Google Git
Sign in
flutter/third_party/googleapis.dart.git/refs/heads/master/./generated/googleapis/lib/containeranalysis/v1.dart
blob: 4b4064fc71236fe39e2675639134d2cfbc1c2c41 [file] [log] [blame] [edit]
// This is a generated file (see the discoveryapis_generator project).
// ignore_for_file: camel_case_types
// ignore_for_file: comment_references
// ignore_for_file: deprecated_member_use_from_same_package
// ignore_for_file: doc_directive_unknown
// ignore_for_file: lines_longer_than_80_chars
// ignore_for_file: non_constant_identifier_names
// ignore_for_file: prefer_interpolation_to_compose_strings
// ignore_for_file: unintended_html_in_doc_comment
// ignore_for_file: unnecessary_brace_in_string_interps
// ignore_for_file: unnecessary_lambdas
// ignore_for_file: unnecessary_string_interpolations
/// Container Analysis API - v1
///
/// This API is a prerequisite for leveraging Artifact Analysis scanning
/// capabilities in Artifact Registry. In addition, the Container Analysis API
/// is an implementation of the Grafeas API, which enables storing, querying,
/// and retrieval of critical metadata about all of your software artifacts.
///
/// For more information, see
/// <https://cloud.google.com/container-analysis/api/reference/rest/>
///
/// Create an instance of [ContainerAnalysisApi] to access these resources:
///
/// - [ProjectsResource]
/// - [ProjectsLocationsResource]
/// - [ProjectsLocationsNotesResource]
/// - [ProjectsLocationsNotesOccurrencesResource]
/// - [ProjectsLocationsOccurrencesResource]
/// - [ProjectsLocationsResourcesResource]
/// - [ProjectsNotesResource]
/// - [ProjectsNotesOccurrencesResource]
/// - [ProjectsOccurrencesResource]
/// - [ProjectsResourcesResource]
library;
import 'dart:async' as async;
import 'dart:convert' as convert;
import 'dart:core' as core;
import 'package:_discoveryapis_commons/_discoveryapis_commons.dart' as commons;
import 'package:http/http.dart' as http;
import '../shared.dart';
import '../src/user_agent.dart';
export 'package:_discoveryapis_commons/_discoveryapis_commons.dart'
show ApiRequestError, DetailedApiRequestError;
/// This API is a prerequisite for leveraging Artifact Analysis scanning
/// capabilities in Artifact Registry.
///
/// In addition, the Container Analysis API is an implementation of the Grafeas
/// API, which enables storing, querying, and retrieval of critical metadata
/// about all of your software artifacts.
class ContainerAnalysisApi {
/// See, edit, configure, and delete your Google Cloud data and see the email
/// address for your Google Account.
static const cloudPlatformScope =
'https://www.googleapis.com/auth/cloud-platform';
final commons.ApiRequester _requester;
ProjectsResource get projects => ProjectsResource(_requester);
ContainerAnalysisApi(
http.Client client, {
core.String rootUrl = 'https://containeranalysis.googleapis.com/',
core.String servicePath = '',
}) : _requester = commons.ApiRequester(
client,
rootUrl,
servicePath,
requestHeaders,
);
}
class ProjectsResource {
final commons.ApiRequester _requester;
ProjectsLocationsResource get locations =>
ProjectsLocationsResource(_requester);
ProjectsNotesResource get notes => ProjectsNotesResource(_requester);
ProjectsOccurrencesResource get occurrences =>
ProjectsOccurrencesResource(_requester);
ProjectsResourcesResource get resources =>
ProjectsResourcesResource(_requester);
ProjectsResource(commons.ApiRequester client) : _requester = client;
}
class ProjectsLocationsResource {
final commons.ApiRequester _requester;
ProjectsLocationsNotesResource get notes =>
ProjectsLocationsNotesResource(_requester);
ProjectsLocationsOccurrencesResource get occurrences =>
ProjectsLocationsOccurrencesResource(_requester);
ProjectsLocationsResourcesResource get resources =>
ProjectsLocationsResourcesResource(_requester);
ProjectsLocationsResource(commons.ApiRequester client) : _requester = client;
}
class ProjectsLocationsNotesResource {
final commons.ApiRequester _requester;
ProjectsLocationsNotesOccurrencesResource get occurrences =>
ProjectsLocationsNotesOccurrencesResource(_requester);
ProjectsLocationsNotesResource(commons.ApiRequester client)
: _requester = client;
/// Creates new notes in batch.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [parent] - Required. The name of the project in the form of
/// `projects/[PROJECT_ID]`, under which the notes are to be created.
/// Value must have pattern `^projects/\[^/\]+/locations/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [BatchCreateNotesResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<BatchCreateNotesResponse> batchCreate(
BatchCreateNotesRequest request,
core.String parent, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$parent') + '/notes:batchCreate';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return BatchCreateNotesResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Creates a new note.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [parent] - Required. The name of the project in the form of
/// `projects/[PROJECT_ID]`, under which the note is to be created.
/// Value must have pattern `^projects/\[^/\]+/locations/\[^/\]+$`.
///
/// [noteId] - Required. The ID to use for this note.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Note].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Note> create(
Note request,
core.String parent, {
core.String? noteId,
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'noteId': ?noteId == null ? null : [noteId],
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$parent') + '/notes';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return Note.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Deletes the specified note.
///
/// Request parameters:
///
/// [name] - Required. The name of the note in the form of
/// `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/notes/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Empty].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Empty> delete(core.String name, {core.String? $fields}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name');
final response_ = await _requester.request(
url_,
'DELETE',
queryParams: queryParams_,
);
return Empty.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Gets the specified note.
///
/// Request parameters:
///
/// [name] - Required. The name of the note in the form of
/// `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/notes/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Note].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Note> get(core.String name, {core.String? $fields}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name');
final response_ = await _requester.request(
url_,
'GET',
queryParams: queryParams_,
);
return Note.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Gets the access control policy for a note or an occurrence resource.
///
/// Requires `containeranalysis.notes.setIamPolicy` or
/// `containeranalysis.occurrences.setIamPolicy` permission if the resource is
/// a note or occurrence, respectively. The resource takes the format
/// `projects/[PROJECT_ID]/notes/[NOTE_ID]` for notes and
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for occurrences.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [resource] - REQUIRED: The resource for which the policy is being
/// requested. See
/// [Resource names](https://cloud.google.com/apis/design/resource_names) for
/// the appropriate value for this field.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/notes/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Policy].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Policy> getIamPolicy(
GetIamPolicyRequest request,
core.String resource, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$resource') + ':getIamPolicy';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return Policy.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Lists notes for the specified project.
///
/// Request parameters:
///
/// [parent] - Required. The name of the project to list notes for in the form
/// of `projects/[PROJECT_ID]`.
/// Value must have pattern `^projects/\[^/\]+/locations/\[^/\]+$`.
///
/// [filter] - The filter expression.
///
/// [pageSize] - Number of notes to return in the list. Must be positive. Max
/// allowed page size is 1000. If not specified, page size defaults to 20.
///
/// [pageToken] - Token to provide to skip to a particular spot in the list.
///
/// [returnPartialSuccess] - If set, the request will return all reachable
/// Notes and report all unreachable regions in the `unreachable` field in the
/// response. Only applicable for requests in the global region.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [ListNotesResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<ListNotesResponse> list(
core.String parent, {
core.String? filter,
core.int? pageSize,
core.String? pageToken,
core.bool? returnPartialSuccess,
core.String? $fields,
}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'filter': ?filter == null ? null : [filter],
'pageSize': ?pageSize == null ? null : ['${pageSize}'],
'pageToken': ?pageToken == null ? null : [pageToken],
'returnPartialSuccess': ?returnPartialSuccess == null
? null
: ['${returnPartialSuccess}'],
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$parent') + '/notes';
final response_ = await _requester.request(
url_,
'GET',
queryParams: queryParams_,
);
return ListNotesResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Updates the specified note.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [name] - Required. The name of the note in the form of
/// `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/notes/\[^/\]+$`.
///
/// [updateMask] - The fields to update.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Note].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Note> patch(
Note request,
core.String name, {
core.String? updateMask,
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'updateMask': ?updateMask == null ? null : [updateMask],
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name');
final response_ = await _requester.request(
url_,
'PATCH',
body: body_,
queryParams: queryParams_,
);
return Note.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Sets the access control policy on the specified note or occurrence.
///
/// Requires `containeranalysis.notes.setIamPolicy` or
/// `containeranalysis.occurrences.setIamPolicy` permission if the resource is
/// a note or an occurrence, respectively. The resource takes the format
/// `projects/[PROJECT_ID]/notes/[NOTE_ID]` for notes and
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for occurrences.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [resource] - REQUIRED: The resource for which the policy is being
/// specified. See
/// [Resource names](https://cloud.google.com/apis/design/resource_names) for
/// the appropriate value for this field.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/notes/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Policy].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Policy> setIamPolicy(
SetIamPolicyRequest request,
core.String resource, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$resource') + ':setIamPolicy';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return Policy.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Returns the permissions that a caller has on the specified note or
/// occurrence.
///
/// Requires list permission on the project (for example,
/// `containeranalysis.notes.list`). The resource takes the format
/// `projects/[PROJECT_ID]/notes/[NOTE_ID]` for notes and
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for occurrences.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [resource] - REQUIRED: The resource for which the policy detail is being
/// requested. See
/// [Resource names](https://cloud.google.com/apis/design/resource_names) for
/// the appropriate value for this field.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/notes/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [TestIamPermissionsResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<TestIamPermissionsResponse> testIamPermissions(
TestIamPermissionsRequest request,
core.String resource, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ =
'v1/' + core.Uri.encodeFull('$resource') + ':testIamPermissions';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return TestIamPermissionsResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
}
class ProjectsLocationsNotesOccurrencesResource {
final commons.ApiRequester _requester;
ProjectsLocationsNotesOccurrencesResource(commons.ApiRequester client)
: _requester = client;
/// Lists occurrences referencing the specified note.
///
/// Provider projects can use this method to get all occurrences across
/// consumer projects referencing the specified note.
///
/// Request parameters:
///
/// [name] - Required. The name of the note to list occurrences for in the
/// form of `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/notes/\[^/\]+$`.
///
/// [filter] - The filter expression.
///
/// [pageSize] - Number of occurrences to return in the list.
///
/// [pageToken] - Token to provide to skip to a particular spot in the list.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [ListNoteOccurrencesResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<ListNoteOccurrencesResponse> list(
core.String name, {
core.String? filter,
core.int? pageSize,
core.String? pageToken,
core.String? $fields,
}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'filter': ?filter == null ? null : [filter],
'pageSize': ?pageSize == null ? null : ['${pageSize}'],
'pageToken': ?pageToken == null ? null : [pageToken],
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name') + '/occurrences';
final response_ = await _requester.request(
url_,
'GET',
queryParams: queryParams_,
);
return ListNoteOccurrencesResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
}
class ProjectsLocationsOccurrencesResource {
final commons.ApiRequester _requester;
ProjectsLocationsOccurrencesResource(commons.ApiRequester client)
: _requester = client;
/// Creates new occurrences in batch.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [parent] - Required. The name of the project in the form of
/// `projects/[PROJECT_ID]`, under which the occurrences are to be created.
/// Value must have pattern `^projects/\[^/\]+/locations/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [BatchCreateOccurrencesResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<BatchCreateOccurrencesResponse> batchCreate(
BatchCreateOccurrencesRequest request,
core.String parent, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ =
'v1/' + core.Uri.encodeFull('$parent') + '/occurrences:batchCreate';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return BatchCreateOccurrencesResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Creates a new occurrence.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [parent] - Required. The name of the project in the form of
/// `projects/[PROJECT_ID]`, under which the occurrence is to be created.
/// Value must have pattern `^projects/\[^/\]+/locations/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Occurrence].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Occurrence> create(
Occurrence request,
core.String parent, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$parent') + '/occurrences';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return Occurrence.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Deletes the specified occurrence.
///
/// For example, use this method to delete an occurrence when the occurrence
/// is no longer applicable for the given resource.
///
/// Request parameters:
///
/// [name] - Required. The name of the occurrence in the form of
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/occurrences/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Empty].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Empty> delete(core.String name, {core.String? $fields}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name');
final response_ = await _requester.request(
url_,
'DELETE',
queryParams: queryParams_,
);
return Empty.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Gets the specified occurrence.
///
/// Request parameters:
///
/// [name] - Required. The name of the occurrence in the form of
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/occurrences/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Occurrence].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Occurrence> get(core.String name, {core.String? $fields}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name');
final response_ = await _requester.request(
url_,
'GET',
queryParams: queryParams_,
);
return Occurrence.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Gets the access control policy for a note or an occurrence resource.
///
/// Requires `containeranalysis.notes.setIamPolicy` or
/// `containeranalysis.occurrences.setIamPolicy` permission if the resource is
/// a note or occurrence, respectively. The resource takes the format
/// `projects/[PROJECT_ID]/notes/[NOTE_ID]` for notes and
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for occurrences.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [resource] - REQUIRED: The resource for which the policy is being
/// requested. See
/// [Resource names](https://cloud.google.com/apis/design/resource_names) for
/// the appropriate value for this field.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/occurrences/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Policy].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Policy> getIamPolicy(
GetIamPolicyRequest request,
core.String resource, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$resource') + ':getIamPolicy';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return Policy.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Gets the note attached to the specified occurrence.
///
/// Consumer projects can use this method to get a note that belongs to a
/// provider project.
///
/// Request parameters:
///
/// [name] - Required. The name of the occurrence in the form of
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/occurrences/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Note].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Note> getNotes(core.String name, {core.String? $fields}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name') + '/notes';
final response_ = await _requester.request(
url_,
'GET',
queryParams: queryParams_,
);
return Note.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Gets a summary of the number and severity of occurrences.
///
/// Request parameters:
///
/// [parent] - Required. The name of the project to get a vulnerability
/// summary for in the form of `projects/[PROJECT_ID]`.
/// Value must have pattern `^projects/\[^/\]+/locations/\[^/\]+$`.
///
/// [filter] - The filter expression.
///
/// [returnPartialSuccess] - If set, the request will return all reachable
/// occurrence summaries and report all unreachable regions in the
/// `unreachable` field in the response. Only applicable for requests in the
/// global region.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [VulnerabilityOccurrencesSummary].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<VulnerabilityOccurrencesSummary> getVulnerabilitySummary(
core.String parent, {
core.String? filter,
core.bool? returnPartialSuccess,
core.String? $fields,
}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'filter': ?filter == null ? null : [filter],
'returnPartialSuccess': ?returnPartialSuccess == null
? null
: ['${returnPartialSuccess}'],
'fields': ?$fields == null ? null : [$fields],
};
final url_ =
'v1/' +
core.Uri.encodeFull('$parent') +
'/occurrences:vulnerabilitySummary';
final response_ = await _requester.request(
url_,
'GET',
queryParams: queryParams_,
);
return VulnerabilityOccurrencesSummary.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Lists occurrences for the specified project.
///
/// Request parameters:
///
/// [parent] - Required. The name of the project to list occurrences for in
/// the form of `projects/[PROJECT_ID]`.
/// Value must have pattern `^projects/\[^/\]+/locations/\[^/\]+$`.
///
/// [filter] - The filter expression.
///
/// [pageSize] - Number of occurrences to return in the list. Must be
/// positive. Max allowed page size is 1000. If not specified, page size
/// defaults to 20.
///
/// [pageToken] - Token to provide to skip to a particular spot in the list.
///
/// [returnPartialSuccess] - If set, the request will return all reachable
/// Occurrences and report all unreachable regions in the `unreachable` field
/// in the response. Only applicable for requests in the global region.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [ListOccurrencesResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<ListOccurrencesResponse> list(
core.String parent, {
core.String? filter,
core.int? pageSize,
core.String? pageToken,
core.bool? returnPartialSuccess,
core.String? $fields,
}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'filter': ?filter == null ? null : [filter],
'pageSize': ?pageSize == null ? null : ['${pageSize}'],
'pageToken': ?pageToken == null ? null : [pageToken],
'returnPartialSuccess': ?returnPartialSuccess == null
? null
: ['${returnPartialSuccess}'],
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$parent') + '/occurrences';
final response_ = await _requester.request(
url_,
'GET',
queryParams: queryParams_,
);
return ListOccurrencesResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Updates the specified occurrence.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [name] - Required. The name of the occurrence in the form of
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/occurrences/\[^/\]+$`.
///
/// [updateMask] - The fields to update.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Occurrence].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Occurrence> patch(
Occurrence request,
core.String name, {
core.String? updateMask,
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'updateMask': ?updateMask == null ? null : [updateMask],
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name');
final response_ = await _requester.request(
url_,
'PATCH',
body: body_,
queryParams: queryParams_,
);
return Occurrence.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Sets the access control policy on the specified note or occurrence.
///
/// Requires `containeranalysis.notes.setIamPolicy` or
/// `containeranalysis.occurrences.setIamPolicy` permission if the resource is
/// a note or an occurrence, respectively. The resource takes the format
/// `projects/[PROJECT_ID]/notes/[NOTE_ID]` for notes and
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for occurrences.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [resource] - REQUIRED: The resource for which the policy is being
/// specified. See
/// [Resource names](https://cloud.google.com/apis/design/resource_names) for
/// the appropriate value for this field.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/occurrences/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Policy].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Policy> setIamPolicy(
SetIamPolicyRequest request,
core.String resource, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$resource') + ':setIamPolicy';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return Policy.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Returns the permissions that a caller has on the specified note or
/// occurrence.
///
/// Requires list permission on the project (for example,
/// `containeranalysis.notes.list`). The resource takes the format
/// `projects/[PROJECT_ID]/notes/[NOTE_ID]` for notes and
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for occurrences.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [resource] - REQUIRED: The resource for which the policy detail is being
/// requested. See
/// [Resource names](https://cloud.google.com/apis/design/resource_names) for
/// the appropriate value for this field.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/occurrences/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [TestIamPermissionsResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<TestIamPermissionsResponse> testIamPermissions(
TestIamPermissionsRequest request,
core.String resource, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ =
'v1/' + core.Uri.encodeFull('$resource') + ':testIamPermissions';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return TestIamPermissionsResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
}
class ProjectsLocationsResourcesResource {
final commons.ApiRequester _requester;
ProjectsLocationsResourcesResource(commons.ApiRequester client)
: _requester = client;
/// Generates an SBOM for the given resource.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [name] - Required. The name of the resource in the form of
/// `projects/[PROJECT_ID]/resources/[RESOURCE_URL]`.
/// Value must have pattern
/// `^projects/\[^/\]+/locations/\[^/\]+/resources/.*$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [ExportSBOMResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<ExportSBOMResponse> exportSBOM(
ExportSBOMRequest request,
core.String name, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name') + ':exportSBOM';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return ExportSBOMResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
}
class ProjectsNotesResource {
final commons.ApiRequester _requester;
ProjectsNotesOccurrencesResource get occurrences =>
ProjectsNotesOccurrencesResource(_requester);
ProjectsNotesResource(commons.ApiRequester client) : _requester = client;
/// Creates new notes in batch.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [parent] - Required. The name of the project in the form of
/// `projects/[PROJECT_ID]`, under which the notes are to be created.
/// Value must have pattern `^projects/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [BatchCreateNotesResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<BatchCreateNotesResponse> batchCreate(
BatchCreateNotesRequest request,
core.String parent, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$parent') + '/notes:batchCreate';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return BatchCreateNotesResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Creates a new note.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [parent] - Required. The name of the project in the form of
/// `projects/[PROJECT_ID]`, under which the note is to be created.
/// Value must have pattern `^projects/\[^/\]+$`.
///
/// [noteId] - Required. The ID to use for this note.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Note].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Note> create(
Note request,
core.String parent, {
core.String? noteId,
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'noteId': ?noteId == null ? null : [noteId],
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$parent') + '/notes';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return Note.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Deletes the specified note.
///
/// Request parameters:
///
/// [name] - Required. The name of the note in the form of
/// `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
/// Value must have pattern `^projects/\[^/\]+/notes/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Empty].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Empty> delete(core.String name, {core.String? $fields}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name');
final response_ = await _requester.request(
url_,
'DELETE',
queryParams: queryParams_,
);
return Empty.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Gets the specified note.
///
/// Request parameters:
///
/// [name] - Required. The name of the note in the form of
/// `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
/// Value must have pattern `^projects/\[^/\]+/notes/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Note].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Note> get(core.String name, {core.String? $fields}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name');
final response_ = await _requester.request(
url_,
'GET',
queryParams: queryParams_,
);
return Note.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Gets the access control policy for a note or an occurrence resource.
///
/// Requires `containeranalysis.notes.setIamPolicy` or
/// `containeranalysis.occurrences.setIamPolicy` permission if the resource is
/// a note or occurrence, respectively. The resource takes the format
/// `projects/[PROJECT_ID]/notes/[NOTE_ID]` for notes and
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for occurrences.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [resource] - REQUIRED: The resource for which the policy is being
/// requested. See
/// [Resource names](https://cloud.google.com/apis/design/resource_names) for
/// the appropriate value for this field.
/// Value must have pattern `^projects/\[^/\]+/notes/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Policy].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Policy> getIamPolicy(
GetIamPolicyRequest request,
core.String resource, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$resource') + ':getIamPolicy';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return Policy.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Lists notes for the specified project.
///
/// Request parameters:
///
/// [parent] - Required. The name of the project to list notes for in the form
/// of `projects/[PROJECT_ID]`.
/// Value must have pattern `^projects/\[^/\]+$`.
///
/// [filter] - The filter expression.
///
/// [pageSize] - Number of notes to return in the list. Must be positive. Max
/// allowed page size is 1000. If not specified, page size defaults to 20.
///
/// [pageToken] - Token to provide to skip to a particular spot in the list.
///
/// [returnPartialSuccess] - If set, the request will return all reachable
/// Notes and report all unreachable regions in the `unreachable` field in the
/// response. Only applicable for requests in the global region.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [ListNotesResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<ListNotesResponse> list(
core.String parent, {
core.String? filter,
core.int? pageSize,
core.String? pageToken,
core.bool? returnPartialSuccess,
core.String? $fields,
}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'filter': ?filter == null ? null : [filter],
'pageSize': ?pageSize == null ? null : ['${pageSize}'],
'pageToken': ?pageToken == null ? null : [pageToken],
'returnPartialSuccess': ?returnPartialSuccess == null
? null
: ['${returnPartialSuccess}'],
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$parent') + '/notes';
final response_ = await _requester.request(
url_,
'GET',
queryParams: queryParams_,
);
return ListNotesResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Updates the specified note.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [name] - Required. The name of the note in the form of
/// `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
/// Value must have pattern `^projects/\[^/\]+/notes/\[^/\]+$`.
///
/// [updateMask] - The fields to update.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Note].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Note> patch(
Note request,
core.String name, {
core.String? updateMask,
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'updateMask': ?updateMask == null ? null : [updateMask],
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name');
final response_ = await _requester.request(
url_,
'PATCH',
body: body_,
queryParams: queryParams_,
);
return Note.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Sets the access control policy on the specified note or occurrence.
///
/// Requires `containeranalysis.notes.setIamPolicy` or
/// `containeranalysis.occurrences.setIamPolicy` permission if the resource is
/// a note or an occurrence, respectively. The resource takes the format
/// `projects/[PROJECT_ID]/notes/[NOTE_ID]` for notes and
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for occurrences.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [resource] - REQUIRED: The resource for which the policy is being
/// specified. See
/// [Resource names](https://cloud.google.com/apis/design/resource_names) for
/// the appropriate value for this field.
