Constants
SecurityCenter_BatchCreateResourceValueConfigs_FullMethodName, SecurityCenter_BulkMuteFindings_FullMethodName, SecurityCenter_CreateBigQueryExport_FullMethodName, SecurityCenter_CreateFinding_FullMethodName, SecurityCenter_CreateMuteConfig_FullMethodName, SecurityCenter_CreateNotificationConfig_FullMethodName, SecurityCenter_CreateSource_FullMethodName, SecurityCenter_DeleteBigQueryExport_FullMethodName, SecurityCenter_DeleteMuteConfig_FullMethodName, SecurityCenter_DeleteNotificationConfig_FullMethodName, SecurityCenter_DeleteResourceValueConfig_FullMethodName, SecurityCenter_GetBigQueryExport_FullMethodName, SecurityCenter_GetSimulation_FullMethodName, SecurityCenter_GetValuedResource_FullMethodName, SecurityCenter_GetIamPolicy_FullMethodName, SecurityCenter_GetMuteConfig_FullMethodName, SecurityCenter_GetNotificationConfig_FullMethodName, SecurityCenter_GetResourceValueConfig_FullMethodName, SecurityCenter_GetSource_FullMethodName, SecurityCenter_GroupFindings_FullMethodName, SecurityCenter_ListAttackPaths_FullMethodName, SecurityCenter_ListBigQueryExports_FullMethodName, SecurityCenter_ListFindings_FullMethodName, SecurityCenter_ListMuteConfigs_FullMethodName, SecurityCenter_ListNotificationConfigs_FullMethodName, SecurityCenter_ListResourceValueConfigs_FullMethodName, SecurityCenter_ListSources_FullMethodName, SecurityCenter_ListValuedResources_FullMethodName, SecurityCenter_SetFindingState_FullMethodName, SecurityCenter_SetIamPolicy_FullMethodName, SecurityCenter_SetMute_FullMethodName, SecurityCenter_TestIamPermissions_FullMethodName, SecurityCenter_UpdateBigQueryExport_FullMethodName, SecurityCenter_UpdateExternalSystem_FullMethodName, SecurityCenter_UpdateFinding_FullMethodName, SecurityCenter_UpdateMuteConfig_FullMethodName, SecurityCenter_UpdateNotificationConfig_FullMethodName, SecurityCenter_UpdateResourceValueConfig_FullMethodName, SecurityCenter_UpdateSecurityMarks_FullMethodName, SecurityCenter_UpdateSource_FullMethodName
const (
SecurityCenter_BatchCreateResourceValueConfigs_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/BatchCreateResourceValueConfigs"
SecurityCenter_BulkMuteFindings_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/BulkMuteFindings"
SecurityCenter_CreateBigQueryExport_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/CreateBigQueryExport"
SecurityCenter_CreateFinding_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/CreateFinding"
SecurityCenter_CreateMuteConfig_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/CreateMuteConfig"
SecurityCenter_CreateNotificationConfig_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/CreateNotificationConfig"
SecurityCenter_CreateSource_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/CreateSource"
SecurityCenter_DeleteBigQueryExport_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/DeleteBigQueryExport"
SecurityCenter_DeleteMuteConfig_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/DeleteMuteConfig"
SecurityCenter_DeleteNotificationConfig_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/DeleteNotificationConfig"
SecurityCenter_DeleteResourceValueConfig_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/DeleteResourceValueConfig"
SecurityCenter_GetBigQueryExport_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/GetBigQueryExport"
SecurityCenter_GetSimulation_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/GetSimulation"
SecurityCenter_GetValuedResource_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/GetValuedResource"
SecurityCenter_GetIamPolicy_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/GetIamPolicy"
SecurityCenter_GetMuteConfig_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/GetMuteConfig"
SecurityCenter_GetNotificationConfig_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/GetNotificationConfig"
SecurityCenter_GetResourceValueConfig_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/GetResourceValueConfig"
SecurityCenter_GetSource_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/GetSource"
SecurityCenter_GroupFindings_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/GroupFindings"
SecurityCenter_ListAttackPaths_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/ListAttackPaths"
SecurityCenter_ListBigQueryExports_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/ListBigQueryExports"
SecurityCenter_ListFindings_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/ListFindings"
SecurityCenter_ListMuteConfigs_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/ListMuteConfigs"
SecurityCenter_ListNotificationConfigs_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/ListNotificationConfigs"
SecurityCenter_ListResourceValueConfigs_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/ListResourceValueConfigs"
SecurityCenter_ListSources_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/ListSources"
SecurityCenter_ListValuedResources_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/ListValuedResources"
SecurityCenter_SetFindingState_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/SetFindingState"
SecurityCenter_SetIamPolicy_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/SetIamPolicy"
SecurityCenter_SetMute_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/SetMute"
SecurityCenter_TestIamPermissions_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/TestIamPermissions"
SecurityCenter_UpdateBigQueryExport_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/UpdateBigQueryExport"
SecurityCenter_UpdateExternalSystem_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/UpdateExternalSystem"
SecurityCenter_UpdateFinding_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/UpdateFinding"
SecurityCenter_UpdateMuteConfig_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/UpdateMuteConfig"
SecurityCenter_UpdateNotificationConfig_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/UpdateNotificationConfig"
SecurityCenter_UpdateResourceValueConfig_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/UpdateResourceValueConfig"
SecurityCenter_UpdateSecurityMarks_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/UpdateSecurityMarks"
SecurityCenter_UpdateSource_FullMethodName = "/google.cloud.securitycenter.v2.SecurityCenter/UpdateSource"
)Variables
AiModel_DeploymentPlatform_name, AiModel_DeploymentPlatform_value
var (
AiModel_DeploymentPlatform_name = map[int32]string{
0: "DEPLOYMENT_PLATFORM_UNSPECIFIED",
1: "VERTEX_AI",
2: "GKE",
3: "GCE",
4: "FINE_TUNED_MODEL",
}
AiModel_DeploymentPlatform_value = map[string]int32{
"DEPLOYMENT_PLATFORM_UNSPECIFIED": 0,
"VERTEX_AI": 1,
"GKE": 2,
"GCE": 3,
"FINE_TUNED_MODEL": 4,
}
)Enum value maps for AiModel_DeploymentPlatform.
AttackExposure_State_name, AttackExposure_State_value
var (
AttackExposure_State_name = map[int32]string{
0: "STATE_UNSPECIFIED",
1: "CALCULATED",
2: "NOT_CALCULATED",
}
AttackExposure_State_value = map[string]int32{
"STATE_UNSPECIFIED": 0,
"CALCULATED": 1,
"NOT_CALCULATED": 2,
}
)Enum value maps for AttackExposure_State.
AttackPath_AttackPathNode_NodeType_name, AttackPath_AttackPathNode_NodeType_value
var (
AttackPath_AttackPathNode_NodeType_name = map[int32]string{
0: "NODE_TYPE_UNSPECIFIED",
1: "NODE_TYPE_AND",
2: "NODE_TYPE_OR",
3: "NODE_TYPE_DEFENSE",
4: "NODE_TYPE_ATTACKER",
}
AttackPath_AttackPathNode_NodeType_value = map[string]int32{
"NODE_TYPE_UNSPECIFIED": 0,
"NODE_TYPE_AND": 1,
"NODE_TYPE_OR": 2,
"NODE_TYPE_DEFENSE": 3,
"NODE_TYPE_ATTACKER": 4,
}
)Enum value maps for AttackPath_AttackPathNode_NodeType.
CloudDlpDataProfile_ParentType_name, CloudDlpDataProfile_ParentType_value
var (
CloudDlpDataProfile_ParentType_name = map[int32]string{
0: "PARENT_TYPE_UNSPECIFIED",
1: "ORGANIZATION",
2: "PROJECT",
}
CloudDlpDataProfile_ParentType_value = map[string]int32{
"PARENT_TYPE_UNSPECIFIED": 0,
"ORGANIZATION": 1,
"PROJECT": 2,
}
)Enum value maps for CloudDlpDataProfile_ParentType.
Connection_Protocol_name, Connection_Protocol_value
var (
Connection_Protocol_name = map[int32]string{
0: "PROTOCOL_UNSPECIFIED",
1: "ICMP",
6: "TCP",
17: "UDP",
47: "GRE",
50: "ESP",
}
Connection_Protocol_value = map[string]int32{
"PROTOCOL_UNSPECIFIED": 0,
"ICMP": 1,
"TCP": 6,
"UDP": 17,
"GRE": 47,
"ESP": 50,
}
)Enum value maps for Connection_Protocol.
DataAccessEvent_Operation_name, DataAccessEvent_Operation_value
var (
DataAccessEvent_Operation_name = map[int32]string{
0: "OPERATION_UNSPECIFIED",
1: "READ",
2: "MOVE",
3: "COPY",
}
DataAccessEvent_Operation_value = map[string]int32{
"OPERATION_UNSPECIFIED": 0,
"READ": 1,
"MOVE": 2,
"COPY": 3,
}
)Enum value maps for DataAccessEvent_Operation.
DataFlowEvent_Operation_name, DataFlowEvent_Operation_value
var (
DataFlowEvent_Operation_name = map[int32]string{
0: "OPERATION_UNSPECIFIED",
1: "READ",
2: "MOVE",
3: "COPY",
}
DataFlowEvent_Operation_value = map[string]int32{
"OPERATION_UNSPECIFIED": 0,
"READ": 1,
"MOVE": 2,
"COPY": 3,
}
)Enum value maps for DataFlowEvent_Operation.
DataRetentionDeletionEvent_EventType_name, DataRetentionDeletionEvent_EventType_value
var (
DataRetentionDeletionEvent_EventType_name = map[int32]string{
0: "EVENT_TYPE_UNSPECIFIED",
1: "EVENT_TYPE_MAX_TTL_EXCEEDED",
}
DataRetentionDeletionEvent_EventType_value = map[string]int32{
"EVENT_TYPE_UNSPECIFIED": 0,
"EVENT_TYPE_MAX_TTL_EXCEEDED": 1,
}
)Enum value maps for DataRetentionDeletionEvent_EventType.
File_FileOperation_OperationType_name, File_FileOperation_OperationType_value
var (
File_FileOperation_OperationType_name = map[int32]string{
0: "OPERATION_TYPE_UNSPECIFIED",
1: "OPEN",
2: "READ",
3: "RENAME",
4: "WRITE",
5: "EXECUTE",
}
File_FileOperation_OperationType_value = map[string]int32{
"OPERATION_TYPE_UNSPECIFIED": 0,
"OPEN": 1,
"READ": 2,
"RENAME": 3,
"WRITE": 4,
"EXECUTE": 5,
}
)Enum value maps for File_FileOperation_OperationType.
Finding_State_name, Finding_State_value
var (
Finding_State_name = map[int32]string{
0: "STATE_UNSPECIFIED",
1: "ACTIVE",
2: "INACTIVE",
}
Finding_State_value = map[string]int32{
"STATE_UNSPECIFIED": 0,
"ACTIVE": 1,
"INACTIVE": 2,
}
)Enum value maps for Finding_State.
Finding_Severity_name, Finding_Severity_value
var (
Finding_Severity_name = map[int32]string{
0: "SEVERITY_UNSPECIFIED",
1: "CRITICAL",
2: "HIGH",
3: "MEDIUM",
4: "LOW",
}
Finding_Severity_value = map[string]int32{
"SEVERITY_UNSPECIFIED": 0,
"CRITICAL": 1,
"HIGH": 2,
"MEDIUM": 3,
"LOW": 4,
}
)Enum value maps for Finding_Severity.
Finding_Mute_name, Finding_Mute_value
var (
Finding_Mute_name = map[int32]string{
0: "MUTE_UNSPECIFIED",
1: "MUTED",
2: "UNMUTED",
3: "UNDEFINED",
}
Finding_Mute_value = map[string]int32{
"MUTE_UNSPECIFIED": 0,
"MUTED": 1,
"UNMUTED": 2,
"UNDEFINED": 3,
}
)Enum value maps for Finding_Mute.
Finding_FindingClass_name, Finding_FindingClass_value
var (
Finding_FindingClass_name = map[int32]string{
0: "FINDING_CLASS_UNSPECIFIED",
1: "THREAT",
2: "VULNERABILITY",
3: "MISCONFIGURATION",
4: "OBSERVATION",
5: "SCC_ERROR",
6: "POSTURE_VIOLATION",
7: "TOXIC_COMBINATION",
8: "SENSITIVE_DATA_RISK",
9: "CHOKEPOINT",
}
Finding_FindingClass_value = map[string]int32{
"FINDING_CLASS_UNSPECIFIED": 0,
"THREAT": 1,
"VULNERABILITY": 2,
"MISCONFIGURATION": 3,
"OBSERVATION": 4,
"SCC_ERROR": 5,
"POSTURE_VIOLATION": 6,
"TOXIC_COMBINATION": 7,
"SENSITIVE_DATA_RISK": 8,
"CHOKEPOINT": 9,
}
)Enum value maps for Finding_FindingClass.
GroupMembership_GroupType_name, GroupMembership_GroupType_value
var (
GroupMembership_GroupType_name = map[int32]string{
0: "GROUP_TYPE_UNSPECIFIED",
1: "GROUP_TYPE_TOXIC_COMBINATION",
3: "GROUP_TYPE_CHOKEPOINT",
}
GroupMembership_GroupType_value = map[string]int32{
"GROUP_TYPE_UNSPECIFIED": 0,
"GROUP_TYPE_TOXIC_COMBINATION": 1,
"GROUP_TYPE_CHOKEPOINT": 3,
}
)Enum value maps for GroupMembership_GroupType.
IamBinding_Action_name, IamBinding_Action_value
var (
IamBinding_Action_name = map[int32]string{
0: "ACTION_UNSPECIFIED",
1: "ADD",
2: "REMOVE",
}
IamBinding_Action_value = map[string]int32{
"ACTION_UNSPECIFIED": 0,
"ADD": 1,
"REMOVE": 2,
}
)Enum value maps for IamBinding_Action.
Indicator_ProcessSignature_SignatureType_name, Indicator_ProcessSignature_SignatureType_value
var (
Indicator_ProcessSignature_SignatureType_name = map[int32]string{
0: "SIGNATURE_TYPE_UNSPECIFIED",
1: "SIGNATURE_TYPE_PROCESS",
2: "SIGNATURE_TYPE_FILE",
}
Indicator_ProcessSignature_SignatureType_value = map[string]int32{
"SIGNATURE_TYPE_UNSPECIFIED": 0,
"SIGNATURE_TYPE_PROCESS": 1,
"SIGNATURE_TYPE_FILE": 2,
}
)Enum value maps for Indicator_ProcessSignature_SignatureType.
IpRules_Direction_name, IpRules_Direction_value
var (
IpRules_Direction_name = map[int32]string{
0: "DIRECTION_UNSPECIFIED",
1: "INGRESS",
2: "EGRESS",
}
IpRules_Direction_value = map[string]int32{
"DIRECTION_UNSPECIFIED": 0,
"INGRESS": 1,
"EGRESS": 2,
}
)Enum value maps for IpRules_Direction.
