "projects/[project_id]/topics/[topic]".
+ "serviceAccount": "A String", # Output only. The service account that needs "pubsub.topics.publish" permission to publish to the Pub/Sub topic.
+ "streamingConfig": { # The config for streaming-based notifications, which send each event as soon as it is detected. # The config for triggering streaming-based notifications.
+ "filter": "A String", # Expression that defines the filter to apply across create/update events of assets or findings as specified by the event type. The expression is a list of zero or more restrictions combined via logical operators `AND` and `OR`. Parentheses are supported, and `OR` has higher precedence than `AND`. Restrictions have the form ` ` and may have a `-` character in front of them to indicate negation. The fields map to those defined in the corresponding resource. The supported operators are: * `=` for all value types. * `>`, `<`, `>=`, `<=` for integer values. * `:`, meaning substring matching, for strings. The supported value types are: * string literals in quotes. * integer literals without quotes. * boolean literals `true` and `false` without quotes.
+ },
+ },
+ ],
+}
+
+
+
+ list_next()
+ Retrieves the next page of results.
+
+ Args:
+ previous_request: The request for the previous page. (required)
+ previous_response: The response from the request for the previous page. (required)
+
+ Returns:
+ A request object that you can call 'execute()' on to request the next
+ page. Returns None if there are no more items in the collection.
+
+
+
+
+ patch(name, body=None, updateMask=None, x__xgafv=None)
+ Updates a notification config. The following update fields are allowed: description, pubsub_topic, streaming_config.filter
+
+Args:
+ name: string, The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/notificationConfigs/notify_public_bucket". (required)
+ body: object, The request body.
+ The object takes the form of:
+
+{ # Cloud Security Command Center (Cloud SCC) notification configs. A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.
+ "description": "A String", # The description of the notification config (max of 1024 characters).
+ "name": "A String", # The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/notificationConfigs/notify_public_bucket".
+ "pubsubTopic": "A String", # The Pub/Sub topic to send notifications to. Its format is "projects/[project_id]/topics/[topic]".
+ "serviceAccount": "A String", # Output only. The service account that needs "pubsub.topics.publish" permission to publish to the Pub/Sub topic.
+ "streamingConfig": { # The config for streaming-based notifications, which send each event as soon as it is detected. # The config for triggering streaming-based notifications.
+ "filter": "A String", # Expression that defines the filter to apply across create/update events of assets or findings as specified by the event type. The expression is a list of zero or more restrictions combined via logical operators `AND` and `OR`. Parentheses are supported, and `OR` has higher precedence than `AND`. Restrictions have the form ` ` and may have a `-` character in front of them to indicate negation. The fields map to those defined in the corresponding resource. The supported operators are: * `=` for all value types. * `>`, `<`, `>=`, `<=` for integer values. * `:`, meaning substring matching, for strings. The supported value types are: * string literals in quotes. * integer literals without quotes. * boolean literals `true` and `false` without quotes.
+ },
+}
+
+ updateMask: string, The FieldMask to use when updating the notification config. If empty all mutable fields will be updated.
+ x__xgafv: string, V1 error format.
+ Allowed values
+ 1 - v1 error format
+ 2 - v2 error format
+
+Returns:
+ An object of the form:
+
+ { # Cloud Security Command Center (Cloud SCC) notification configs. A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.
+ "description": "A String", # The description of the notification config (max of 1024 characters).
+ "name": "A String", # The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/notificationConfigs/notify_public_bucket".
+ "pubsubTopic": "A String", # The Pub/Sub topic to send notifications to. Its format is "projects/[project_id]/topics/[topic]".
+ "serviceAccount": "A String", # Output only. The service account that needs "pubsub.topics.publish" permission to publish to the Pub/Sub topic.
+ "streamingConfig": { # The config for streaming-based notifications, which send each event as soon as it is detected. # The config for triggering streaming-based notifications.
+ "filter": "A String", # Expression that defines the filter to apply across create/update events of assets or findings as specified by the event type. The expression is a list of zero or more restrictions combined via logical operators `AND` and `OR`. Parentheses are supported, and `OR` has higher precedence than `AND`. Restrictions have the form ` ` and may have a `-` character in front of them to indicate negation. The fields map to those defined in the corresponding resource. The supported operators are: * `=` for all value types. * `>`, `<`, `>=`, `<=` for integer values. * `:`, meaning substring matching, for strings. The supported value types are: * string literals in quotes. * integer literals without quotes. * boolean literals `true` and `false` without quotes.