/// Value must have pattern `^projects/\[^/\]+/notes/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Policy].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Policy> setIamPolicy(
SetIamPolicyRequest request,
core.String resource, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$resource') + ':setIamPolicy';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return Policy.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Returns the permissions that a caller has on the specified note or
/// occurrence.
///
/// Requires list permission on the project (for example,
/// `containeranalysis.notes.list`). The resource takes the format
/// `projects/[PROJECT_ID]/notes/[NOTE_ID]` for notes and
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for occurrences.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [resource] - REQUIRED: The resource for which the policy detail is being
/// requested. See
/// [Resource names](https://cloud.google.com/apis/design/resource_names) for
/// the appropriate value for this field.
/// Value must have pattern `^projects/\[^/\]+/notes/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [TestIamPermissionsResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<TestIamPermissionsResponse> testIamPermissions(
TestIamPermissionsRequest request,
core.String resource, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ =
'v1/' + core.Uri.encodeFull('$resource') + ':testIamPermissions';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return TestIamPermissionsResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
}
class ProjectsNotesOccurrencesResource {
final commons.ApiRequester _requester;
ProjectsNotesOccurrencesResource(commons.ApiRequester client)
: _requester = client;
/// Lists occurrences referencing the specified note.
///
/// Provider projects can use this method to get all occurrences across
/// consumer projects referencing the specified note.
///
/// Request parameters:
///
/// [name] - Required. The name of the note to list occurrences for in the
/// form of `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
/// Value must have pattern `^projects/\[^/\]+/notes/\[^/\]+$`.
///
/// [filter] - The filter expression.
///
/// [pageSize] - Number of occurrences to return in the list.
///
/// [pageToken] - Token to provide to skip to a particular spot in the list.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [ListNoteOccurrencesResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<ListNoteOccurrencesResponse> list(
core.String name, {
core.String? filter,
core.int? pageSize,
core.String? pageToken,
core.String? $fields,
}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'filter': ?filter == null ? null : [filter],
'pageSize': ?pageSize == null ? null : ['${pageSize}'],
'pageToken': ?pageToken == null ? null : [pageToken],
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name') + '/occurrences';
final response_ = await _requester.request(
url_,
'GET',
queryParams: queryParams_,
);
return ListNoteOccurrencesResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
}
class ProjectsOccurrencesResource {
final commons.ApiRequester _requester;
ProjectsOccurrencesResource(commons.ApiRequester client)
: _requester = client;
/// Creates new occurrences in batch.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [parent] - Required. The name of the project in the form of
/// `projects/[PROJECT_ID]`, under which the occurrences are to be created.
/// Value must have pattern `^projects/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [BatchCreateOccurrencesResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<BatchCreateOccurrencesResponse> batchCreate(
BatchCreateOccurrencesRequest request,
core.String parent, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ =
'v1/' + core.Uri.encodeFull('$parent') + '/occurrences:batchCreate';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return BatchCreateOccurrencesResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Creates a new occurrence.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [parent] - Required. The name of the project in the form of
/// `projects/[PROJECT_ID]`, under which the occurrence is to be created.
/// Value must have pattern `^projects/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Occurrence].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Occurrence> create(
Occurrence request,
core.String parent, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$parent') + '/occurrences';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return Occurrence.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Deletes the specified occurrence.
///
/// For example, use this method to delete an occurrence when the occurrence
/// is no longer applicable for the given resource.
///
/// Request parameters:
///
/// [name] - Required. The name of the occurrence in the form of
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
/// Value must have pattern `^projects/\[^/\]+/occurrences/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Empty].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Empty> delete(core.String name, {core.String? $fields}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name');
final response_ = await _requester.request(
url_,
'DELETE',
queryParams: queryParams_,
);
return Empty.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Gets the specified occurrence.
///
/// Request parameters:
///
/// [name] - Required. The name of the occurrence in the form of
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
/// Value must have pattern `^projects/\[^/\]+/occurrences/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Occurrence].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Occurrence> get(core.String name, {core.String? $fields}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name');
final response_ = await _requester.request(
url_,
'GET',
queryParams: queryParams_,
);
return Occurrence.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Gets the access control policy for a note or an occurrence resource.
///
/// Requires `containeranalysis.notes.setIamPolicy` or
/// `containeranalysis.occurrences.setIamPolicy` permission if the resource is
/// a note or occurrence, respectively. The resource takes the format
/// `projects/[PROJECT_ID]/notes/[NOTE_ID]` for notes and
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for occurrences.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [resource] - REQUIRED: The resource for which the policy is being
/// requested. See
/// [Resource names](https://cloud.google.com/apis/design/resource_names) for
/// the appropriate value for this field.
/// Value must have pattern `^projects/\[^/\]+/occurrences/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Policy].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Policy> getIamPolicy(
GetIamPolicyRequest request,
core.String resource, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$resource') + ':getIamPolicy';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return Policy.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Gets the note attached to the specified occurrence.
///
/// Consumer projects can use this method to get a note that belongs to a
/// provider project.
///
/// Request parameters:
///
/// [name] - Required. The name of the occurrence in the form of
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
/// Value must have pattern `^projects/\[^/\]+/occurrences/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Note].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Note> getNotes(core.String name, {core.String? $fields}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name') + '/notes';
final response_ = await _requester.request(
url_,
'GET',
queryParams: queryParams_,
);
return Note.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Gets a summary of the number and severity of occurrences.
///
/// Request parameters:
///
/// [parent] - Required. The name of the project to get a vulnerability
/// summary for in the form of `projects/[PROJECT_ID]`.
/// Value must have pattern `^projects/\[^/\]+$`.
///
/// [filter] - The filter expression.
///
/// [returnPartialSuccess] - If set, the request will return all reachable
/// occurrence summaries and report all unreachable regions in the
/// `unreachable` field in the response. Only applicable for requests in the
/// global region.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [VulnerabilityOccurrencesSummary].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<VulnerabilityOccurrencesSummary> getVulnerabilitySummary(
core.String parent, {
core.String? filter,
core.bool? returnPartialSuccess,
core.String? $fields,
}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'filter': ?filter == null ? null : [filter],
'returnPartialSuccess': ?returnPartialSuccess == null
? null
: ['${returnPartialSuccess}'],
'fields': ?$fields == null ? null : [$fields],
};
final url_ =
'v1/' +
core.Uri.encodeFull('$parent') +
'/occurrences:vulnerabilitySummary';
final response_ = await _requester.request(
url_,
'GET',
queryParams: queryParams_,
);
return VulnerabilityOccurrencesSummary.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Lists occurrences for the specified project.
///
/// Request parameters:
///
/// [parent] - Required. The name of the project to list occurrences for in
/// the form of `projects/[PROJECT_ID]`.
/// Value must have pattern `^projects/\[^/\]+$`.
///
/// [filter] - The filter expression.
///
/// [pageSize] - Number of occurrences to return in the list. Must be
/// positive. Max allowed page size is 1000. If not specified, page size
/// defaults to 20.
///
/// [pageToken] - Token to provide to skip to a particular spot in the list.
///
/// [returnPartialSuccess] - If set, the request will return all reachable
/// Occurrences and report all unreachable regions in the `unreachable` field
/// in the response. Only applicable for requests in the global region.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [ListOccurrencesResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<ListOccurrencesResponse> list(
core.String parent, {
core.String? filter,
core.int? pageSize,
core.String? pageToken,
core.bool? returnPartialSuccess,
core.String? $fields,
}) async {
final queryParams_ = <core.String, core.List<core.String>>{
'filter': ?filter == null ? null : [filter],
'pageSize': ?pageSize == null ? null : ['${pageSize}'],
'pageToken': ?pageToken == null ? null : [pageToken],
'returnPartialSuccess': ?returnPartialSuccess == null
? null
: ['${returnPartialSuccess}'],
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$parent') + '/occurrences';
final response_ = await _requester.request(
url_,
'GET',
queryParams: queryParams_,
);
return ListOccurrencesResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Updates the specified occurrence.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [name] - Required. The name of the occurrence in the form of
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
/// Value must have pattern `^projects/\[^/\]+/occurrences/\[^/\]+$`.
///
/// [updateMask] - The fields to update.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Occurrence].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Occurrence> patch(
Occurrence request,
core.String name, {
core.String? updateMask,
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'updateMask': ?updateMask == null ? null : [updateMask],
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name');
final response_ = await _requester.request(
url_,
'PATCH',
body: body_,
queryParams: queryParams_,
);
return Occurrence.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
/// Sets the access control policy on the specified note or occurrence.
///
/// Requires `containeranalysis.notes.setIamPolicy` or
/// `containeranalysis.occurrences.setIamPolicy` permission if the resource is
/// a note or an occurrence, respectively. The resource takes the format
/// `projects/[PROJECT_ID]/notes/[NOTE_ID]` for notes and
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for occurrences.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [resource] - REQUIRED: The resource for which the policy is being
/// specified. See
/// [Resource names](https://cloud.google.com/apis/design/resource_names) for
/// the appropriate value for this field.
/// Value must have pattern `^projects/\[^/\]+/occurrences/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [Policy].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<Policy> setIamPolicy(
SetIamPolicyRequest request,
core.String resource, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$resource') + ':setIamPolicy';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return Policy.fromJson(response_ as core.Map<core.String, core.dynamic>);
}
/// Returns the permissions that a caller has on the specified note or
/// occurrence.
///
/// Requires list permission on the project (for example,
/// `containeranalysis.notes.list`). The resource takes the format
/// `projects/[PROJECT_ID]/notes/[NOTE_ID]` for notes and
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]` for occurrences.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [resource] - REQUIRED: The resource for which the policy detail is being
/// requested. See
/// [Resource names](https://cloud.google.com/apis/design/resource_names) for
/// the appropriate value for this field.
/// Value must have pattern `^projects/\[^/\]+/occurrences/\[^/\]+$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [TestIamPermissionsResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<TestIamPermissionsResponse> testIamPermissions(
TestIamPermissionsRequest request,
core.String resource, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ =
'v1/' + core.Uri.encodeFull('$resource') + ':testIamPermissions';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return TestIamPermissionsResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
}
class ProjectsResourcesResource {
final commons.ApiRequester _requester;
ProjectsResourcesResource(commons.ApiRequester client) : _requester = client;
/// Generates an SBOM for the given resource.
///
/// [request] - The metadata request object.
///
/// Request parameters:
///
/// [name] - Required. The name of the resource in the form of
/// `projects/[PROJECT_ID]/resources/[RESOURCE_URL]`.
/// Value must have pattern `^projects/\[^/\]+/resources/.*$`.
///
/// [$fields] - Selector specifying which fields to include in a partial
/// response.
///
/// Completes with a [ExportSBOMResponse].
///
/// Completes with a [commons.ApiRequestError] if the API endpoint returned an
/// error.
///
/// If the used [http.Client] completes with an error when making a REST call,
/// this method will complete with the same error.
async.Future<ExportSBOMResponse> exportSBOM(
ExportSBOMRequest request,
core.String name, {
core.String? $fields,
}) async {
final body_ = convert.json.encode(request);
final queryParams_ = <core.String, core.List<core.String>>{
'fields': ?$fields == null ? null : [$fields],
};
final url_ = 'v1/' + core.Uri.encodeFull('$name') + ':exportSBOM';
final response_ = await _requester.request(
url_,
'POST',
body: body_,
queryParams: queryParams_,
);
return ExportSBOMResponse.fromJson(
response_ as core.Map<core.String, core.dynamic>,
);
}
}
/// An alias to a repo revision.
typedef AliasContext = $AliasContext;
/// Indicates which analysis completed successfully.
///
/// Multiple types of analysis can be performed on a single resource.
typedef AnalysisCompleted = $AnalysisCompleted;
/// Artifact describes a build product.
typedef Artifact = $Artifact;
/// Assessment provides all information that is related to a single
/// vulnerability for this product.
class Assessment {
/// Holds the MITRE standard Common Vulnerabilities and Exposures (CVE)
/// tracking number for the vulnerability.
///
/// Deprecated: Use vulnerability_id instead to denote CVEs.
@core.Deprecated(
'Not supported. Member documentation may have more information.',
)
core.String? cve;
/// Contains information about the impact of this vulnerability, this will
/// change with time.
core.List<core.String>? impacts;
/// Justification provides the justification when the state of the assessment
/// if NOT_AFFECTED.
Justification? justification;
/// A detailed description of this Vex.
core.String? longDescription;
/// Holds a list of references associated with this vulnerability item and
/// assessment.
///
/// These uris have additional information about the vulnerability and the
/// assessment itself. E.g. Link to a document which details how this
/// assessment concluded the state of this vulnerability.
core.List<RelatedUrl>? relatedUris;
/// Specifies details on how to handle (and presumably, fix) a vulnerability.
core.List<Remediation>? remediations;
/// A one sentence description of this Vex.
core.String? shortDescription;
/// Provides the state of this Vulnerability assessment.
/// Possible string values are:
/// - "STATE_UNSPECIFIED" : No state is specified.
/// - "AFFECTED" : This product is known to be affected by this vulnerability.
/// - "NOT_AFFECTED" : This product is known to be not affected by this
/// vulnerability.
/// - "FIXED" : This product contains a fix for this vulnerability.
/// - "UNDER_INVESTIGATION" : It is not known yet whether these versions are
/// or are not affected by the vulnerability. However, it is still under
/// investigation.
core.String? state;
/// The vulnerability identifier for this Assessment.
///
/// Will hold one of common identifiers e.g. CVE, GHSA etc.
core.String? vulnerabilityId;
Assessment({
this.cve,
this.impacts,
this.justification,
this.longDescription,
this.relatedUris,
this.remediations,
this.shortDescription,
this.state,
this.vulnerabilityId,
});
Assessment.fromJson(core.Map json_)
: this(
cve: json_['cve'] as core.String?,
impacts: (json_['impacts'] as core.List?)
?.map((value) => value as core.String)
.toList(),
justification: json_.containsKey('justification')
? Justification.fromJson(
json_['justification'] as core.Map<core.String, core.dynamic>,
)
: null,
longDescription: json_['longDescription'] as core.String?,
relatedUris: (json_['relatedUris'] as core.List?)
?.map(
(value) => RelatedUrl.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
remediations: (json_['remediations'] as core.List?)
?.map(
(value) => Remediation.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
shortDescription: json_['shortDescription'] as core.String?,
state: json_['state'] as core.String?,
vulnerabilityId: json_['vulnerabilityId'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final cve = this.cve;
final impacts = this.impacts;
final justification = this.justification;
final longDescription = this.longDescription;
final relatedUris = this.relatedUris;
final remediations = this.remediations;
final shortDescription = this.shortDescription;
final state = this.state;
final vulnerabilityId = this.vulnerabilityId;
return {
'cve': ?cve,
'impacts': ?impacts,
'justification': ?justification,
'longDescription': ?longDescription,
'relatedUris': ?relatedUris,
'remediations': ?remediations,
'shortDescription': ?shortDescription,
'state': ?state,
'vulnerabilityId': ?vulnerabilityId,
};
}
}
/// Note kind that represents a logical attestation "role" or "authority".
///
/// For example, an organization might have one `Authority` for "QA" and one for
/// "build". This note is intended to act strictly as a grouping mechanism for
/// the attached occurrences (Attestations). This grouping mechanism also
/// provides a security boundary, since IAM ACLs gate the ability for a
/// principle to attach an occurrence to a given note. It also provides a single
/// point of lookup to find all attached attestation occurrences, even if they
/// don't all live in the same project.
class AttestationNote {
/// Hint hints at the purpose of the attestation authority.
Hint? hint;
AttestationNote({this.hint});
AttestationNote.fromJson(core.Map json_)
: this(
hint: json_.containsKey('hint')
? Hint.fromJson(
json_['hint'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final hint = this.hint;
return {'hint': ?hint};
}
}
/// Occurrence that represents a single "attestation".
///
/// The authenticity of an attestation can be verified using the attached
/// signature. If the verifier trusts the public key of the signer, then
/// verifying the signature is sufficient to establish trust. In this
/// circumstance, the authority to which this attestation is attached is
/// primarily useful for lookup (how to find this attestation if you already
/// know the authority and artifact to be verified) and intent (for which
/// authority this attestation was intended to sign.
class AttestationOccurrence {
/// One or more JWTs encoding a self-contained attestation.
///
/// Each JWT encodes the payload that it verifies within the JWT itself.
/// Verifier implementation SHOULD ignore the `serialized_payload` field when
/// verifying these JWTs. If only JWTs are present on this
/// AttestationOccurrence, then the `serialized_payload` SHOULD be left empty.
/// Each JWT SHOULD encode a claim specific to the `resource_uri` of this
/// Occurrence, but this is not validated by Grafeas metadata API
/// implementations. The JWT itself is opaque to Grafeas.
core.List<Jwt>? jwts;
/// The serialized payload that is verified by one or more `signatures`.
///
/// Required.
core.String? serializedPayload;
core.List<core.int> get serializedPayloadAsBytes =>
convert.base64.decode(serializedPayload!);
set serializedPayloadAsBytes(core.List<core.int> bytes_) {
serializedPayload = convert.base64
.encode(bytes_)
.replaceAll('/', '_')
.replaceAll('+', '-');
}
/// One or more signatures over `serialized_payload`.
///
/// Verifier implementations should consider this attestation message verified
/// if at least one `signature` verifies `serialized_payload`. See `Signature`
/// in common.proto for more details on signature structure and verification.
core.List<Signature>? signatures;
AttestationOccurrence({this.jwts, this.serializedPayload, this.signatures});
AttestationOccurrence.fromJson(core.Map json_)
: this(
jwts: (json_['jwts'] as core.List?)
?.map(
(value) =>
Jwt.fromJson(value as core.Map<core.String, core.dynamic>),
)
.toList(),
serializedPayload: json_['serializedPayload'] as core.String?,
signatures: (json_['signatures'] as core.List?)
?.map(
(value) => Signature.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final jwts = this.jwts;
final serializedPayload = this.serializedPayload;
final signatures = this.signatures;
return {
'jwts': ?jwts,
'serializedPayload': ?serializedPayload,
'signatures': ?signatures,
};
}
}
/// BaseImage describes a base image of a container image.
typedef BaseImage = $BaseImage;
/// Request to create notes in batch.
class BatchCreateNotesRequest {
/// The notes to create.
///
/// Max allowed length is 1000.
///
/// Required.
core.Map<core.String, Note>? notes;
BatchCreateNotesRequest({this.notes});
BatchCreateNotesRequest.fromJson(core.Map json_)
: this(
notes: (json_['notes'] as core.Map<core.String, core.dynamic>?)?.map(
(key, value) => core.MapEntry(
key,
Note.fromJson(value as core.Map<core.String, core.dynamic>),
),
),
);
core.Map<core.String, core.dynamic> toJson() {
final notes = this.notes;
return {'notes': ?notes};
}
}
/// Response for creating notes in batch.
class BatchCreateNotesResponse {
/// The notes that were created.
core.List<Note>? notes;
BatchCreateNotesResponse({this.notes});
BatchCreateNotesResponse.fromJson(core.Map json_)
: this(
notes: (json_['notes'] as core.List?)
?.map(
(value) =>
Note.fromJson(value as core.Map<core.String, core.dynamic>),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final notes = this.notes;
return {'notes': ?notes};
}
}
/// Request to create occurrences in batch.
class BatchCreateOccurrencesRequest {
/// The occurrences to create.
///
/// Max allowed length is 1000.
///
/// Required.
core.List<Occurrence>? occurrences;
BatchCreateOccurrencesRequest({this.occurrences});
BatchCreateOccurrencesRequest.fromJson(core.Map json_)
: this(
occurrences: (json_['occurrences'] as core.List?)
?.map(
(value) => Occurrence.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final occurrences = this.occurrences;
return {'occurrences': ?occurrences};
}
}
/// Response for creating occurrences in batch.
class BatchCreateOccurrencesResponse {
/// The occurrences that were created.
core.List<Occurrence>? occurrences;
BatchCreateOccurrencesResponse({this.occurrences});
BatchCreateOccurrencesResponse.fromJson(core.Map json_)
: this(
occurrences: (json_['occurrences'] as core.List?)
?.map(
(value) => Occurrence.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final occurrences = this.occurrences;
return {'occurrences': ?occurrences};
}
}
/// Associates `members`, or principals, with a `role`.
class Binding {
/// The condition that is associated with this binding.
///
/// If the condition evaluates to `true`, then this binding applies to the
/// current request. If the condition evaluates to `false`, then this binding
/// does not apply to the current request. However, a different role binding
/// might grant the same role to one or more of the principals in this
/// binding. To learn which resources support conditions in their IAM
/// policies, see the
/// [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
Expr? condition;
/// Specifies the principals requesting access for a Google Cloud resource.
///
/// `members` can have the following values: * `allUsers`: A special
/// identifier that represents anyone who is on the internet; with or without
/// a Google account. * `allAuthenticatedUsers`: A special identifier that
/// represents anyone who is authenticated with a Google account or a service
/// account. Does not include identities that come from external identity
/// providers (IdPs) through identity federation. * `user:{emailid}`: An email
/// address that represents a specific Google account. For example,
/// `alice@example.com` . * `serviceAccount:{emailid}`: An email address that
/// represents a Google service account. For example,
/// `my-other-app@appspot.gserviceaccount.com`. *
/// `serviceAccount:{projectid}.svc.id.goog[{namespace}/{kubernetes-sa}]`: An
/// identifier for a
/// [Kubernetes service account](https://cloud.google.com/kubernetes-engine/docs/how-to/kubernetes-service-accounts).
/// For example, `my-project.svc.id.goog[my-namespace/my-kubernetes-sa]`. *
/// `group:{emailid}`: An email address that represents a Google group. For
/// example, `admins@example.com`. * `domain:{domain}`: The G Suite domain
/// (primary) that represents all the users of that domain. For example,
/// `google.com` or `example.com`. *
/// `principal://iam.googleapis.com/locations/global/workforcePools/{pool_id}/subject/{subject_attribute_value}`:
/// A single identity in a workforce identity pool. *
/// `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/group/{group_id}`:
/// All workforce identities in a group. *
/// `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}/attribute.{attribute_name}/{attribute_value}`:
/// All workforce identities with a specific attribute value. *
/// `principalSet://iam.googleapis.com/locations/global/workforcePools/{pool_id}
/// / * `: All identities in a workforce identity pool. *
/// `principal://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/subject/{subject_attribute_value}`:
/// A single identity in a workload identity pool. *
/// `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/group/{group_id}`:
/// A workload identity pool group. *
/// `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}/attribute.{attribute_name}/{attribute_value}`:
/// All identities in a workload identity pool with a certain attribute. *
/// `principalSet://iam.googleapis.com/projects/{project_number}/locations/global/workloadIdentityPools/{pool_id}
/// / * `: All identities in a workload identity pool. *
/// `deleted:user:{emailid}?uid={uniqueid}`: An email address (plus unique
/// identifier) representing a user that has been recently deleted. For
/// example, `alice@example.com?uid=123456789012345678901`. If the user is
/// recovered, this value reverts to `user:{emailid}` and the recovered user
/// retains the role in the binding. *
/// `deleted:serviceAccount:{emailid}?uid={uniqueid}`: An email address (plus
/// unique identifier) representing a service account that has been recently
/// deleted. For example,
/// `my-other-app@appspot.gserviceaccount.com?uid=123456789012345678901`. If
/// the service account is undeleted, this value reverts to
/// `serviceAccount:{emailid}` and the undeleted service account retains the
/// role in the binding. * `deleted:group:{emailid}?uid={uniqueid}`: An email
/// address (plus unique identifier) representing a Google group that has been
/// recently deleted. For example,
/// `admins@example.com?uid=123456789012345678901`. If the group is recovered,
/// this value reverts to `group:{emailid}` and the recovered group retains
/// the role in the binding. *
/// `deleted:principal://iam.googleapis.com/locations/global/workforcePools/{pool_id}/subject/{subject_attribute_value}`:
/// Deleted single identity in a workforce identity pool. For example,
/// `deleted:principal://iam.googleapis.com/locations/global/workforcePools/my-pool-id/subject/my-subject-attribute-value`.
core.List<core.String>? members;
/// Role that is assigned to the list of `members`, or principals.