JobState_name, JobState_value
var (
JobState_name = map[int32]string{
0: "JOB_STATE_UNSPECIFIED",
1: "PENDING",
2: "RUNNING",
3: "SUCCEEDED",
4: "FAILED",
}
JobState_value = map[string]int32{
"JOB_STATE_UNSPECIFIED": 0,
"PENDING": 1,
"RUNNING": 2,
"SUCCEEDED": 3,
"FAILED": 4,
}
)Enum value maps for JobState.
Kubernetes_Role_Kind_name, Kubernetes_Role_Kind_value
var (
Kubernetes_Role_Kind_name = map[int32]string{
0: "KIND_UNSPECIFIED",
1: "ROLE",
2: "CLUSTER_ROLE",
}
Kubernetes_Role_Kind_value = map[string]int32{
"KIND_UNSPECIFIED": 0,
"ROLE": 1,
"CLUSTER_ROLE": 2,
}
)Enum value maps for Kubernetes_Role_Kind.
Kubernetes_Subject_AuthType_name, Kubernetes_Subject_AuthType_value
var (
Kubernetes_Subject_AuthType_name = map[int32]string{
0: "AUTH_TYPE_UNSPECIFIED",
1: "USER",
2: "SERVICEACCOUNT",
3: "GROUP",
}
Kubernetes_Subject_AuthType_value = map[string]int32{
"AUTH_TYPE_UNSPECIFIED": 0,
"USER": 1,
"SERVICEACCOUNT": 2,
"GROUP": 3,
}
)Enum value maps for Kubernetes_Subject_AuthType.
MitreAttack_Tactic_name, MitreAttack_Tactic_value
var (
MitreAttack_Tactic_name = map[int32]string{
0: "TACTIC_UNSPECIFIED",
1: "RECONNAISSANCE",
2: "RESOURCE_DEVELOPMENT",
5: "INITIAL_ACCESS",
3: "EXECUTION",
6: "PERSISTENCE",
8: "PRIVILEGE_ESCALATION",
7: "DEFENSE_EVASION",
9: "CREDENTIAL_ACCESS",
10: "DISCOVERY",
11: "LATERAL_MOVEMENT",
12: "COLLECTION",
4: "COMMAND_AND_CONTROL",
13: "EXFILTRATION",
14: "IMPACT",
}
MitreAttack_Tactic_value = map[string]int32{
"TACTIC_UNSPECIFIED": 0,
"RECONNAISSANCE": 1,
"RESOURCE_DEVELOPMENT": 2,
"INITIAL_ACCESS": 5,
"EXECUTION": 3,
"PERSISTENCE": 6,
"PRIVILEGE_ESCALATION": 8,
"DEFENSE_EVASION": 7,
"CREDENTIAL_ACCESS": 9,
"DISCOVERY": 10,
"LATERAL_MOVEMENT": 11,
"COLLECTION": 12,
"COMMAND_AND_CONTROL": 4,
"EXFILTRATION": 13,
"IMPACT": 14,
}
)Enum value maps for MitreAttack_Tactic.
MitreAttack_Technique_name, MitreAttack_Technique_value
var (
MitreAttack_Technique_name = map[int32]string{ /* 138 elements not displayed */
}
MitreAttack_Technique_value = map[string]int32{ /* 138 elements not displayed */
}
)Enum value maps for MitreAttack_Technique.
MuteConfig_MuteConfigType_name, MuteConfig_MuteConfigType_value
var (
MuteConfig_MuteConfigType_name = map[int32]string{
0: "MUTE_CONFIG_TYPE_UNSPECIFIED",
1: "STATIC",
2: "DYNAMIC",
}
MuteConfig_MuteConfigType_value = map[string]int32{
"MUTE_CONFIG_TYPE_UNSPECIFIED": 0,
"STATIC": 1,
"DYNAMIC": 2,
}
)Enum value maps for MuteConfig_MuteConfigType.
CloudProvider_name, CloudProvider_value
var (
CloudProvider_name = map[int32]string{
0: "CLOUD_PROVIDER_UNSPECIFIED",
1: "GOOGLE_CLOUD_PLATFORM",
2: "AMAZON_WEB_SERVICES",
3: "MICROSOFT_AZURE",
}
CloudProvider_value = map[string]int32{
"CLOUD_PROVIDER_UNSPECIFIED": 0,
"GOOGLE_CLOUD_PLATFORM": 1,
"AMAZON_WEB_SERVICES": 2,
"MICROSOFT_AZURE": 3,
}
)Enum value maps for CloudProvider.
ResourcePath_ResourcePathNodeType_name, ResourcePath_ResourcePathNodeType_value
var (
ResourcePath_ResourcePathNodeType_name = map[int32]string{
0: "RESOURCE_PATH_NODE_TYPE_UNSPECIFIED",
1: "GCP_ORGANIZATION",
2: "GCP_FOLDER",
3: "GCP_PROJECT",
4: "AWS_ORGANIZATION",
5: "AWS_ORGANIZATIONAL_UNIT",
6: "AWS_ACCOUNT",
7: "AZURE_MANAGEMENT_GROUP",
8: "AZURE_SUBSCRIPTION",
9: "AZURE_RESOURCE_GROUP",
}
ResourcePath_ResourcePathNodeType_value = map[string]int32{
"RESOURCE_PATH_NODE_TYPE_UNSPECIFIED": 0,
"GCP_ORGANIZATION": 1,
"GCP_FOLDER": 2,
"GCP_PROJECT": 3,
"AWS_ORGANIZATION": 4,
"AWS_ORGANIZATIONAL_UNIT": 5,
"AWS_ACCOUNT": 6,
"AZURE_MANAGEMENT_GROUP": 7,
"AZURE_SUBSCRIPTION": 8,
"AZURE_RESOURCE_GROUP": 9,
}
)Enum value maps for ResourcePath_ResourcePathNodeType.
ResourceValue_name, ResourceValue_value
var (
ResourceValue_name = map[int32]string{
0: "RESOURCE_VALUE_UNSPECIFIED",
1: "HIGH",
2: "MEDIUM",
3: "LOW",
4: "NONE",
}
ResourceValue_value = map[string]int32{
"RESOURCE_VALUE_UNSPECIFIED": 0,
"HIGH": 1,
"MEDIUM": 2,
"LOW": 3,
"NONE": 4,
}
)Enum value maps for ResourceValue.
BulkMuteFindingsRequest_MuteState_name, BulkMuteFindingsRequest_MuteState_value
var (
BulkMuteFindingsRequest_MuteState_name = map[int32]string{
0: "MUTE_STATE_UNSPECIFIED",
1: "MUTED",
2: "UNDEFINED",
}
BulkMuteFindingsRequest_MuteState_value = map[string]int32{
"MUTE_STATE_UNSPECIFIED": 0,
"MUTED": 1,
"UNDEFINED": 2,
}
)Enum value maps for BulkMuteFindingsRequest_MuteState.
ValuedResource_ResourceValue_name, ValuedResource_ResourceValue_value
var (
ValuedResource_ResourceValue_name = map[int32]string{
0: "RESOURCE_VALUE_UNSPECIFIED",
1: "RESOURCE_VALUE_LOW",
2: "RESOURCE_VALUE_MEDIUM",
3: "RESOURCE_VALUE_HIGH",
}
ValuedResource_ResourceValue_value = map[string]int32{
"RESOURCE_VALUE_UNSPECIFIED": 0,
"RESOURCE_VALUE_LOW": 1,
"RESOURCE_VALUE_MEDIUM": 2,
"RESOURCE_VALUE_HIGH": 3,
}
)Enum value maps for ValuedResource_ResourceValue.
Cve_RiskRating_name, Cve_RiskRating_value
var (
Cve_RiskRating_name = map[int32]string{
0: "RISK_RATING_UNSPECIFIED",
1: "LOW",
2: "MEDIUM",
3: "HIGH",
4: "CRITICAL",
}
Cve_RiskRating_value = map[string]int32{
"RISK_RATING_UNSPECIFIED": 0,
"LOW": 1,
"MEDIUM": 2,
"HIGH": 3,
"CRITICAL": 4,
}
)Enum value maps for Cve_RiskRating.
Cve_ExploitationActivity_name, Cve_ExploitationActivity_value
var (
Cve_ExploitationActivity_name = map[int32]string{
0: "EXPLOITATION_ACTIVITY_UNSPECIFIED",
1: "WIDE",
2: "CONFIRMED",
3: "AVAILABLE",
4: "ANTICIPATED",
5: "NO_KNOWN",
}
Cve_ExploitationActivity_value = map[string]int32{
"EXPLOITATION_ACTIVITY_UNSPECIFIED": 0,
"WIDE": 1,
"CONFIRMED": 2,
"AVAILABLE": 3,
"ANTICIPATED": 4,
"NO_KNOWN": 5,
}
)Enum value maps for Cve_ExploitationActivity.
Cvssv3_AttackVector_name, Cvssv3_AttackVector_value
var (
Cvssv3_AttackVector_name = map[int32]string{
0: "ATTACK_VECTOR_UNSPECIFIED",
1: "ATTACK_VECTOR_NETWORK",
2: "ATTACK_VECTOR_ADJACENT",
3: "ATTACK_VECTOR_LOCAL",
4: "ATTACK_VECTOR_PHYSICAL",
}
Cvssv3_AttackVector_value = map[string]int32{
"ATTACK_VECTOR_UNSPECIFIED": 0,
"ATTACK_VECTOR_NETWORK": 1,
"ATTACK_VECTOR_ADJACENT": 2,
"ATTACK_VECTOR_LOCAL": 3,
"ATTACK_VECTOR_PHYSICAL": 4,
}
)Enum value maps for Cvssv3_AttackVector.
Cvssv3_AttackComplexity_name, Cvssv3_AttackComplexity_value
var (
Cvssv3_AttackComplexity_name = map[int32]string{
0: "ATTACK_COMPLEXITY_UNSPECIFIED",
1: "ATTACK_COMPLEXITY_LOW",
2: "ATTACK_COMPLEXITY_HIGH",
}
Cvssv3_AttackComplexity_value = map[string]int32{
"ATTACK_COMPLEXITY_UNSPECIFIED": 0,
"ATTACK_COMPLEXITY_LOW": 1,
"ATTACK_COMPLEXITY_HIGH": 2,
}
)Enum value maps for Cvssv3_AttackComplexity.
Cvssv3_PrivilegesRequired_name, Cvssv3_PrivilegesRequired_value
var (
Cvssv3_PrivilegesRequired_name = map[int32]string{
0: "PRIVILEGES_REQUIRED_UNSPECIFIED",
1: "PRIVILEGES_REQUIRED_NONE",
2: "PRIVILEGES_REQUIRED_LOW",
3: "PRIVILEGES_REQUIRED_HIGH",
}
Cvssv3_PrivilegesRequired_value = map[string]int32{
"PRIVILEGES_REQUIRED_UNSPECIFIED": 0,
"PRIVILEGES_REQUIRED_NONE": 1,
"PRIVILEGES_REQUIRED_LOW": 2,
"PRIVILEGES_REQUIRED_HIGH": 3,
}
)Enum value maps for Cvssv3_PrivilegesRequired.
Cvssv3_UserInteraction_name, Cvssv3_UserInteraction_value
var (
Cvssv3_UserInteraction_name = map[int32]string{
0: "USER_INTERACTION_UNSPECIFIED",
1: "USER_INTERACTION_NONE",
2: "USER_INTERACTION_REQUIRED",
}
Cvssv3_UserInteraction_value = map[string]int32{
"USER_INTERACTION_UNSPECIFIED": 0,
"USER_INTERACTION_NONE": 1,
"USER_INTERACTION_REQUIRED": 2,
}
)Enum value maps for Cvssv3_UserInteraction.
Cvssv3_Scope_name, Cvssv3_Scope_value
var (
Cvssv3_Scope_name = map[int32]string{
0: "SCOPE_UNSPECIFIED",
1: "SCOPE_UNCHANGED",
2: "SCOPE_CHANGED",
}
Cvssv3_Scope_value = map[string]int32{
"SCOPE_UNSPECIFIED": 0,
"SCOPE_UNCHANGED": 1,
"SCOPE_CHANGED": 2,
}
)Enum value maps for Cvssv3_Scope.
Cvssv3_Impact_name, Cvssv3_Impact_value
var (
Cvssv3_Impact_name = map[int32]string{
0: "IMPACT_UNSPECIFIED",
1: "IMPACT_HIGH",
2: "IMPACT_LOW",
3: "IMPACT_NONE",
}
Cvssv3_Impact_value = map[string]int32{
"IMPACT_UNSPECIFIED": 0,
"IMPACT_HIGH": 1,
"IMPACT_LOW": 2,
"IMPACT_NONE": 3,
}
)Enum value maps for Cvssv3_Impact.