+ },
+}
+
+
+
\ No newline at end of file
diff --git a/docs/dyn/securitycenter_v1.projects.sources.findings.html b/docs/dyn/securitycenter_v1.projects.sources.findings.html
index 4923ce70581..a35c43689cf 100644
--- a/docs/dyn/securitycenter_v1.projects.sources.findings.html
+++ b/docs/dyn/securitycenter_v1.projects.sources.findings.html
@@ -209,7 +209,7 @@ Method Details
"serviceAccountKeyName": "A String", # The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
"serviceName": "A String", # This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
"userAgentFamily": "A String", # What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.
- "username": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
+ "userName": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
},
"canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
"category": "A String", # The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
@@ -574,7 +574,7 @@ Method Details
"serviceAccountKeyName": "A String", # The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
"serviceName": "A String", # This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
"userAgentFamily": "A String", # What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.
- "username": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
+ "userName": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
},
"canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
"category": "A String", # The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
@@ -902,7 +902,7 @@ Method Details
"serviceAccountKeyName": "A String", # The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
"serviceName": "A String", # This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
"userAgentFamily": "A String", # What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.
- "username": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
+ "userName": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
},
"canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
"category": "A String", # The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
@@ -1243,7 +1243,7 @@ Method Details
"serviceAccountKeyName": "A String", # The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
"serviceName": "A String", # This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
"userAgentFamily": "A String", # What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.
- "username": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
+ "userName": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
},
"canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
"category": "A String", # The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
@@ -1585,7 +1585,7 @@ Method Details
"serviceAccountKeyName": "A String", # The name of the service account key used to create or exchange credentials for authenticating the service account making the request. This is a scheme-less URI full resource name. For example: "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}"
"serviceName": "A String", # This is the API service that the service account made a call to, e.g. "iam.googleapis.com"
"userAgentFamily": "A String", # What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.
- "username": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
+ "userName": "A String", # A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.
},
"canonicalName": "A String", # The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
"category": "A String", # The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
diff --git a/googleapiclient/discovery_cache/documents/securitycenter.v1.json b/googleapiclient/discovery_cache/documents/securitycenter.v1.json
index e299a1c3eb3..7370b40d265 100644
--- a/googleapiclient/discovery_cache/documents/securitycenter.v1.json
+++ b/googleapiclient/discovery_cache/documents/securitycenter.v1.json
@@ -589,6 +589,163 @@
}
}
},
+ "notificationConfigs": {
+ "methods": {
+ "create": {
+ "description": "Creates a notification config.",
+ "flatPath": "v1/folders/{foldersId}/notificationConfigs",
+ "httpMethod": "POST",
+ "id": "securitycenter.folders.notificationConfigs.create",
+ "parameterOrder": [
+ "parent"
+ ],
+ "parameters": {
+ "configId": {
+ "description": "Required. Unique identifier provided by the client within the parent scope. It must be between 1 and 128 characters, and contains alphanumeric characters, underscores or hyphens only.",
+ "location": "query",
+ "type": "string"
+ },
+ "parent": {
+ "description": "Required. Resource name of the new notification config's parent. Its format is \"organizations/[organization_id]\", \"folders/[folder_id]\", or \"projects/[project_id]\".",
+ "location": "path",
+ "pattern": "^folders/[^/]+$",
