feat: vulnerability scanning exposed to public

GKE Security Posture launches public preview, exposes relevant features in cluster to public. PiperOrigin-RevId: 479682645
googleapis · Oct 7, 2022 · df8b967 · df8b967
1 parent c522b52
commit df8b967
Showing 1 changed file with 15 additions and 0 deletions.
diff --git a/google/container/v1beta1/cluster_service.proto b/google/container/v1beta1/cluster_service.proto
@@ -1912,9 +1912,24 @@ message WorkloadConfig {
 // ProtectConfig defines the flags needed to enable/disable features for the
 // Protect API.
 message ProtectConfig {
+  // WorkloadVulnerabilityMode defines mode to perform vulnerability scanning.
+  enum WorkloadVulnerabilityMode {
+    // Default value not specified.
+    WORKLOAD_VULNERABILITY_MODE_UNSPECIFIED = 0;
+
+    // Disables Workload Vulnerability Scanning feature on the cluster.
+    DISABLED = 1;
+
+    // Applies basic vulnerability scanning settings for cluster workloads.
+    BASIC = 2;
+  }
+
   // WorkloadConfig defines which actions are enabled for a cluster's workload
   // configurations.
   optional WorkloadConfig workload_config = 1;
+
+  // Sets which mode to use for Protect workload vulnerability scanning feature.
+  optional WorkloadVulnerabilityMode workload_vulnerability_mode = 2;
 }
 
 // Subset of Nodepool message that has defaults.