///
/// For example, `roles/viewer`, `roles/editor`, or `roles/owner`. For an
/// overview of the IAM roles and permissions, see the
/// [IAM documentation](https://cloud.google.com/iam/docs/roles-overview). For
/// a list of the available pre-defined roles, see
/// [here](https://cloud.google.com/iam/docs/understanding-roles).
core.String? role;
Binding({this.condition, this.members, this.role});
Binding.fromJson(core.Map json_)
: this(
condition: json_.containsKey('condition')
? Expr.fromJson(
json_['condition'] as core.Map<core.String, core.dynamic>,
)
: null,
members: (json_['members'] as core.List?)
?.map((value) => value as core.String)
.toList(),
role: json_['role'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final condition = this.condition;
final members = this.members;
final role = this.role;
return {'condition': ?condition, 'members': ?members, 'role': ?role};
}
}
class BuildDefinition {
core.String? buildType;
///
///
/// The values for Object must be JSON objects. It can consist of `num`,
/// `String`, `bool` and `null` as well as `Map` and `List` values.
core.Map<core.String, core.Object?>? externalParameters;
///
///
/// The values for Object must be JSON objects. It can consist of `num`,
/// `String`, `bool` and `null` as well as `Map` and `List` values.
core.Map<core.String, core.Object?>? internalParameters;
core.List<ResourceDescriptor>? resolvedDependencies;
BuildDefinition({
this.buildType,
this.externalParameters,
this.internalParameters,
this.resolvedDependencies,
});
BuildDefinition.fromJson(core.Map json_)
: this(
buildType: json_['buildType'] as core.String?,
externalParameters: json_.containsKey('externalParameters')
? json_['externalParameters'] as core.Map<core.String, core.dynamic>
: null,
internalParameters: json_.containsKey('internalParameters')
? json_['internalParameters'] as core.Map<core.String, core.dynamic>
: null,
resolvedDependencies: (json_['resolvedDependencies'] as core.List?)
?.map(
(value) => ResourceDescriptor.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final buildType = this.buildType;
final externalParameters = this.externalParameters;
final internalParameters = this.internalParameters;
final resolvedDependencies = this.resolvedDependencies;
return {
'buildType': ?buildType,
'externalParameters': ?externalParameters,
'internalParameters': ?internalParameters,
'resolvedDependencies': ?resolvedDependencies,
};
}
}
typedef BuildMetadata = $BuildMetadata;
/// Note holding the version of the provider's builder and the signature of the
/// provenance message in the build details occurrence.
class BuildNote {
/// Version of the builder which produced this build.
///
/// Required. Immutable.
core.String? builderVersion;
BuildNote({this.builderVersion});
BuildNote.fromJson(core.Map json_)
: this(builderVersion: json_['builderVersion'] as core.String?);
core.Map<core.String, core.dynamic> toJson() {
final builderVersion = this.builderVersion;
return {'builderVersion': ?builderVersion};
}
}
/// Details of a build occurrence.
class BuildOccurrence {
/// In-Toto Slsa Provenance V1 represents a slsa provenance meeting the slsa
/// spec, wrapped in an in-toto statement.
///
/// This allows for direct jsonification of a to-spec in-toto slsa statement
/// with a to-spec slsa provenance.
InTotoSlsaProvenanceV1? inTotoSlsaProvenanceV1;
/// See InTotoStatement for the replacement.
///
/// In-toto Provenance representation as defined in spec.
///
/// Deprecated.
InTotoProvenance? intotoProvenance;
/// In-toto Statement representation as defined in spec.
///
/// The intoto_statement can contain any type of provenance. The serialized
/// payload of the statement can be stored and signed in the Occurrence's
/// envelope.
InTotoStatement? intotoStatement;
/// The actual provenance for the build.
BuildProvenance? provenance;
/// Serialized JSON representation of the provenance, used in generating the
/// build signature in the corresponding build note.
///
/// After verifying the signature, `provenance_bytes` can be unmarshalled and
/// compared to the provenance to confirm that it is unchanged. A
/// base64-encoded string representation of the provenance bytes is used for
/// the signature in order to interoperate with openssl which expects this
/// format for signature verification. The serialized form is captured both to
/// avoid ambiguity in how the provenance is marshalled to json as well to
/// prevent incompatibilities with future changes.
core.String? provenanceBytes;
BuildOccurrence({
this.inTotoSlsaProvenanceV1,
this.intotoProvenance,
this.intotoStatement,
this.provenance,
this.provenanceBytes,
});
BuildOccurrence.fromJson(core.Map json_)
: this(
inTotoSlsaProvenanceV1: json_.containsKey('inTotoSlsaProvenanceV1')
? InTotoSlsaProvenanceV1.fromJson(
json_['inTotoSlsaProvenanceV1']
as core.Map<core.String, core.dynamic>,
)
: null,
intotoProvenance: json_.containsKey('intotoProvenance')
? InTotoProvenance.fromJson(
json_['intotoProvenance']
as core.Map<core.String, core.dynamic>,
)
: null,
intotoStatement: json_.containsKey('intotoStatement')
? InTotoStatement.fromJson(
json_['intotoStatement'] as core.Map<core.String, core.dynamic>,
)
: null,
provenance: json_.containsKey('provenance')
? BuildProvenance.fromJson(
json_['provenance'] as core.Map<core.String, core.dynamic>,
)
: null,
provenanceBytes: json_['provenanceBytes'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final inTotoSlsaProvenanceV1 = this.inTotoSlsaProvenanceV1;
final intotoProvenance = this.intotoProvenance;
final intotoStatement = this.intotoStatement;
final provenance = this.provenance;
final provenanceBytes = this.provenanceBytes;
return {
'inTotoSlsaProvenanceV1': ?inTotoSlsaProvenanceV1,
'intotoProvenance': ?intotoProvenance,
'intotoStatement': ?intotoStatement,
'provenance': ?provenance,
'provenanceBytes': ?provenanceBytes,
};
}
}
/// Provenance of a build.
///
/// Contains all information needed to verify the full details about the build
/// from source to completion.
class BuildProvenance {
/// Special options applied to this build.
///
/// This is a catch-all field where build providers can enter any desired
/// additional details.
core.Map<core.String, core.String>? buildOptions;
/// Version string of the builder at the time this build was executed.
core.String? builderVersion;
/// Output of the build.
core.List<Artifact>? builtArtifacts;
/// Commands requested by the build.
core.List<Command>? commands;
/// Time at which the build was created.
core.String? createTime;
/// E-mail address of the user who initiated this build.
///
/// Note that this was the user's e-mail address at the time the build was
/// initiated; this address may not represent the same end-user for all time.
core.String? creator;
/// Time at which execution of the build was finished.
core.String? endTime;
/// Unique identifier of the build.
///
/// Required.
core.String? id;
/// URI where any logs for this provenance were written.
core.String? logsUri;
/// ID of the project.
core.String? projectId;
/// Details of the Source input to the build.
Source? sourceProvenance;
/// Time at which execution of the build was started.
core.String? startTime;
/// Trigger identifier if the build was triggered automatically; empty if not.
core.String? triggerId;
BuildProvenance({
this.buildOptions,
this.builderVersion,
this.builtArtifacts,
this.commands,
this.createTime,
this.creator,
this.endTime,
this.id,
this.logsUri,
this.projectId,
this.sourceProvenance,
this.startTime,
this.triggerId,
});
BuildProvenance.fromJson(core.Map json_)
: this(
buildOptions:
(json_['buildOptions'] as core.Map<core.String, core.dynamic>?)
?.map((key, value) => core.MapEntry(key, value as core.String)),
builderVersion: json_['builderVersion'] as core.String?,
builtArtifacts: (json_['builtArtifacts'] as core.List?)
?.map(
(value) => Artifact.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
commands: (json_['commands'] as core.List?)
?.map(
(value) => Command.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
createTime: json_['createTime'] as core.String?,
creator: json_['creator'] as core.String?,
endTime: json_['endTime'] as core.String?,
id: json_['id'] as core.String?,
logsUri: json_['logsUri'] as core.String?,
projectId: json_['projectId'] as core.String?,
sourceProvenance: json_.containsKey('sourceProvenance')
? Source.fromJson(
json_['sourceProvenance']
as core.Map<core.String, core.dynamic>,
)
: null,
startTime: json_['startTime'] as core.String?,
triggerId: json_['triggerId'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final buildOptions = this.buildOptions;
final builderVersion = this.builderVersion;
final builtArtifacts = this.builtArtifacts;
final commands = this.commands;
final createTime = this.createTime;
final creator = this.creator;
final endTime = this.endTime;
final id = this.id;
final logsUri = this.logsUri;
final projectId = this.projectId;
final sourceProvenance = this.sourceProvenance;
final startTime = this.startTime;
final triggerId = this.triggerId;
return {
'buildOptions': ?buildOptions,
'builderVersion': ?builderVersion,
'builtArtifacts': ?builtArtifacts,
'commands': ?commands,
'createTime': ?createTime,
'creator': ?creator,
'endTime': ?endTime,
'id': ?id,
'logsUri': ?logsUri,
'projectId': ?projectId,
'sourceProvenance': ?sourceProvenance,
'startTime': ?startTime,
'triggerId': ?triggerId,
};
}
}
typedef BuilderConfig = $Shared03;
typedef CISAKnownExploitedVulnerabilities = $CISAKnownExploitedVulnerabilities;
/// Common Vulnerability Scoring System.
///
/// For details, see https://www.first.org/cvss/specification-document This is a
/// message we will try to use for storing various versions of CVSS rather than
/// making a separate proto for storing a specific version.
typedef CVSS = $CVSS;
/// Common Vulnerability Scoring System version 3.
///
/// For details, see https://www.first.org/cvss/specification-document
class CVSSv3 {
///
/// Possible string values are:
/// - "ATTACK_COMPLEXITY_UNSPECIFIED"
/// - "ATTACK_COMPLEXITY_LOW"
/// - "ATTACK_COMPLEXITY_HIGH"
core.String? attackComplexity;
/// Base Metrics Represents the intrinsic characteristics of a vulnerability
/// that are constant over time and across user environments.
/// Possible string values are:
/// - "ATTACK_VECTOR_UNSPECIFIED"
/// - "ATTACK_VECTOR_NETWORK"
/// - "ATTACK_VECTOR_ADJACENT"
/// - "ATTACK_VECTOR_LOCAL"
/// - "ATTACK_VECTOR_PHYSICAL"
core.String? attackVector;
///
/// Possible string values are:
/// - "IMPACT_UNSPECIFIED"
/// - "IMPACT_HIGH"
/// - "IMPACT_LOW"
/// - "IMPACT_NONE"
core.String? availabilityImpact;
/// The base score is a function of the base metric scores.
core.double? baseScore;
///
/// Possible string values are:
/// - "IMPACT_UNSPECIFIED"
/// - "IMPACT_HIGH"
/// - "IMPACT_LOW"
/// - "IMPACT_NONE"
core.String? confidentialityImpact;
core.double? exploitabilityScore;
core.double? impactScore;
///
/// Possible string values are:
/// - "IMPACT_UNSPECIFIED"
/// - "IMPACT_HIGH"
/// - "IMPACT_LOW"
/// - "IMPACT_NONE"
core.String? integrityImpact;
///
/// Possible string values are:
/// - "PRIVILEGES_REQUIRED_UNSPECIFIED"
/// - "PRIVILEGES_REQUIRED_NONE"
/// - "PRIVILEGES_REQUIRED_LOW"
/// - "PRIVILEGES_REQUIRED_HIGH"
core.String? privilegesRequired;
///
/// Possible string values are:
/// - "SCOPE_UNSPECIFIED"
/// - "SCOPE_UNCHANGED"
/// - "SCOPE_CHANGED"
core.String? scope;
///
/// Possible string values are:
/// - "USER_INTERACTION_UNSPECIFIED"
/// - "USER_INTERACTION_NONE"
/// - "USER_INTERACTION_REQUIRED"
core.String? userInteraction;
CVSSv3({
this.attackComplexity,
this.attackVector,
this.availabilityImpact,
this.baseScore,
this.confidentialityImpact,
this.exploitabilityScore,
this.impactScore,
this.integrityImpact,
this.privilegesRequired,
this.scope,
this.userInteraction,
});
CVSSv3.fromJson(core.Map json_)
: this(
attackComplexity: json_['attackComplexity'] as core.String?,
attackVector: json_['attackVector'] as core.String?,
availabilityImpact: json_['availabilityImpact'] as core.String?,
baseScore: (json_['baseScore'] as core.num?)?.toDouble(),
confidentialityImpact: json_['confidentialityImpact'] as core.String?,
exploitabilityScore: (json_['exploitabilityScore'] as core.num?)
?.toDouble(),
impactScore: (json_['impactScore'] as core.num?)?.toDouble(),
integrityImpact: json_['integrityImpact'] as core.String?,
privilegesRequired: json_['privilegesRequired'] as core.String?,
scope: json_['scope'] as core.String?,
userInteraction: json_['userInteraction'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final attackComplexity = this.attackComplexity;
final attackVector = this.attackVector;
final availabilityImpact = this.availabilityImpact;
final baseScore = this.baseScore;
final confidentialityImpact = this.confidentialityImpact;
final exploitabilityScore = this.exploitabilityScore;
final impactScore = this.impactScore;
final integrityImpact = this.integrityImpact;
final privilegesRequired = this.privilegesRequired;
final scope = this.scope;
final userInteraction = this.userInteraction;
return {
'attackComplexity': ?attackComplexity,
'attackVector': ?attackVector,
'availabilityImpact': ?availabilityImpact,
'baseScore': ?baseScore,
'confidentialityImpact': ?confidentialityImpact,
'exploitabilityScore': ?exploitabilityScore,
'impactScore': ?impactScore,
'integrityImpact': ?integrityImpact,
'privilegesRequired': ?privilegesRequired,
'scope': ?scope,
'userInteraction': ?userInteraction,
};
}
}
/// The category to which the update belongs.
typedef Category = $Category;
/// A compliance check that is a CIS benchmark.
class CisBenchmark {
core.int? profileLevel;
///
/// Possible string values are:
/// - "SEVERITY_UNSPECIFIED" : Unknown.
/// - "MINIMAL" : Minimal severity.
/// - "LOW" : Low severity.
/// - "MEDIUM" : Medium severity.
/// - "HIGH" : High severity.
/// - "CRITICAL" : Critical severity.
core.String? severity;
CisBenchmark({this.profileLevel, this.severity});
CisBenchmark.fromJson(core.Map json_)
: this(
profileLevel: json_['profileLevel'] as core.int?,
severity: json_['severity'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final profileLevel = this.profileLevel;
final severity = this.severity;
return {'profileLevel': ?profileLevel, 'severity': ?severity};
}
}
/// A CloudRepoSourceContext denotes a particular revision in a Google Cloud
/// Source Repo.
class CloudRepoSourceContext {
/// An alias, which may be a branch or tag.
AliasContext? aliasContext;
/// The ID of the repo.
RepoId? repoId;
/// A revision ID.
core.String? revisionId;
CloudRepoSourceContext({this.aliasContext, this.repoId, this.revisionId});
CloudRepoSourceContext.fromJson(core.Map json_)
: this(
aliasContext: json_.containsKey('aliasContext')
? AliasContext.fromJson(
json_['aliasContext'] as core.Map<core.String, core.dynamic>,
)
: null,
repoId: json_.containsKey('repoId')
? RepoId.fromJson(
json_['repoId'] as core.Map<core.String, core.dynamic>,
)
: null,
revisionId: json_['revisionId'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final aliasContext = this.aliasContext;
final repoId = this.repoId;
final revisionId = this.revisionId;
return {
'aliasContext': ?aliasContext,
'repoId': ?repoId,
'revisionId': ?revisionId,
};
}
}
/// Empty placeholder to denote that this is a Google Cloud Storage export
/// request.
typedef CloudStorageLocation = $Empty;
/// Command describes a step performed as part of the build pipeline.
typedef Command = $Command;
/// Indicates that the builder claims certain fields in this message to be
/// complete.
typedef Completeness = $Completeness;
class ComplianceNote {
CisBenchmark? cisBenchmark;
/// A description about this compliance check.
core.String? description;
core.String? impact;
/// A rationale for the existence of this compliance check.
core.String? rationale;
/// A description of remediation steps if the compliance check fails.
core.String? remediation;
/// Serialized scan instructions with a predefined format.
core.String? scanInstructions;
core.List<core.int> get scanInstructionsAsBytes =>
convert.base64.decode(scanInstructions!);
set scanInstructionsAsBytes(core.List<core.int> bytes_) {
scanInstructions = convert.base64
.encode(bytes_)
.replaceAll('/', '_')
.replaceAll('+', '-');
}
/// The title that identifies this compliance check.
core.String? title;
/// The OS and config versions the benchmark applies to.
core.List<ComplianceVersion>? version;
ComplianceNote({
this.cisBenchmark,
this.description,
this.impact,
this.rationale,
this.remediation,
this.scanInstructions,
this.title,
this.version,
});
ComplianceNote.fromJson(core.Map json_)
: this(
cisBenchmark: json_.containsKey('cisBenchmark')
? CisBenchmark.fromJson(
json_['cisBenchmark'] as core.Map<core.String, core.dynamic>,
)
: null,
description: json_['description'] as core.String?,
impact: json_['impact'] as core.String?,
rationale: json_['rationale'] as core.String?,
remediation: json_['remediation'] as core.String?,
scanInstructions: json_['scanInstructions'] as core.String?,
title: json_['title'] as core.String?,
version: (json_['version'] as core.List?)
?.map(
(value) => ComplianceVersion.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final cisBenchmark = this.cisBenchmark;
final description = this.description;
final impact = this.impact;
final rationale = this.rationale;
final remediation = this.remediation;
final scanInstructions = this.scanInstructions;
final title = this.title;
final version = this.version;
return {
'cisBenchmark': ?cisBenchmark,
'description': ?description,
'impact': ?impact,
'rationale': ?rationale,
'remediation': ?remediation,
'scanInstructions': ?scanInstructions,
'title': ?title,
'version': ?version,
};
}
}
/// An indication that the compliance checks in the associated ComplianceNote
/// were not satisfied for particular resources or a specified reason.
class ComplianceOccurrence {
core.String? nonComplianceReason;
core.List<NonCompliantFile>? nonCompliantFiles;
/// The OS and config version the benchmark was run on.
ComplianceVersion? version;
ComplianceOccurrence({
this.nonComplianceReason,
this.nonCompliantFiles,
this.version,
});
ComplianceOccurrence.fromJson(core.Map json_)
: this(
nonComplianceReason: json_['nonComplianceReason'] as core.String?,
nonCompliantFiles: (json_['nonCompliantFiles'] as core.List?)
?.map(
(value) => NonCompliantFile.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
version: json_.containsKey('version')
? ComplianceVersion.fromJson(
json_['version'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final nonComplianceReason = this.nonComplianceReason;
final nonCompliantFiles = this.nonCompliantFiles;
final version = this.version;
return {
'nonComplianceReason': ?nonComplianceReason,
'nonCompliantFiles': ?nonCompliantFiles,
'version': ?version,
};
}
}
/// Describes the CIS benchmark version that is applicable to a given OS and os
/// version.
typedef ComplianceVersion = $ComplianceVersion;
class DSSEAttestationNote {
/// DSSEHint hints at the purpose of the attestation authority.
DSSEHint? hint;
DSSEAttestationNote({this.hint});
DSSEAttestationNote.fromJson(core.Map json_)
: this(
hint: json_.containsKey('hint')
? DSSEHint.fromJson(
json_['hint'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final hint = this.hint;
return {'hint': ?hint};
}
}
/// Prefer to use a regular Occurrence, and populate the Envelope at the top
/// level of the Occurrence.
///
/// Deprecated.
class DSSEAttestationOccurrence {
/// If doing something security critical, make sure to verify the signatures
/// in this metadata.
Envelope? envelope;
InTotoStatement? statement;
DSSEAttestationOccurrence({this.envelope, this.statement});
DSSEAttestationOccurrence.fromJson(core.Map json_)
: this(
envelope: json_.containsKey('envelope')
? Envelope.fromJson(
json_['envelope'] as core.Map<core.String, core.dynamic>,
)
: null,
statement: json_.containsKey('statement')
? InTotoStatement.fromJson(
json_['statement'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final envelope = this.envelope;
final statement = this.statement;
return {'envelope': ?envelope, 'statement': ?statement};
}
}
/// This submessage provides human-readable hints about the purpose of the
/// authority.
///
/// Because the name of a note acts as its resource reference, it is important
/// to disambiguate the canonical name of the Note (which might be a UUID for
/// security purposes) from "readable" names more suitable for debug output.
/// Note that these hints should not be used to look up authorities in security
/// sensitive contexts, such as when looking up attestations to verify.
class DSSEHint {
/// The human readable name of this attestation authority, for example
/// "cloudbuild-prod".
///
/// Required.
core.String? humanReadableName;
DSSEHint({this.humanReadableName});
DSSEHint.fromJson(core.Map json_)
: this(humanReadableName: json_['humanReadableName'] as core.String?);
core.Map<core.String, core.dynamic> toJson() {
final humanReadableName = this.humanReadableName;
return {'humanReadableName': ?humanReadableName};
}
}
/// An artifact that can be deployed in some runtime.
class DeploymentNote {
/// Resource URI for the artifact being deployed.
///
/// Required.
core.List<core.String>? resourceUri;
DeploymentNote({this.resourceUri});
DeploymentNote.fromJson(core.Map json_)
: this(
resourceUri: (json_['resourceUri'] as core.List?)
?.map((value) => value as core.String)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final resourceUri = this.resourceUri;
return {'resourceUri': ?resourceUri};
}
}
/// The period during which some deployable was active in a runtime.
typedef DeploymentOccurrence = $DeploymentOccurrence;
/// A detail for a distro and package affected by this vulnerability and its
/// associated fix (if one is available).
class Detail {
/// The [CPE URI](https://cpe.mitre.org/specification/) this vulnerability
/// affects.
///
/// Required.
core.String? affectedCpeUri;
/// The package this vulnerability affects.
///
/// Required.
core.String? affectedPackage;
/// The version number at the end of an interval in which this vulnerability
/// exists.
///
/// A vulnerability can affect a package between version numbers that are
/// disjoint sets of intervals (example: \[1.0.0-1.1.0\], \[2.4.6-2.4.8\] and
/// \[4.5.6-4.6.8\]) each of which will be represented in its own Detail. If a
/// specific affected version is provided by a vulnerability database,
/// affected_version_start and affected_version_end will be the same in that
/// Detail.
Version? affectedVersionEnd;
/// The version number at the start of an interval in which this vulnerability
/// exists.
///
/// A vulnerability can affect a package between version numbers that are
/// disjoint sets of intervals (example: \[1.0.0-1.1.0\], \[2.4.6-2.4.8\] and
/// \[4.5.6-4.6.8\]) each of which will be represented in its own Detail. If a
/// specific affected version is provided by a vulnerability database,
/// affected_version_start and affected_version_end will be the same in that
/// Detail.
Version? affectedVersionStart;
/// A vendor-specific description of this vulnerability.
core.String? description;
/// The distro recommended [CPE URI](https://cpe.mitre.org/specification/) to
/// update to that contains a fix for this vulnerability.