+ "required": true,
+ "type": "string"
+ }
+ },
+ "path": "v1/{+parent}/notificationConfigs",
+ "request": {
+ "$ref": "NotificationConfig"
+ },
+ "response": {
+ "$ref": "NotificationConfig"
+ },
+ "scopes": [
+ "https://www.googleapis.com/auth/cloud-platform"
+ ]
+ },
+ "delete": {
+ "description": "Deletes a notification config.",
+ "flatPath": "v1/folders/{foldersId}/notificationConfigs/{notificationConfigsId}",
+ "httpMethod": "DELETE",
+ "id": "securitycenter.folders.notificationConfigs.delete",
+ "parameterOrder": [
+ "name"
+ ],
+ "parameters": {
+ "name": {
+ "description": "Required. Name of the notification config to delete. Its format is \"organizations/[organization_id]/notificationConfigs/[config_id]\".",
+ "location": "path",
+ "pattern": "^folders/[^/]+/notificationConfigs/[^/]+$",
+ "required": true,
+ "type": "string"
+ }
+ },
+ "path": "v1/{+name}",
+ "response": {
+ "$ref": "Empty"
+ },
+ "scopes": [
+ "https://www.googleapis.com/auth/cloud-platform"
+ ]
+ },
+ "get": {
+ "description": "Gets a notification config.",
+ "flatPath": "v1/folders/{foldersId}/notificationConfigs/{notificationConfigsId}",
+ "httpMethod": "GET",
+ "id": "securitycenter.folders.notificationConfigs.get",
+ "parameterOrder": [
+ "name"
+ ],
+ "parameters": {
+ "name": {
+ "description": "Required. Name of the notification config to get. Its format is \"organizations/[organization_id]/notificationConfigs/[config_id]\".",
+ "location": "path",
+ "pattern": "^folders/[^/]+/notificationConfigs/[^/]+$",
+ "required": true,
+ "type": "string"
+ }
+ },
+ "path": "v1/{+name}",
+ "response": {
+ "$ref": "NotificationConfig"
+ },
+ "scopes": [
+ "https://www.googleapis.com/auth/cloud-platform"
+ ]
+ },
+ "list": {
+ "description": "Lists notification configs.",
+ "flatPath": "v1/folders/{foldersId}/notificationConfigs",
+ "httpMethod": "GET",
+ "id": "securitycenter.folders.notificationConfigs.list",
+ "parameterOrder": [
+ "parent"
+ ],
+ "parameters": {
+ "pageSize": {
+ "description": "The maximum number of results to return in a single response. Default is 10, minimum is 1, maximum is 1000.",
+ "format": "int32",
+ "location": "query",
+ "type": "integer"
+ },
+ "pageToken": {
+ "description": "The value returned by the last `ListNotificationConfigsResponse`; indicates that this is a continuation of a prior `ListNotificationConfigs` call, and that the system should return the next page of data.",
+ "location": "query",
+ "type": "string"
+ },
+ "parent": {
+ "description": "Required. Name of the organization to list notification configs. Its format is \"organizations/[organization_id]\", \"folders/[folder_id]\", or \"projects/[project_id]\".",
+ "location": "path",
+ "pattern": "^folders/[^/]+$",
+ "required": true,
+ "type": "string"
+ }
+ },
+ "path": "v1/{+parent}/notificationConfigs",
+ "response": {
+ "$ref": "ListNotificationConfigsResponse"
+ },
+ "scopes": [
+ "https://www.googleapis.com/auth/cloud-platform"
+ ]
+ },
+ "patch": {
+ "description": " Updates a notification config. The following update fields are allowed: description, pubsub_topic, streaming_config.filter",
+ "flatPath": "v1/folders/{foldersId}/notificationConfigs/{notificationConfigsId}",
+ "httpMethod": "PATCH",
+ "id": "securitycenter.folders.notificationConfigs.patch",
+ "parameterOrder": [
+ "name"
+ ],
+ "parameters": {
+ "name": {
+ "description": "The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: \"organizations/{organization_id}/notificationConfigs/notify_public_bucket\".",
+ "location": "path",
+ "pattern": "^folders/[^/]+/notificationConfigs/[^/]+$",
+ "required": true,
+ "type": "string"
+ },
+ "updateMask": {
+ "description": "The FieldMask to use when updating the notification config. If empty all mutable fields will be updated.",
+ "format": "google-fieldmask",
+ "location": "query",
+ "type": "string"
+ }
+ },
+ "path": "v1/{+name}",
+ "request": {
+ "$ref": "NotificationConfig"
+ },
+ "response": {
+ "$ref": "NotificationConfig"
+ },
+ "scopes": [
+ "https://www.googleapis.com/auth/cloud-platform"
+ ]
+ }
+ }
+ },
"sources": {
"methods": {
"list": {
@@ -1489,7 +1646,7 @@
"type": "string"
},
"parent": {
- "description": "Required. Resource name of the new notification config's parent. Its format is \"organizations/[organization_id]\" or \"projects/[project_id]\".",
+ "description": "Required. Resource name of the new notification config's parent. Its format is \"organizations/[organization_id]\", \"folders/[folder_id]\", or \"projects/[project_id]\".",
"location": "path",
"pattern": "^organizations/[^/]+$",
"required": true,
@@ -1578,7 +1735,7 @@
"type": "string"
},
"parent": {
- "description": "Required. Name of the organization to list notification configs. Its format is \"organizations/[organization_id]\" or \"projects/[project_id]\".",