File_google_cloud_securitycenter_v2_access_proto
var File_google_cloud_securitycenter_v2_access_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_affected_resources_proto
var File_google_cloud_securitycenter_v2_affected_resources_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_ai_model_proto
var File_google_cloud_securitycenter_v2_ai_model_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_application_proto
var File_google_cloud_securitycenter_v2_application_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_attack_exposure_proto
var File_google_cloud_securitycenter_v2_attack_exposure_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_attack_path_proto
var File_google_cloud_securitycenter_v2_attack_path_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_backup_disaster_recovery_proto
var File_google_cloud_securitycenter_v2_backup_disaster_recovery_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_bigquery_export_proto
var File_google_cloud_securitycenter_v2_bigquery_export_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_chokepoint_proto
var File_google_cloud_securitycenter_v2_chokepoint_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_cloud_armor_proto
var File_google_cloud_securitycenter_v2_cloud_armor_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_cloud_dlp_data_profile_proto
var File_google_cloud_securitycenter_v2_cloud_dlp_data_profile_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_cloud_dlp_inspection_proto
var File_google_cloud_securitycenter_v2_cloud_dlp_inspection_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_compliance_proto
var File_google_cloud_securitycenter_v2_compliance_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_connection_proto
var File_google_cloud_securitycenter_v2_connection_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_contact_details_proto
var File_google_cloud_securitycenter_v2_contact_details_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_container_proto
var File_google_cloud_securitycenter_v2_container_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_data_access_event_proto
var File_google_cloud_securitycenter_v2_data_access_event_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_data_flow_event_proto
var File_google_cloud_securitycenter_v2_data_flow_event_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_data_retention_deletion_event_proto
var File_google_cloud_securitycenter_v2_data_retention_deletion_event_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_database_proto
var File_google_cloud_securitycenter_v2_database_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_disk_proto
var File_google_cloud_securitycenter_v2_disk_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_exfiltration_proto
var File_google_cloud_securitycenter_v2_exfiltration_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_external_system_proto
var File_google_cloud_securitycenter_v2_external_system_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_file_proto
var File_google_cloud_securitycenter_v2_file_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_finding_proto
var File_google_cloud_securitycenter_v2_finding_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_folder_proto
var File_google_cloud_securitycenter_v2_folder_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_group_membership_proto
var File_google_cloud_securitycenter_v2_group_membership_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_iam_binding_proto
var File_google_cloud_securitycenter_v2_iam_binding_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_indicator_proto
var File_google_cloud_securitycenter_v2_indicator_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_ip_rules_proto
var File_google_cloud_securitycenter_v2_ip_rules_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_job_proto
var File_google_cloud_securitycenter_v2_job_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_kernel_rootkit_proto
var File_google_cloud_securitycenter_v2_kernel_rootkit_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_kubernetes_proto
var File_google_cloud_securitycenter_v2_kubernetes_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_label_proto
var File_google_cloud_securitycenter_v2_label_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_load_balancer_proto
var File_google_cloud_securitycenter_v2_load_balancer_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_log_entry_proto
var File_google_cloud_securitycenter_v2_log_entry_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_mitre_attack_proto
var File_google_cloud_securitycenter_v2_mitre_attack_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_mute_config_proto
var File_google_cloud_securitycenter_v2_mute_config_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_network_proto
var File_google_cloud_securitycenter_v2_network_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_notebook_proto
var File_google_cloud_securitycenter_v2_notebook_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_notification_config_proto
var File_google_cloud_securitycenter_v2_notification_config_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_notification_message_proto
var File_google_cloud_securitycenter_v2_notification_message_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_org_policy_proto
var File_google_cloud_securitycenter_v2_org_policy_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_process_proto
var File_google_cloud_securitycenter_v2_process_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_resource_proto
var File_google_cloud_securitycenter_v2_resource_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_resource_value_config_proto
var File_google_cloud_securitycenter_v2_resource_value_config_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_security_marks_proto
var File_google_cloud_securitycenter_v2_security_marks_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_security_posture_proto
var File_google_cloud_securitycenter_v2_security_posture_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_securitycenter_service_proto
var File_google_cloud_securitycenter_v2_securitycenter_service_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_simulation_proto
var File_google_cloud_securitycenter_v2_simulation_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_source_proto
var File_google_cloud_securitycenter_v2_source_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_toxic_combination_proto
var File_google_cloud_securitycenter_v2_toxic_combination_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_valued_resource_proto
var File_google_cloud_securitycenter_v2_valued_resource_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_vertex_ai_proto
var File_google_cloud_securitycenter_v2_vertex_ai_proto protoreflect.FileDescriptorFile_google_cloud_securitycenter_v2_vulnerability_proto
var File_google_cloud_securitycenter_v2_vulnerability_proto protoreflect.FileDescriptorSecurityCenter_ServiceDesc
var SecurityCenter_ServiceDesc = grpc.ServiceDesc{
ServiceName: "google.cloud.securitycenter.v2.SecurityCenter",
HandlerType: (*SecurityCenterServer)(nil),
Methods: []grpc.MethodDesc{
{
MethodName: "BatchCreateResourceValueConfigs",
Handler: _SecurityCenter_BatchCreateResourceValueConfigs_Handler,
},
{
MethodName: "BulkMuteFindings",
Handler: _SecurityCenter_BulkMuteFindings_Handler,
},
{
MethodName: "CreateBigQueryExport",
Handler: _SecurityCenter_CreateBigQueryExport_Handler,
},
{
MethodName: "CreateFinding",
Handler: _SecurityCenter_CreateFinding_Handler,
},
{
MethodName: "CreateMuteConfig",
Handler: _SecurityCenter_CreateMuteConfig_Handler,
},
{
MethodName: "CreateNotificationConfig",
Handler: _SecurityCenter_CreateNotificationConfig_Handler,
},
{
MethodName: "CreateSource",
Handler: _SecurityCenter_CreateSource_Handler,
},
{
MethodName: "DeleteBigQueryExport",
Handler: _SecurityCenter_DeleteBigQueryExport_Handler,
},
{
MethodName: "DeleteMuteConfig",
Handler: _SecurityCenter_DeleteMuteConfig_Handler,
},
{
MethodName: "DeleteNotificationConfig",
Handler: _SecurityCenter_DeleteNotificationConfig_Handler,
},
{
MethodName: "DeleteResourceValueConfig",
Handler: _SecurityCenter_DeleteResourceValueConfig_Handler,
},
{
MethodName: "GetBigQueryExport",
Handler: _SecurityCenter_GetBigQueryExport_Handler,
},
{
MethodName: "GetSimulation",
Handler: _SecurityCenter_GetSimulation_Handler,
},
{
MethodName: "GetValuedResource",
Handler: _SecurityCenter_GetValuedResource_Handler,
},
{
MethodName: "GetIamPolicy",
Handler: _SecurityCenter_GetIamPolicy_Handler,
},
{
MethodName: "GetMuteConfig",
Handler: _SecurityCenter_GetMuteConfig_Handler,
},
{
MethodName: "GetNotificationConfig",
Handler: _SecurityCenter_GetNotificationConfig_Handler,
},
{
MethodName: "GetResourceValueConfig",
Handler: _SecurityCenter_GetResourceValueConfig_Handler,
},
{
MethodName: "GetSource",
Handler: _SecurityCenter_GetSource_Handler,
},
{
MethodName: "GroupFindings",
Handler: _SecurityCenter_GroupFindings_Handler,
},
{
MethodName: "ListAttackPaths",
Handler: _SecurityCenter_ListAttackPaths_Handler,
},
{
MethodName: "ListBigQueryExports",
Handler: _SecurityCenter_ListBigQueryExports_Handler,
},
{
MethodName: "ListFindings",
Handler: _SecurityCenter_ListFindings_Handler,
},
{
MethodName: "ListMuteConfigs",
Handler: _SecurityCenter_ListMuteConfigs_Handler,
},
{
MethodName: "ListNotificationConfigs",
Handler: _SecurityCenter_ListNotificationConfigs_Handler,
},
{
MethodName: "ListResourceValueConfigs",
Handler: _SecurityCenter_ListResourceValueConfigs_Handler,
},
{
MethodName: "ListSources",
Handler: _SecurityCenter_ListSources_Handler,
},
{
MethodName: "ListValuedResources",
Handler: _SecurityCenter_ListValuedResources_Handler,
},
{
MethodName: "SetFindingState",
Handler: _SecurityCenter_SetFindingState_Handler,
},
{
MethodName: "SetIamPolicy",
Handler: _SecurityCenter_SetIamPolicy_Handler,
},
{
MethodName: "SetMute",
Handler: _SecurityCenter_SetMute_Handler,
},
{
MethodName: "TestIamPermissions",
Handler: _SecurityCenter_TestIamPermissions_Handler,
},
{
MethodName: "UpdateBigQueryExport",
Handler: _SecurityCenter_UpdateBigQueryExport_Handler,
},
{
MethodName: "UpdateExternalSystem",
Handler: _SecurityCenter_UpdateExternalSystem_Handler,
},
{
MethodName: "UpdateFinding",
Handler: _SecurityCenter_UpdateFinding_Handler,
},
{
MethodName: "UpdateMuteConfig",
Handler: _SecurityCenter_UpdateMuteConfig_Handler,
},
{
MethodName: "UpdateNotificationConfig",
Handler: _SecurityCenter_UpdateNotificationConfig_Handler,
},
{
MethodName: "UpdateResourceValueConfig",
Handler: _SecurityCenter_UpdateResourceValueConfig_Handler,
},
{
MethodName: "UpdateSecurityMarks",
Handler: _SecurityCenter_UpdateSecurityMarks_Handler,
},
{
MethodName: "UpdateSource",
Handler: _SecurityCenter_UpdateSource_Handler,
},
},
Streams: []grpc.StreamDesc{},
Metadata: "google/cloud/securitycenter/v2/securitycenter_service.proto",
}SecurityCenter_ServiceDesc is the grpc.ServiceDesc for SecurityCenter service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)
Functions
func RegisterSecurityCenterServer
func RegisterSecurityCenterServer(s grpc.ServiceRegistrar, srv SecurityCenterServer)Access
type Access struct {
// Associated email, such as "foo@google.com".
//
// The email address of the authenticated user or a service account acting on
// behalf of a third party principal making the request. For third party
// identity callers, the `principal_subject` field is populated instead of
// this field. For privacy reasons, the principal email address is sometimes
// redacted. For more information, see [Caller identities in audit
// logs](https://cloud.google.com/logging/docs/audit#user-id).
PrincipalEmail string `protobuf:"bytes,1,opt,name=principal_email,json=principalEmail,proto3" json:"principal_email,omitempty"`
// Caller's IP address, such as "1.1.1.1".
CallerIp string `protobuf:"bytes,2,opt,name=caller_ip,json=callerIp,proto3" json:"caller_ip,omitempty"`
// The caller IP's geolocation, which identifies where the call came from.
CallerIpGeo *Geolocation `protobuf:"bytes,3,opt,name=caller_ip_geo,json=callerIpGeo,proto3" json:"caller_ip_geo,omitempty"`
// Type of user agent associated with the finding. For example, an operating
// system shell or an embedded or standalone application.
UserAgentFamily string `protobuf:"bytes,4,opt,name=user_agent_family,json=userAgentFamily,proto3" json:"user_agent_family,omitempty"`
// The caller's user agent string associated with the finding.
UserAgent string `protobuf:"bytes,5,opt,name=user_agent,json=userAgent,proto3" json:"user_agent,omitempty"`
// This is the API service that the service account made a call to, e.g.
// "iam.googleapis.com"
ServiceName string `protobuf:"bytes,6,opt,name=service_name,json=serviceName,proto3" json:"service_name,omitempty"`
// The method that the service account called, e.g. "SetIamPolicy".
MethodName string `protobuf:"bytes,7,opt,name=method_name,json=methodName,proto3" json:"method_name,omitempty"`
// A string that represents the principal_subject that is associated with the
// identity. Unlike `principal_email`, `principal_subject` supports principals
// that aren't associated with email addresses, such as third party
// principals. For most identities, the format is
// `principal://iam.googleapis.com/{identity pool name}/subject/{subject}`.
// Some GKE identities, such as GKE_WORKLOAD, FREEFORM, and GKE_HUB_WORKLOAD,
// still use the legacy format `serviceAccount:{identity pool
// name}[{subject}]`.
PrincipalSubject string `protobuf:"bytes,8,opt,name=principal_subject,json=principalSubject,proto3" json:"principal_subject,omitempty"`
// The name of the service account key that was used to create or exchange
// credentials when authenticating the service account that made the request.
// This is a scheme-less URI full resource name. For example:
//
// "//iam.googleapis.com/projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}".
ServiceAccountKeyName string `protobuf:"bytes,9,opt,name=service_account_key_name,json=serviceAccountKeyName,proto3" json:"service_account_key_name,omitempty"`
// The identity delegation history of an authenticated service account that
// made the request. The `serviceAccountDelegationInfo[]` object contains
// information about the real authorities that try to access Google Cloud
// resources by delegating on a service account. When multiple authorities are
// present, they are guaranteed to be sorted based on the original ordering of
// the identity delegation events.
ServiceAccountDelegationInfo []*ServiceAccountDelegationInfo `protobuf:"bytes,10,rep,name=service_account_delegation_info,json=serviceAccountDelegationInfo,proto3" json:"service_account_delegation_info,omitempty"`
// A string that represents a username. The username provided depends on the
// type of the finding and is likely not an IAM principal. For example, this
// can be a system username if the finding is related to a virtual machine, or
// it can be an application login username.
UserName string `protobuf:"bytes,11,opt,name=user_name,json=userName,proto3" json:"user_name,omitempty"`
// contains filtered or unexported fields
}Represents an access event.
func (*Access) Descriptor
Deprecated: Use Access.ProtoReflect.Descriptor instead.
func (*Access) GetCallerIp
func (*Access) GetCallerIpGeo
func (x *Access) GetCallerIpGeo() *Geolocationfunc (*Access) GetMethodName
func (*Access) GetPrincipalEmail
func (*Access) GetPrincipalSubject
func (*Access) GetServiceAccountDelegationInfo
func (x *Access) GetServiceAccountDelegationInfo() []*ServiceAccountDelegationInfofunc (*Access) GetServiceAccountKeyName
func (*Access) GetServiceName
func (*Access) GetUserAgent
func (*Access) GetUserAgentFamily
func (*Access) GetUserName
func (*Access) ProtoMessage
func (*Access) ProtoMessage()func (*Access) ProtoReflect
func (x *Access) ProtoReflect() protoreflect.Messagefunc (*Access) Reset
func (x *Access) Reset()func (*Access) String
AdaptiveProtection
type AdaptiveProtection struct {
// A score of 0 means that there is low confidence that the detected event is
// an actual attack. A score of 1 means that there is high confidence that the
// detected event is an attack. See the [Adaptive Protection
// documentation](https://cloud.google.com/armor/docs/adaptive-protection-overview#configure-alert-tuning)
// for further explanation.
Confidence float64 `protobuf:"fixed64,1,opt,name=confidence,proto3" json:"confidence,omitempty"`
// contains filtered or unexported fields
}Information about Google Cloud Armor Adaptive Protection.
func (*AdaptiveProtection) Descriptor
func (*AdaptiveProtection) Descriptor() ([]byte, []int)Deprecated: Use AdaptiveProtection.ProtoReflect.Descriptor instead.
func (*AdaptiveProtection) GetConfidence
func (x *AdaptiveProtection) GetConfidence() float64func (*AdaptiveProtection) ProtoMessage
func (*AdaptiveProtection) ProtoMessage()func (*AdaptiveProtection) ProtoReflect
func (x *AdaptiveProtection) ProtoReflect() protoreflect.Messagefunc (*AdaptiveProtection) Reset
func (x *AdaptiveProtection) Reset()func (*AdaptiveProtection) String
func (x *AdaptiveProtection) String() stringAffectedResources
type AffectedResources struct {
// The count of resources affected by the finding.
Count int64 `protobuf:"varint,1,opt,name=count,proto3" json:"count,omitempty"`
// contains filtered or unexported fields
}Details about resources affected by this finding.
func (*AffectedResources) Descriptor
func (*AffectedResources) Descriptor() ([]byte, []int)Deprecated: Use AffectedResources.ProtoReflect.Descriptor instead.
func (*AffectedResources) GetCount
func (x *AffectedResources) GetCount() int64func (*AffectedResources) ProtoMessage
func (*AffectedResources) ProtoMessage()func (*AffectedResources) ProtoReflect
func (x *AffectedResources) ProtoReflect() protoreflect.Messagefunc (*AffectedResources) Reset
func (x *AffectedResources) Reset()func (*AffectedResources) String
func (x *AffectedResources) String() stringAiModel
type AiModel struct {
// The name of the AI model, for example, "gemini:1.0.0".
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The domain of the model, for example, “image-classification”.
Domain string `protobuf:"bytes,2,opt,name=domain,proto3" json:"domain,omitempty"`
// The name of the model library, for example, “transformers”.
Library string `protobuf:"bytes,3,opt,name=library,proto3" json:"library,omitempty"`
// The region in which the model is used, for example, “us-central1”.
Location string `protobuf:"bytes,4,opt,name=location,proto3" json:"location,omitempty"`
// The publisher of the model, for example, “google” or “nvidia”.
Publisher string `protobuf:"bytes,5,opt,name=publisher,proto3" json:"publisher,omitempty"`
// The platform on which the model is deployed.