///
/// It is possible for this to be different from the affected_cpe_uri.
core.String? fixedCpeUri;
/// The distro recommended package to update to that contains a fix for this
/// vulnerability.
///
/// It is possible for this to be different from the affected_package.
core.String? fixedPackage;
/// The distro recommended version to update to that contains a fix for this
/// vulnerability.
///
/// Setting this to VersionKind.MAXIMUM means no such version is yet
/// available.
Version? fixedVersion;
/// Whether this detail is obsolete.
///
/// Occurrences are expected not to point to obsolete details.
core.bool? isObsolete;
/// The type of package; whether native or non native (e.g., ruby gems,
/// node.js packages, etc.).
core.String? packageType;
/// The distro assigned severity of this vulnerability.
core.String? severityName;
/// The source from which the information in this Detail was obtained.
core.String? source;
/// The time this information was last changed at the source.
///
/// This is an upstream timestamp from the underlying information source -
/// e.g. Ubuntu security tracker.
core.String? sourceUpdateTime;
/// The name of the vendor of the product.
core.String? vendor;
Detail({
this.affectedCpeUri,
this.affectedPackage,
this.affectedVersionEnd,
this.affectedVersionStart,
this.description,
this.fixedCpeUri,
this.fixedPackage,
this.fixedVersion,
this.isObsolete,
this.packageType,
this.severityName,
this.source,
this.sourceUpdateTime,
this.vendor,
});
Detail.fromJson(core.Map json_)
: this(
affectedCpeUri: json_['affectedCpeUri'] as core.String?,
affectedPackage: json_['affectedPackage'] as core.String?,
affectedVersionEnd: json_.containsKey('affectedVersionEnd')
? Version.fromJson(
json_['affectedVersionEnd']
as core.Map<core.String, core.dynamic>,
)
: null,
affectedVersionStart: json_.containsKey('affectedVersionStart')
? Version.fromJson(
json_['affectedVersionStart']
as core.Map<core.String, core.dynamic>,
)
: null,
description: json_['description'] as core.String?,
fixedCpeUri: json_['fixedCpeUri'] as core.String?,
fixedPackage: json_['fixedPackage'] as core.String?,
fixedVersion: json_.containsKey('fixedVersion')
? Version.fromJson(
json_['fixedVersion'] as core.Map<core.String, core.dynamic>,
)
: null,
isObsolete: json_['isObsolete'] as core.bool?,
packageType: json_['packageType'] as core.String?,
severityName: json_['severityName'] as core.String?,
source: json_['source'] as core.String?,
sourceUpdateTime: json_['sourceUpdateTime'] as core.String?,
vendor: json_['vendor'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final affectedCpeUri = this.affectedCpeUri;
final affectedPackage = this.affectedPackage;
final affectedVersionEnd = this.affectedVersionEnd;
final affectedVersionStart = this.affectedVersionStart;
final description = this.description;
final fixedCpeUri = this.fixedCpeUri;
final fixedPackage = this.fixedPackage;
final fixedVersion = this.fixedVersion;
final isObsolete = this.isObsolete;
final packageType = this.packageType;
final severityName = this.severityName;
final source = this.source;
final sourceUpdateTime = this.sourceUpdateTime;
final vendor = this.vendor;
return {
'affectedCpeUri': ?affectedCpeUri,
'affectedPackage': ?affectedPackage,
'affectedVersionEnd': ?affectedVersionEnd,
'affectedVersionStart': ?affectedVersionStart,
'description': ?description,
'fixedCpeUri': ?fixedCpeUri,
'fixedPackage': ?fixedPackage,
'fixedVersion': ?fixedVersion,
'isObsolete': ?isObsolete,
'packageType': ?packageType,
'severityName': ?severityName,
'source': ?source,
'sourceUpdateTime': ?sourceUpdateTime,
'vendor': ?vendor,
};
}
}
/// Digest information.
class Digest {
/// `SHA1`, `SHA512` etc.
core.String? algo;
/// Value of the digest.
core.String? digestBytes;
core.List<core.int> get digestBytesAsBytes =>
convert.base64.decode(digestBytes!);
set digestBytesAsBytes(core.List<core.int> bytes_) {
digestBytes = convert.base64
.encode(bytes_)
.replaceAll('/', '_')
.replaceAll('+', '-');
}
Digest({this.algo, this.digestBytes});
Digest.fromJson(core.Map json_)
: this(
algo: json_['algo'] as core.String?,
digestBytes: json_['digestBytes'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final algo = this.algo;
final digestBytes = this.digestBytes;
return {'algo': ?algo, 'digestBytes': ?digestBytes};
}
}
/// A note that indicates a type of analysis a provider would perform.
///
/// This note exists in a provider's project. A `Discovery` occurrence is
/// created in a consumer's project at the start of analysis.
class DiscoveryNote {
/// The kind of analysis that is handled by this discovery.
///
/// Required. Immutable.
/// Possible string values are:
/// - "NOTE_KIND_UNSPECIFIED" : Default value. This value is unused.
/// - "VULNERABILITY" : The note and occurrence represent a package
/// vulnerability.
/// - "BUILD" : The note and occurrence assert build provenance.
/// - "IMAGE" : This represents an image basis relationship.
/// - "PACKAGE" : This represents a package installed via a package manager.
/// - "DEPLOYMENT" : The note and occurrence track deployment events.
/// - "DISCOVERY" : The note and occurrence track the initial discovery status
/// of a resource.
/// - "ATTESTATION" : This represents a logical "role" that can attest to
/// artifacts.
/// - "UPGRADE" : This represents an available package upgrade.
/// - "COMPLIANCE" : This represents a Compliance Note
/// - "DSSE_ATTESTATION" : This represents a DSSE attestation Note
/// - "VULNERABILITY_ASSESSMENT" : This represents a Vulnerability Assessment.
/// - "SBOM_REFERENCE" : This represents an SBOM Reference.
/// - "SECRET" : This represents a secret.
core.String? analysisKind;
DiscoveryNote({this.analysisKind});
DiscoveryNote.fromJson(core.Map json_)
: this(analysisKind: json_['analysisKind'] as core.String?);
core.Map<core.String, core.dynamic> toJson() {
final analysisKind = this.analysisKind;
return {'analysisKind': ?analysisKind};
}
}
/// Provides information about the analysis status of a discovered resource.
class DiscoveryOccurrence {
AnalysisCompleted? analysisCompleted;
/// Indicates any errors encountered during analysis of a resource.
///
/// There could be 0 or more of these errors.
core.List<Status>? analysisError;
/// The status of discovery for the resource.
/// Possible string values are:
/// - "ANALYSIS_STATUS_UNSPECIFIED" : Unknown.
/// - "PENDING" : Resource is known but no action has been taken yet.
/// - "SCANNING" : Resource is being analyzed.
/// - "FINISHED_SUCCESS" : Analysis has finished successfully.
/// - "COMPLETE" : Analysis has completed.
/// - "FINISHED_FAILED" : Analysis has finished unsuccessfully, the analysis
/// itself is in a bad state.
/// - "FINISHED_UNSUPPORTED" : The resource is known not to be supported.
core.String? analysisStatus;
/// When an error is encountered this will contain a LocalizedMessage under
/// details to show to the user.
///
/// The LocalizedMessage is output only and populated by the API.
Status? analysisStatusError;
/// The time occurrences related to this discovery occurrence were archived.
///
/// Output only.
core.String? archiveTime;
/// Whether the resource is continuously analyzed.
/// Possible string values are:
/// - "CONTINUOUS_ANALYSIS_UNSPECIFIED" : Unknown.
/// - "ACTIVE" : The resource is continuously analyzed.
/// - "INACTIVE" : The resource is ignored for continuous analysis.
core.String? continuousAnalysis;
/// The CPE of the resource being scanned.
core.String? cpe;
/// Files that make up the resource described by the occurrence.
core.List<File>? files;
/// The last time this resource was scanned.
core.String? lastScanTime;
/// The last time vulnerability scan results changed.
core.String? lastVulnerabilityUpdateTime;
/// The status of an SBOM generation.
SBOMStatus? sbomStatus;
DiscoveryOccurrence({
this.analysisCompleted,
this.analysisError,
this.analysisStatus,
this.analysisStatusError,
this.archiveTime,
this.continuousAnalysis,
this.cpe,
this.files,
this.lastScanTime,
this.lastVulnerabilityUpdateTime,
this.sbomStatus,
});
DiscoveryOccurrence.fromJson(core.Map json_)
: this(
analysisCompleted: json_.containsKey('analysisCompleted')
? AnalysisCompleted.fromJson(
json_['analysisCompleted']
as core.Map<core.String, core.dynamic>,
)
: null,
analysisError: (json_['analysisError'] as core.List?)
?.map(
(value) =>
Status.fromJson(value as core.Map<core.String, core.dynamic>),
)
.toList(),
analysisStatus: json_['analysisStatus'] as core.String?,
analysisStatusError: json_.containsKey('analysisStatusError')
? Status.fromJson(
json_['analysisStatusError']
as core.Map<core.String, core.dynamic>,
)
: null,
archiveTime: json_['archiveTime'] as core.String?,
continuousAnalysis: json_['continuousAnalysis'] as core.String?,
cpe: json_['cpe'] as core.String?,
files: (json_['files'] as core.List?)
?.map(
(value) =>
File.fromJson(value as core.Map<core.String, core.dynamic>),
)
.toList(),
lastScanTime: json_['lastScanTime'] as core.String?,
lastVulnerabilityUpdateTime:
json_['lastVulnerabilityUpdateTime'] as core.String?,
sbomStatus: json_.containsKey('sbomStatus')
? SBOMStatus.fromJson(
json_['sbomStatus'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final analysisCompleted = this.analysisCompleted;
final analysisError = this.analysisError;
final analysisStatus = this.analysisStatus;
final analysisStatusError = this.analysisStatusError;
final archiveTime = this.archiveTime;
final continuousAnalysis = this.continuousAnalysis;
final cpe = this.cpe;
final files = this.files;
final lastScanTime = this.lastScanTime;
final lastVulnerabilityUpdateTime = this.lastVulnerabilityUpdateTime;
final sbomStatus = this.sbomStatus;
return {
'analysisCompleted': ?analysisCompleted,
'analysisError': ?analysisError,
'analysisStatus': ?analysisStatus,
'analysisStatusError': ?analysisStatusError,
'archiveTime': ?archiveTime,
'continuousAnalysis': ?continuousAnalysis,
'cpe': ?cpe,
'files': ?files,
'lastScanTime': ?lastScanTime,
'lastVulnerabilityUpdateTime': ?lastVulnerabilityUpdateTime,
'sbomStatus': ?sbomStatus,
};
}
}
/// This represents a particular channel of distribution for a given package.
///
/// E.g., Debian's jessie-backports dpkg mirror.
class Distribution {
/// The CPU architecture for which packages in this distribution channel were
/// built.
/// Possible string values are:
/// - "ARCHITECTURE_UNSPECIFIED" : Unknown architecture.
/// - "X86" : X86 architecture.
/// - "X64" : X64 architecture.
core.String? architecture;
/// The cpe_uri in [CPE format](https://cpe.mitre.org/specification/) denoting
/// the package manager version distributing a package.
///
/// Required.
core.String? cpeUri;
/// The distribution channel-specific description of this package.
core.String? description;
/// The latest available version of this package in this distribution channel.
Version? latestVersion;
/// A freeform string denoting the maintainer of this package.
core.String? maintainer;
/// The distribution channel-specific homepage for this package.
core.String? url;
Distribution({
this.architecture,
this.cpeUri,
this.description,
this.latestVersion,
this.maintainer,
this.url,
});
Distribution.fromJson(core.Map json_)
: this(
architecture: json_['architecture'] as core.String?,
cpeUri: json_['cpeUri'] as core.String?,
description: json_['description'] as core.String?,
latestVersion: json_.containsKey('latestVersion')
? Version.fromJson(
json_['latestVersion'] as core.Map<core.String, core.dynamic>,
)
: null,
maintainer: json_['maintainer'] as core.String?,
url: json_['url'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final architecture = this.architecture;
final cpeUri = this.cpeUri;
final description = this.description;
final latestVersion = this.latestVersion;
final maintainer = this.maintainer;
final url = this.url;
return {
'architecture': ?architecture,
'cpeUri': ?cpeUri,
'description': ?description,
'latestVersion': ?latestVersion,
'maintainer': ?maintainer,
'url': ?url,
};
}
}
/// A generic empty message that you can re-use to avoid defining duplicated
/// empty messages in your APIs.
///
/// A typical example is to use it as the request or the response type of an API
/// method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns
/// (google.protobuf.Empty); }
typedef Empty = $Empty;
/// MUST match
/// https://github.com/secure-systems-lab/dsse/blob/master/envelope.proto.
///
/// An authenticated message of arbitrary type.
class Envelope {
core.String? payload;
core.List<core.int> get payloadAsBytes => convert.base64.decode(payload!);
set payloadAsBytes(core.List<core.int> bytes_) {
payload = convert.base64
.encode(bytes_)
.replaceAll('/', '_')
.replaceAll('+', '-');
}
core.String? payloadType;
core.List<EnvelopeSignature>? signatures;
Envelope({this.payload, this.payloadType, this.signatures});
Envelope.fromJson(core.Map json_)
: this(
payload: json_['payload'] as core.String?,
payloadType: json_['payloadType'] as core.String?,
signatures: (json_['signatures'] as core.List?)
?.map(
(value) => EnvelopeSignature.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final payload = this.payload;
final payloadType = this.payloadType;
final signatures = this.signatures;
return {
'payload': ?payload,
'payloadType': ?payloadType,
'signatures': ?signatures,
};
}
}
typedef EnvelopeSignature = $EnvelopeSignature;
typedef ExploitPredictionScoringSystem = $ExploitPredictionScoringSystem;
/// The request to generate and export SBOM.
///
/// Target must be specified for the request.
class ExportSBOMRequest {
/// Empty placeholder to denote that this is a Google Cloud Storage export
/// request.
///
/// Optional.
CloudStorageLocation? cloudStorageLocation;
ExportSBOMRequest({this.cloudStorageLocation});
ExportSBOMRequest.fromJson(core.Map json_)
: this(
cloudStorageLocation: json_.containsKey('cloudStorageLocation')
? CloudStorageLocation.fromJson(
json_['cloudStorageLocation']
as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final cloudStorageLocation = this.cloudStorageLocation;
return {'cloudStorageLocation': ?cloudStorageLocation};
}
}
/// The response from a call to ExportSBOM.
class ExportSBOMResponse {
/// The name of the discovery occurrence in the form
/// "projects/{project_id}/occurrences/{OCCURRENCE_ID} It can be used to track
/// the progress of the SBOM export.
core.String? discoveryOccurrence;
ExportSBOMResponse({this.discoveryOccurrence});
ExportSBOMResponse.fromJson(core.Map json_)
: this(discoveryOccurrence: json_['discoveryOccurrence'] as core.String?);
core.Map<core.String, core.dynamic> toJson() {
final discoveryOccurrence = this.discoveryOccurrence;
return {'discoveryOccurrence': ?discoveryOccurrence};
}
}
/// Represents a textual expression in the Common Expression Language (CEL)
/// syntax.
///
/// CEL is a C-like expression language. The syntax and semantics of CEL are
/// documented at https://github.com/google/cel-spec. Example (Comparison):
/// title: "Summary size limit" description: "Determines if a summary is less
/// than 100 chars" expression: "document.summary.size() \< 100" Example
/// (Equality): title: "Requestor is owner" description: "Determines if
/// requestor is the document owner" expression: "document.owner ==
/// request.auth.claims.email" Example (Logic): title: "Public documents"
/// description: "Determine whether the document should be publicly visible"
/// expression: "document.type != 'private' && document.type != 'internal'"
/// Example (Data Manipulation): title: "Notification string" description:
/// "Create a notification string with a timestamp." expression: "'New message
/// received at ' + string(document.create_time)" The exact variables and
/// functions that may be referenced within an expression are determined by the
/// service that evaluates it. See the service documentation for additional
/// information.
typedef Expr = $Expr;
typedef File = $File;
/// Container message for hashes of byte content of files, used in source
/// messages to verify integrity of source input to the build.
class FileHashes {
/// Collection of file hashes.
///
/// Required.
core.List<Hash>? fileHash;
FileHashes({this.fileHash});
FileHashes.fromJson(core.Map json_)
: this(
fileHash: (json_['fileHash'] as core.List?)
?.map(
(value) =>
Hash.fromJson(value as core.Map<core.String, core.dynamic>),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final fileHash = this.fileHash;
return {'fileHash': ?fileHash};
}
}
/// A set of properties that uniquely identify a given Docker image.
typedef Fingerprint = $Fingerprint;
/// Per resource and severity counts of fixable and total vulnerabilities.
class FixableTotalByDigest {
/// The number of fixable vulnerabilities associated with this resource.
core.String? fixableCount;
/// The affected resource.
core.String? resourceUri;
/// The severity for this count.
///
/// SEVERITY_UNSPECIFIED indicates total across all severities.
/// Possible string values are:
/// - "SEVERITY_UNSPECIFIED" : Unknown.
/// - "MINIMAL" : Minimal severity.
/// - "LOW" : Low severity.
/// - "MEDIUM" : Medium severity.
/// - "HIGH" : High severity.
/// - "CRITICAL" : Critical severity.
core.String? severity;
/// The total number of vulnerabilities associated with this resource.
core.String? totalCount;
FixableTotalByDigest({
this.fixableCount,
this.resourceUri,
this.severity,
this.totalCount,
});
FixableTotalByDigest.fromJson(core.Map json_)
: this(
fixableCount: json_['fixableCount'] as core.String?,
resourceUri: json_['resourceUri'] as core.String?,
severity: json_['severity'] as core.String?,
totalCount: json_['totalCount'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final fixableCount = this.fixableCount;
final resourceUri = this.resourceUri;
final severity = this.severity;
final totalCount = this.totalCount;
return {
'fixableCount': ?fixableCount,
'resourceUri': ?resourceUri,
'severity': ?severity,
'totalCount': ?totalCount,
};
}
}
/// A SourceContext referring to a Gerrit project.
class GerritSourceContext {
/// An alias, which may be a branch or tag.
AliasContext? aliasContext;
/// The full project name within the host.
///
/// Projects may be nested, so "project/subproject" is a valid project name.
/// The "repo name" is the hostURI/project.
core.String? gerritProject;
/// The URI of a running Gerrit instance.
core.String? hostUri;
/// A revision (commit) ID.
core.String? revisionId;
GerritSourceContext({
this.aliasContext,
this.gerritProject,
this.hostUri,
this.revisionId,
});
GerritSourceContext.fromJson(core.Map json_)
: this(
aliasContext: json_.containsKey('aliasContext')
? AliasContext.fromJson(
json_['aliasContext'] as core.Map<core.String, core.dynamic>,
)
: null,
gerritProject: json_['gerritProject'] as core.String?,
hostUri: json_['hostUri'] as core.String?,
revisionId: json_['revisionId'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final aliasContext = this.aliasContext;
final gerritProject = this.gerritProject;
final hostUri = this.hostUri;
final revisionId = this.revisionId;
return {
'aliasContext': ?aliasContext,
'gerritProject': ?gerritProject,
'hostUri': ?hostUri,
'revisionId': ?revisionId,
};
}
}
/// Request message for `GetIamPolicy` method.
class GetIamPolicyRequest {
/// OPTIONAL: A `GetPolicyOptions` object for specifying options to
/// `GetIamPolicy`.
GetPolicyOptions? options;
GetIamPolicyRequest({this.options});
GetIamPolicyRequest.fromJson(core.Map json_)
: this(
options: json_.containsKey('options')
? GetPolicyOptions.fromJson(
json_['options'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final options = this.options;
return {'options': ?options};
}
}
/// Encapsulates settings provided to GetIamPolicy.
typedef GetPolicyOptions = $GetPolicyOptions00;
/// A GitSourceContext denotes a particular revision in a third party Git
/// repository (e.g., GitHub).
typedef GitSourceContext = $GitSourceContext;
/// Indicates the location at which a package was found.
class GrafeasV1FileLocation {
/// For jars that are contained inside .war files, this filepath can indicate
/// the path to war file combined with the path to jar file.
core.String? filePath;
/// Each package found in a file should have its own layer metadata (that is,
/// information from the origin layer of the package).
LayerDetails? layerDetails;
GrafeasV1FileLocation({this.filePath, this.layerDetails});
GrafeasV1FileLocation.fromJson(core.Map json_)
: this(
filePath: json_['filePath'] as core.String?,
layerDetails: json_.containsKey('layerDetails')
? LayerDetails.fromJson(
json_['layerDetails'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final filePath = this.filePath;
final layerDetails = this.layerDetails;
return {'filePath': ?filePath, 'layerDetails': ?layerDetails};
}
}
/// Identifies the entity that executed the recipe, which is trusted to have
/// correctly performed the operation and populated this provenance.
typedef GrafeasV1SlsaProvenanceZeroTwoSlsaBuilder = $Shared03;
/// Indicates that the builder claims certain fields in this message to be
/// complete.
typedef GrafeasV1SlsaProvenanceZeroTwoSlsaCompleteness =
$GrafeasV1SlsaProvenanceZeroTwoSlsaCompleteness;
/// Describes where the config file that kicked off the build came from.
///
/// This is effectively a pointer to the source where buildConfig came from.
typedef GrafeasV1SlsaProvenanceZeroTwoSlsaConfigSource =
$GrafeasV1SlsaProvenanceZeroTwoSlsaConfigSource;
/// Identifies the event that kicked off the build.
class GrafeasV1SlsaProvenanceZeroTwoSlsaInvocation {
GrafeasV1SlsaProvenanceZeroTwoSlsaConfigSource? configSource;
///
///
/// The values for Object must be JSON objects. It can consist of `num`,
/// `String`, `bool` and `null` as well as `Map` and `List` values.
core.Map<core.String, core.Object?>? environment;
///
///
/// The values for Object must be JSON objects. It can consist of `num`,
/// `String`, `bool` and `null` as well as `Map` and `List` values.
core.Map<core.String, core.Object?>? parameters;
GrafeasV1SlsaProvenanceZeroTwoSlsaInvocation({
this.configSource,
this.environment,
this.parameters,
});
GrafeasV1SlsaProvenanceZeroTwoSlsaInvocation.fromJson(core.Map json_)
: this(
configSource: json_.containsKey('configSource')
? GrafeasV1SlsaProvenanceZeroTwoSlsaConfigSource.fromJson(
json_['configSource'] as core.Map<core.String, core.dynamic>,
)
: null,
environment: json_.containsKey('environment')
? json_['environment'] as core.Map<core.String, core.dynamic>
: null,
parameters: json_.containsKey('parameters')
? json_['parameters'] as core.Map<core.String, core.dynamic>
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final configSource = this.configSource;
final environment = this.environment;
final parameters = this.parameters;
return {
'configSource': ?configSource,
'environment': ?environment,
'parameters': ?parameters,
};
}
}
/// The collection of artifacts that influenced the build including sources,
/// dependencies, build tools, base images, and so on.
typedef GrafeasV1SlsaProvenanceZeroTwoSlsaMaterial = $Material;
/// Other properties of the build.
class GrafeasV1SlsaProvenanceZeroTwoSlsaMetadata {
core.String? buildFinishedOn;
core.String? buildInvocationId;
core.String? buildStartedOn;
GrafeasV1SlsaProvenanceZeroTwoSlsaCompleteness? completeness;
core.bool? reproducible;
GrafeasV1SlsaProvenanceZeroTwoSlsaMetadata({
this.buildFinishedOn,
this.buildInvocationId,
this.buildStartedOn,
this.completeness,
this.reproducible,
});
GrafeasV1SlsaProvenanceZeroTwoSlsaMetadata.fromJson(core.Map json_)
: this(
buildFinishedOn: json_['buildFinishedOn'] as core.String?,
buildInvocationId: json_['buildInvocationId'] as core.String?,
buildStartedOn: json_['buildStartedOn'] as core.String?,
completeness: json_.containsKey('completeness')
? GrafeasV1SlsaProvenanceZeroTwoSlsaCompleteness.fromJson(
json_['completeness'] as core.Map<core.String, core.dynamic>,
)
: null,
reproducible: json_['reproducible'] as core.bool?,
);
core.Map<core.String, core.dynamic> toJson() {
final buildFinishedOn = this.buildFinishedOn;
final buildInvocationId = this.buildInvocationId;
final buildStartedOn = this.buildStartedOn;
final completeness = this.completeness;
final reproducible = this.reproducible;
return {
'buildFinishedOn': ?buildFinishedOn,
'buildInvocationId': ?buildInvocationId,
'buildStartedOn': ?buildStartedOn,
'completeness': ?completeness,
'reproducible': ?reproducible,
};
}
}
/// Container message for hash values.
typedef Hash = $Hash;
/// This submessage provides human-readable hints about the purpose of the
/// authority.