+ "description": "Required. Name of the organization to list notification configs. Its format is \"organizations/[organization_id]\", \"folders/[folder_id]\", or \"projects/[project_id]\".",
"location": "path",
"pattern": "^organizations/[^/]+$",
"required": true,
@@ -2747,6 +2904,163 @@
}
}
},
+ "notificationConfigs": {
+ "methods": {
+ "create": {
+ "description": "Creates a notification config.",
+ "flatPath": "v1/projects/{projectsId}/notificationConfigs",
+ "httpMethod": "POST",
+ "id": "securitycenter.projects.notificationConfigs.create",
+ "parameterOrder": [
+ "parent"
+ ],
+ "parameters": {
+ "configId": {
+ "description": "Required. Unique identifier provided by the client within the parent scope. It must be between 1 and 128 characters, and contains alphanumeric characters, underscores or hyphens only.",
+ "location": "query",
+ "type": "string"
+ },
+ "parent": {
+ "description": "Required. Resource name of the new notification config's parent. Its format is \"organizations/[organization_id]\", \"folders/[folder_id]\", or \"projects/[project_id]\".",
+ "location": "path",
+ "pattern": "^projects/[^/]+$",
+ "required": true,
+ "type": "string"
+ }
+ },
+ "path": "v1/{+parent}/notificationConfigs",
+ "request": {
+ "$ref": "NotificationConfig"
+ },
+ "response": {
+ "$ref": "NotificationConfig"
+ },
+ "scopes": [
+ "https://www.googleapis.com/auth/cloud-platform"
+ ]
+ },
+ "delete": {
+ "description": "Deletes a notification config.",
+ "flatPath": "v1/projects/{projectsId}/notificationConfigs/{notificationConfigsId}",
+ "httpMethod": "DELETE",
+ "id": "securitycenter.projects.notificationConfigs.delete",
+ "parameterOrder": [
+ "name"
+ ],
+ "parameters": {
+ "name": {
+ "description": "Required. Name of the notification config to delete. Its format is \"organizations/[organization_id]/notificationConfigs/[config_id]\".",
+ "location": "path",
+ "pattern": "^projects/[^/]+/notificationConfigs/[^/]+$",
+ "required": true,
+ "type": "string"
+ }
+ },
+ "path": "v1/{+name}",
+ "response": {
+ "$ref": "Empty"
+ },
+ "scopes": [
+ "https://www.googleapis.com/auth/cloud-platform"
+ ]
+ },
+ "get": {
+ "description": "Gets a notification config.",
+ "flatPath": "v1/projects/{projectsId}/notificationConfigs/{notificationConfigsId}",
+ "httpMethod": "GET",
+ "id": "securitycenter.projects.notificationConfigs.get",
+ "parameterOrder": [
+ "name"
+ ],
+ "parameters": {
+ "name": {
+ "description": "Required. Name of the notification config to get. Its format is \"organizations/[organization_id]/notificationConfigs/[config_id]\".",
+ "location": "path",
+ "pattern": "^projects/[^/]+/notificationConfigs/[^/]+$",
+ "required": true,
+ "type": "string"
+ }
+ },
+ "path": "v1/{+name}",
+ "response": {
+ "$ref": "NotificationConfig"
+ },
+ "scopes": [
+ "https://www.googleapis.com/auth/cloud-platform"
+ ]
+ },
+ "list": {
+ "description": "Lists notification configs.",
+ "flatPath": "v1/projects/{projectsId}/notificationConfigs",
+ "httpMethod": "GET",
+ "id": "securitycenter.projects.notificationConfigs.list",
+ "parameterOrder": [
+ "parent"
+ ],
+ "parameters": {
+ "pageSize": {
+ "description": "The maximum number of results to return in a single response. Default is 10, minimum is 1, maximum is 1000.",
+ "format": "int32",
+ "location": "query",
+ "type": "integer"
+ },
+ "pageToken": {
+ "description": "The value returned by the last `ListNotificationConfigsResponse`; indicates that this is a continuation of a prior `ListNotificationConfigs` call, and that the system should return the next page of data.",
+ "location": "query",
+ "type": "string"
+ },
+ "parent": {
+ "description": "Required. Name of the organization to list notification configs. Its format is \"organizations/[organization_id]\", \"folders/[folder_id]\", or \"projects/[project_id]\".",
+ "location": "path",
+ "pattern": "^projects/[^/]+$",
+ "required": true,
+ "type": "string"
+ }
+ },
+ "path": "v1/{+parent}/notificationConfigs",
+ "response": {
+ "$ref": "ListNotificationConfigsResponse"
+ },
+ "scopes": [
+ "https://www.googleapis.com/auth/cloud-platform"
+ ]
+ },
+ "patch": {
+ "description": " Updates a notification config. The following update fields are allowed: description, pubsub_topic, streaming_config.filter",
+ "flatPath": "v1/projects/{projectsId}/notificationConfigs/{notificationConfigsId}",
+ "httpMethod": "PATCH",
+ "id": "securitycenter.projects.notificationConfigs.patch",
+ "parameterOrder": [
+ "name"
+ ],
+ "parameters": {
+ "name": {
+ "description": "The relative resource name of this notification config. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: \"organizations/{organization_id}/notificationConfigs/notify_public_bucket\".",