DeploymentPlatform AiModel_DeploymentPlatform `protobuf:"varint,6,opt,name=deployment_platform,json=deploymentPlatform,proto3,enum=google.cloud.securitycenter.v2.AiModel_DeploymentPlatform" json:"deployment_platform,omitempty"`
// The user defined display name of model. Ex. baseline-classification-model
DisplayName string `protobuf:"bytes,7,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
// contains filtered or unexported fields
}Contains information about the AI model associated with the finding.
func (*AiModel) Descriptor
Deprecated: Use AiModel.ProtoReflect.Descriptor instead.
func (*AiModel) GetDeploymentPlatform
func (x *AiModel) GetDeploymentPlatform() AiModel_DeploymentPlatformfunc (*AiModel) GetDisplayName
func (*AiModel) GetDomain
func (*AiModel) GetLibrary
func (*AiModel) GetLocation
func (*AiModel) GetName
func (*AiModel) GetPublisher
func (*AiModel) ProtoMessage
func (*AiModel) ProtoMessage()func (*AiModel) ProtoReflect
func (x *AiModel) ProtoReflect() protoreflect.Messagefunc (*AiModel) Reset
func (x *AiModel) Reset()func (*AiModel) String
AiModel_DeploymentPlatform
type AiModel_DeploymentPlatform int32The platform on which the model is deployed.
AiModel_DEPLOYMENT_PLATFORM_UNSPECIFIED, AiModel_VERTEX_AI, AiModel_GKE, AiModel_GCE, AiModel_FINE_TUNED_MODEL
const (
// Unspecified deployment platform.
AiModel_DEPLOYMENT_PLATFORM_UNSPECIFIED AiModel_DeploymentPlatform = 0
// Vertex AI.
AiModel_VERTEX_AI AiModel_DeploymentPlatform = 1
// Google Kubernetes Engine.
AiModel_GKE AiModel_DeploymentPlatform = 2
// Google Compute Engine.
AiModel_GCE AiModel_DeploymentPlatform = 3
// Fine tuned model.
AiModel_FINE_TUNED_MODEL AiModel_DeploymentPlatform = 4
)func (AiModel_DeploymentPlatform) Descriptor
func (AiModel_DeploymentPlatform) Descriptor() protoreflect.EnumDescriptorfunc (AiModel_DeploymentPlatform) Enum
func (x AiModel_DeploymentPlatform) Enum() *AiModel_DeploymentPlatformfunc (AiModel_DeploymentPlatform) EnumDescriptor
func (AiModel_DeploymentPlatform) EnumDescriptor() ([]byte, []int)Deprecated: Use AiModel_DeploymentPlatform.Descriptor instead.
func (AiModel_DeploymentPlatform) Number
func (x AiModel_DeploymentPlatform) Number() protoreflect.EnumNumberfunc (AiModel_DeploymentPlatform) String
func (x AiModel_DeploymentPlatform) String() stringfunc (AiModel_DeploymentPlatform) Type
func (AiModel_DeploymentPlatform) Type() protoreflect.EnumTypeAllowed
type Allowed struct {
// Optional. Optional list of allowed IP rules.
IpRules []*IpRule `protobuf:"bytes,1,rep,name=ip_rules,json=ipRules,proto3" json:"ip_rules,omitempty"`
// contains filtered or unexported fields
}Allowed IP rule.
func (*Allowed) Descriptor
Deprecated: Use Allowed.ProtoReflect.Descriptor instead.
func (*Allowed) GetIpRules
func (*Allowed) ProtoMessage
func (*Allowed) ProtoMessage()func (*Allowed) ProtoReflect
func (x *Allowed) ProtoReflect() protoreflect.Messagefunc (*Allowed) Reset
func (x *Allowed) Reset()func (*Allowed) String
Application
type Application struct {
// The base URI that identifies the network location of the application in
// which the vulnerability was detected. For example, `http://example.com`.
BaseUri string `protobuf:"bytes,1,opt,name=base_uri,json=baseUri,proto3" json:"base_uri,omitempty"`
// The full URI with payload that could be used to reproduce the
// vulnerability. For example, `http://example.com?p=aMmYgI6H`.
FullUri string `protobuf:"bytes,2,opt,name=full_uri,json=fullUri,proto3" json:"full_uri,omitempty"`
// contains filtered or unexported fields
}Represents an application associated with a finding.
func (*Application) Descriptor
func (*Application) Descriptor() ([]byte, []int)Deprecated: Use Application.ProtoReflect.Descriptor instead.
func (*Application) GetBaseUri
func (x *Application) GetBaseUri() stringfunc (*Application) GetFullUri
func (x *Application) GetFullUri() stringfunc (*Application) ProtoMessage
func (*Application) ProtoMessage()func (*Application) ProtoReflect
func (x *Application) ProtoReflect() protoreflect.Messagefunc (*Application) Reset
func (x *Application) Reset()func (*Application) String
func (x *Application) String() stringAttack
type Attack struct {
// Total PPS (packets per second) volume of attack.
VolumePpsLong int64 `protobuf:"varint,4,opt,name=volume_pps_long,json=volumePpsLong,proto3" json:"volume_pps_long,omitempty"`
// Total BPS (bytes per second) volume of attack.
VolumeBpsLong int64 `protobuf:"varint,5,opt,name=volume_bps_long,json=volumeBpsLong,proto3" json:"volume_bps_long,omitempty"`
// Type of attack, for example, 'SYN-flood', 'NTP-udp', or 'CHARGEN-udp'.
Classification string `protobuf:"bytes,3,opt,name=classification,proto3" json:"classification,omitempty"`
// Total PPS (packets per second) volume of attack. Deprecated - refer to
// volume_pps_long instead.
//
// Deprecated: Marked as deprecated in google/cloud/securitycenter/v2/cloud_armor.proto.
VolumePps int32 `protobuf:"varint,1,opt,name=volume_pps,json=volumePps,proto3" json:"volume_pps,omitempty"`
// Total BPS (bytes per second) volume of attack. Deprecated - refer to
// volume_bps_long instead.
//
// Deprecated: Marked as deprecated in google/cloud/securitycenter/v2/cloud_armor.proto.
VolumeBps int32 `protobuf:"varint,2,opt,name=volume_bps,json=volumeBps,proto3" json:"volume_bps,omitempty"`
// contains filtered or unexported fields
}Information about DDoS attack volume and classification.
func (*Attack) Descriptor
Deprecated: Use Attack.ProtoReflect.Descriptor instead.
func (*Attack) GetClassification
func (*Attack) GetVolumeBps
Deprecated: Marked as deprecated in google/cloud/securitycenter/v2/cloud_armor.proto.
func (*Attack) GetVolumeBpsLong
func (*Attack) GetVolumePps
Deprecated: Marked as deprecated in google/cloud/securitycenter/v2/cloud_armor.proto.
func (*Attack) GetVolumePpsLong
func (*Attack) ProtoMessage
func (*Attack) ProtoMessage()func (*Attack) ProtoReflect
func (x *Attack) ProtoReflect() protoreflect.Messagefunc (*Attack) Reset
func (x *Attack) Reset()func (*Attack) String
AttackExposure
type AttackExposure struct {
// A number between 0 (inclusive) and infinity that represents how important
// this finding is to remediate. The higher the score, the more important it
// is to remediate.
Score float64 `protobuf:"fixed64,1,opt,name=score,proto3" json:"score,omitempty"`
// The most recent time the attack exposure was updated on this finding.
LatestCalculationTime *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=latest_calculation_time,json=latestCalculationTime,proto3" json:"latest_calculation_time,omitempty"`
// The resource name of the attack path simulation result that contains the
// details regarding this attack exposure score.
// Example: `organizations/123/simulations/456/attackExposureResults/789`
AttackExposureResult string `protobuf:"bytes,3,opt,name=attack_exposure_result,json=attackExposureResult,proto3" json:"attack_exposure_result,omitempty"`
// Output only. What state this AttackExposure is in. This captures whether or
// not an attack exposure has been calculated or not.
State AttackExposure_State `protobuf:"varint,4,opt,name=state,proto3,enum=google.cloud.securitycenter.v2.AttackExposure_State" json:"state,omitempty"`
// The number of high value resources that are exposed as a result of this
// finding.
ExposedHighValueResourcesCount int32 `protobuf:"varint,5,opt,name=exposed_high_value_resources_count,json=exposedHighValueResourcesCount,proto3" json:"exposed_high_value_resources_count,omitempty"`
// The number of medium value resources that are exposed as a result of this
// finding.
ExposedMediumValueResourcesCount int32 `protobuf:"varint,6,opt,name=exposed_medium_value_resources_count,json=exposedMediumValueResourcesCount,proto3" json:"exposed_medium_value_resources_count,omitempty"`
// The number of high value resources that are exposed as a result of this
// finding.
ExposedLowValueResourcesCount int32 `protobuf:"varint,7,opt,name=exposed_low_value_resources_count,json=exposedLowValueResourcesCount,proto3" json:"exposed_low_value_resources_count,omitempty"`
// contains filtered or unexported fields
}An attack exposure contains the results of an attack path simulation run.
func (*AttackExposure) Descriptor
func (*AttackExposure) Descriptor() ([]byte, []int)Deprecated: Use AttackExposure.ProtoReflect.Descriptor instead.
func (*AttackExposure) GetAttackExposureResult
func (x *AttackExposure) GetAttackExposureResult() stringfunc (*AttackExposure) GetExposedHighValueResourcesCount
func (x *AttackExposure) GetExposedHighValueResourcesCount() int32func (*AttackExposure) GetExposedLowValueResourcesCount
func (x *AttackExposure) GetExposedLowValueResourcesCount() int32func (*AttackExposure) GetExposedMediumValueResourcesCount
func (x *AttackExposure) GetExposedMediumValueResourcesCount() int32func (*AttackExposure) GetLatestCalculationTime
func (x *AttackExposure) GetLatestCalculationTime() *timestamppb.Timestampfunc (*AttackExposure) GetScore
func (x *AttackExposure) GetScore() float64func (*AttackExposure) GetState
func (x *AttackExposure) GetState() AttackExposure_Statefunc (*AttackExposure) ProtoMessage
func (*AttackExposure) ProtoMessage()func (*AttackExposure) ProtoReflect
func (x *AttackExposure) ProtoReflect() protoreflect.Messagefunc (*AttackExposure) Reset
func (x *AttackExposure) Reset()func (*AttackExposure) String
func (x *AttackExposure) String() stringAttackExposure_State
type AttackExposure_State int32This enum defines the various states an AttackExposure can be in.
AttackExposure_STATE_UNSPECIFIED, AttackExposure_CALCULATED, AttackExposure_NOT_CALCULATED
const (
// The state is not specified.
AttackExposure_STATE_UNSPECIFIED AttackExposure_State = 0
// The attack exposure has been calculated.
AttackExposure_CALCULATED AttackExposure_State = 1
// The attack exposure has not been calculated.
AttackExposure_NOT_CALCULATED AttackExposure_State = 2
)func (AttackExposure_State) Descriptor
func (AttackExposure_State) Descriptor() protoreflect.EnumDescriptorfunc (AttackExposure_State) Enum
func (x AttackExposure_State) Enum() *AttackExposure_Statefunc (AttackExposure_State) EnumDescriptor
func (AttackExposure_State) EnumDescriptor() ([]byte, []int)Deprecated: Use AttackExposure_State.Descriptor instead.
func (AttackExposure_State) Number
func (x AttackExposure_State) Number() protoreflect.EnumNumberfunc (AttackExposure_State) String
func (x AttackExposure_State) String() stringfunc (AttackExposure_State) Type
func (AttackExposure_State) Type() protoreflect.EnumTypeAttackPath
type AttackPath struct {
// The attack path name, for example,
//
// `organizations/12/simulations/34/valuedResources/56/attackPaths/78`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// A list of nodes that exist in this attack path.
PathNodes []*AttackPath_AttackPathNode `protobuf:"bytes,2,rep,name=path_nodes,json=pathNodes,proto3" json:"path_nodes,omitempty"`
// A list of the edges between nodes in this attack path.
Edges []*AttackPath_AttackPathEdge `protobuf:"bytes,3,rep,name=edges,proto3" json:"edges,omitempty"`
// contains filtered or unexported fields
}A path that an attacker could take to reach an exposed resource.
func (*AttackPath) Descriptor
func (*AttackPath) Descriptor() ([]byte, []int)Deprecated: Use AttackPath.ProtoReflect.Descriptor instead.
func (*AttackPath) GetEdges
func (x *AttackPath) GetEdges() []*AttackPath_AttackPathEdgefunc (*AttackPath) GetName
func (x *AttackPath) GetName() stringfunc (*AttackPath) GetPathNodes
func (x *AttackPath) GetPathNodes() []*AttackPath_AttackPathNodefunc (*AttackPath) ProtoMessage
func (*AttackPath) ProtoMessage()func (*AttackPath) ProtoReflect
func (x *AttackPath) ProtoReflect() protoreflect.Messagefunc (*AttackPath) Reset
func (x *AttackPath) Reset()func (*AttackPath) String
func (x *AttackPath) String() stringAttackPath_AttackPathEdge
type AttackPath_AttackPathEdge struct {
// The attack node uuid of the source node.
Source string `protobuf:"bytes,1,opt,name=source,proto3" json:"source,omitempty"`
// The attack node uuid of the destination node.
Destination string `protobuf:"bytes,2,opt,name=destination,proto3" json:"destination,omitempty"`
// contains filtered or unexported fields
}Represents a connection between a source node and a destination node in this attack path.
func (*AttackPath_AttackPathEdge) Descriptor
func (*AttackPath_AttackPathEdge) Descriptor() ([]byte, []int)Deprecated: Use AttackPath_AttackPathEdge.ProtoReflect.Descriptor instead.
func (*AttackPath_AttackPathEdge) GetDestination
func (x *AttackPath_AttackPathEdge) GetDestination() stringfunc (*AttackPath_AttackPathEdge) GetSource
func (x *AttackPath_AttackPathEdge) GetSource() stringfunc (*AttackPath_AttackPathEdge) ProtoMessage
func (*AttackPath_AttackPathEdge) ProtoMessage()func (*AttackPath_AttackPathEdge) ProtoReflect
func (x *AttackPath_AttackPathEdge) ProtoReflect() protoreflect.Messagefunc (*AttackPath_AttackPathEdge) Reset
func (x *AttackPath_AttackPathEdge) Reset()func (*AttackPath_AttackPathEdge) String
func (x *AttackPath_AttackPathEdge) String() stringAttackPath_AttackPathNode
type AttackPath_AttackPathNode struct {
// The name of the resource at this point in the attack path.
// The format of the name follows the Cloud Asset Inventory [resource
// name
// format](https://cloud.google.com/asset-inventory/docs/resource-name-format)
Resource string `protobuf:"bytes,1,opt,name=resource,proto3" json:"resource,omitempty"`
// The [supported resource
// type](https://cloud.google.com/asset-inventory/docs/supported-asset-types)
ResourceType string `protobuf:"bytes,2,opt,name=resource_type,json=resourceType,proto3" json:"resource_type,omitempty"`
// Human-readable name of this resource.