///
/// Because the name of a note acts as its resource reference, it is important
/// to disambiguate the canonical name of the Note (which might be a UUID for
/// security purposes) from "readable" names more suitable for debug output.
/// Note that these hints should not be used to look up authorities in security
/// sensitive contexts, such as when looking up attestations to verify.
class Hint {
/// The human readable name of this attestation authority, for example "qa".
///
/// Required.
core.String? humanReadableName;
Hint({this.humanReadableName});
Hint.fromJson(core.Map json_)
: this(humanReadableName: json_['humanReadableName'] as core.String?);
core.Map<core.String, core.dynamic> toJson() {
final humanReadableName = this.humanReadableName;
return {'humanReadableName': ?humanReadableName};
}
}
/// The unique identifier of the update.
typedef Identity = $Identity;
/// Basis describes the base image portion (Note) of the DockerImage
/// relationship.
///
/// Linked occurrences are derived from this or an equivalent image via: FROM Or
/// an equivalent reference, e.g., a tag of the resource_url.
class ImageNote {
/// The fingerprint of the base image.
///
/// Required. Immutable.
Fingerprint? fingerprint;
/// The resource_url for the resource representing the basis of associated
/// occurrence images.
///
/// Required. Immutable.
core.String? resourceUrl;
ImageNote({this.fingerprint, this.resourceUrl});
ImageNote.fromJson(core.Map json_)
: this(
fingerprint: json_.containsKey('fingerprint')
? Fingerprint.fromJson(
json_['fingerprint'] as core.Map<core.String, core.dynamic>,
)
: null,
resourceUrl: json_['resourceUrl'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final fingerprint = this.fingerprint;
final resourceUrl = this.resourceUrl;
return {'fingerprint': ?fingerprint, 'resourceUrl': ?resourceUrl};
}
}
/// Details of the derived image portion of the DockerImage relationship.
///
/// This image would be produced from a Dockerfile with FROM .
class ImageOccurrence {
/// This contains the base image URL for the derived image occurrence.
///
/// Output only.
core.String? baseResourceUrl;
/// The number of layers by which this image differs from the associated image
/// basis.
///
/// Output only.
core.int? distance;
/// The fingerprint of the derived image.
///
/// Required.
Fingerprint? fingerprint;
/// This contains layer-specific metadata, if populated it has length
/// "distance" and is ordered with \[distance\] being the layer immediately
/// following the base image and \[1\] being the final layer.
core.List<Layer>? layerInfo;
ImageOccurrence({
this.baseResourceUrl,
this.distance,
this.fingerprint,
this.layerInfo,
});
ImageOccurrence.fromJson(core.Map json_)
: this(
baseResourceUrl: json_['baseResourceUrl'] as core.String?,
distance: json_['distance'] as core.int?,
fingerprint: json_.containsKey('fingerprint')
? Fingerprint.fromJson(
json_['fingerprint'] as core.Map<core.String, core.dynamic>,
)
: null,
layerInfo: (json_['layerInfo'] as core.List?)
?.map(
(value) =>
Layer.fromJson(value as core.Map<core.String, core.dynamic>),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final baseResourceUrl = this.baseResourceUrl;
final distance = this.distance;
final fingerprint = this.fingerprint;
final layerInfo = this.layerInfo;
return {
'baseResourceUrl': ?baseResourceUrl,
'distance': ?distance,
'fingerprint': ?fingerprint,
'layerInfo': ?layerInfo,
};
}
}
class InTotoProvenance {
/// required
BuilderConfig? builderConfig;
/// The collection of artifacts that influenced the build including sources,
/// dependencies, build tools, base images, and so on.
///
/// This is considered to be incomplete unless metadata.completeness.materials
/// is true. Unset or null is equivalent to empty.
core.List<core.String>? materials;
Metadata? metadata;
/// Identifies the configuration used for the build.
///
/// When combined with materials, this SHOULD fully describe the build, such
/// that re-running this recipe results in bit-for-bit identical output (if
/// the build is reproducible). required
Recipe? recipe;
InTotoProvenance({
this.builderConfig,
this.materials,
this.metadata,
this.recipe,
});
InTotoProvenance.fromJson(core.Map json_)
: this(
builderConfig: json_.containsKey('builderConfig')
? BuilderConfig.fromJson(
json_['builderConfig'] as core.Map<core.String, core.dynamic>,
)
: null,
materials: (json_['materials'] as core.List?)
?.map((value) => value as core.String)
.toList(),
metadata: json_.containsKey('metadata')
? Metadata.fromJson(
json_['metadata'] as core.Map<core.String, core.dynamic>,
)
: null,
recipe: json_.containsKey('recipe')
? Recipe.fromJson(
json_['recipe'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final builderConfig = this.builderConfig;
final materials = this.materials;
final metadata = this.metadata;
final recipe = this.recipe;
return {
'builderConfig': ?builderConfig,
'materials': ?materials,
'metadata': ?metadata,
'recipe': ?recipe,
};
}
}
class InTotoSlsaProvenanceV1 {
/// InToto spec defined at
/// https://github.com/in-toto/attestation/tree/main/spec#statement
core.String? P_type;
SlsaProvenanceV1? predicate;
core.String? predicateType;
core.List<Subject>? subject;
InTotoSlsaProvenanceV1({
this.P_type,
this.predicate,
this.predicateType,
this.subject,
});
InTotoSlsaProvenanceV1.fromJson(core.Map json_)
: this(
P_type: json_['_type'] as core.String?,
predicate: json_.containsKey('predicate')
? SlsaProvenanceV1.fromJson(
json_['predicate'] as core.Map<core.String, core.dynamic>,
)
: null,
predicateType: json_['predicateType'] as core.String?,
subject: (json_['subject'] as core.List?)
?.map(
(value) => Subject.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final P_type = this.P_type;
final predicate = this.predicate;
final predicateType = this.predicateType;
final subject = this.subject;
return {
'_type': ?P_type,
'predicate': ?predicate,
'predicateType': ?predicateType,
'subject': ?subject,
};
}
}
/// Spec defined at
/// https://github.com/in-toto/attestation/tree/main/spec#statement The
/// serialized InTotoStatement will be stored as Envelope.payload.
///
/// Envelope.payloadType is always "application/vnd.in-toto+json".
class InTotoStatement {
/// Always `https://in-toto.io/Statement/v0.1`.
core.String? P_type;
/// `https://slsa.dev/provenance/v0.1` for SlsaProvenance.
core.String? predicateType;
InTotoProvenance? provenance;
SlsaProvenance? slsaProvenance;
SlsaProvenanceZeroTwo? slsaProvenanceZeroTwo;
core.List<Subject>? subject;
InTotoStatement({
this.P_type,
this.predicateType,
this.provenance,
this.slsaProvenance,
this.slsaProvenanceZeroTwo,
this.subject,
});
InTotoStatement.fromJson(core.Map json_)
: this(
P_type: json_['_type'] as core.String?,
predicateType: json_['predicateType'] as core.String?,
provenance: json_.containsKey('provenance')
? InTotoProvenance.fromJson(
json_['provenance'] as core.Map<core.String, core.dynamic>,
)
: null,
slsaProvenance: json_.containsKey('slsaProvenance')
? SlsaProvenance.fromJson(
json_['slsaProvenance'] as core.Map<core.String, core.dynamic>,
)
: null,
slsaProvenanceZeroTwo: json_.containsKey('slsaProvenanceZeroTwo')
? SlsaProvenanceZeroTwo.fromJson(
json_['slsaProvenanceZeroTwo']
as core.Map<core.String, core.dynamic>,
)
: null,
subject: (json_['subject'] as core.List?)
?.map(
(value) => Subject.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final P_type = this.P_type;
final predicateType = this.predicateType;
final provenance = this.provenance;
final slsaProvenance = this.slsaProvenance;
final slsaProvenanceZeroTwo = this.slsaProvenanceZeroTwo;
final subject = this.subject;
return {
'_type': ?P_type,
'predicateType': ?predicateType,
'provenance': ?provenance,
'slsaProvenance': ?slsaProvenance,
'slsaProvenanceZeroTwo': ?slsaProvenanceZeroTwo,
'subject': ?subject,
};
}
}
/// Justification provides the justification when the state of the assessment if
/// NOT_AFFECTED.
typedef Justification = $Justification;
typedef Jwt = $Jwt;
class KnowledgeBase {
/// The KB name (generally of the form KB\[0-9\]+ (e.g., KB123456)).
core.String? name;
/// A link to the KB in the
/// [Windows update catalog](https://www.catalog.update.microsoft.com/).
core.String? url;
KnowledgeBase({this.name, this.url});
KnowledgeBase.fromJson(core.Map json_)
: this(
name: json_['name'] as core.String?,
url: json_['url'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final name = this.name;
final url = this.url;
return {'name': ?name, 'url': ?url};
}
}
/// Layer holds metadata specific to a layer of a Docker image.
typedef Layer = $Layer;
/// Details about the layer a package was found in.
class LayerDetails {
/// The base images the layer is found within.
core.List<BaseImage>? baseImages;
/// The layer chain ID (sha256 hash) of the layer in the container image.
///
/// https://github.com/opencontainers/image-spec/blob/main/config.md#layer-chainid
core.String? chainId;
/// The layer build command that was used to build the layer.
///
/// This may not be found in all layers depending on how the container image
/// is built.
core.String? command;
/// The diff ID (typically a sha256 hash) of the layer in the container image.
core.String? diffId;
/// The index of the layer in the container image.
core.int? index;
LayerDetails({
this.baseImages,
this.chainId,
this.command,
this.diffId,
this.index,
});
LayerDetails.fromJson(core.Map json_)
: this(
baseImages: (json_['baseImages'] as core.List?)
?.map(
(value) => BaseImage.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
chainId: json_['chainId'] as core.String?,
command: json_['command'] as core.String?,
diffId: json_['diffId'] as core.String?,
index: json_['index'] as core.int?,
);
core.Map<core.String, core.dynamic> toJson() {
final baseImages = this.baseImages;
final chainId = this.chainId;
final command = this.command;
final diffId = this.diffId;
final index = this.index;
return {
'baseImages': ?baseImages,
'chainId': ?chainId,
'command': ?command,
'diffId': ?diffId,
'index': ?index,
};
}
}
/// License information.
typedef License = $License;
/// Response for listing occurrences for a note.
class ListNoteOccurrencesResponse {
/// Token to provide to skip to a particular spot in the list.
core.String? nextPageToken;
/// The occurrences attached to the specified note.
core.List<Occurrence>? occurrences;
ListNoteOccurrencesResponse({this.nextPageToken, this.occurrences});
ListNoteOccurrencesResponse.fromJson(core.Map json_)
: this(
nextPageToken: json_['nextPageToken'] as core.String?,
occurrences: (json_['occurrences'] as core.List?)
?.map(
(value) => Occurrence.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final nextPageToken = this.nextPageToken;
final occurrences = this.occurrences;
return {'nextPageToken': ?nextPageToken, 'occurrences': ?occurrences};
}
}
/// Response for listing notes.
class ListNotesResponse {
/// The next pagination token in the list response.
///
/// It should be used as `page_token` for the following request. An empty
/// value means no more results.
core.String? nextPageToken;
/// The notes requested.
core.List<Note>? notes;
/// Unordered list.
///
/// Unreachable regions. Populated for requests from the global region when
/// `return_partial_success` is set. Format:
/// `projects/[PROJECT_ID]/locations/[LOCATION]`
core.List<core.String>? unreachable;
ListNotesResponse({this.nextPageToken, this.notes, this.unreachable});
ListNotesResponse.fromJson(core.Map json_)
: this(
nextPageToken: json_['nextPageToken'] as core.String?,
notes: (json_['notes'] as core.List?)
?.map(
(value) =>
Note.fromJson(value as core.Map<core.String, core.dynamic>),
)
.toList(),
unreachable: (json_['unreachable'] as core.List?)
?.map((value) => value as core.String)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final nextPageToken = this.nextPageToken;
final notes = this.notes;
final unreachable = this.unreachable;
return {
'nextPageToken': ?nextPageToken,
'notes': ?notes,
'unreachable': ?unreachable,
};
}
}
/// Response for listing occurrences.
class ListOccurrencesResponse {
/// The next pagination token in the list response.
///
/// It should be used as `page_token` for the following request. An empty
/// value means no more results.
core.String? nextPageToken;
/// The occurrences requested.
core.List<Occurrence>? occurrences;
/// Unordered list.
///
/// Unreachable regions. Populated for requests from the global region when
/// `return_partial_success` is set. Format:
/// `projects/[PROJECT_ID]/locations/[LOCATION]`
core.List<core.String>? unreachable;
ListOccurrencesResponse({
this.nextPageToken,
this.occurrences,
this.unreachable,
});
ListOccurrencesResponse.fromJson(core.Map json_)
: this(
nextPageToken: json_['nextPageToken'] as core.String?,
occurrences: (json_['occurrences'] as core.List?)
?.map(
(value) => Occurrence.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
unreachable: (json_['unreachable'] as core.List?)
?.map((value) => value as core.String)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final nextPageToken = this.nextPageToken;
final occurrences = this.occurrences;
final unreachable = this.unreachable;
return {
'nextPageToken': ?nextPageToken,
'occurrences': ?occurrences,
'unreachable': ?unreachable,
};
}
}
/// An occurrence of a particular package installation found within a system's
/// filesystem.
///
/// E.g., glibc was found in `/var/lib/dpkg/status`.
class Location {
/// The CPE URI in [CPE format](https://cpe.mitre.org/specification/)
///
/// Deprecated.
core.String? cpeUri;
/// The path from which we gathered that this package/version is installed.
core.String? path;
/// The version installed at this location.
///
/// Deprecated.
Version? version;
Location({this.cpeUri, this.path, this.version});
Location.fromJson(core.Map json_)
: this(
cpeUri: json_['cpeUri'] as core.String?,
path: json_['path'] as core.String?,
version: json_.containsKey('version')
? Version.fromJson(
json_['version'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final cpeUri = this.cpeUri;
final path = this.path;
final version = this.version;
return {'cpeUri': ?cpeUri, 'path': ?path, 'version': ?version};
}
}
typedef Material = $Material;
/// Other properties of the build.
class Metadata {
/// The timestamp of when the build completed.
core.String? buildFinishedOn;
/// Identifies the particular build invocation, which can be useful for
/// finding associated logs or other ad-hoc analysis.
///
/// The value SHOULD be globally unique, per in-toto Provenance spec.
core.String? buildInvocationId;
/// The timestamp of when the build started.
core.String? buildStartedOn;
/// Indicates that the builder claims certain fields in this message to be
/// complete.
Completeness? completeness;
/// If true, the builder claims that running the recipe on materials will
/// produce bit-for-bit identical output.
core.bool? reproducible;
Metadata({
this.buildFinishedOn,
this.buildInvocationId,
this.buildStartedOn,
this.completeness,
this.reproducible,
});
Metadata.fromJson(core.Map json_)
: this(
buildFinishedOn: json_['buildFinishedOn'] as core.String?,
buildInvocationId: json_['buildInvocationId'] as core.String?,
buildStartedOn: json_['buildStartedOn'] as core.String?,
completeness: json_.containsKey('completeness')
? Completeness.fromJson(
json_['completeness'] as core.Map<core.String, core.dynamic>,
)
: null,
reproducible: json_['reproducible'] as core.bool?,
);
core.Map<core.String, core.dynamic> toJson() {
final buildFinishedOn = this.buildFinishedOn;
final buildInvocationId = this.buildInvocationId;
final buildStartedOn = this.buildStartedOn;
final completeness = this.completeness;
final reproducible = this.reproducible;
return {
'buildFinishedOn': ?buildFinishedOn,
'buildInvocationId': ?buildInvocationId,
'buildStartedOn': ?buildStartedOn,
'completeness': ?completeness,
'reproducible': ?reproducible,
};
}
}
/// Details about files that caused a compliance check to fail.
///
/// display_command is a single command that can be used to display a list of
/// non compliant files. When there is no such command, we can also iterate a
/// list of non compliant file using 'path'.
typedef NonCompliantFile = $NonCompliantFile;
/// A type of analysis that can be done for a resource.
class Note {
/// The timestamp when the advisory was first published by the source feed.
core.String? advisoryPublishTime;
/// A note describing an attestation role.
AttestationNote? attestation;
/// A note describing build provenance for a verifiable build.
BuildNote? build;
/// A note describing a compliance check.
ComplianceNote? compliance;
/// The time this note was created.
///
/// This field can be used as a filter in list requests.
///
/// Output only.
core.String? createTime;
/// A note describing something that can be deployed.
DeploymentNote? deployment;
/// A note describing the initial analysis of a resource.
DiscoveryNote? discovery;
/// A note describing a dsse attestation note.
DSSEAttestationNote? dsseAttestation;
/// Time of expiration for this note.
///
/// Empty if note does not expire.
core.String? expirationTime;
/// A note describing a base image.
ImageNote? image;
/// The type of analysis.
///
/// This field can be used as a filter in list requests.
///
/// Output only.
/// Possible string values are:
/// - "NOTE_KIND_UNSPECIFIED" : Default value. This value is unused.
/// - "VULNERABILITY" : The note and occurrence represent a package
/// vulnerability.
/// - "BUILD" : The note and occurrence assert build provenance.
/// - "IMAGE" : This represents an image basis relationship.
/// - "PACKAGE" : This represents a package installed via a package manager.
/// - "DEPLOYMENT" : The note and occurrence track deployment events.
/// - "DISCOVERY" : The note and occurrence track the initial discovery status
/// of a resource.
/// - "ATTESTATION" : This represents a logical "role" that can attest to
/// artifacts.
/// - "UPGRADE" : This represents an available package upgrade.
/// - "COMPLIANCE" : This represents a Compliance Note
/// - "DSSE_ATTESTATION" : This represents a DSSE attestation Note
/// - "VULNERABILITY_ASSESSMENT" : This represents a Vulnerability Assessment.
/// - "SBOM_REFERENCE" : This represents an SBOM Reference.
/// - "SECRET" : This represents a secret.
core.String? kind;
/// A detailed description of this note.
core.String? longDescription;
/// The name of the note in the form of
/// `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
///
/// Output only.
core.String? name;
/// A note describing a package hosted by various package managers.
PackageNote? package;
/// Other notes related to this note.
core.List<core.String>? relatedNoteNames;
/// URLs associated with this note.
core.List<RelatedUrl>? relatedUrl;
/// A note describing an SBOM reference.
SBOMReferenceNote? sbomReference;
/// A note describing a secret.
SecretNote? secret;
/// A one sentence description of this note.
core.String? shortDescription;
/// The time this note was last updated.
///
/// This field can be used as a filter in list requests.
///
/// Output only.
core.String? updateTime;
/// A note describing available package upgrades.
UpgradeNote? upgrade;
/// A note describing a package vulnerability.
VulnerabilityNote? vulnerability;
/// A note describing a vulnerability assessment.
VulnerabilityAssessmentNote? vulnerabilityAssessment;
Note({
this.advisoryPublishTime,
this.attestation,
this.build,
this.compliance,
this.createTime,
this.deployment,
this.discovery,
this.dsseAttestation,
this.expirationTime,
this.image,
this.kind,
this.longDescription,
this.name,
this.package,
this.relatedNoteNames,
this.relatedUrl,
this.sbomReference,
this.secret,
this.shortDescription,
this.updateTime,
this.upgrade,
this.vulnerability,
this.vulnerabilityAssessment,
});
Note.fromJson(core.Map json_)
: this(
advisoryPublishTime: json_['advisoryPublishTime'] as core.String?,
attestation: json_.containsKey('attestation')
? AttestationNote.fromJson(
json_['attestation'] as core.Map<core.String, core.dynamic>,
)
: null,
build: json_.containsKey('build')
? BuildNote.fromJson(
json_['build'] as core.Map<core.String, core.dynamic>,
)
: null,
compliance: json_.containsKey('compliance')
? ComplianceNote.fromJson(
json_['compliance'] as core.Map<core.String, core.dynamic>,
)
: null,
createTime: json_['createTime'] as core.String?,
deployment: json_.containsKey('deployment')
? DeploymentNote.fromJson(
json_['deployment'] as core.Map<core.String, core.dynamic>,
)
: null,
discovery: json_.containsKey('discovery')
? DiscoveryNote.fromJson(
json_['discovery'] as core.Map<core.String, core.dynamic>,
)
: null,
dsseAttestation: json_.containsKey('dsseAttestation')
? DSSEAttestationNote.fromJson(
json_['dsseAttestation'] as core.Map<core.String, core.dynamic>,
)
: null,
expirationTime: json_['expirationTime'] as core.String?,
image: json_.containsKey('image')
? ImageNote.fromJson(
json_['image'] as core.Map<core.String, core.dynamic>,
)
: null,
kind: json_['kind'] as core.String?,
longDescription: json_['longDescription'] as core.String?,
name: json_['name'] as core.String?,
package: json_.containsKey('package')
? PackageNote.fromJson(
json_['package'] as core.Map<core.String, core.dynamic>,
)
: null,
relatedNoteNames: (json_['relatedNoteNames'] as core.List?)
?.map((value) => value as core.String)
.toList(),
relatedUrl: (json_['relatedUrl'] as core.List?)