+ "location": "path",
+ "pattern": "^projects/[^/]+/notificationConfigs/[^/]+$",
+ "required": true,
+ "type": "string"
+ },
+ "updateMask": {
+ "description": "The FieldMask to use when updating the notification config. If empty all mutable fields will be updated.",
+ "format": "google-fieldmask",
+ "location": "query",
+ "type": "string"
+ }
+ },
+ "path": "v1/{+name}",
+ "request": {
+ "$ref": "NotificationConfig"
+ },
+ "response": {
+ "$ref": "NotificationConfig"
+ },
+ "scopes": [
+ "https://www.googleapis.com/auth/cloud-platform"
+ ]
+ }
+ }
+ },
"sources": {
"methods": {
"list": {
@@ -3058,7 +3372,7 @@
}
}
},
- "revision": "20220927",
+ "revision": "20221014",
"rootUrl": "https://securitycenter.googleapis.com/",
"schemas": {
"Access": {
@@ -3104,7 +3418,7 @@
"description": "What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.",
"type": "string"
},
- "username": {
+ "userName": {
"description": "A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.",
"type": "string"
}
@@ -3225,6 +3539,21 @@
},
"type": "object"
},
+ "AssociatedFinding": {
+ "description": "A finding that is associated with this node in the exposure path.",
+ "id": "AssociatedFinding",
+ "properties": {
+ "canonicalFindingName": {
+ "description": "Canonical name of the associated findings. Example: organizations/123/sources/456/findings/789",
+ "type": "string"
+ },
+ "findingCategory": {
+ "description": "The additional taxonomy group within findings from a given source.",
+ "type": "string"
+ }
+ },
+ "type": "object"
+ },
"AuditConfig": {
"description": "Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { \"audit_configs\": [ { \"service\": \"allServices\", \"audit_log_configs\": [ { \"log_type\": \"DATA_READ\", \"exempted_members\": [ \"user:jose@example.com\" ] }, { \"log_type\": \"DATA_WRITE\" }, { \"log_type\": \"ADMIN_READ\" } ] }, { \"service\": \"sampleservice.googleapis.com\", \"audit_log_configs\": [ { \"log_type\": \"DATA_READ\" }, { \"log_type\": \"DATA_WRITE\", \"exempted_members\": [ \"user:aliya@example.com\" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts `jose@example.com` from DATA_READ logging, and `aliya@example.com` from DATA_WRITE logging.",
"id": "AuditConfig",
@@ -3636,6 +3965,21 @@
},
"type": "object"
},
+ "Edge": {
+ "description": "Represents a connection between a source node and a destination node in this exposure path.",
+ "id": "Edge",
+ "properties": {
+ "destination": {
+ "description": "This is the resource name of the destination node.",
+ "type": "string"
+ },
+ "source": {
+ "description": "This is the resource name of the source node.",
+ "type": "string"
+ }
+ },
+ "type": "object"
+ },
"Empty": {
"description": "A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); }",
"id": "Empty",
@@ -4104,13 +4448,76 @@
"GoogleCloudSecuritycenterV1ExposedResource": {
"description": "A resource that is exposed as a result of a finding.",
"id": "GoogleCloudSecuritycenterV1ExposedResource",
- "properties": {},
+ "properties": {
+ "displayName": {
+ "description": "Human readable name of the resource that is exposed.",
+ "type": "string"
+ },
+ "methods": {
+ "description": "The ways in which this resource is exposed. Examples: Read, Write",
+ "items": {
+ "type": "string"
+ },
+ "type": "array"
+ },
+ "name": {
+ "description": "Exposed Resource Name e.g.: `organizations/123/attackExposureResults/456/exposedResources/789`",
+ "type": "string"
+ },
+ "resource": {
+ "description": "The name of the resource that is exposed. See: https://cloud.google.com/apis/design/resource_names#full_resource_name",
+ "type": "string"
+ },
+ "resourceType": {
+ "description": "The resource type of the exposed resource. See: https://cloud.google.com/asset-inventory/docs/supported-asset-types",
+ "type": "string"
+ },
+ "resourceValue": {
+ "description": "How valuable this resource is.",
+ "enum": [
+ "RESOURCE_VALUE_UNSPECIFIED",
+ "RESOURCE_VALUE_LOW",
+ "RESOURCE_VALUE_MEDIUM",
+ "RESOURCE_VALUE_HIGH"
+ ],
+ "enumDescriptions": [
+ "The resource value isn't specified.",
+ "This is a low value resource.",
+ "This is a medium value resource.",
+ "This is a high value resource."
+ ],
+ "type": "string"
+ }
+ },
"type": "object"
},
"GoogleCloudSecuritycenterV1ExposurePath": {
"description": "A path that an attacker could take to reach an exposed resource.",
"id": "GoogleCloudSecuritycenterV1ExposurePath",
- "properties": {},
+ "properties": {
+ "edges": {
+ "description": "A list of the edges between nodes in this exposure path.",
+ "items": {
+ "$ref": "Edge"
+ },
+ "type": "array"
+ },
+ "exposedResource": {
+ "$ref": "GoogleCloudSecuritycenterV1ExposedResource",
+ "description": "The leaf node of this exposure path."