DisplayName string `protobuf:"bytes,3,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
// The findings associated with this node in the attack path.
AssociatedFindings []*AttackPath_AttackPathNode_PathNodeAssociatedFinding `protobuf:"bytes,4,rep,name=associated_findings,json=associatedFindings,proto3" json:"associated_findings,omitempty"`
// Unique id of the attack path node.
Uuid string `protobuf:"bytes,5,opt,name=uuid,proto3" json:"uuid,omitempty"`
// A list of attack step nodes that exist in this attack path node.
AttackSteps []*AttackPath_AttackPathNode_AttackStepNode `protobuf:"bytes,6,rep,name=attack_steps,json=attackSteps,proto3" json:"attack_steps,omitempty"`
// contains filtered or unexported fields
}Represents one point that an attacker passes through in this attack path.
func (*AttackPath_AttackPathNode) Descriptor
func (*AttackPath_AttackPathNode) Descriptor() ([]byte, []int)Deprecated: Use AttackPath_AttackPathNode.ProtoReflect.Descriptor instead.
func (*AttackPath_AttackPathNode) GetAssociatedFindings
func (x *AttackPath_AttackPathNode) GetAssociatedFindings() []*AttackPath_AttackPathNode_PathNodeAssociatedFindingfunc (*AttackPath_AttackPathNode) GetAttackSteps
func (x *AttackPath_AttackPathNode) GetAttackSteps() []*AttackPath_AttackPathNode_AttackStepNodefunc (*AttackPath_AttackPathNode) GetDisplayName
func (x *AttackPath_AttackPathNode) GetDisplayName() stringfunc (*AttackPath_AttackPathNode) GetResource
func (x *AttackPath_AttackPathNode) GetResource() stringfunc (*AttackPath_AttackPathNode) GetResourceType
func (x *AttackPath_AttackPathNode) GetResourceType() stringfunc (*AttackPath_AttackPathNode) GetUuid
func (x *AttackPath_AttackPathNode) GetUuid() stringfunc (*AttackPath_AttackPathNode) ProtoMessage
func (*AttackPath_AttackPathNode) ProtoMessage()func (*AttackPath_AttackPathNode) ProtoReflect
func (x *AttackPath_AttackPathNode) ProtoReflect() protoreflect.Messagefunc (*AttackPath_AttackPathNode) Reset
func (x *AttackPath_AttackPathNode) Reset()func (*AttackPath_AttackPathNode) String
func (x *AttackPath_AttackPathNode) String() stringAttackPath_AttackPathNode_AttackStepNode
type AttackPath_AttackPathNode_AttackStepNode struct {
// Unique ID for one Node
Uuid string `protobuf:"bytes,1,opt,name=uuid,proto3" json:"uuid,omitempty"`
// Attack step type. Can be either AND, OR or DEFENSE
Type AttackPath_AttackPathNode_NodeType `protobuf:"varint,2,opt,name=type,proto3,enum=google.cloud.securitycenter.v2.AttackPath_AttackPathNode_NodeType" json:"type,omitempty"`
// User friendly name of the attack step
DisplayName string `protobuf:"bytes,3,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
// Attack step labels for metadata
Labels map[string]string `protobuf:"bytes,4,rep,name=labels,proto3" json:"labels,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
// Attack step description
Description string `protobuf:"bytes,5,opt,name=description,proto3" json:"description,omitempty"`
// contains filtered or unexported fields
}Detailed steps the attack can take between path nodes.
func (*AttackPath_AttackPathNode_AttackStepNode) Descriptor
func (*AttackPath_AttackPathNode_AttackStepNode) Descriptor() ([]byte, []int)Deprecated: Use AttackPath_AttackPathNode_AttackStepNode.ProtoReflect.Descriptor instead.
func (*AttackPath_AttackPathNode_AttackStepNode) GetDescription
func (x *AttackPath_AttackPathNode_AttackStepNode) GetDescription() stringfunc (*AttackPath_AttackPathNode_AttackStepNode) GetDisplayName
func (x *AttackPath_AttackPathNode_AttackStepNode) GetDisplayName() stringfunc (*AttackPath_AttackPathNode_AttackStepNode) GetLabels
func (x *AttackPath_AttackPathNode_AttackStepNode) GetLabels() map[string]stringfunc (*AttackPath_AttackPathNode_AttackStepNode) GetType
func (x *AttackPath_AttackPathNode_AttackStepNode) GetType() AttackPath_AttackPathNode_NodeTypefunc (*AttackPath_AttackPathNode_AttackStepNode) GetUuid
func (x *AttackPath_AttackPathNode_AttackStepNode) GetUuid() stringfunc (*AttackPath_AttackPathNode_AttackStepNode) ProtoMessage
func (*AttackPath_AttackPathNode_AttackStepNode) ProtoMessage()func (*AttackPath_AttackPathNode_AttackStepNode) ProtoReflect
func (x *AttackPath_AttackPathNode_AttackStepNode) ProtoReflect() protoreflect.Messagefunc (*AttackPath_AttackPathNode_AttackStepNode) Reset
func (x *AttackPath_AttackPathNode_AttackStepNode) Reset()func (*AttackPath_AttackPathNode_AttackStepNode) String
func (x *AttackPath_AttackPathNode_AttackStepNode) String() stringAttackPath_AttackPathNode_NodeType
type AttackPath_AttackPathNode_NodeType int32The type of the incoming attack step node.
AttackPath_AttackPathNode_NODE_TYPE_UNSPECIFIED, AttackPath_AttackPathNode_NODE_TYPE_AND, AttackPath_AttackPathNode_NODE_TYPE_OR, AttackPath_AttackPathNode_NODE_TYPE_DEFENSE, AttackPath_AttackPathNode_NODE_TYPE_ATTACKER
const (
// Type not specified
AttackPath_AttackPathNode_NODE_TYPE_UNSPECIFIED AttackPath_AttackPathNode_NodeType = 0
// Incoming edge joined with AND
AttackPath_AttackPathNode_NODE_TYPE_AND AttackPath_AttackPathNode_NodeType = 1
// Incoming edge joined with OR
AttackPath_AttackPathNode_NODE_TYPE_OR AttackPath_AttackPathNode_NodeType = 2
// Incoming edge is defense
AttackPath_AttackPathNode_NODE_TYPE_DEFENSE AttackPath_AttackPathNode_NodeType = 3
// Incoming edge is attacker
AttackPath_AttackPathNode_NODE_TYPE_ATTACKER AttackPath_AttackPathNode_NodeType = 4
)func (AttackPath_AttackPathNode_NodeType) Descriptor
func (AttackPath_AttackPathNode_NodeType) Descriptor() protoreflect.EnumDescriptorfunc (AttackPath_AttackPathNode_NodeType) Enum
func (x AttackPath_AttackPathNode_NodeType) Enum() *AttackPath_AttackPathNode_NodeTypefunc (AttackPath_AttackPathNode_NodeType) EnumDescriptor
func (AttackPath_AttackPathNode_NodeType) EnumDescriptor() ([]byte, []int)Deprecated: Use AttackPath_AttackPathNode_NodeType.Descriptor instead.
func (AttackPath_AttackPathNode_NodeType) Number
func (x AttackPath_AttackPathNode_NodeType) Number() protoreflect.EnumNumberfunc (AttackPath_AttackPathNode_NodeType) String
func (x AttackPath_AttackPathNode_NodeType) String() stringfunc (AttackPath_AttackPathNode_NodeType) Type
func (AttackPath_AttackPathNode_NodeType) Type() protoreflect.EnumTypeAttackPath_AttackPathNode_PathNodeAssociatedFinding
type AttackPath_AttackPathNode_PathNodeAssociatedFinding struct {
// Canonical name of the associated findings. Example:
// `organizations/123/sources/456/findings/789`
CanonicalFinding string `protobuf:"bytes,1,opt,name=canonical_finding,json=canonicalFinding,proto3" json:"canonical_finding,omitempty"`
// The additional taxonomy group within findings from a given source.
FindingCategory string `protobuf:"bytes,2,opt,name=finding_category,json=findingCategory,proto3" json:"finding_category,omitempty"`
// Full resource name of the finding.
Name string `protobuf:"bytes,3,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}A finding that is associated with this node in the attack path.
func (*AttackPath_AttackPathNode_PathNodeAssociatedFinding) Descriptor
func (*AttackPath_AttackPathNode_PathNodeAssociatedFinding) Descriptor() ([]byte, []int)Deprecated: Use AttackPath_AttackPathNode_PathNodeAssociatedFinding.ProtoReflect.Descriptor instead.
func (*AttackPath_AttackPathNode_PathNodeAssociatedFinding) GetCanonicalFinding
func (x *AttackPath_AttackPathNode_PathNodeAssociatedFinding) GetCanonicalFinding() stringfunc (*AttackPath_AttackPathNode_PathNodeAssociatedFinding) GetFindingCategory
func (x *AttackPath_AttackPathNode_PathNodeAssociatedFinding) GetFindingCategory() stringfunc (*AttackPath_AttackPathNode_PathNodeAssociatedFinding) GetName
func (x *AttackPath_AttackPathNode_PathNodeAssociatedFinding) GetName() stringfunc (*AttackPath_AttackPathNode_PathNodeAssociatedFinding) ProtoMessage
func (*AttackPath_AttackPathNode_PathNodeAssociatedFinding) ProtoMessage()func (*AttackPath_AttackPathNode_PathNodeAssociatedFinding) ProtoReflect
func (x *AttackPath_AttackPathNode_PathNodeAssociatedFinding) ProtoReflect() protoreflect.Messagefunc (*AttackPath_AttackPathNode_PathNodeAssociatedFinding) Reset
func (x *AttackPath_AttackPathNode_PathNodeAssociatedFinding) Reset()func (*AttackPath_AttackPathNode_PathNodeAssociatedFinding) String
func (x *AttackPath_AttackPathNode_PathNodeAssociatedFinding) String() stringAwsMetadata
type AwsMetadata struct {
// The AWS organization associated with the resource.
Organization *AwsMetadata_AwsOrganization `protobuf:"bytes,1,opt,name=organization,proto3" json:"organization,omitempty"`
// A list of AWS organizational units associated with the resource, ordered
// from lowest level (closest to the account) to highest level.
OrganizationalUnits []*AwsMetadata_AwsOrganizationalUnit `protobuf:"bytes,2,rep,name=organizational_units,json=organizationalUnits,proto3" json:"organizational_units,omitempty"`
// The AWS account associated with the resource.
Account *AwsMetadata_AwsAccount `protobuf:"bytes,3,opt,name=account,proto3" json:"account,omitempty"`
// contains filtered or unexported fields
}AWS metadata associated with the resource, only applicable if the finding's cloud provider is Amazon Web Services.
func (*AwsMetadata) Descriptor
func (*AwsMetadata) Descriptor() ([]byte, []int)Deprecated: Use AwsMetadata.ProtoReflect.Descriptor instead.
func (*AwsMetadata) GetAccount
func (x *AwsMetadata) GetAccount() *AwsMetadata_AwsAccountfunc (*AwsMetadata) GetOrganization
func (x *AwsMetadata) GetOrganization() *AwsMetadata_AwsOrganizationfunc (*AwsMetadata) GetOrganizationalUnits
func (x *AwsMetadata) GetOrganizationalUnits() []*AwsMetadata_AwsOrganizationalUnitfunc (*AwsMetadata) ProtoMessage
func (*AwsMetadata) ProtoMessage()func (*AwsMetadata) ProtoReflect
func (x *AwsMetadata) ProtoReflect() protoreflect.Messagefunc (*AwsMetadata) Reset
func (x *AwsMetadata) Reset()func (*AwsMetadata) String
func (x *AwsMetadata) String() stringAwsMetadata_AwsAccount
type AwsMetadata_AwsAccount struct {
// The unique identifier (ID) of the account, containing exactly 12 digits.
Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
// The friendly name of this account.
Name string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}An AWS account that is a member of an organization.
func (*AwsMetadata_AwsAccount) Descriptor
func (*AwsMetadata_AwsAccount) Descriptor() ([]byte, []int)Deprecated: Use AwsMetadata_AwsAccount.ProtoReflect.Descriptor instead.
func (*AwsMetadata_AwsAccount) GetId
func (x *AwsMetadata_AwsAccount) GetId() stringfunc (*AwsMetadata_AwsAccount) GetName
func (x *AwsMetadata_AwsAccount) GetName() stringfunc (*AwsMetadata_AwsAccount) ProtoMessage
func (*AwsMetadata_AwsAccount) ProtoMessage()func (*AwsMetadata_AwsAccount) ProtoReflect
func (x *AwsMetadata_AwsAccount) ProtoReflect() protoreflect.Messagefunc (*AwsMetadata_AwsAccount) Reset
func (x *AwsMetadata_AwsAccount) Reset()func (*AwsMetadata_AwsAccount) String
func (x *AwsMetadata_AwsAccount) String() stringAwsMetadata_AwsOrganization
type AwsMetadata_AwsOrganization struct {
// The unique identifier (ID) for the organization. The regex pattern for an
// organization ID string requires "o-" followed by from 10 to 32 lowercase
// letters or digits.
Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
// contains filtered or unexported fields
}An organization is a collection of accounts that are centrally managed together using consolidated billing, organized hierarchically with organizational units (OUs), and controlled with policies.
func (*AwsMetadata_AwsOrganization) Descriptor
func (*AwsMetadata_AwsOrganization) Descriptor() ([]byte, []int)Deprecated: Use AwsMetadata_AwsOrganization.ProtoReflect.Descriptor instead.
func (*AwsMetadata_AwsOrganization) GetId
func (x *AwsMetadata_AwsOrganization) GetId() stringfunc (*AwsMetadata_AwsOrganization) ProtoMessage
func (*AwsMetadata_AwsOrganization) ProtoMessage()func (*AwsMetadata_AwsOrganization) ProtoReflect
func (x *AwsMetadata_AwsOrganization) ProtoReflect() protoreflect.Messagefunc (*AwsMetadata_AwsOrganization) Reset
func (x *AwsMetadata_AwsOrganization) Reset()func (*AwsMetadata_AwsOrganization) String
func (x *AwsMetadata_AwsOrganization) String() stringAwsMetadata_AwsOrganizationalUnit
type AwsMetadata_AwsOrganizationalUnit struct {
// The unique identifier (ID) associated with this OU. The regex pattern for
// an organizational unit ID string requires "ou-" followed by from 4 to 32
// lowercase letters or digits (the ID of the root that contains the OU).
// This string is followed by a second "-" dash and from 8 to 32 additional
// lowercase letters or digits. For example, "ou-ab12-cd34ef56".
Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
// The friendly name of the OU.