?.map(
(value) => RelatedUrl.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
sbomReference: json_.containsKey('sbomReference')
? SBOMReferenceNote.fromJson(
json_['sbomReference'] as core.Map<core.String, core.dynamic>,
)
: null,
secret: json_.containsKey('secret')
? SecretNote.fromJson(
json_['secret'] as core.Map<core.String, core.dynamic>,
)
: null,
shortDescription: json_['shortDescription'] as core.String?,
updateTime: json_['updateTime'] as core.String?,
upgrade: json_.containsKey('upgrade')
? UpgradeNote.fromJson(
json_['upgrade'] as core.Map<core.String, core.dynamic>,
)
: null,
vulnerability: json_.containsKey('vulnerability')
? VulnerabilityNote.fromJson(
json_['vulnerability'] as core.Map<core.String, core.dynamic>,
)
: null,
vulnerabilityAssessment: json_.containsKey('vulnerabilityAssessment')
? VulnerabilityAssessmentNote.fromJson(
json_['vulnerabilityAssessment']
as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final advisoryPublishTime = this.advisoryPublishTime;
final attestation = this.attestation;
final build = this.build;
final compliance = this.compliance;
final createTime = this.createTime;
final deployment = this.deployment;
final discovery = this.discovery;
final dsseAttestation = this.dsseAttestation;
final expirationTime = this.expirationTime;
final image = this.image;
final kind = this.kind;
final longDescription = this.longDescription;
final name = this.name;
final package = this.package;
final relatedNoteNames = this.relatedNoteNames;
final relatedUrl = this.relatedUrl;
final sbomReference = this.sbomReference;
final secret = this.secret;
final shortDescription = this.shortDescription;
final updateTime = this.updateTime;
final upgrade = this.upgrade;
final vulnerability = this.vulnerability;
final vulnerabilityAssessment = this.vulnerabilityAssessment;
return {
'advisoryPublishTime': ?advisoryPublishTime,
'attestation': ?attestation,
'build': ?build,
'compliance': ?compliance,
'createTime': ?createTime,
'deployment': ?deployment,
'discovery': ?discovery,
'dsseAttestation': ?dsseAttestation,
'expirationTime': ?expirationTime,
'image': ?image,
'kind': ?kind,
'longDescription': ?longDescription,
'name': ?name,
'package': ?package,
'relatedNoteNames': ?relatedNoteNames,
'relatedUrl': ?relatedUrl,
'sbomReference': ?sbomReference,
'secret': ?secret,
'shortDescription': ?shortDescription,
'updateTime': ?updateTime,
'upgrade': ?upgrade,
'vulnerability': ?vulnerability,
'vulnerabilityAssessment': ?vulnerabilityAssessment,
};
}
}
/// An instance of an analysis type that has been found on a resource.
class Occurrence {
/// Describes an attestation of an artifact.
AttestationOccurrence? attestation;
/// Describes a verifiable build.
BuildOccurrence? build;
/// Describes a compliance violation on a linked resource.
ComplianceOccurrence? compliance;
/// The time this occurrence was created.
///
/// Output only.
core.String? createTime;
/// Describes the deployment of an artifact on a runtime.
DeploymentOccurrence? deployment;
/// Describes when a resource was discovered.
DiscoveryOccurrence? discovery;
/// Describes an attestation of an artifact using dsse.
DSSEAttestationOccurrence? dsseAttestation;
/// https://github.com/secure-systems-lab/dsse
Envelope? envelope;
/// Describes how this resource derives from the basis in the associated note.
ImageOccurrence? image;
/// This explicitly denotes which of the occurrence details are specified.
///
/// This field can be used as a filter in list requests.
///
/// Output only.
/// Possible string values are:
/// - "NOTE_KIND_UNSPECIFIED" : Default value. This value is unused.
/// - "VULNERABILITY" : The note and occurrence represent a package
/// vulnerability.
/// - "BUILD" : The note and occurrence assert build provenance.
/// - "IMAGE" : This represents an image basis relationship.
/// - "PACKAGE" : This represents a package installed via a package manager.
/// - "DEPLOYMENT" : The note and occurrence track deployment events.
/// - "DISCOVERY" : The note and occurrence track the initial discovery status
/// of a resource.
/// - "ATTESTATION" : This represents a logical "role" that can attest to
/// artifacts.
/// - "UPGRADE" : This represents an available package upgrade.
/// - "COMPLIANCE" : This represents a Compliance Note
/// - "DSSE_ATTESTATION" : This represents a DSSE attestation Note
/// - "VULNERABILITY_ASSESSMENT" : This represents a Vulnerability Assessment.
/// - "SBOM_REFERENCE" : This represents an SBOM Reference.
/// - "SECRET" : This represents a secret.
core.String? kind;
/// The name of the occurrence in the form of
/// `projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]`.
///
/// Output only.
core.String? name;
/// The analysis note associated with this occurrence, in the form of
/// `projects/[PROVIDER_ID]/notes/[NOTE_ID]`.
///
/// This field can be used as a filter in list requests.
///
/// Required. Immutable.
core.String? noteName;
/// Describes the installation of a package on the linked resource.
PackageOccurrence? package;
/// A description of actions that can be taken to remedy the note.
core.String? remediation;
/// A URI that represents the resource for which the occurrence applies.
///
/// For example, `https://gcr.io/project/image@sha256:123abc` for a Docker
/// image.
///
/// Required. Immutable.
core.String? resourceUri;
/// Describes a specific SBOM reference occurrences.
SBOMReferenceOccurrence? sbomReference;
/// Describes a secret.
SecretOccurrence? secret;
/// The time this occurrence was last updated.
///
/// Output only.
core.String? updateTime;
/// Describes an available package upgrade on the linked resource.
UpgradeOccurrence? upgrade;
/// Describes a security vulnerability.
VulnerabilityOccurrence? vulnerability;
Occurrence({
this.attestation,
this.build,
this.compliance,
this.createTime,
this.deployment,
this.discovery,
this.dsseAttestation,
this.envelope,
this.image,
this.kind,
this.name,
this.noteName,
this.package,
this.remediation,
this.resourceUri,
this.sbomReference,
this.secret,
this.updateTime,
this.upgrade,
this.vulnerability,
});
Occurrence.fromJson(core.Map json_)
: this(
attestation: json_.containsKey('attestation')
? AttestationOccurrence.fromJson(
json_['attestation'] as core.Map<core.String, core.dynamic>,
)
: null,
build: json_.containsKey('build')
? BuildOccurrence.fromJson(
json_['build'] as core.Map<core.String, core.dynamic>,
)
: null,
compliance: json_.containsKey('compliance')
? ComplianceOccurrence.fromJson(
json_['compliance'] as core.Map<core.String, core.dynamic>,
)
: null,
createTime: json_['createTime'] as core.String?,
deployment: json_.containsKey('deployment')
? DeploymentOccurrence.fromJson(
json_['deployment'] as core.Map<core.String, core.dynamic>,
)
: null,
discovery: json_.containsKey('discovery')
? DiscoveryOccurrence.fromJson(
json_['discovery'] as core.Map<core.String, core.dynamic>,
)
: null,
dsseAttestation: json_.containsKey('dsseAttestation')
? DSSEAttestationOccurrence.fromJson(
json_['dsseAttestation'] as core.Map<core.String, core.dynamic>,
)
: null,
envelope: json_.containsKey('envelope')
? Envelope.fromJson(
json_['envelope'] as core.Map<core.String, core.dynamic>,
)
: null,
image: json_.containsKey('image')
? ImageOccurrence.fromJson(
json_['image'] as core.Map<core.String, core.dynamic>,
)
: null,
kind: json_['kind'] as core.String?,
name: json_['name'] as core.String?,
noteName: json_['noteName'] as core.String?,
package: json_.containsKey('package')
? PackageOccurrence.fromJson(
json_['package'] as core.Map<core.String, core.dynamic>,
)
: null,
remediation: json_['remediation'] as core.String?,
resourceUri: json_['resourceUri'] as core.String?,
sbomReference: json_.containsKey('sbomReference')
? SBOMReferenceOccurrence.fromJson(
json_['sbomReference'] as core.Map<core.String, core.dynamic>,
)
: null,
secret: json_.containsKey('secret')
? SecretOccurrence.fromJson(
json_['secret'] as core.Map<core.String, core.dynamic>,
)
: null,
updateTime: json_['updateTime'] as core.String?,
upgrade: json_.containsKey('upgrade')
? UpgradeOccurrence.fromJson(
json_['upgrade'] as core.Map<core.String, core.dynamic>,
)
: null,
vulnerability: json_.containsKey('vulnerability')
? VulnerabilityOccurrence.fromJson(
json_['vulnerability'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final attestation = this.attestation;
final build = this.build;
final compliance = this.compliance;
final createTime = this.createTime;
final deployment = this.deployment;
final discovery = this.discovery;
final dsseAttestation = this.dsseAttestation;
final envelope = this.envelope;
final image = this.image;
final kind = this.kind;
final name = this.name;
final noteName = this.noteName;
final package = this.package;
final remediation = this.remediation;
final resourceUri = this.resourceUri;
final sbomReference = this.sbomReference;
final secret = this.secret;
final updateTime = this.updateTime;
final upgrade = this.upgrade;
final vulnerability = this.vulnerability;
return {
'attestation': ?attestation,
'build': ?build,
'compliance': ?compliance,
'createTime': ?createTime,
'deployment': ?deployment,
'discovery': ?discovery,
'dsseAttestation': ?dsseAttestation,
'envelope': ?envelope,
'image': ?image,
'kind': ?kind,
'name': ?name,
'noteName': ?noteName,
'package': ?package,
'remediation': ?remediation,
'resourceUri': ?resourceUri,
'sbomReference': ?sbomReference,
'secret': ?secret,
'updateTime': ?updateTime,
'upgrade': ?upgrade,
'vulnerability': ?vulnerability,
};
}
}
/// A detail for a distro and package this vulnerability occurrence was found in
/// and its associated fix (if one is available).
class PackageIssue {
/// The [CPE URI](https://cpe.mitre.org/specification/) this vulnerability was
/// found in.
///
/// Required.
core.String? affectedCpeUri;
/// The package this vulnerability was found in.
///
/// Required.
core.String? affectedPackage;
/// The version of the package that is installed on the resource affected by
/// this vulnerability.
///
/// Required.
Version? affectedVersion;
/// The distro or language system assigned severity for this vulnerability
/// when that is available and note provider assigned severity when it is not
/// available.
///
/// Output only.
/// Possible string values are:
/// - "SEVERITY_UNSPECIFIED" : Unknown.
/// - "MINIMAL" : Minimal severity.
/// - "LOW" : Low severity.
/// - "MEDIUM" : Medium severity.
/// - "HIGH" : High severity.
/// - "CRITICAL" : Critical severity.
core.String? effectiveSeverity;
/// The location at which this package was found.
core.List<GrafeasV1FileLocation>? fileLocation;
/// Whether a fix is available for this package.
///
/// Output only.
core.bool? fixAvailable;
/// The [CPE URI](https://cpe.mitre.org/specification/) this vulnerability was
/// fixed in.
///
/// It is possible for this to be different from the affected_cpe_uri.
core.String? fixedCpeUri;
/// The package this vulnerability was fixed in.
///
/// It is possible for this to be different from the affected_package.
core.String? fixedPackage;
/// The version of the package this vulnerability was fixed in.
///
/// Setting this to VersionKind.MAXIMUM means no fix is yet available.
///
/// Required.
Version? fixedVersion;
/// The type of package (e.g. OS, MAVEN, GO).
core.String? packageType;
PackageIssue({
this.affectedCpeUri,
this.affectedPackage,
this.affectedVersion,
this.effectiveSeverity,
this.fileLocation,
this.fixAvailable,
this.fixedCpeUri,
this.fixedPackage,
this.fixedVersion,
this.packageType,
});
PackageIssue.fromJson(core.Map json_)
: this(
affectedCpeUri: json_['affectedCpeUri'] as core.String?,
affectedPackage: json_['affectedPackage'] as core.String?,
affectedVersion: json_.containsKey('affectedVersion')
? Version.fromJson(
json_['affectedVersion'] as core.Map<core.String, core.dynamic>,
)
: null,
effectiveSeverity: json_['effectiveSeverity'] as core.String?,
fileLocation: (json_['fileLocation'] as core.List?)
?.map(
(value) => GrafeasV1FileLocation.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
fixAvailable: json_['fixAvailable'] as core.bool?,
fixedCpeUri: json_['fixedCpeUri'] as core.String?,
fixedPackage: json_['fixedPackage'] as core.String?,
fixedVersion: json_.containsKey('fixedVersion')
? Version.fromJson(
json_['fixedVersion'] as core.Map<core.String, core.dynamic>,
)
: null,
packageType: json_['packageType'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final affectedCpeUri = this.affectedCpeUri;
final affectedPackage = this.affectedPackage;
final affectedVersion = this.affectedVersion;
final effectiveSeverity = this.effectiveSeverity;
final fileLocation = this.fileLocation;
final fixAvailable = this.fixAvailable;
final fixedCpeUri = this.fixedCpeUri;
final fixedPackage = this.fixedPackage;
final fixedVersion = this.fixedVersion;
final packageType = this.packageType;
return {
'affectedCpeUri': ?affectedCpeUri,
'affectedPackage': ?affectedPackage,
'affectedVersion': ?affectedVersion,
'effectiveSeverity': ?effectiveSeverity,
'fileLocation': ?fileLocation,
'fixAvailable': ?fixAvailable,
'fixedCpeUri': ?fixedCpeUri,
'fixedPackage': ?fixedPackage,
'fixedVersion': ?fixedVersion,
'packageType': ?packageType,
};
}
}
/// PackageNote represents a particular package version.
class PackageNote {
/// The CPU architecture for which packages in this distribution channel were
/// built.
///
/// Architecture will be blank for language packages.
/// Possible string values are:
/// - "ARCHITECTURE_UNSPECIFIED" : Unknown architecture.
/// - "X86" : X86 architecture.
/// - "X64" : X64 architecture.
core.String? architecture;
/// The cpe_uri in [CPE format](https://cpe.mitre.org/specification/) denoting
/// the package manager version distributing a package.
///
/// The cpe_uri will be blank for language packages.
core.String? cpeUri;
/// The description of this package.
core.String? description;
/// Hash value, typically a file digest, that allows unique identification a
/// specific package.
core.List<Digest>? digest;
/// The various channels by which a package is distributed.
///
/// Deprecated.
core.List<Distribution>? distribution;
/// Licenses that have been declared by the authors of the package.
License? license;
/// A freeform text denoting the maintainer of this package.
core.String? maintainer;
/// The name of the package.
///
/// Required. Immutable.
core.String? name;
/// The type of package; whether native or non native (e.g., ruby gems,
/// node.js packages, etc.).
core.String? packageType;
/// The homepage for this package.
core.String? url;
/// The version of the package.
Version? version;
PackageNote({
this.architecture,
this.cpeUri,
this.description,
this.digest,
this.distribution,
this.license,
this.maintainer,
this.name,
this.packageType,
this.url,
this.version,
});
PackageNote.fromJson(core.Map json_)
: this(
architecture: json_['architecture'] as core.String?,
cpeUri: json_['cpeUri'] as core.String?,
description: json_['description'] as core.String?,
digest: (json_['digest'] as core.List?)
?.map(
(value) =>
Digest.fromJson(value as core.Map<core.String, core.dynamic>),
)
.toList(),
distribution: (json_['distribution'] as core.List?)
?.map(
(value) => Distribution.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
license: json_.containsKey('license')
? License.fromJson(
json_['license'] as core.Map<core.String, core.dynamic>,
)
: null,
maintainer: json_['maintainer'] as core.String?,
name: json_['name'] as core.String?,
packageType: json_['packageType'] as core.String?,
url: json_['url'] as core.String?,
version: json_.containsKey('version')
? Version.fromJson(
json_['version'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final architecture = this.architecture;
final cpeUri = this.cpeUri;
final description = this.description;
final digest = this.digest;
final distribution = this.distribution;
final license = this.license;
final maintainer = this.maintainer;
final name = this.name;
final packageType = this.packageType;
final url = this.url;
final version = this.version;
return {
'architecture': ?architecture,
'cpeUri': ?cpeUri,
'description': ?description,
'digest': ?digest,
'distribution': ?distribution,
'license': ?license,
'maintainer': ?maintainer,
'name': ?name,
'packageType': ?packageType,
'url': ?url,
'version': ?version,
};
}
}
/// Details on how a particular software package was installed on a system.
class PackageOccurrence {
/// The CPU architecture for which packages in this distribution channel were
/// built.
///
/// Architecture will be blank for language packages.
///
/// Output only.
/// Possible string values are:
/// - "ARCHITECTURE_UNSPECIFIED" : Unknown architecture.
/// - "X86" : X86 architecture.
/// - "X64" : X64 architecture.
core.String? architecture;
/// The cpe_uri in [CPE format](https://cpe.mitre.org/specification/) denoting
/// the package manager version distributing a package.
///
/// The cpe_uri will be blank for language packages.
///
/// Output only.
core.String? cpeUri;
/// Licenses that have been declared by the authors of the package.
License? license;
/// All of the places within the filesystem versions of this package have been
/// found.
core.List<Location>? location;
/// The name of the installed package.
///
/// Required. Output only.
core.String? name;
/// The type of package; whether native or non native (e.g., ruby gems,
/// node.js packages, etc.).
///
/// Output only.
core.String? packageType;
/// The version of the package.
///
/// Output only.
Version? version;
PackageOccurrence({
this.architecture,
this.cpeUri,
this.license,
this.location,
this.name,
this.packageType,
this.version,
});
PackageOccurrence.fromJson(core.Map json_)
: this(
architecture: json_['architecture'] as core.String?,
cpeUri: json_['cpeUri'] as core.String?,
license: json_.containsKey('license')
? License.fromJson(
json_['license'] as core.Map<core.String, core.dynamic>,
)
: null,
location: (json_['location'] as core.List?)
?.map(
(value) => Location.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
name: json_['name'] as core.String?,
packageType: json_['packageType'] as core.String?,
version: json_.containsKey('version')
? Version.fromJson(
json_['version'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final architecture = this.architecture;
final cpeUri = this.cpeUri;
final license = this.license;
final location = this.location;
final name = this.name;
final packageType = this.packageType;
final version = this.version;
return {
'architecture': ?architecture,
'cpeUri': ?cpeUri,
'license': ?license,
'location': ?location,
'name': ?name,
'packageType': ?packageType,
'version': ?version,
};
}
}
/// An Identity and Access Management (IAM) policy, which specifies access
/// controls for Google Cloud resources.
///
/// A `Policy` is a collection of `bindings`. A `binding` binds one or more
/// `members`, or principals, to a single `role`. Principals can be user
/// accounts, service accounts, Google groups, and domains (such as G Suite). A
/// `role` is a named list of permissions; each `role` can be an IAM predefined
/// role or a user-created custom role. For some types of Google Cloud
/// resources, a `binding` can also specify a `condition`, which is a logical
/// expression that allows access to a resource only if the expression evaluates
/// to `true`. A condition can add constraints based on attributes of the
/// request, the resource, or both. To learn which resources support conditions
/// in their IAM policies, see the
/// [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
/// **JSON example:** ``` { "bindings": [ { "role":
/// "roles/resourcemanager.organizationAdmin", "members": [
/// "user:mike@example.com", "group:admins@example.com", "domain:google.com",
/// "serviceAccount:my-project-id@appspot.gserviceaccount.com" ] }, { "role":
/// "roles/resourcemanager.organizationViewer", "members": [
/// "user:eve@example.com" ], "condition": { "title": "expirable access",
/// "description": "Does not grant access after Sep 2020", "expression":
/// "request.time < timestamp('2020-10-01T00:00:00.000Z')", } } ], "etag":
/// "BwWWja0YfJA=", "version": 3 } ``` **YAML example:** ``` bindings: -
/// members: - user:mike@example.com - group:admins@example.com -
/// domain:google.com - serviceAccount:my-project-id@appspot.gserviceaccount.com
/// role: roles/resourcemanager.organizationAdmin - members: -
/// user:eve@example.com role: roles/resourcemanager.organizationViewer
/// condition: title: expirable access description: Does not grant access after
/// Sep 2020 expression: request.time < timestamp('2020-10-01T00:00:00.000Z')
/// etag: BwWWja0YfJA= version: 3 ``` For a description of IAM and its features,
/// see the [IAM documentation](https://cloud.google.com/iam/docs/).
class Policy {
/// Associates a list of `members`, or principals, with a `role`.
///
/// Optionally, may specify a `condition` that determines how and when the
/// `bindings` are applied. Each of the `bindings` must contain at least one
/// principal. The `bindings` in a `Policy` can refer to up to 1,500
/// principals; up to 250 of these principals can be Google groups. Each
/// occurrence of a principal counts towards these limits. For example, if the
/// `bindings` grant 50 different roles to `user:alice@example.com`, and not
/// to any other principal, then you can add another 1,450 principals to the
/// `bindings` in the `Policy`.
core.List<Binding>? bindings;
/// `etag` is used for optimistic concurrency control as a way to help prevent
/// simultaneous updates of a policy from overwriting each other.
///
/// It is strongly suggested that systems make use of the `etag` in the
/// read-modify-write cycle to perform policy updates in order to avoid race
/// conditions: An `etag` is returned in the response to `getIamPolicy`, and
/// systems are expected to put that etag in the request to `setIamPolicy` to
/// ensure that their change will be applied to the same version of the
/// policy. **Important:** If you use IAM Conditions, you must include the
/// `etag` field whenever you call `setIamPolicy`. If you omit this field,
/// then IAM allows you to overwrite a version `3` policy with a version `1`
/// policy, and all of the conditions in the version `3` policy are lost.
core.String? etag;
core.List<core.int> get etagAsBytes => convert.base64.decode(etag!);
set etagAsBytes(core.List<core.int> bytes_) {
etag = convert.base64
.encode(bytes_)
.replaceAll('/', '_')
.replaceAll('+', '-');
}
/// Specifies the format of the policy.
///
/// Valid values are `0`, `1`, and `3`. Requests that specify an invalid value
/// are rejected. Any operation that affects conditional role bindings must
/// specify version `3`. This requirement applies to the following operations:
/// * Getting a policy that includes a conditional role binding * Adding a
/// conditional role binding to a policy * Changing a conditional role binding
/// in a policy * Removing any role binding, with or without a condition, from
/// a policy that includes conditions **Important:** If you use IAM
/// Conditions, you must include the `etag` field whenever you call
/// `setIamPolicy`. If you omit this field, then IAM allows you to overwrite a
/// version `3` policy with a version `1` policy, and all of the conditions in
/// the version `3` policy are lost. If a policy does not include any
/// conditions, operations on that policy may specify any valid version or
/// leave the field unset. To learn which resources support conditions in
/// their IAM policies, see the
/// [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
core.int? version;
Policy({this.bindings, this.etag, this.version});
Policy.fromJson(core.Map json_)
: this(
bindings: (json_['bindings'] as core.List?)
?.map(
(value) => Binding.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
etag: json_['etag'] as core.String?,
version: json_['version'] as core.int?,
);
core.Map<core.String, core.dynamic> toJson() {
final bindings = this.bindings;
final etag = this.etag;
final version = this.version;
return {'bindings': ?bindings, 'etag': ?etag, 'version': ?version};
}
}
/// Product contains information about a product and how to uniquely identify
/// it.
class Product {
/// Contains a URI which is vendor-specific.
///
/// Example: The artifact repository URL of an image.
core.String? genericUri;
/// Token that identifies a product so that it can be referred to from other
/// parts in the document.
///
/// There is no predefined format as long as it uniquely identifies a group in
/// the context of the current document.
core.String? id;
/// Name of the product.
core.String? name;
Product({this.genericUri, this.id, this.name});
Product.fromJson(core.Map json_)
: this(
genericUri: json_['genericUri'] as core.String?,
id: json_['id'] as core.String?,
name: json_['name'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final genericUri = this.genericUri;
final id = this.id;
final name = this.name;
return {'genericUri': ?genericUri, 'id': ?id, 'name': ?name};
}
}
/// Selects a repo using a Google Cloud Platform project ID (e.g.,
/// winged-cargo-31) and a repo name within that project.
typedef ProjectRepoId = $ProjectRepoId;
class ProvenanceBuilder {
core.List<ResourceDescriptor>? builderDependencies;
core.String? id;
core.Map<core.String, core.String>? version;
ProvenanceBuilder({this.builderDependencies, this.id, this.version});
ProvenanceBuilder.fromJson(core.Map json_)
: this(
builderDependencies: (json_['builderDependencies'] as core.List?)
?.map(
(value) => ResourceDescriptor.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
id: json_['id'] as core.String?,
version: (json_['version'] as core.Map<core.String, core.dynamic>?)