+ },
+ "name": {
+ "description": "Exposure Path Name e.g.: `organizations/123/attackExposureResults/456/exposurePaths/789`",
+ "type": "string"
+ },
+ "pathNodes": {
+ "description": "A list of nodes that exist in this exposure path.",
+ "items": {
+ "$ref": "PathNode"
+ },
+ "type": "array"
+ }
+ },
"type": "object"
},
"GoogleCloudSecuritycenterV1ExternalSystem": {
@@ -5412,6 +5819,32 @@
},
"type": "object"
},
+ "PathNode": {
+ "description": "Represents one point that an attacker passes through in this exposure path.",
+ "id": "PathNode",
+ "properties": {
+ "associatedFindings": {
+ "description": "The findings associated with this node in the exposure path.",
+ "items": {
+ "$ref": "AssociatedFinding"
+ },
+ "type": "array"
+ },
+ "displayName": {
+ "description": "Human readable name of this resource.",
+ "type": "string"
+ },
+ "resource": {
+ "description": "The name of the resource at this point in the exposure path. The format of the name is: https://cloud.google.com/apis/design/resource_names#full_resource_name",
+ "type": "string"
+ },
+ "resourceType": {
+ "description": "The resource type of this resource. See: https://cloud.google.com/asset-inventory/docs/supported-asset-types",
+ "type": "string"
+ }
+ },
+ "type": "object"
+ },
"Pod": {
"description": "Kubernetes Pod.",
"id": "Pod",
diff --git a/googleapiclient/discovery_cache/documents/securitycenter.v1beta1.json b/googleapiclient/discovery_cache/documents/securitycenter.v1beta1.json
index 1711960250c..f8fc0459875 100644
--- a/googleapiclient/discovery_cache/documents/securitycenter.v1beta1.json
+++ b/googleapiclient/discovery_cache/documents/securitycenter.v1beta1.json
@@ -896,7 +896,7 @@
}
}
},
- "revision": "20220927",
+ "revision": "20221014",
"rootUrl": "https://securitycenter.googleapis.com/",
"schemas": {
"Access": {
@@ -942,7 +942,7 @@
"description": "What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.",
"type": "string"
},
- "username": {
+ "userName": {
"description": "A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.",
"type": "string"
}
@@ -1048,6 +1048,21 @@
},
"type": "object"
},
+ "AssociatedFinding": {
+ "description": "A finding that is associated with this node in the exposure path.",
+ "id": "AssociatedFinding",
+ "properties": {
+ "canonicalFindingName": {
+ "description": "Canonical name of the associated findings. Example: organizations/123/sources/456/findings/789",
+ "type": "string"
+ },
+ "findingCategory": {
+ "description": "The additional taxonomy group within findings from a given source.",
+ "type": "string"
+ }
+ },
+ "type": "object"
+ },
"AuditConfig": {
"description": "Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both `allServices` and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { \"audit_configs\": [ { \"service\": \"allServices\", \"audit_log_configs\": [ { \"log_type\": \"DATA_READ\", \"exempted_members\": [ \"user:jose@example.com\" ] }, { \"log_type\": \"DATA_WRITE\" }, { \"log_type\": \"ADMIN_READ\" } ] }, { \"service\": \"sampleservice.googleapis.com\", \"audit_log_configs\": [ { \"log_type\": \"DATA_READ\" }, { \"log_type\": \"DATA_WRITE\", \"exempted_members\": [ \"user:aliya@example.com\" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts `jose@example.com` from DATA_READ logging, and `aliya@example.com` from DATA_WRITE logging.",
"id": "AuditConfig",
@@ -1450,6 +1465,21 @@
},
"type": "object"
},
+ "Edge": {
+ "description": "Represents a connection between a source node and a destination node in this exposure path.",
+ "id": "Edge",
+ "properties": {
+ "destination": {
+ "description": "This is the resource name of the destination node.",
+ "type": "string"
+ },
+ "source": {
+ "description": "This is the resource name of the source node.",
+ "type": "string"
+ }
+ },
+ "type": "object"
+ },
"Empty": {
"description": "A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); }",
"id": "Empty",
@@ -1918,13 +1948,76 @@
"GoogleCloudSecuritycenterV1ExposedResource": {
"description": "A resource that is exposed as a result of a finding.",
"id": "GoogleCloudSecuritycenterV1ExposedResource",
- "properties": {},
+ "properties": {
+ "displayName": {
+ "description": "Human readable name of the resource that is exposed.",
+ "type": "string"
+ },
+ "methods": {
+ "description": "The ways in which this resource is exposed. Examples: Read, Write",
+ "items": {
+ "type": "string"
+ },
+ "type": "array"
+ },
+ "name": {
+ "description": "Exposed Resource Name e.g.: `organizations/123/attackExposureResults/456/exposedResources/789`",
+ "type": "string"
+ },
+ "resource": {
+ "description": "The name of the resource that is exposed. See: https://cloud.google.com/apis/design/resource_names#full_resource_name",
+ "type": "string"
+ },
+ "resourceType": {
+ "description": "The resource type of the exposed resource. See: https://cloud.google.com/asset-inventory/docs/supported-asset-types",
+ "type": "string"
+ },
+ "resourceValue": {
+ "description": "How valuable this resource is.",
+ "enum": [
+ "RESOURCE_VALUE_UNSPECIFIED",
+ "RESOURCE_VALUE_LOW",
+ "RESOURCE_VALUE_MEDIUM",
+ "RESOURCE_VALUE_HIGH"
+ ],
+ "enumDescriptions": [
+ "The resource value isn't specified.",
+ "This is a low value resource.",
+ "This is a medium value resource.",
+ "This is a high value resource."