Name string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}An Organizational Unit (OU) is a container of AWS accounts within a root of an organization. Policies that are attached to an OU apply to all accounts contained in that OU and in any child OUs.
func (*AwsMetadata_AwsOrganizationalUnit) Descriptor
func (*AwsMetadata_AwsOrganizationalUnit) Descriptor() ([]byte, []int)Deprecated: Use AwsMetadata_AwsOrganizationalUnit.ProtoReflect.Descriptor instead.
func (*AwsMetadata_AwsOrganizationalUnit) GetId
func (x *AwsMetadata_AwsOrganizationalUnit) GetId() stringfunc (*AwsMetadata_AwsOrganizationalUnit) GetName
func (x *AwsMetadata_AwsOrganizationalUnit) GetName() stringfunc (*AwsMetadata_AwsOrganizationalUnit) ProtoMessage
func (*AwsMetadata_AwsOrganizationalUnit) ProtoMessage()func (*AwsMetadata_AwsOrganizationalUnit) ProtoReflect
func (x *AwsMetadata_AwsOrganizationalUnit) ProtoReflect() protoreflect.Messagefunc (*AwsMetadata_AwsOrganizationalUnit) Reset
func (x *AwsMetadata_AwsOrganizationalUnit) Reset()func (*AwsMetadata_AwsOrganizationalUnit) String
func (x *AwsMetadata_AwsOrganizationalUnit) String() stringAzureMetadata
type AzureMetadata struct {
// A list of Azure management groups associated with the resource, ordered
// from lowest level (closest to the subscription) to highest level.
ManagementGroups []*AzureMetadata_AzureManagementGroup `protobuf:"bytes,1,rep,name=management_groups,json=managementGroups,proto3" json:"management_groups,omitempty"`
// The Azure subscription associated with the resource.
Subscription *AzureMetadata_AzureSubscription `protobuf:"bytes,2,opt,name=subscription,proto3" json:"subscription,omitempty"`
// The Azure resource group associated with the resource.
ResourceGroup *AzureMetadata_AzureResourceGroup `protobuf:"bytes,3,opt,name=resource_group,json=resourceGroup,proto3" json:"resource_group,omitempty"`
// The Azure Entra tenant associated with the resource.
Tenant *AzureMetadata_AzureTenant `protobuf:"bytes,7,opt,name=tenant,proto3" json:"tenant,omitempty"`
// contains filtered or unexported fields
}Azure metadata associated with the resource, only applicable if the finding's cloud provider is Microsoft Azure.
func (*AzureMetadata) Descriptor
func (*AzureMetadata) Descriptor() ([]byte, []int)Deprecated: Use AzureMetadata.ProtoReflect.Descriptor instead.
func (*AzureMetadata) GetManagementGroups
func (x *AzureMetadata) GetManagementGroups() []*AzureMetadata_AzureManagementGroupfunc (*AzureMetadata) GetResourceGroup
func (x *AzureMetadata) GetResourceGroup() *AzureMetadata_AzureResourceGroupfunc (*AzureMetadata) GetSubscription
func (x *AzureMetadata) GetSubscription() *AzureMetadata_AzureSubscriptionfunc (*AzureMetadata) GetTenant
func (x *AzureMetadata) GetTenant() *AzureMetadata_AzureTenantfunc (*AzureMetadata) ProtoMessage
func (*AzureMetadata) ProtoMessage()func (*AzureMetadata) ProtoReflect
func (x *AzureMetadata) ProtoReflect() protoreflect.Messagefunc (*AzureMetadata) Reset
func (x *AzureMetadata) Reset()func (*AzureMetadata) String
func (x *AzureMetadata) String() stringAzureMetadata_AzureManagementGroup
type AzureMetadata_AzureManagementGroup struct {
// The UUID of the Azure management group, for example,
// `20000000-0001-0000-0000-000000000000`.
Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
// The display name of the Azure management group.
DisplayName string `protobuf:"bytes,2,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
// contains filtered or unexported fields
}Represents an Azure management group.
func (*AzureMetadata_AzureManagementGroup) Descriptor
func (*AzureMetadata_AzureManagementGroup) Descriptor() ([]byte, []int)Deprecated: Use AzureMetadata_AzureManagementGroup.ProtoReflect.Descriptor instead.
func (*AzureMetadata_AzureManagementGroup) GetDisplayName
func (x *AzureMetadata_AzureManagementGroup) GetDisplayName() stringfunc (*AzureMetadata_AzureManagementGroup) GetId
func (x *AzureMetadata_AzureManagementGroup) GetId() stringfunc (*AzureMetadata_AzureManagementGroup) ProtoMessage
func (*AzureMetadata_AzureManagementGroup) ProtoMessage()func (*AzureMetadata_AzureManagementGroup) ProtoReflect
func (x *AzureMetadata_AzureManagementGroup) ProtoReflect() protoreflect.Messagefunc (*AzureMetadata_AzureManagementGroup) Reset
func (x *AzureMetadata_AzureManagementGroup) Reset()func (*AzureMetadata_AzureManagementGroup) String
func (x *AzureMetadata_AzureManagementGroup) String() stringAzureMetadata_AzureResourceGroup
type AzureMetadata_AzureResourceGroup struct {
// The ID of the Azure resource group.
Id string `protobuf:"bytes,2,opt,name=id,proto3" json:"id,omitempty"`
// The name of the Azure resource group. This is not a UUID.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Represents an Azure resource group.
func (*AzureMetadata_AzureResourceGroup) Descriptor
func (*AzureMetadata_AzureResourceGroup) Descriptor() ([]byte, []int)Deprecated: Use AzureMetadata_AzureResourceGroup.ProtoReflect.Descriptor instead.
func (*AzureMetadata_AzureResourceGroup) GetId
func (x *AzureMetadata_AzureResourceGroup) GetId() stringfunc (*AzureMetadata_AzureResourceGroup) GetName
func (x *AzureMetadata_AzureResourceGroup) GetName() stringfunc (*AzureMetadata_AzureResourceGroup) ProtoMessage
func (*AzureMetadata_AzureResourceGroup) ProtoMessage()func (*AzureMetadata_AzureResourceGroup) ProtoReflect
func (x *AzureMetadata_AzureResourceGroup) ProtoReflect() protoreflect.Messagefunc (*AzureMetadata_AzureResourceGroup) Reset
func (x *AzureMetadata_AzureResourceGroup) Reset()func (*AzureMetadata_AzureResourceGroup) String
func (x *AzureMetadata_AzureResourceGroup) String() stringAzureMetadata_AzureSubscription
type AzureMetadata_AzureSubscription struct {
// The UUID of the Azure subscription, for example,
// `291bba3f-e0a5-47bc-a099-3bdcb2a50a05`.
Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
// The display name of the Azure subscription.
DisplayName string `protobuf:"bytes,2,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
// contains filtered or unexported fields
}Represents an Azure subscription.
func (*AzureMetadata_AzureSubscription) Descriptor
func (*AzureMetadata_AzureSubscription) Descriptor() ([]byte, []int)Deprecated: Use AzureMetadata_AzureSubscription.ProtoReflect.Descriptor instead.
func (*AzureMetadata_AzureSubscription) GetDisplayName
func (x *AzureMetadata_AzureSubscription) GetDisplayName() stringfunc (*AzureMetadata_AzureSubscription) GetId
func (x *AzureMetadata_AzureSubscription) GetId() stringfunc (*AzureMetadata_AzureSubscription) ProtoMessage
func (*AzureMetadata_AzureSubscription) ProtoMessage()func (*AzureMetadata_AzureSubscription) ProtoReflect
func (x *AzureMetadata_AzureSubscription) ProtoReflect() protoreflect.Messagefunc (*AzureMetadata_AzureSubscription) Reset
func (x *AzureMetadata_AzureSubscription) Reset()func (*AzureMetadata_AzureSubscription) String
func (x *AzureMetadata_AzureSubscription) String() stringAzureMetadata_AzureTenant
type AzureMetadata_AzureTenant struct {
// The ID of the Microsoft Entra tenant, for example,
// "a11aaa11-aa11-1aa1-11aa-1aaa11a".
Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
// The display name of the Azure tenant.
DisplayName string `protobuf:"bytes,2,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
// contains filtered or unexported fields
}Represents a Microsoft Entra tenant.
func (*AzureMetadata_AzureTenant) Descriptor
func (*AzureMetadata_AzureTenant) Descriptor() ([]byte, []int)Deprecated: Use AzureMetadata_AzureTenant.ProtoReflect.Descriptor instead.
func (*AzureMetadata_AzureTenant) GetDisplayName
func (x *AzureMetadata_AzureTenant) GetDisplayName() stringfunc (*AzureMetadata_AzureTenant) GetId
func (x *AzureMetadata_AzureTenant) GetId() stringfunc (*AzureMetadata_AzureTenant) ProtoMessage
func (*AzureMetadata_AzureTenant) ProtoMessage()func (*AzureMetadata_AzureTenant) ProtoReflect
func (x *AzureMetadata_AzureTenant) ProtoReflect() protoreflect.Messagefunc (*AzureMetadata_AzureTenant) Reset
func (x *AzureMetadata_AzureTenant) Reset()func (*AzureMetadata_AzureTenant) String
func (x *AzureMetadata_AzureTenant) String() stringBackupDisasterRecovery
type BackupDisasterRecovery struct {
// The name of a Backup and DR template which comprises one or more backup
// policies. See the [Backup and DR
// documentation](https://cloud.google.com/backup-disaster-recovery/docs/concepts/backup-plan#temp)
// for more information. For example, `snap-ov`.
BackupTemplate string `protobuf:"bytes,1,opt,name=backup_template,json=backupTemplate,proto3" json:"backup_template,omitempty"`
// The names of Backup and DR policies that are associated with a template
// and that define when to run a backup, how frequently to run a backup, and
// how long to retain the backup image. For example, `onvaults`.
Policies []string `protobuf:"bytes,2,rep,name=policies,proto3" json:"policies,omitempty"`
// The name of a Backup and DR host, which is managed by the backup and
// recovery appliance and known to the management console. The host can be of
// type Generic (for example, Compute Engine, SQL Server, Oracle DB, SMB file
// system, etc.), vCenter, or an ESX server. See the [Backup and DR
// documentation on
// hosts](https://cloud.google.com/backup-disaster-recovery/docs/configuration/manage-hosts-and-their-applications)
// for more information. For example, `centos7-01`.
Host string `protobuf:"bytes,3,opt,name=host,proto3" json:"host,omitempty"`
// The names of Backup and DR applications. An application is a VM, database,
// or file system on a managed host monitored by a backup and recovery
// appliance. For example, `centos7-01-vol00`, `centos7-01-vol01`,
// `centos7-01-vol02`.
Applications []string `protobuf:"bytes,4,rep,name=applications,proto3" json:"applications,omitempty"`
// The name of the Backup and DR storage pool that the backup and recovery
// appliance is storing data in. The storage pool could be of type Cloud,
// Primary, Snapshot, or OnVault. See the [Backup and DR documentation on
// storage
// pools](https://cloud.google.com/backup-disaster-recovery/docs/concepts/storage-pools).
// For example, `DiskPoolOne`.
StoragePool string `protobuf:"bytes,5,opt,name=storage_pool,json=storagePool,proto3" json:"storage_pool,omitempty"`
// The names of Backup and DR advanced policy options of a policy applying to
// an application. See the [Backup and DR documentation on policy
// options](https://cloud.google.com/backup-disaster-recovery/docs/create-plan/policy-settings).
// For example, `skipofflineappsincongrp, nounmap`.
PolicyOptions []string `protobuf:"bytes,6,rep,name=policy_options,json=policyOptions,proto3" json:"policy_options,omitempty"`
// The name of the Backup and DR resource profile that specifies the storage
// media for backups of application and VM data. See the [Backup and DR
// documentation on
// profiles](https://cloud.google.com/backup-disaster-recovery/docs/concepts/backup-plan#profile).
// For example, `GCP`.
Profile string `protobuf:"bytes,7,opt,name=profile,proto3" json:"profile,omitempty"`
// The name of the Backup and DR appliance that captures, moves, and manages
// the lifecycle of backup data. For example, `backup-server-57137`.
Appliance string `protobuf:"bytes,8,opt,name=appliance,proto3" json:"appliance,omitempty"`
// The backup type of the Backup and DR image.
// For example, `Snapshot`, `Remote Snapshot`, `OnVault`.
BackupType string `protobuf:"bytes,9,opt,name=backup_type,json=backupType,proto3" json:"backup_type,omitempty"`
// The timestamp at which the Backup and DR backup was created.
BackupCreateTime *timestamppb.Timestamp `protobuf:"bytes,10,opt,name=backup_create_time,json=backupCreateTime,proto3" json:"backup_create_time,omitempty"`
// contains filtered or unexported fields
}Information related to Google Cloud Backup and DR Service findings.
func (*BackupDisasterRecovery) Descriptor
func (*BackupDisasterRecovery) Descriptor() ([]byte, []int)Deprecated: Use BackupDisasterRecovery.ProtoReflect.Descriptor instead.
func (*BackupDisasterRecovery) GetAppliance
func (x *BackupDisasterRecovery) GetAppliance() stringfunc (*BackupDisasterRecovery) GetApplications
func (x *BackupDisasterRecovery) GetApplications() []stringfunc (*BackupDisasterRecovery) GetBackupCreateTime
func (x *BackupDisasterRecovery) GetBackupCreateTime() *timestamppb.Timestampfunc (*BackupDisasterRecovery) GetBackupTemplate
func (x *BackupDisasterRecovery) GetBackupTemplate() stringfunc (*BackupDisasterRecovery) GetBackupType
func (x *BackupDisasterRecovery) GetBackupType() stringfunc (*BackupDisasterRecovery) GetHost
func (x *BackupDisasterRecovery) GetHost() stringfunc (*BackupDisasterRecovery) GetPolicies
func (x *BackupDisasterRecovery) GetPolicies() []stringfunc (*BackupDisasterRecovery) GetPolicyOptions
func (x *BackupDisasterRecovery) GetPolicyOptions() []stringfunc (*BackupDisasterRecovery) GetProfile
func (x *BackupDisasterRecovery) GetProfile() stringfunc (*BackupDisasterRecovery) GetStoragePool
func (x *BackupDisasterRecovery) GetStoragePool() stringfunc (*BackupDisasterRecovery) ProtoMessage
func (*BackupDisasterRecovery) ProtoMessage()func (*BackupDisasterRecovery) ProtoReflect
func (x *BackupDisasterRecovery) ProtoReflect() protoreflect.Messagefunc (*BackupDisasterRecovery) Reset
func (x *BackupDisasterRecovery) Reset()func (*BackupDisasterRecovery) String
func (x *BackupDisasterRecovery) String() stringBatchCreateResourceValueConfigsRequest
type BatchCreateResourceValueConfigsRequest struct {
// Required. Resource name of the new ResourceValueConfig's parent.
// The parent field in the CreateResourceValueConfigRequest
// messages must either be empty or match this field.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Required. The resource value configs to be created.