?.map((key, value) => core.MapEntry(key, value as core.String)),
);
core.Map<core.String, core.dynamic> toJson() {
final builderDependencies = this.builderDependencies;
final id = this.id;
final version = this.version;
return {
'builderDependencies': ?builderDependencies,
'id': ?id,
'version': ?version,
};
}
}
/// Publisher contains information about the publisher of this Note.
class Publisher {
/// Provides information about the authority of the issuing party to release
/// the document, in particular, the party's constituency and responsibilities
/// or other obligations.
core.String? issuingAuthority;
/// Name of the publisher.
///
/// Examples: 'Google', 'Google Cloud Platform'.
core.String? name;
/// The context or namespace.
///
/// Contains a URL which is under control of the issuing party and can be used
/// as a globally unique identifier for that issuing party. Example:
/// https://csaf.io
core.String? publisherNamespace;
Publisher({this.issuingAuthority, this.name, this.publisherNamespace});
Publisher.fromJson(core.Map json_)
: this(
issuingAuthority: json_['issuingAuthority'] as core.String?,
name: json_['name'] as core.String?,
publisherNamespace: json_['publisherNamespace'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final issuingAuthority = this.issuingAuthority;
final name = this.name;
final publisherNamespace = this.publisherNamespace;
return {
'issuingAuthority': ?issuingAuthority,
'name': ?name,
'publisherNamespace': ?publisherNamespace,
};
}
}
/// Steps taken to build the artifact.
///
/// For a TaskRun, typically each container corresponds to one step in the
/// recipe.
typedef Recipe = $Recipe;
/// Metadata for any related URL information.
typedef RelatedUrl = $RelatedUrl;
/// Specifies details on how to handle (and presumably, fix) a vulnerability.
class Remediation {
/// Contains a comprehensive human-readable discussion of the remediation.
core.String? details;
/// The type of remediation that can be applied.
/// Possible string values are:
/// - "REMEDIATION_TYPE_UNSPECIFIED" : No remediation type specified.
/// - "MITIGATION" : A MITIGATION is available.
/// - "NO_FIX_PLANNED" : No fix is planned.
/// - "NONE_AVAILABLE" : Not available.
/// - "VENDOR_FIX" : A vendor fix is available.
/// - "WORKAROUND" : A workaround is available.
core.String? remediationType;
/// Contains the URL where to obtain the remediation.
RelatedUrl? remediationUri;
Remediation({this.details, this.remediationType, this.remediationUri});
Remediation.fromJson(core.Map json_)
: this(
details: json_['details'] as core.String?,
remediationType: json_['remediationType'] as core.String?,
remediationUri: json_.containsKey('remediationUri')
? RelatedUrl.fromJson(
json_['remediationUri'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final details = this.details;
final remediationType = this.remediationType;
final remediationUri = this.remediationUri;
return {
'details': ?details,
'remediationType': ?remediationType,
'remediationUri': ?remediationUri,
};
}
}
/// A unique identifier for a Cloud Repo.
class RepoId {
/// A combination of a project ID and a repo name.
ProjectRepoId? projectRepoId;
/// A server-assigned, globally unique identifier.
core.String? uid;
RepoId({this.projectRepoId, this.uid});
RepoId.fromJson(core.Map json_)
: this(
projectRepoId: json_.containsKey('projectRepoId')
? ProjectRepoId.fromJson(
json_['projectRepoId'] as core.Map<core.String, core.dynamic>,
)
: null,
uid: json_['uid'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final projectRepoId = this.projectRepoId;
final uid = this.uid;
return {'projectRepoId': ?projectRepoId, 'uid': ?uid};
}
}
typedef ResourceDescriptor = $ResourceDescriptor;
class Risk {
/// CISA maintains the authoritative source of vulnerabilities that have been
/// exploited in the wild.
CISAKnownExploitedVulnerabilities? cisaKev;
/// The Exploit Prediction Scoring System (EPSS) estimates the likelihood
/// (probability) that a software vulnerability will be exploited in the wild.
ExploitPredictionScoringSystem? epss;
Risk({this.cisaKev, this.epss});
Risk.fromJson(core.Map json_)
: this(
cisaKev: json_.containsKey('cisaKev')
? CISAKnownExploitedVulnerabilities.fromJson(
json_['cisaKev'] as core.Map<core.String, core.dynamic>,
)
: null,
epss: json_.containsKey('epss')
? ExploitPredictionScoringSystem.fromJson(
json_['epss'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final cisaKev = this.cisaKev;
final epss = this.epss;
return {'cisaKev': ?cisaKev, 'epss': ?epss};
}
}
class RunDetails {
ProvenanceBuilder? builder;
core.List<ResourceDescriptor>? byproducts;
BuildMetadata? metadata;
RunDetails({this.builder, this.byproducts, this.metadata});
RunDetails.fromJson(core.Map json_)
: this(
builder: json_.containsKey('builder')
? ProvenanceBuilder.fromJson(
json_['builder'] as core.Map<core.String, core.dynamic>,
)
: null,
byproducts: (json_['byproducts'] as core.List?)
?.map(
(value) => ResourceDescriptor.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
metadata: json_.containsKey('metadata')
? BuildMetadata.fromJson(
json_['metadata'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final builder = this.builder;
final byproducts = this.byproducts;
final metadata = this.metadata;
return {
'builder': ?builder,
'byproducts': ?byproducts,
'metadata': ?metadata,
};
}
}
/// The note representing an SBOM reference.
class SBOMReferenceNote {
/// The format that SBOM takes.
///
/// E.g. may be spdx, cyclonedx, etc...
core.String? format;
/// The version of the format that the SBOM takes.
///
/// E.g. if the format is spdx, the version may be 2.3.
core.String? version;
SBOMReferenceNote({this.format, this.version});
SBOMReferenceNote.fromJson(core.Map json_)
: this(
format: json_['format'] as core.String?,
version: json_['version'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final format = this.format;
final version = this.version;
return {'format': ?format, 'version': ?version};
}
}
/// The occurrence representing an SBOM reference as applied to a specific
/// resource.
///
/// The occurrence follows the DSSE specification. See
/// https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more
/// details.
class SBOMReferenceOccurrence {
/// The actual payload that contains the SBOM reference data.
SbomReferenceIntotoPayload? payload;
/// The kind of payload that SbomReferenceIntotoPayload takes.
///
/// Since it's in the intoto format, this value is expected to be
/// 'application/vnd.in-toto+json'.
core.String? payloadType;
/// The signatures over the payload.
core.List<EnvelopeSignature>? signatures;
SBOMReferenceOccurrence({this.payload, this.payloadType, this.signatures});
SBOMReferenceOccurrence.fromJson(core.Map json_)
: this(
payload: json_.containsKey('payload')
? SbomReferenceIntotoPayload.fromJson(
json_['payload'] as core.Map<core.String, core.dynamic>,
)
: null,
payloadType: json_['payloadType'] as core.String?,
signatures: (json_['signatures'] as core.List?)
?.map(
(value) => EnvelopeSignature.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final payload = this.payload;
final payloadType = this.payloadType;
final signatures = this.signatures;
return {
'payload': ?payload,
'payloadType': ?payloadType,
'signatures': ?signatures,
};
}
}
/// The status of an SBOM generation.
typedef SBOMStatus = $SBOMStatus;
/// The actual payload that contains the SBOM Reference data.
///
/// The payload follows the intoto statement specification. See
/// https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md for
/// more details.
class SbomReferenceIntotoPayload {
/// Identifier for the schema of the Statement.
core.String? P_type;
/// Additional parameters of the Predicate.
///
/// Includes the actual data about the SBOM.
SbomReferenceIntotoPredicate? predicate;
/// URI identifying the type of the Predicate.
core.String? predicateType;
/// Set of software artifacts that the attestation applies to.
///
/// Each element represents a single software artifact.
core.List<Subject>? subject;
SbomReferenceIntotoPayload({
this.P_type,
this.predicate,
this.predicateType,
this.subject,
});
SbomReferenceIntotoPayload.fromJson(core.Map json_)
: this(
P_type: json_['_type'] as core.String?,
predicate: json_.containsKey('predicate')
? SbomReferenceIntotoPredicate.fromJson(
json_['predicate'] as core.Map<core.String, core.dynamic>,
)
: null,
predicateType: json_['predicateType'] as core.String?,
subject: (json_['subject'] as core.List?)
?.map(
(value) => Subject.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final P_type = this.P_type;
final predicate = this.predicate;
final predicateType = this.predicateType;
final subject = this.subject;
return {
'_type': ?P_type,
'predicate': ?predicate,
'predicateType': ?predicateType,
'subject': ?subject,
};
}
}
/// A predicate which describes the SBOM being referenced.
typedef SbomReferenceIntotoPredicate = $SbomReferenceIntotoPredicate;
/// The location of the secret.
class SecretLocation {
/// The secret is found from a file.
GrafeasV1FileLocation? fileLocation;
SecretLocation({this.fileLocation});
SecretLocation.fromJson(core.Map json_)
: this(
fileLocation: json_.containsKey('fileLocation')
? GrafeasV1FileLocation.fromJson(
json_['fileLocation'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final fileLocation = this.fileLocation;
return {'fileLocation': ?fileLocation};
}
}
/// The note representing a secret.
typedef SecretNote = $Empty;
/// The occurrence provides details of a secret.
class SecretOccurrence {
/// Type of secret.
///
/// Required.
/// Possible string values are:
/// - "SECRET_KIND_UNSPECIFIED" : Unspecified
/// - "SECRET_KIND_UNKNOWN" : The secret kind is unknown.
/// - "SECRET_KIND_GCP_SERVICE_ACCOUNT_KEY" : A Google Cloud service account
/// key per:
/// https://cloud.google.com/iam/docs/creating-managing-service-account-keys
/// - "SECRET_KIND_GCP_API_KEY" : A Google Cloud API key per:
/// https://cloud.google.com/docs/authentication/api-keys
/// - "SECRET_KIND_GCP_OAUTH2_CLIENT_CREDENTIALS" : A Google Cloud OAuth2
/// client credentials per:
/// https://developers.google.com/identity/protocols/oauth2
/// - "SECRET_KIND_GCP_OAUTH2_ACCESS_TOKEN" : A Google Cloud OAuth2 access
/// token per: https://cloud.google.com/docs/authentication/token-types#access
/// - "SECRET_KIND_ANTHROPIC_ADMIN_API_KEY" : An Anthropic Admin API key.
/// - "SECRET_KIND_ANTHROPIC_API_KEY" : An Anthropic API key.
/// - "SECRET_KIND_AZURE_ACCESS_TOKEN" : An Azure access token.
/// - "SECRET_KIND_AZURE_IDENTITY_TOKEN" : An Azure Identity Platform ID
/// token.
/// - "SECRET_KIND_DOCKER_HUB_PERSONAL_ACCESS_TOKEN" : A Docker Hub personal
/// access token.
/// - "SECRET_KIND_GITHUB_APP_REFRESH_TOKEN" : A GitHub App refresh token.
/// - "SECRET_KIND_GITHUB_APP_SERVER_TO_SERVER_TOKEN" : A GitHub App
/// server-to-server token.
/// - "SECRET_KIND_GITHUB_APP_USER_TO_SERVER_TOKEN" : A GitHub App
/// user-to-server token.
/// - "SECRET_KIND_GITHUB_CLASSIC_PERSONAL_ACCESS_TOKEN" : A GitHub personal
/// access token (classic).
/// - "SECRET_KIND_GITHUB_FINE_GRAINED_PERSONAL_ACCESS_TOKEN" : A GitHub
/// fine-grained personal access token.
/// - "SECRET_KIND_GITHUB_OAUTH_TOKEN" : A GitHub OAuth token.
/// - "SECRET_KIND_HUGGINGFACE_API_KEY" : A Hugging Face API key.
/// - "SECRET_KIND_OPENAI_API_KEY" : An OpenAI API key.
/// - "SECRET_KIND_PERPLEXITY_API_KEY" : A Perplexity API key.
/// - "SECRET_KIND_STRIPE_SECRET_KEY" : A Stripe secret key.
/// - "SECRET_KIND_STRIPE_RESTRICTED_KEY" : A Stripe restricted key.
/// - "SECRET_KIND_STRIPE_WEBHOOK_SECRET" : A Stripe webhook secret.
core.String? kind;
/// Locations where the secret is detected.
///
/// Optional.
core.List<SecretLocation>? locations;
/// Status of the secret.
///
/// Optional.
core.List<SecretStatus>? statuses;
SecretOccurrence({this.kind, this.locations, this.statuses});
SecretOccurrence.fromJson(core.Map json_)
: this(
kind: json_['kind'] as core.String?,
locations: (json_['locations'] as core.List?)
?.map(
(value) => SecretLocation.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
statuses: (json_['statuses'] as core.List?)
?.map(
(value) => SecretStatus.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final kind = this.kind;
final locations = this.locations;
final statuses = this.statuses;
return {'kind': ?kind, 'locations': ?locations, 'statuses': ?statuses};
}
}
/// The status of the secret with a timestamp.
typedef SecretStatus = $SecretStatus;
/// Request message for `SetIamPolicy` method.
class SetIamPolicyRequest {
/// REQUIRED: The complete policy to be applied to the `resource`.
///
/// The size of the policy is limited to a few 10s of KB. An empty policy is a
/// valid policy but certain Google Cloud services (such as Projects) might
/// reject them.
Policy? policy;
SetIamPolicyRequest({this.policy});
SetIamPolicyRequest.fromJson(core.Map json_)
: this(
policy: json_.containsKey('policy')
? Policy.fromJson(
json_['policy'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final policy = this.policy;
return {'policy': ?policy};
}
}
/// Verifiers (e.g. Kritis implementations) MUST verify signatures with respect
/// to the trust anchors defined in policy (e.g. a Kritis policy).
///
/// Typically this means that the verifier has been configured with a map from
/// `public_key_id` to public key material (and any required parameters, e.g.
/// signing algorithm). In particular, verification implementations MUST NOT
/// treat the signature `public_key_id` as anything more than a key lookup hint.
/// The `public_key_id` DOES NOT validate or authenticate a public key; it only
/// provides a mechanism for quickly selecting a public key ALREADY CONFIGURED
/// on the verifier through a trusted channel. Verification implementations MUST
/// reject signatures in any of the following circumstances: * The
/// `public_key_id` is not recognized by the verifier. * The public key that
/// `public_key_id` refers to does not verify the signature with respect to the
/// payload. The `signature` contents SHOULD NOT be "attached" (where the
/// payload is included with the serialized `signature` bytes). Verifiers MUST
/// ignore any "attached" payload and only verify signatures with respect to
/// explicitly provided payload (e.g. a `payload` field on the proto message
/// that holds this Signature, or the canonical serialization of the proto
/// message that holds this signature).
typedef Signature = $Signature;
typedef SlsaBuilder = $Shared03;
/// Indicates that the builder claims certain fields in this message to be
/// complete.
typedef SlsaCompleteness = $Completeness;
/// Other properties of the build.
class SlsaMetadata {
/// The timestamp of when the build completed.
core.String? buildFinishedOn;
/// Identifies the particular build invocation, which can be useful for
/// finding associated logs or other ad-hoc analysis.
///
/// The value SHOULD be globally unique, per in-toto Provenance spec.
core.String? buildInvocationId;
/// The timestamp of when the build started.
core.String? buildStartedOn;
/// Indicates that the builder claims certain fields in this message to be
/// complete.
SlsaCompleteness? completeness;
/// If true, the builder claims that running the recipe on materials will
/// produce bit-for-bit identical output.
core.bool? reproducible;
SlsaMetadata({
this.buildFinishedOn,
this.buildInvocationId,
this.buildStartedOn,
this.completeness,
this.reproducible,
});
SlsaMetadata.fromJson(core.Map json_)
: this(
buildFinishedOn: json_['buildFinishedOn'] as core.String?,
buildInvocationId: json_['buildInvocationId'] as core.String?,
buildStartedOn: json_['buildStartedOn'] as core.String?,
completeness: json_.containsKey('completeness')
? SlsaCompleteness.fromJson(
json_['completeness'] as core.Map<core.String, core.dynamic>,
)
: null,
reproducible: json_['reproducible'] as core.bool?,
);
core.Map<core.String, core.dynamic> toJson() {
final buildFinishedOn = this.buildFinishedOn;
final buildInvocationId = this.buildInvocationId;
final buildStartedOn = this.buildStartedOn;
final completeness = this.completeness;
final reproducible = this.reproducible;
return {
'buildFinishedOn': ?buildFinishedOn,
'buildInvocationId': ?buildInvocationId,
'buildStartedOn': ?buildStartedOn,
'completeness': ?completeness,
'reproducible': ?reproducible,
};
}
}
class SlsaProvenance {
/// required
SlsaBuilder? builder;
/// The collection of artifacts that influenced the build including sources,
/// dependencies, build tools, base images, and so on.
///
/// This is considered to be incomplete unless metadata.completeness.materials
/// is true. Unset or null is equivalent to empty.
core.List<Material>? materials;
SlsaMetadata? metadata;
/// Identifies the configuration used for the build.
///
/// When combined with materials, this SHOULD fully describe the build, such
/// that re-running this recipe results in bit-for-bit identical output (if
/// the build is reproducible). required
SlsaRecipe? recipe;
SlsaProvenance({this.builder, this.materials, this.metadata, this.recipe});
SlsaProvenance.fromJson(core.Map json_)
: this(
builder: json_.containsKey('builder')
? SlsaBuilder.fromJson(
json_['builder'] as core.Map<core.String, core.dynamic>,
)
: null,
materials: (json_['materials'] as core.List?)
?.map(
(value) => Material.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
metadata: json_.containsKey('metadata')
? SlsaMetadata.fromJson(
json_['metadata'] as core.Map<core.String, core.dynamic>,
)
: null,
recipe: json_.containsKey('recipe')
? SlsaRecipe.fromJson(
json_['recipe'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final builder = this.builder;
final materials = this.materials;
final metadata = this.metadata;
final recipe = this.recipe;
return {
'builder': ?builder,
'materials': ?materials,
'metadata': ?metadata,
'recipe': ?recipe,
};
}
}
/// Keep in sync with schema at
/// https://github.com/slsa-framework/slsa/blob/main/docs/provenance/schema/v1/provenance.proto
/// Builder renamed to ProvenanceBuilder because of Java conflicts.
class SlsaProvenanceV1 {
BuildDefinition? buildDefinition;
RunDetails? runDetails;
SlsaProvenanceV1({this.buildDefinition, this.runDetails});
SlsaProvenanceV1.fromJson(core.Map json_)
: this(
buildDefinition: json_.containsKey('buildDefinition')
? BuildDefinition.fromJson(
json_['buildDefinition'] as core.Map<core.String, core.dynamic>,
)
: null,
runDetails: json_.containsKey('runDetails')
? RunDetails.fromJson(
json_['runDetails'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final buildDefinition = this.buildDefinition;
final runDetails = this.runDetails;
return {'buildDefinition': ?buildDefinition, 'runDetails': ?runDetails};
}
}
/// See full explanation of fields at slsa.dev/provenance/v0.2.
class SlsaProvenanceZeroTwo {
///
///
/// The values for Object must be JSON objects. It can consist of `num`,
/// `String`, `bool` and `null` as well as `Map` and `List` values.
core.Map<core.String, core.Object?>? buildConfig;
core.String? buildType;
GrafeasV1SlsaProvenanceZeroTwoSlsaBuilder? builder;
GrafeasV1SlsaProvenanceZeroTwoSlsaInvocation? invocation;
core.List<GrafeasV1SlsaProvenanceZeroTwoSlsaMaterial>? materials;
GrafeasV1SlsaProvenanceZeroTwoSlsaMetadata? metadata;
SlsaProvenanceZeroTwo({
this.buildConfig,
this.buildType,
this.builder,
this.invocation,
this.materials,
this.metadata,
});
SlsaProvenanceZeroTwo.fromJson(core.Map json_)
: this(
buildConfig: json_.containsKey('buildConfig')
? json_['buildConfig'] as core.Map<core.String, core.dynamic>
: null,
buildType: json_['buildType'] as core.String?,
builder: json_.containsKey('builder')
? GrafeasV1SlsaProvenanceZeroTwoSlsaBuilder.fromJson(
json_['builder'] as core.Map<core.String, core.dynamic>,
)
: null,
invocation: json_.containsKey('invocation')
? GrafeasV1SlsaProvenanceZeroTwoSlsaInvocation.fromJson(
json_['invocation'] as core.Map<core.String, core.dynamic>,
)
: null,
materials: (json_['materials'] as core.List?)
?.map(
(value) => GrafeasV1SlsaProvenanceZeroTwoSlsaMaterial.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
metadata: json_.containsKey('metadata')
? GrafeasV1SlsaProvenanceZeroTwoSlsaMetadata.fromJson(
json_['metadata'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final buildConfig = this.buildConfig;
final buildType = this.buildType;
final builder = this.builder;
final invocation = this.invocation;
final materials = this.materials;
final metadata = this.metadata;
return {
'buildConfig': ?buildConfig,
'buildType': ?buildType,
'builder': ?builder,
'invocation': ?invocation,
'materials': ?materials,
'metadata': ?metadata,
};
}
}
/// Steps taken to build the artifact.
///
/// For a TaskRun, typically each container corresponds to one step in the
/// recipe.
typedef SlsaRecipe = $SlsaRecipe;
/// Source describes the location of the source used for the build.
class Source {
/// If provided, some of the source code used for the build may be found in
/// these locations, in the case where the source repository had multiple
/// remotes or submodules.
///
/// This list will not include the context specified in the context field.
core.List<SourceContext>? additionalContexts;
/// If provided, the input binary artifacts for the build came from this
/// location.
core.String? artifactStorageSourceUri;
/// If provided, the source code used for the build came from this location.
SourceContext? context;
/// Hash(es) of the build source, which can be used to verify that the
/// original source integrity was maintained in the build.
///
/// The keys to this map are file paths used as build source and the values
/// contain the hash values for those files. If the build source came in a
/// single package such as a gzipped tarfile (.tar.gz), the FileHash will be
/// for the single path to that file.
core.Map<core.String, FileHashes>? fileHashes;
Source({
this.additionalContexts,
this.artifactStorageSourceUri,
this.context,
this.fileHashes,
});
Source.fromJson(core.Map json_)
: this(
additionalContexts: (json_['additionalContexts'] as core.List?)
?.map(
(value) => SourceContext.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
artifactStorageSourceUri:
json_['artifactStorageSourceUri'] as core.String?,
context: json_.containsKey('context')
? SourceContext.fromJson(
json_['context'] as core.Map<core.String, core.dynamic>,
)
: null,
fileHashes:
(json_['fileHashes'] as core.Map<core.String, core.dynamic>?)?.map(
(key, value) => core.MapEntry(
key,
FileHashes.fromJson(
value as core.Map<core.String, core.dynamic>,
),
),
),
);
core.Map<core.String, core.dynamic> toJson() {
final additionalContexts = this.additionalContexts;
final artifactStorageSourceUri = this.artifactStorageSourceUri;
final context = this.context;
final fileHashes = this.fileHashes;
return {
'additionalContexts': ?additionalContexts,
'artifactStorageSourceUri': ?artifactStorageSourceUri,
'context': ?context,
'fileHashes': ?fileHashes,
};
}
}
/// A SourceContext is a reference to a tree of files.
///
/// A SourceContext together with a path point to a unique revision of a single
/// file or directory.
class SourceContext {
/// A SourceContext referring to a revision in a Google Cloud Source Repo.
CloudRepoSourceContext? cloudRepo;
/// A SourceContext referring to a Gerrit project.
GerritSourceContext? gerrit;
/// A SourceContext referring to any third party Git repo (e.g., GitHub).