+ ],
+ "type": "string"
+ }
+ },
"type": "object"
},
"GoogleCloudSecuritycenterV1ExposurePath": {
"description": "A path that an attacker could take to reach an exposed resource.",
"id": "GoogleCloudSecuritycenterV1ExposurePath",
- "properties": {},
+ "properties": {
+ "edges": {
+ "description": "A list of the edges between nodes in this exposure path.",
+ "items": {
+ "$ref": "Edge"
+ },
+ "type": "array"
+ },
+ "exposedResource": {
+ "$ref": "GoogleCloudSecuritycenterV1ExposedResource",
+ "description": "The leaf node of this exposure path."
+ },
+ "name": {
+ "description": "Exposure Path Name e.g.: `organizations/123/attackExposureResults/456/exposurePaths/789`",
+ "type": "string"
+ },
+ "pathNodes": {
+ "description": "A list of nodes that exist in this exposure path.",
+ "items": {
+ "$ref": "PathNode"
+ },
+ "type": "array"
+ }
+ },
"type": "object"
},
"GoogleCloudSecuritycenterV1ExternalSystem": {
@@ -3167,6 +3260,32 @@
},
"type": "object"
},
+ "PathNode": {
+ "description": "Represents one point that an attacker passes through in this exposure path.",
+ "id": "PathNode",
+ "properties": {
+ "associatedFindings": {
+ "description": "The findings associated with this node in the exposure path.",
+ "items": {
+ "$ref": "AssociatedFinding"
+ },
+ "type": "array"
+ },
+ "displayName": {
+ "description": "Human readable name of this resource.",
+ "type": "string"
+ },
+ "resource": {
+ "description": "The name of the resource at this point in the exposure path. The format of the name is: https://cloud.google.com/apis/design/resource_names#full_resource_name",
+ "type": "string"
+ },
+ "resourceType": {
+ "description": "The resource type of this resource. See: https://cloud.google.com/asset-inventory/docs/supported-asset-types",
+ "type": "string"
+ }
+ },
+ "type": "object"
+ },
"Pod": {
"description": "Kubernetes Pod.",
"id": "Pod",
diff --git a/googleapiclient/discovery_cache/documents/securitycenter.v1beta2.json b/googleapiclient/discovery_cache/documents/securitycenter.v1beta2.json
index 9e5868bdca6..a6906c11e93 100644
--- a/googleapiclient/discovery_cache/documents/securitycenter.v1beta2.json
+++ b/googleapiclient/discovery_cache/documents/securitycenter.v1beta2.json
@@ -1981,7 +1981,7 @@
}
}
},
- "revision": "20220927",
+ "revision": "20221014",
"rootUrl": "https://securitycenter.googleapis.com/",
"schemas": {
"Access": {
@@ -2027,7 +2027,7 @@
"description": "What kind of user agent is associated, e.g. operating system shells, embedded or stand-alone applications, etc.",
"type": "string"
},
- "username": {
+ "userName": {
"description": "A string representing a username. This is likely not an IAM principal. For instance, this may be the system user name if the finding is VM-related, or this may be some type of application login user name, depending on the type of finding.",
"type": "string"
}
@@ -2069,6 +2069,21 @@
},
"type": "object"
},
+ "AssociatedFinding": {
+ "description": "A finding that is associated with this node in the exposure path.",
+ "id": "AssociatedFinding",
+ "properties": {
+ "canonicalFindingName": {
+ "description": "Canonical name of the associated findings. Example: organizations/123/sources/456/findings/789",
+ "type": "string"
+ },
+ "findingCategory": {
+ "description": "The additional taxonomy group within findings from a given source.",
+ "type": "string"
+ }
+ },
+ "type": "object"
+ },
"Compliance": {
"description": "Contains compliance information about a security standard indicating unmet recommendations.",
"id": "Compliance",
@@ -2506,6 +2521,21 @@
},
"type": "object"
},
+ "Edge": {
+ "description": "Represents a connection between a source node and a destination node in this exposure path.",