Requests []*CreateResourceValueConfigRequest `protobuf:"bytes,2,rep,name=requests,proto3" json:"requests,omitempty"`
// contains filtered or unexported fields
}Request message to create multiple resource value configs
func (*BatchCreateResourceValueConfigsRequest) Descriptor
func (*BatchCreateResourceValueConfigsRequest) Descriptor() ([]byte, []int)Deprecated: Use BatchCreateResourceValueConfigsRequest.ProtoReflect.Descriptor instead.
func (*BatchCreateResourceValueConfigsRequest) GetParent
func (x *BatchCreateResourceValueConfigsRequest) GetParent() stringfunc (*BatchCreateResourceValueConfigsRequest) GetRequests
func (x *BatchCreateResourceValueConfigsRequest) GetRequests() []*CreateResourceValueConfigRequestfunc (*BatchCreateResourceValueConfigsRequest) ProtoMessage
func (*BatchCreateResourceValueConfigsRequest) ProtoMessage()func (*BatchCreateResourceValueConfigsRequest) ProtoReflect
func (x *BatchCreateResourceValueConfigsRequest) ProtoReflect() protoreflect.Messagefunc (*BatchCreateResourceValueConfigsRequest) Reset
func (x *BatchCreateResourceValueConfigsRequest) Reset()func (*BatchCreateResourceValueConfigsRequest) String
func (x *BatchCreateResourceValueConfigsRequest) String() stringBatchCreateResourceValueConfigsResponse
type BatchCreateResourceValueConfigsResponse struct {
// The resource value configs created
ResourceValueConfigs []*ResourceValueConfig `protobuf:"bytes,1,rep,name=resource_value_configs,json=resourceValueConfigs,proto3" json:"resource_value_configs,omitempty"`
// contains filtered or unexported fields
}Response message for BatchCreateResourceValueConfigs
func (*BatchCreateResourceValueConfigsResponse) Descriptor
func (*BatchCreateResourceValueConfigsResponse) Descriptor() ([]byte, []int)Deprecated: Use BatchCreateResourceValueConfigsResponse.ProtoReflect.Descriptor instead.
func (*BatchCreateResourceValueConfigsResponse) GetResourceValueConfigs
func (x *BatchCreateResourceValueConfigsResponse) GetResourceValueConfigs() []*ResourceValueConfigfunc (*BatchCreateResourceValueConfigsResponse) ProtoMessage
func (*BatchCreateResourceValueConfigsResponse) ProtoMessage()func (*BatchCreateResourceValueConfigsResponse) ProtoReflect
func (x *BatchCreateResourceValueConfigsResponse) ProtoReflect() protoreflect.Messagefunc (*BatchCreateResourceValueConfigsResponse) Reset
func (x *BatchCreateResourceValueConfigsResponse) Reset()func (*BatchCreateResourceValueConfigsResponse) String
func (x *BatchCreateResourceValueConfigsResponse) String() stringBigQueryDestination
type BigQueryDestination struct {
// Required. The relative resource name of the destination dataset, in the
// form projects/{projectId}/datasets/{datasetId}.
Dataset string `protobuf:"bytes,1,opt,name=dataset,proto3" json:"dataset,omitempty"`
// contains filtered or unexported fields
}The destination big query dataset to export findings to.
func (*BigQueryDestination) Descriptor
func (*BigQueryDestination) Descriptor() ([]byte, []int)Deprecated: Use BigQueryDestination.ProtoReflect.Descriptor instead.
func (*BigQueryDestination) GetDataset
func (x *BigQueryDestination) GetDataset() stringfunc (*BigQueryDestination) ProtoMessage
func (*BigQueryDestination) ProtoMessage()func (*BigQueryDestination) ProtoReflect
func (x *BigQueryDestination) ProtoReflect() protoreflect.Messagefunc (*BigQueryDestination) Reset
func (x *BigQueryDestination) Reset()func (*BigQueryDestination) String
func (x *BigQueryDestination) String() stringBigQueryExport
type BigQueryExport struct {
// Identifier. The relative resource name of this export. See:
// https://cloud.google.com/apis/design/resource_names#relative_resource_name.
// The following list shows some examples:
//
// +
// `organizations/{organization_id}/locations/{location_id}/bigQueryExports/{export_id}`
// + `folders/{folder_id}/locations/{location_id}/bigQueryExports/{export_id}`
// +
// `projects/{project_id}/locations/{location_id}/bigQueryExports/{export_id}`
//
// This field is provided in responses, and is ignored when provided in create
// requests.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The description of the export (max of 1024 characters).
Description string `protobuf:"bytes,2,opt,name=description,proto3" json:"description,omitempty"`
// Expression that defines the filter to apply across create/update events
// of findings. The expression is a list of zero or more restrictions combined
// via logical operators `AND` and `OR`. Parentheses are supported, and `OR`
// has higher precedence than `AND`.
//
// Restrictions have the form `Configures how to deliver Findings to BigQuery Instance.
func (*BigQueryExport) Descriptor
func (*BigQueryExport) Descriptor() ([]byte, []int)Deprecated: Use BigQueryExport.ProtoReflect.Descriptor instead.
func (*BigQueryExport) GetCreateTime
func (x *BigQueryExport) GetCreateTime() *timestamppb.Timestampfunc (*BigQueryExport) GetDataset
func (x *BigQueryExport) GetDataset() stringfunc (*BigQueryExport) GetDescription
func (x *BigQueryExport) GetDescription() stringfunc (*BigQueryExport) GetFilter
func (x *BigQueryExport) GetFilter() stringfunc (*BigQueryExport) GetMostRecentEditor
func (x *BigQueryExport) GetMostRecentEditor() stringfunc (*BigQueryExport) GetName
func (x *BigQueryExport) GetName() stringfunc (*BigQueryExport) GetPrincipal
func (x *BigQueryExport) GetPrincipal() stringfunc (*BigQueryExport) GetUpdateTime
func (x *BigQueryExport) GetUpdateTime() *timestamppb.Timestampfunc (*BigQueryExport) ProtoMessage
func (*BigQueryExport) ProtoMessage()func (*BigQueryExport) ProtoReflect
func (x *BigQueryExport) ProtoReflect() protoreflect.Messagefunc (*BigQueryExport) Reset
func (x *BigQueryExport) Reset()func (*BigQueryExport) String
func (x *BigQueryExport) String() stringBulkMuteFindingsRequest
type BulkMuteFindingsRequest struct {
// Required. The parent, at which bulk action needs to be applied. If no
// location is specified, findings are updated in global. The following list
// shows some examples:
//
// + `organizations/[organization_id]`
// + `organizations/[organization_id]/locations/[location_id]`
// + `folders/[folder_id]`
// + `folders/[folder_id]/locations/[location_id]`
// + `projects/[project_id]`
// + `projects/[project_id]/locations/[location_id]`
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Expression that identifies findings that should be updated.
// The expression is a list of zero or more restrictions combined
// via logical operators `AND` and `OR`. Parentheses are supported, and `OR`
// has higher precedence than `AND`.
//
// Restrictions have the form `Request message for bulk findings update.
Note:
- If multiple bulk update requests match the same resource, the order in which they get executed is not defined.
- Once a bulk operation is started, there is no way to stop it.
func (*BulkMuteFindingsRequest) Descriptor
func (*BulkMuteFindingsRequest) Descriptor() ([]byte, []int)Deprecated: Use BulkMuteFindingsRequest.ProtoReflect.Descriptor instead.
func (*BulkMuteFindingsRequest) GetFilter
func (x *BulkMuteFindingsRequest) GetFilter() stringfunc (*BulkMuteFindingsRequest) GetMuteState
func (x *BulkMuteFindingsRequest) GetMuteState() BulkMuteFindingsRequest_MuteStatefunc (*BulkMuteFindingsRequest) GetParent
func (x *BulkMuteFindingsRequest) GetParent() stringfunc (*BulkMuteFindingsRequest) ProtoMessage
func (*BulkMuteFindingsRequest) ProtoMessage()func (*BulkMuteFindingsRequest) ProtoReflect
func (x *BulkMuteFindingsRequest) ProtoReflect() protoreflect.Messagefunc (*BulkMuteFindingsRequest) Reset
func (x *BulkMuteFindingsRequest) Reset()func (*BulkMuteFindingsRequest) String
func (x *BulkMuteFindingsRequest) String() stringBulkMuteFindingsRequest_MuteState
type BulkMuteFindingsRequest_MuteState int32The mute state.
BulkMuteFindingsRequest_MUTE_STATE_UNSPECIFIED, BulkMuteFindingsRequest_MUTED, BulkMuteFindingsRequest_UNDEFINED
const (
// Unused.
BulkMuteFindingsRequest_MUTE_STATE_UNSPECIFIED BulkMuteFindingsRequest_MuteState = 0
// Matching findings will be muted (default).
BulkMuteFindingsRequest_MUTED BulkMuteFindingsRequest_MuteState = 1
// Matching findings will have their mute state cleared.
BulkMuteFindingsRequest_UNDEFINED BulkMuteFindingsRequest_MuteState = 2
)func (BulkMuteFindingsRequest_MuteState) Descriptor
func (BulkMuteFindingsRequest_MuteState) Descriptor() protoreflect.EnumDescriptorfunc (BulkMuteFindingsRequest_MuteState) Enum
func (x BulkMuteFindingsRequest_MuteState) Enum() *BulkMuteFindingsRequest_MuteStatefunc (BulkMuteFindingsRequest_MuteState) EnumDescriptor
func (BulkMuteFindingsRequest_MuteState) EnumDescriptor() ([]byte, []int)Deprecated: Use BulkMuteFindingsRequest_MuteState.Descriptor instead.
func (BulkMuteFindingsRequest_MuteState) Number
func (x BulkMuteFindingsRequest_MuteState) Number() protoreflect.EnumNumberfunc (BulkMuteFindingsRequest_MuteState) String
func (x BulkMuteFindingsRequest_MuteState) String() stringfunc (BulkMuteFindingsRequest_MuteState) Type
func (BulkMuteFindingsRequest_MuteState) Type() protoreflect.EnumTypeBulkMuteFindingsResponse
type BulkMuteFindingsResponse struct {
// contains filtered or unexported fields
}The response to a BulkMute request. Contains the LRO information.
func (*BulkMuteFindingsResponse) Descriptor
func (*BulkMuteFindingsResponse) Descriptor() ([]byte, []int)Deprecated: Use BulkMuteFindingsResponse.ProtoReflect.Descriptor instead.
func (*BulkMuteFindingsResponse) ProtoMessage
func (*BulkMuteFindingsResponse) ProtoMessage()func (*BulkMuteFindingsResponse) ProtoReflect
func (x *BulkMuteFindingsResponse) ProtoReflect() protoreflect.Messagefunc (*BulkMuteFindingsResponse) Reset
func (x *BulkMuteFindingsResponse) Reset()func (*BulkMuteFindingsResponse) String
func (x *BulkMuteFindingsResponse) String() stringChokepoint
type Chokepoint struct {
// List of resource names of findings associated with this chokepoint.
// For example, organizations/123/sources/456/findings/789.
// This list will have at most 100 findings.
RelatedFindings []string `protobuf:"bytes,1,rep,name=related_findings,json=relatedFindings,proto3" json:"related_findings,omitempty"`
// contains filtered or unexported fields
}Contains details about a chokepoint, which is a resource or resource group where high-risk attack paths converge, based on attack path simulations.
func (*Chokepoint) Descriptor
func (*Chokepoint) Descriptor() ([]byte, []int)Deprecated: Use Chokepoint.ProtoReflect.Descriptor instead.
func (*Chokepoint) GetRelatedFindings
func (x *Chokepoint) GetRelatedFindings() []stringfunc (*Chokepoint) ProtoMessage
func (*Chokepoint) ProtoMessage()func (*Chokepoint) ProtoReflect
func (x *Chokepoint) ProtoReflect() protoreflect.Messagefunc (*Chokepoint) Reset
func (x *Chokepoint) Reset()func (*Chokepoint) String
func (x *Chokepoint) String() stringCloudArmor
type CloudArmor struct {
// Information about the [Google Cloud Armor security
// policy](https://cloud.google.com/armor/docs/security-policy-overview)
// relevant to the finding.
SecurityPolicy *SecurityPolicy `protobuf:"bytes,1,opt,name=security_policy,json=securityPolicy,proto3" json:"security_policy,omitempty"`
// Information about incoming requests evaluated by [Google Cloud Armor
// security
// policies](https://cloud.google.com/armor/docs/security-policy-overview).
Requests *Requests `protobuf:"bytes,2,opt,name=requests,proto3" json:"requests,omitempty"`
// Information about potential Layer 7 DDoS attacks identified by [Google
// Cloud Armor Adaptive
// Protection](https://cloud.google.com/armor/docs/adaptive-protection-overview).
AdaptiveProtection *AdaptiveProtection `protobuf:"bytes,3,opt,name=adaptive_protection,json=adaptiveProtection,proto3" json:"adaptive_protection,omitempty"`
// Information about DDoS attack volume and classification.
Attack *Attack `protobuf:"bytes,4,opt,name=attack,proto3" json:"attack,omitempty"`
// Distinguish between volumetric & protocol DDoS attack and
// application layer attacks. For example, "L3_4" for Layer 3 and Layer 4 DDoS
// attacks, or "L_7" for Layer 7 DDoS attacks.
ThreatVector string `protobuf:"bytes,5,opt,name=threat_vector,json=threatVector,proto3" json:"threat_vector,omitempty"`
// Duration of attack from the start until the current moment (updated every 5
// minutes).
Duration *durationpb.Duration `protobuf:"bytes,6,opt,name=duration,proto3" json:"duration,omitempty"`
// contains filtered or unexported fields
}Fields related to Google Cloud Armor findings.
func (*CloudArmor) Descriptor
func (*CloudArmor) Descriptor() ([]byte, []int)Deprecated: Use CloudArmor.ProtoReflect.Descriptor instead.
func (*CloudArmor) GetAdaptiveProtection
func (x *CloudArmor) GetAdaptiveProtection() *AdaptiveProtectionfunc (*CloudArmor) GetAttack
func (x *CloudArmor) GetAttack() *Attackfunc (*CloudArmor) GetDuration
func (x *CloudArmor) GetDuration() *durationpb.Durationfunc (*CloudArmor) GetRequests
func (x *CloudArmor) GetRequests() *Requestsfunc (*CloudArmor) GetSecurityPolicy
func (x *CloudArmor) GetSecurityPolicy() *SecurityPolicyfunc (*CloudArmor) GetThreatVector
func (x *CloudArmor) GetThreatVector() stringfunc (*CloudArmor) ProtoMessage
func (*CloudArmor) ProtoMessage()func (*CloudArmor) ProtoReflect
func (x *CloudArmor) ProtoReflect() protoreflect.Messagefunc (*CloudArmor) Reset
func (x *CloudArmor) Reset()func (*CloudArmor) String
func (x *CloudArmor) String() stringCloudDlpDataProfile
type CloudDlpDataProfile struct {
// Name of the data profile, for example,
// `projects/123/locations/europe/tableProfiles/8383929`.
DataProfile string `protobuf:"bytes,1,opt,name=data_profile,json=dataProfile,proto3" json:"data_profile,omitempty"`
// The resource hierarchy level at which the data profile was generated.