GitSourceContext? git;
/// Labels with user defined metadata.
core.Map<core.String, core.String>? labels;
SourceContext({this.cloudRepo, this.gerrit, this.git, this.labels});
SourceContext.fromJson(core.Map json_)
: this(
cloudRepo: json_.containsKey('cloudRepo')
? CloudRepoSourceContext.fromJson(
json_['cloudRepo'] as core.Map<core.String, core.dynamic>,
)
: null,
gerrit: json_.containsKey('gerrit')
? GerritSourceContext.fromJson(
json_['gerrit'] as core.Map<core.String, core.dynamic>,
)
: null,
git: json_.containsKey('git')
? GitSourceContext.fromJson(
json_['git'] as core.Map<core.String, core.dynamic>,
)
: null,
labels: (json_['labels'] as core.Map<core.String, core.dynamic>?)?.map(
(key, value) => core.MapEntry(key, value as core.String),
),
);
core.Map<core.String, core.dynamic> toJson() {
final cloudRepo = this.cloudRepo;
final gerrit = this.gerrit;
final git = this.git;
final labels = this.labels;
return {
'cloudRepo': ?cloudRepo,
'gerrit': ?gerrit,
'git': ?git,
'labels': ?labels,
};
}
}
/// The `Status` type defines a logical error model that is suitable for
/// different programming environments, including REST APIs and RPC APIs.
///
/// It is used by [gRPC](https://github.com/grpc). Each `Status` message
/// contains three pieces of data: error code, error message, and error details.
/// You can find out more about this error model and how to work with it in the
/// [API Design Guide](https://cloud.google.com/apis/design/errors).
typedef Status = $Status00;
typedef Subject = $Subject;
/// Request message for `TestIamPermissions` method.
typedef TestIamPermissionsRequest = $TestIamPermissionsRequest00;
/// Response message for `TestIamPermissions` method.
typedef TestIamPermissionsResponse = $PermissionsResponse;
/// The Upgrade Distribution represents metadata about the Upgrade for each
/// operating system (CPE).
///
/// Some distributions have additional metadata around updates, classifying them
/// into various categories and severities.
typedef UpgradeDistribution = $UpgradeDistribution;
/// An Upgrade Note represents a potential upgrade of a package to a given
/// version.
///
/// For each package version combination (i.e. bash 4.0, bash 4.1, bash 4.1.2),
/// there will be an Upgrade Note. For Windows, windows_update field represents
/// the information related to the update.
class UpgradeNote {
/// Metadata about the upgrade for each specific operating system.
core.List<UpgradeDistribution>? distributions;
/// Required for non-Windows OS.
///
/// The package this Upgrade is for.
core.String? package;
/// Required for non-Windows OS.
///
/// The version of the package in machine + human readable form.
Version? version;
/// Required for Windows OS.
///
/// Represents the metadata about the Windows update.
WindowsUpdate? windowsUpdate;
UpgradeNote({
this.distributions,
this.package,
this.version,
this.windowsUpdate,
});
UpgradeNote.fromJson(core.Map json_)
: this(
distributions: (json_['distributions'] as core.List?)
?.map(
(value) => UpgradeDistribution.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
package: json_['package'] as core.String?,
version: json_.containsKey('version')
? Version.fromJson(
json_['version'] as core.Map<core.String, core.dynamic>,
)
: null,
windowsUpdate: json_.containsKey('windowsUpdate')
? WindowsUpdate.fromJson(
json_['windowsUpdate'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final distributions = this.distributions;
final package = this.package;
final version = this.version;
final windowsUpdate = this.windowsUpdate;
return {
'distributions': ?distributions,
'package': ?package,
'version': ?version,
'windowsUpdate': ?windowsUpdate,
};
}
}
/// An Upgrade Occurrence represents that a specific resource_url could install
/// a specific upgrade.
///
/// This presence is supplied via local sources (i.e. it is present in the
/// mirror and the running system has noticed its availability). For Windows,
/// both distribution and windows_update contain information for the Windows
/// update.
class UpgradeOccurrence {
/// Metadata about the upgrade for available for the specific operating system
/// for the resource_url.
///
/// This allows efficient filtering, as well as making it easier to use the
/// occurrence.
UpgradeDistribution? distribution;
/// Required for non-Windows OS.
///
/// The package this Upgrade is for.
core.String? package;
/// Required for non-Windows OS.
///
/// The version of the package in a machine + human readable form.
Version? parsedVersion;
/// Required for Windows OS.
///
/// Represents the metadata about the Windows update.
WindowsUpdate? windowsUpdate;
UpgradeOccurrence({
this.distribution,
this.package,
this.parsedVersion,
this.windowsUpdate,
});
UpgradeOccurrence.fromJson(core.Map json_)
: this(
distribution: json_.containsKey('distribution')
? UpgradeDistribution.fromJson(
json_['distribution'] as core.Map<core.String, core.dynamic>,
)
: null,
package: json_['package'] as core.String?,
parsedVersion: json_.containsKey('parsedVersion')
? Version.fromJson(
json_['parsedVersion'] as core.Map<core.String, core.dynamic>,
)
: null,
windowsUpdate: json_.containsKey('windowsUpdate')
? WindowsUpdate.fromJson(
json_['windowsUpdate'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final distribution = this.distribution;
final package = this.package;
final parsedVersion = this.parsedVersion;
final windowsUpdate = this.windowsUpdate;
return {
'distribution': ?distribution,
'package': ?package,
'parsedVersion': ?parsedVersion,
'windowsUpdate': ?windowsUpdate,
};
}
}
/// Version contains structured information about the version of a package.
typedef Version = $Version;
/// VexAssessment provides all publisher provided Vex information that is
/// related to this vulnerability.
class VexAssessment {
/// Holds the MITRE standard Common Vulnerabilities and Exposures (CVE)
/// tracking number for the vulnerability.
///
/// Deprecated: Use vulnerability_id instead to denote CVEs.
@core.Deprecated(
'Not supported. Member documentation may have more information.',
)
core.String? cve;
/// Contains information about the impact of this vulnerability, this will
/// change with time.
core.List<core.String>? impacts;
/// Justification provides the justification when the state of the assessment
/// if NOT_AFFECTED.
Justification? justification;
/// The VulnerabilityAssessment note from which this VexAssessment was
/// generated.
///
/// This will be of the form: `projects/[PROJECT_ID]/notes/[NOTE_ID]`.
core.String? noteName;
/// Holds a list of references associated with this vulnerability item and
/// assessment.
core.List<RelatedUrl>? relatedUris;
/// Specifies details on how to handle (and presumably, fix) a vulnerability.
core.List<Remediation>? remediations;
/// Provides the state of this Vulnerability assessment.
/// Possible string values are:
/// - "STATE_UNSPECIFIED" : No state is specified.
/// - "AFFECTED" : This product is known to be affected by this vulnerability.
/// - "NOT_AFFECTED" : This product is known to be not affected by this
/// vulnerability.
/// - "FIXED" : This product contains a fix for this vulnerability.
/// - "UNDER_INVESTIGATION" : It is not known yet whether these versions are
/// or are not affected by the vulnerability. However, it is still under
/// investigation.
core.String? state;
/// The vulnerability identifier for this Assessment.
///
/// Will hold one of common identifiers e.g. CVE, GHSA etc.
core.String? vulnerabilityId;
VexAssessment({
this.cve,
this.impacts,
this.justification,
this.noteName,
this.relatedUris,
this.remediations,
this.state,
this.vulnerabilityId,
});
VexAssessment.fromJson(core.Map json_)
: this(
cve: json_['cve'] as core.String?,
impacts: (json_['impacts'] as core.List?)
?.map((value) => value as core.String)
.toList(),
justification: json_.containsKey('justification')
? Justification.fromJson(
json_['justification'] as core.Map<core.String, core.dynamic>,
)
: null,
noteName: json_['noteName'] as core.String?,
relatedUris: (json_['relatedUris'] as core.List?)
?.map(
(value) => RelatedUrl.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
remediations: (json_['remediations'] as core.List?)
?.map(
(value) => Remediation.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
state: json_['state'] as core.String?,
vulnerabilityId: json_['vulnerabilityId'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final cve = this.cve;
final impacts = this.impacts;
final justification = this.justification;
final noteName = this.noteName;
final relatedUris = this.relatedUris;
final remediations = this.remediations;
final state = this.state;
final vulnerabilityId = this.vulnerabilityId;
return {
'cve': ?cve,
'impacts': ?impacts,
'justification': ?justification,
'noteName': ?noteName,
'relatedUris': ?relatedUris,
'remediations': ?remediations,
'state': ?state,
'vulnerabilityId': ?vulnerabilityId,
};
}
}
/// A single VulnerabilityAssessmentNote represents one particular product's
/// vulnerability assessment for one CVE.
class VulnerabilityAssessmentNote {
/// Represents a vulnerability assessment for the product.
Assessment? assessment;
/// Identifies the language used by this document, corresponding to IETF BCP
/// 47 / RFC 5646.
core.String? languageCode;
/// A detailed description of this Vex.
core.String? longDescription;
/// The product affected by this vex.
Product? product;
/// Publisher details of this Note.
Publisher? publisher;
/// A one sentence description of this Vex.
core.String? shortDescription;
/// The title of the note.
///
/// E.g. `Vex-Debian-11.4`
core.String? title;
VulnerabilityAssessmentNote({
this.assessment,
this.languageCode,
this.longDescription,
this.product,
this.publisher,
this.shortDescription,
this.title,
});
VulnerabilityAssessmentNote.fromJson(core.Map json_)
: this(
assessment: json_.containsKey('assessment')
? Assessment.fromJson(
json_['assessment'] as core.Map<core.String, core.dynamic>,
)
: null,
languageCode: json_['languageCode'] as core.String?,
longDescription: json_['longDescription'] as core.String?,
product: json_.containsKey('product')
? Product.fromJson(
json_['product'] as core.Map<core.String, core.dynamic>,
)
: null,
publisher: json_.containsKey('publisher')
? Publisher.fromJson(
json_['publisher'] as core.Map<core.String, core.dynamic>,
)
: null,
shortDescription: json_['shortDescription'] as core.String?,
title: json_['title'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final assessment = this.assessment;
final languageCode = this.languageCode;
final longDescription = this.longDescription;
final product = this.product;
final publisher = this.publisher;
final shortDescription = this.shortDescription;
final title = this.title;
return {
'assessment': ?assessment,
'languageCode': ?languageCode,
'longDescription': ?longDescription,
'product': ?product,
'publisher': ?publisher,
'shortDescription': ?shortDescription,
'title': ?title,
};
}
}
/// A security vulnerability that can be found in resources.
class VulnerabilityNote {
/// The CVSS score of this vulnerability.
///
/// CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10
/// indicates high severity.
core.double? cvssScore;
/// The full description of the v2 CVSS for this vulnerability.
CVSS? cvssV2;
/// The full description of the CVSSv3 for this vulnerability.
CVSSv3? cvssV3;
/// CVSS version used to populate cvss_score and severity.
/// Possible string values are:
/// - "CVSS_VERSION_UNSPECIFIED"
/// - "CVSS_VERSION_2"
/// - "CVSS_VERSION_3"
core.String? cvssVersion;
/// Details of all known distros and packages affected by this vulnerability.
core.List<Detail>? details;
/// The note provider assigned severity of this vulnerability.
/// Possible string values are:
/// - "SEVERITY_UNSPECIFIED" : Unknown.
/// - "MINIMAL" : Minimal severity.
/// - "LOW" : Low severity.
/// - "MEDIUM" : Medium severity.
/// - "HIGH" : High severity.
/// - "CRITICAL" : Critical severity.
core.String? severity;
/// The time this information was last changed at the source.
///
/// This is an upstream timestamp from the underlying information source -
/// e.g. Ubuntu security tracker.
core.String? sourceUpdateTime;
/// Windows details get their own format because the information format and
/// model don't match a normal detail.
///
/// Specifically Windows updates are done as patches, thus Windows
/// vulnerabilities really are a missing package, rather than a package being
/// at an incorrect version.
core.List<WindowsDetail>? windowsDetails;
VulnerabilityNote({
this.cvssScore,
this.cvssV2,
this.cvssV3,
this.cvssVersion,
this.details,
this.severity,
this.sourceUpdateTime,
this.windowsDetails,
});
VulnerabilityNote.fromJson(core.Map json_)
: this(
cvssScore: (json_['cvssScore'] as core.num?)?.toDouble(),
cvssV2: json_.containsKey('cvssV2')
? CVSS.fromJson(
json_['cvssV2'] as core.Map<core.String, core.dynamic>,
)
: null,
cvssV3: json_.containsKey('cvssV3')
? CVSSv3.fromJson(
json_['cvssV3'] as core.Map<core.String, core.dynamic>,
)
: null,
cvssVersion: json_['cvssVersion'] as core.String?,
details: (json_['details'] as core.List?)
?.map(
(value) =>
Detail.fromJson(value as core.Map<core.String, core.dynamic>),
)
.toList(),
severity: json_['severity'] as core.String?,
sourceUpdateTime: json_['sourceUpdateTime'] as core.String?,
windowsDetails: (json_['windowsDetails'] as core.List?)
?.map(
(value) => WindowsDetail.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final cvssScore = this.cvssScore;
final cvssV2 = this.cvssV2;
final cvssV3 = this.cvssV3;
final cvssVersion = this.cvssVersion;
final details = this.details;
final severity = this.severity;
final sourceUpdateTime = this.sourceUpdateTime;
final windowsDetails = this.windowsDetails;
return {
'cvssScore': ?cvssScore,
'cvssV2': ?cvssV2,
'cvssV3': ?cvssV3,
'cvssVersion': ?cvssVersion,
'details': ?details,
'severity': ?severity,
'sourceUpdateTime': ?sourceUpdateTime,
'windowsDetails': ?windowsDetails,
};
}
}
/// An occurrence of a severity vulnerability on a resource.
class VulnerabilityOccurrence {
/// The CVSS score of this vulnerability.
///
/// CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10
/// indicates high severity.
///
/// Output only.
core.double? cvssScore;
/// The cvss v2 score for the vulnerability.
CVSS? cvssV2;
/// CVSS version used to populate cvss_score and severity.
///
/// Output only.
/// Possible string values are:
/// - "CVSS_VERSION_UNSPECIFIED"
/// - "CVSS_VERSION_2"
/// - "CVSS_VERSION_3"
core.String? cvssVersion;
/// The cvss v3 score for the vulnerability.
CVSS? cvssv3;
/// The distro assigned severity for this vulnerability when it is available,
/// otherwise this is the note provider assigned severity.
///
/// When there are multiple PackageIssues for this vulnerability, they can
/// have different effective severities because some might be provided by the
/// distro while others are provided by the language ecosystem for a language
/// pack. For this reason, it is advised to use the effective severity on the
/// PackageIssue level. In the case where multiple PackageIssues have
/// differing effective severities, this field should be the highest severity
/// for any of the PackageIssues.
/// Possible string values are:
/// - "SEVERITY_UNSPECIFIED" : Unknown.
/// - "MINIMAL" : Minimal severity.
/// - "LOW" : Low severity.
/// - "MEDIUM" : Medium severity.
/// - "HIGH" : High severity.
/// - "CRITICAL" : Critical severity.
core.String? effectiveSeverity;
/// Occurrence-specific extra details about the vulnerability.
core.String? extraDetails;
/// Whether at least one of the affected packages has a fix available.
///
/// Output only.
core.bool? fixAvailable;
/// A detailed description of this vulnerability.
///
/// Output only.
core.String? longDescription;
/// The set of affected locations and their fixes (if available) within the
/// associated resource.
///
/// Required.
core.List<PackageIssue>? packageIssue;
/// URLs related to this vulnerability.
///
/// Output only.
core.List<RelatedUrl>? relatedUrls;
/// Risk information about the vulnerability, such as CISA, EPSS, etc.
Risk? risk;
/// The note provider assigned severity of this vulnerability.
///
/// Output only.
/// Possible string values are:
/// - "SEVERITY_UNSPECIFIED" : Unknown.
/// - "MINIMAL" : Minimal severity.
/// - "LOW" : Low severity.
/// - "MEDIUM" : Medium severity.
/// - "HIGH" : High severity.
/// - "CRITICAL" : Critical severity.
core.String? severity;
/// A one sentence description of this vulnerability.
///
/// Output only.
core.String? shortDescription;
/// The type of package; whether native or non native (e.g., ruby gems,
/// node.js packages, etc.).
core.String? type;
VexAssessment? vexAssessment;
VulnerabilityOccurrence({
this.cvssScore,
this.cvssV2,
this.cvssVersion,
this.cvssv3,
this.effectiveSeverity,
this.extraDetails,
this.fixAvailable,
this.longDescription,
this.packageIssue,
this.relatedUrls,
this.risk,
this.severity,
this.shortDescription,
this.type,
this.vexAssessment,
});
VulnerabilityOccurrence.fromJson(core.Map json_)
: this(
cvssScore: (json_['cvssScore'] as core.num?)?.toDouble(),
cvssV2: json_.containsKey('cvssV2')
? CVSS.fromJson(
json_['cvssV2'] as core.Map<core.String, core.dynamic>,
)
: null,
cvssVersion: json_['cvssVersion'] as core.String?,
cvssv3: json_.containsKey('cvssv3')
? CVSS.fromJson(
json_['cvssv3'] as core.Map<core.String, core.dynamic>,
)
: null,
effectiveSeverity: json_['effectiveSeverity'] as core.String?,
extraDetails: json_['extraDetails'] as core.String?,
fixAvailable: json_['fixAvailable'] as core.bool?,
longDescription: json_['longDescription'] as core.String?,
packageIssue: (json_['packageIssue'] as core.List?)
?.map(
(value) => PackageIssue.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
relatedUrls: (json_['relatedUrls'] as core.List?)
?.map(
(value) => RelatedUrl.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
risk: json_.containsKey('risk')
? Risk.fromJson(
json_['risk'] as core.Map<core.String, core.dynamic>,
)
: null,
severity: json_['severity'] as core.String?,
shortDescription: json_['shortDescription'] as core.String?,
type: json_['type'] as core.String?,
vexAssessment: json_.containsKey('vexAssessment')
? VexAssessment.fromJson(
json_['vexAssessment'] as core.Map<core.String, core.dynamic>,
)
: null,
);
core.Map<core.String, core.dynamic> toJson() {
final cvssScore = this.cvssScore;
final cvssV2 = this.cvssV2;
final cvssVersion = this.cvssVersion;
final cvssv3 = this.cvssv3;
final effectiveSeverity = this.effectiveSeverity;
final extraDetails = this.extraDetails;
final fixAvailable = this.fixAvailable;
final longDescription = this.longDescription;
final packageIssue = this.packageIssue;
final relatedUrls = this.relatedUrls;
final risk = this.risk;
final severity = this.severity;
final shortDescription = this.shortDescription;
final type = this.type;
final vexAssessment = this.vexAssessment;
return {
'cvssScore': ?cvssScore,
'cvssV2': ?cvssV2,
'cvssVersion': ?cvssVersion,
'cvssv3': ?cvssv3,
'effectiveSeverity': ?effectiveSeverity,
'extraDetails': ?extraDetails,
'fixAvailable': ?fixAvailable,
'longDescription': ?longDescription,
'packageIssue': ?packageIssue,
'relatedUrls': ?relatedUrls,
'risk': ?risk,
'severity': ?severity,
'shortDescription': ?shortDescription,
'type': ?type,
'vexAssessment': ?vexAssessment,
};
}
}
/// A summary of how many vulnerability occurrences there are per resource and
/// severity type.
class VulnerabilityOccurrencesSummary {
/// A listing by resource of the number of fixable and total vulnerabilities.
core.List<FixableTotalByDigest>? counts;
/// Unordered list.
///
/// Unreachable regions. Populated for requests from the global region when
/// `return_partial_success` is set. Format:
/// `projects/[PROJECT_ID]/locations/[LOCATION]`
core.List<core.String>? unreachable;
VulnerabilityOccurrencesSummary({this.counts, this.unreachable});
VulnerabilityOccurrencesSummary.fromJson(core.Map json_)
: this(
counts: (json_['counts'] as core.List?)
?.map(
(value) => FixableTotalByDigest.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
unreachable: (json_['unreachable'] as core.List?)
?.map((value) => value as core.String)
.toList(),
);
core.Map<core.String, core.dynamic> toJson() {
final counts = this.counts;
final unreachable = this.unreachable;
return {'counts': ?counts, 'unreachable': ?unreachable};
}
}
class WindowsDetail {
/// The [CPE URI](https://cpe.mitre.org/specification/) this vulnerability
/// affects.
///
/// Required.
core.String? cpeUri;
/// The description of this vulnerability.
core.String? description;
/// The names of the KBs which have hotfixes to mitigate this vulnerability.
///
/// Note that there may be multiple hotfixes (and thus multiple KBs) that
/// mitigate a given vulnerability. Currently any listed KBs presence is
/// considered a fix.
///
/// Required.
core.List<KnowledgeBase>? fixingKbs;
/// The name of this vulnerability.
///
/// Required.
core.String? name;
WindowsDetail({this.cpeUri, this.description, this.fixingKbs, this.name});
WindowsDetail.fromJson(core.Map json_)
: this(
cpeUri: json_['cpeUri'] as core.String?,
description: json_['description'] as core.String?,
fixingKbs: (json_['fixingKbs'] as core.List?)
?.map(
(value) => KnowledgeBase.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
name: json_['name'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final cpeUri = this.cpeUri;
final description = this.description;
final fixingKbs = this.fixingKbs;
final name = this.name;
return {
'cpeUri': ?cpeUri,
'description': ?description,
'fixingKbs': ?fixingKbs,
'name': ?name,
};
}
}
/// Windows Update represents the metadata about the update for the Windows
/// operating system.
///
/// The fields in this message come from the Windows Update API documented at
/// https://docs.microsoft.com/en-us/windows/win32/api/wuapi/nn-wuapi-iupdate.
class WindowsUpdate {
/// The list of categories to which the update belongs.
core.List<Category>? categories;
/// The localized description of the update.
core.String? description;
/// Required - The unique identifier for the update.
Identity? identity;
/// The Microsoft Knowledge Base article IDs that are associated with the
/// update.
core.List<core.String>? kbArticleIds;
/// The last published timestamp of the update.
core.String? lastPublishedTimestamp;
/// The hyperlink to the support information for the update.
core.String? supportUrl;
/// The localized title of the update.
core.String? title;
WindowsUpdate({
this.categories,
this.description,
this.identity,
this.kbArticleIds,
this.lastPublishedTimestamp,
this.supportUrl,
this.title,
});
WindowsUpdate.fromJson(core.Map json_)
: this(
categories: (json_['categories'] as core.List?)
?.map(
(value) => Category.fromJson(
value as core.Map<core.String, core.dynamic>,
),
)
.toList(),
description: json_['description'] as core.String?,
identity: json_.containsKey('identity')
? Identity.fromJson(
json_['identity'] as core.Map<core.String, core.dynamic>,
)
: null,
kbArticleIds: (json_['kbArticleIds'] as core.List?)
?.map((value) => value as core.String)
.toList(),
lastPublishedTimestamp: json_['lastPublishedTimestamp'] as core.String?,
supportUrl: json_['supportUrl'] as core.String?,
title: json_['title'] as core.String?,
);
core.Map<core.String, core.dynamic> toJson() {
final categories = this.categories;
final description = this.description;
final identity = this.identity;
final kbArticleIds = this.kbArticleIds;
final lastPublishedTimestamp = this.lastPublishedTimestamp;
final supportUrl = this.supportUrl;
final title = this.title;
return {
'categories': ?categories,
'description': ?description,
'identity': ?identity,
'kbArticleIds': ?kbArticleIds,
'lastPublishedTimestamp': ?lastPublishedTimestamp,
'supportUrl': ?supportUrl,
'title': ?title,
};
}
}