+ "id": "Edge",
+ "properties": {
+ "destination": {
+ "description": "This is the resource name of the destination node.",
+ "type": "string"
+ },
+ "source": {
+ "description": "This is the resource name of the source node.",
+ "type": "string"
+ }
+ },
+ "type": "object"
+ },
"EnvironmentVariable": {
"description": "EnvironmentVariable is a name-value pair to store environment variables for Process.",
"id": "EnvironmentVariable",
@@ -2962,13 +2992,76 @@
"GoogleCloudSecuritycenterV1ExposedResource": {
"description": "A resource that is exposed as a result of a finding.",
"id": "GoogleCloudSecuritycenterV1ExposedResource",
- "properties": {},
+ "properties": {
+ "displayName": {
+ "description": "Human readable name of the resource that is exposed.",
+ "type": "string"
+ },
+ "methods": {
+ "description": "The ways in which this resource is exposed. Examples: Read, Write",
+ "items": {
+ "type": "string"
+ },
+ "type": "array"
+ },
+ "name": {
+ "description": "Exposed Resource Name e.g.: `organizations/123/attackExposureResults/456/exposedResources/789`",
+ "type": "string"
+ },
+ "resource": {
+ "description": "The name of the resource that is exposed. See: https://cloud.google.com/apis/design/resource_names#full_resource_name",
+ "type": "string"
+ },
+ "resourceType": {
+ "description": "The resource type of the exposed resource. See: https://cloud.google.com/asset-inventory/docs/supported-asset-types",
+ "type": "string"
+ },
+ "resourceValue": {
+ "description": "How valuable this resource is.",
+ "enum": [
+ "RESOURCE_VALUE_UNSPECIFIED",
+ "RESOURCE_VALUE_LOW",
+ "RESOURCE_VALUE_MEDIUM",
+ "RESOURCE_VALUE_HIGH"
+ ],
+ "enumDescriptions": [
+ "The resource value isn't specified.",
+ "This is a low value resource.",
+ "This is a medium value resource.",
+ "This is a high value resource."
+ ],
+ "type": "string"
+ }
+ },
"type": "object"
},
"GoogleCloudSecuritycenterV1ExposurePath": {
"description": "A path that an attacker could take to reach an exposed resource.",
"id": "GoogleCloudSecuritycenterV1ExposurePath",
- "properties": {},
+ "properties": {
+ "edges": {
+ "description": "A list of the edges between nodes in this exposure path.",
+ "items": {
+ "$ref": "Edge"
+ },
+ "type": "array"
+ },
+ "exposedResource": {
+ "$ref": "GoogleCloudSecuritycenterV1ExposedResource",
+ "description": "The leaf node of this exposure path."
+ },
+ "name": {
+ "description": "Exposure Path Name e.g.: `organizations/123/attackExposureResults/456/exposurePaths/789`",
+ "type": "string"
+ },
+ "pathNodes": {
+ "description": "A list of nodes that exist in this exposure path.",
+ "items": {
+ "$ref": "PathNode"
+ },
+ "type": "array"
+ }
+ },
"type": "object"
},
"GoogleCloudSecuritycenterV1ExternalSystem": {
@@ -3852,6 +3945,32 @@
},
"type": "object"
},
+ "PathNode": {
+ "description": "Represents one point that an attacker passes through in this exposure path.",
+ "id": "PathNode",
+ "properties": {
+ "associatedFindings": {
+ "description": "The findings associated with this node in the exposure path.",
+ "items": {
+ "$ref": "AssociatedFinding"
+ },
+ "type": "array"
+ },
+ "displayName": {
+ "description": "Human readable name of this resource.",
+ "type": "string"
+ },
+ "resource": {
+ "description": "The name of the resource at this point in the exposure path. The format of the name is: https://cloud.google.com/apis/design/resource_names#full_resource_name",
+ "type": "string"
+ },
+ "resourceType": {
+ "description": "The resource type of this resource. See: https://cloud.google.com/asset-inventory/docs/supported-asset-types",
+ "type": "string"
+ }
+ },
+ "type": "object"
+ },
"Pod": {
"description": "Kubernetes Pod.",
"id": "Pod",