ParentType CloudDlpDataProfile_ParentType `protobuf:"varint,2,opt,name=parent_type,json=parentType,proto3,enum=google.cloud.securitycenter.v2.CloudDlpDataProfile_ParentType" json:"parent_type,omitempty"`
// contains filtered or unexported fields
}The data profile associated with the finding.
func (*CloudDlpDataProfile) Descriptor
func (*CloudDlpDataProfile) Descriptor() ([]byte, []int)Deprecated: Use CloudDlpDataProfile.ProtoReflect.Descriptor instead.
func (*CloudDlpDataProfile) GetDataProfile
func (x *CloudDlpDataProfile) GetDataProfile() stringfunc (*CloudDlpDataProfile) GetParentType
func (x *CloudDlpDataProfile) GetParentType() CloudDlpDataProfile_ParentTypefunc (*CloudDlpDataProfile) ProtoMessage
func (*CloudDlpDataProfile) ProtoMessage()func (*CloudDlpDataProfile) ProtoReflect
func (x *CloudDlpDataProfile) ProtoReflect() protoreflect.Messagefunc (*CloudDlpDataProfile) Reset
func (x *CloudDlpDataProfile) Reset()func (*CloudDlpDataProfile) String
func (x *CloudDlpDataProfile) String() stringCloudDlpDataProfile_ParentType
type CloudDlpDataProfile_ParentType int32Parents for configurations that produce data profile findings.
CloudDlpDataProfile_PARENT_TYPE_UNSPECIFIED, CloudDlpDataProfile_ORGANIZATION, CloudDlpDataProfile_PROJECT
const (
// Unspecified parent type.
CloudDlpDataProfile_PARENT_TYPE_UNSPECIFIED CloudDlpDataProfile_ParentType = 0
// Organization-level configurations.
CloudDlpDataProfile_ORGANIZATION CloudDlpDataProfile_ParentType = 1
// Project-level configurations.
CloudDlpDataProfile_PROJECT CloudDlpDataProfile_ParentType = 2
)func (CloudDlpDataProfile_ParentType) Descriptor
func (CloudDlpDataProfile_ParentType) Descriptor() protoreflect.EnumDescriptorfunc (CloudDlpDataProfile_ParentType) Enum
func (x CloudDlpDataProfile_ParentType) Enum() *CloudDlpDataProfile_ParentTypefunc (CloudDlpDataProfile_ParentType) EnumDescriptor
func (CloudDlpDataProfile_ParentType) EnumDescriptor() ([]byte, []int)Deprecated: Use CloudDlpDataProfile_ParentType.Descriptor instead.
func (CloudDlpDataProfile_ParentType) Number
func (x CloudDlpDataProfile_ParentType) Number() protoreflect.EnumNumberfunc (CloudDlpDataProfile_ParentType) String
func (x CloudDlpDataProfile_ParentType) String() stringfunc (CloudDlpDataProfile_ParentType) Type
func (CloudDlpDataProfile_ParentType) Type() protoreflect.EnumTypeCloudDlpInspection
type CloudDlpInspection struct {
// Name of the inspection job, for example,
// `projects/123/locations/europe/dlpJobs/i-8383929`.
InspectJob string `protobuf:"bytes,1,opt,name=inspect_job,json=inspectJob,proto3" json:"inspect_job,omitempty"`
// The type of information (or
// *[infoType](https://cloud.google.com/dlp/docs/infotypes-reference)*) found,
// for example, `EMAIL_ADDRESS` or `STREET_ADDRESS`.
InfoType string `protobuf:"bytes,2,opt,name=info_type,json=infoType,proto3" json:"info_type,omitempty"`
// The number of times Cloud DLP found this infoType within this job
// and resource.
InfoTypeCount int64 `protobuf:"varint,3,opt,name=info_type_count,json=infoTypeCount,proto3" json:"info_type_count,omitempty"`
// Whether Cloud DLP scanned the complete resource or a sampled subset.
FullScan bool `protobuf:"varint,4,opt,name=full_scan,json=fullScan,proto3" json:"full_scan,omitempty"`
// contains filtered or unexported fields
}Details about the Cloud Data Loss Prevention (Cloud DLP) inspection job that produced the finding.
func (*CloudDlpInspection) Descriptor
func (*CloudDlpInspection) Descriptor() ([]byte, []int)Deprecated: Use CloudDlpInspection.ProtoReflect.Descriptor instead.
func (*CloudDlpInspection) GetFullScan
func (x *CloudDlpInspection) GetFullScan() boolfunc (*CloudDlpInspection) GetInfoType
func (x *CloudDlpInspection) GetInfoType() stringfunc (*CloudDlpInspection) GetInfoTypeCount
func (x *CloudDlpInspection) GetInfoTypeCount() int64func (*CloudDlpInspection) GetInspectJob
func (x *CloudDlpInspection) GetInspectJob() stringfunc (*CloudDlpInspection) ProtoMessage
func (*CloudDlpInspection) ProtoMessage()func (*CloudDlpInspection) ProtoReflect
func (x *CloudDlpInspection) ProtoReflect() protoreflect.Messagefunc (*CloudDlpInspection) Reset
func (x *CloudDlpInspection) Reset()func (*CloudDlpInspection) String
func (x *CloudDlpInspection) String() stringCloudLoggingEntry
type CloudLoggingEntry struct {
// A unique identifier for the log entry.
InsertId string `protobuf:"bytes,1,opt,name=insert_id,json=insertId,proto3" json:"insert_id,omitempty"`
// The type of the log (part of `log_name`. `log_name` is the resource name of
// the log to which this log entry belongs). For example:
// `cloudresourcemanager.googleapis.com/activity` Note that this field is not
// URL-encoded, unlike in `LogEntry`.
LogId string `protobuf:"bytes,2,opt,name=log_id,json=logId,proto3" json:"log_id,omitempty"`
// The organization, folder, or project of the monitored resource that
// produced this log entry.
ResourceContainer string `protobuf:"bytes,3,opt,name=resource_container,json=resourceContainer,proto3" json:"resource_container,omitempty"`
// The time the event described by the log entry occurred.
Timestamp *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=timestamp,proto3" json:"timestamp,omitempty"`
// contains filtered or unexported fields
}Metadata taken from a Cloud Logging LogEntry
func (*CloudLoggingEntry) Descriptor
func (*CloudLoggingEntry) Descriptor() ([]byte, []int)Deprecated: Use CloudLoggingEntry.ProtoReflect.Descriptor instead.
func (*CloudLoggingEntry) GetInsertId
func (x *CloudLoggingEntry) GetInsertId() stringfunc (*CloudLoggingEntry) GetLogId
func (x *CloudLoggingEntry) GetLogId() stringfunc (*CloudLoggingEntry) GetResourceContainer
func (x *CloudLoggingEntry) GetResourceContainer() stringfunc (*CloudLoggingEntry) GetTimestamp
func (x *CloudLoggingEntry) GetTimestamp() *timestamppb.Timestampfunc (*CloudLoggingEntry) ProtoMessage
func (*CloudLoggingEntry) ProtoMessage()func (*CloudLoggingEntry) ProtoReflect
func (x *CloudLoggingEntry) ProtoReflect() protoreflect.Messagefunc (*CloudLoggingEntry) Reset
func (x *CloudLoggingEntry) Reset()func (*CloudLoggingEntry) String
func (x *CloudLoggingEntry) String() stringCloudProvider
type CloudProvider int32The cloud provider the finding pertains to.
CloudProvider_CLOUD_PROVIDER_UNSPECIFIED, CloudProvider_GOOGLE_CLOUD_PLATFORM, CloudProvider_AMAZON_WEB_SERVICES, CloudProvider_MICROSOFT_AZURE
const (
// The cloud provider is unspecified.
CloudProvider_CLOUD_PROVIDER_UNSPECIFIED CloudProvider = 0
// The cloud provider is Google Cloud.
CloudProvider_GOOGLE_CLOUD_PLATFORM CloudProvider = 1
// The cloud provider is Amazon Web Services.
CloudProvider_AMAZON_WEB_SERVICES CloudProvider = 2
// The cloud provider is Microsoft Azure.
CloudProvider_MICROSOFT_AZURE CloudProvider = 3
)func (CloudProvider) Descriptor
func (CloudProvider) Descriptor() protoreflect.EnumDescriptorfunc (CloudProvider) Enum
func (x CloudProvider) Enum() *CloudProviderfunc (CloudProvider) EnumDescriptor
func (CloudProvider) EnumDescriptor() ([]byte, []int)Deprecated: Use CloudProvider.Descriptor instead.
func (CloudProvider) Number
func (x CloudProvider) Number() protoreflect.EnumNumberfunc (CloudProvider) String
func (x CloudProvider) String() stringfunc (CloudProvider) Type
func (CloudProvider) Type() protoreflect.EnumTypeCompliance
type Compliance struct {
// Industry-wide compliance standards or benchmarks, such as CIS, PCI, and
// OWASP.
Standard string `protobuf:"bytes,1,opt,name=standard,proto3" json:"standard,omitempty"`
// Version of the standard or benchmark, for example, 1.1
Version string `protobuf:"bytes,2,opt,name=version,proto3" json:"version,omitempty"`
// Policies within the standard or benchmark, for example, A.12.4.1
Ids []string `protobuf:"bytes,3,rep,name=ids,proto3" json:"ids,omitempty"`
// contains filtered or unexported fields
}Contains compliance information about a security standard indicating unmet recommendations.
func (*Compliance) Descriptor
func (*Compliance) Descriptor() ([]byte, []int)Deprecated: Use Compliance.ProtoReflect.Descriptor instead.
func (*Compliance) GetIds
func (x *Compliance) GetIds() []stringfunc (*Compliance) GetStandard
func (x *Compliance) GetStandard() stringfunc (*Compliance) GetVersion
func (x *Compliance) GetVersion() stringfunc (*Compliance) ProtoMessage
func (*Compliance) ProtoMessage()func (*Compliance) ProtoReflect
func (x *Compliance) ProtoReflect() protoreflect.Messagefunc (*Compliance) Reset
func (x *Compliance) Reset()func (*Compliance) String
func (x *Compliance) String() stringConnection
type Connection struct {
// Destination IP address. Not present for sockets that are listening and not
// connected.
DestinationIp string `protobuf:"bytes,1,opt,name=destination_ip,json=destinationIp,proto3" json:"destination_ip,omitempty"`
// Destination port. Not present for sockets that are listening and not
// connected.
DestinationPort int32 `protobuf:"varint,2,opt,name=destination_port,json=destinationPort,proto3" json:"destination_port,omitempty"`
// Source IP address.
SourceIp string `protobuf:"bytes,3,opt,name=source_ip,json=sourceIp,proto3" json:"source_ip,omitempty"`
// Source port.
SourcePort int32 `protobuf:"varint,4,opt,name=source_port,json=sourcePort,proto3" json:"source_port,omitempty"`
// IANA Internet Protocol Number such as TCP(6) and UDP(17).
Protocol Connection_Protocol `protobuf:"varint,5,opt,name=protocol,proto3,enum=google.cloud.securitycenter.v2.Connection_Protocol" json:"protocol,omitempty"`
// contains filtered or unexported fields
}Contains information about the IP connection associated with the finding.
func (*Connection) Descriptor
func (*Connection) Descriptor() ([]byte, []int)Deprecated: Use Connection.ProtoReflect.Descriptor instead.
func (*Connection) GetDestinationIp
func (x *Connection) GetDestinationIp() stringfunc (*Connection) GetDestinationPort
func (x *Connection) GetDestinationPort() int32func (*Connection) GetProtocol
func (x *Connection) GetProtocol() Connection_Protocolfunc (*Connection) GetSourceIp
func (x *Connection) GetSourceIp() stringfunc (*Connection) GetSourcePort
func (x *Connection) GetSourcePort() int32func (*Connection) ProtoMessage
func (*Connection) ProtoMessage()func (*Connection) ProtoReflect
func (x *Connection) ProtoReflect() protoreflect.Messagefunc (*Connection) Reset
func (x *Connection) Reset()func (*Connection) String
func (x *Connection) String() stringConnection_Protocol
type Connection_Protocol int32IANA Internet Protocol Number such as TCP(6) and UDP(17).
Connection_PROTOCOL_UNSPECIFIED, Connection_ICMP, Connection_TCP, Connection_UDP, Connection_GRE, Connection_ESP
const (
// Unspecified protocol (not HOPOPT).
Connection_PROTOCOL_UNSPECIFIED Connection_Protocol = 0
// Internet Control Message Protocol.
Connection_ICMP Connection_Protocol = 1
// Transmission Control Protocol.
Connection_TCP Connection_Protocol = 6
// User Datagram Protocol.
Connection_UDP Connection_Protocol = 17
// Generic Routing Encapsulation.
Connection_GRE Connection_Protocol = 47
// Encap Security Payload.
Connection_ESP Connection_Protocol = 50
)func (Connection_Protocol) Descriptor
func (Connection_Protocol) Descriptor() protoreflect.EnumDescriptorfunc (Connection_Protocol) Enum
func (x Connection_Protocol) Enum() *Connection_Protocolfunc (Connection_Protocol) EnumDescriptor
func (Connection_Protocol) EnumDescriptor() ([]byte, []int)Deprecated: Use Connection_Protocol.Descriptor instead.
func (Connection_Protocol) Number
func (x Connection_Protocol) Number() protoreflect.EnumNumberfunc (Connection_Protocol) String
func (x Connection_Protocol) String() stringfunc (Connection_Protocol) Type
func (Connection_Protocol) Type() protoreflect.EnumTypeContact
type Contact struct {
// An email address. For example, "`person123@company.com`".
Email string `protobuf:"bytes,1,opt,name=email,proto3" json:"email,omitempty"`
// contains filtered or unexported fields
}The email address of a contact.
func (*Contact) Descriptor
Deprecated: Use Contact.ProtoReflect.Descriptor instead.
func (*Contact) GetEmail
func (*Contact) ProtoMessage
func (*Contact) ProtoMessage()func (*Contact) ProtoReflect
func (x *Contact) ProtoReflect() protoreflect.Messagefunc (*Contact) Reset
func (x *Contact) Reset()func (*Contact) String
ContactDetails
type ContactDetails struct {
// A list of contacts
Contacts []*Contact `protobuf:"bytes,1,rep,name=contacts,proto3" json:"contacts,omitempty"`
// contains filtered or unexported fields
}Details about specific contacts
func (*ContactDetails) Descriptor
func (*ContactDetails) Descriptor() ([]byte, []int)Deprecated: Use ContactDetails.ProtoReflect.Descriptor instead.
func (*ContactDetails) GetContacts
func (x *ContactDetails) GetContacts() []*Contactfunc (*ContactDetails) ProtoMessage
func (*ContactDetails) ProtoMessage()func (*ContactDetails) ProtoReflect
func (x *ContactDetails) ProtoReflect() protoreflect.Messagefunc (*ContactDetails) Reset
func (x *ContactDetails) Reset()func (*ContactDetails) String
func (x *ContactDetails) String() stringContainer
type Container struct {
// Name of the container.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Container image URI provided when configuring a pod or container. This
// string can identify a container image version using mutable tags.
Uri string `protobuf:"bytes,2,opt,name=uri,proto3" json:"uri,omitempty"`
// Optional container image ID, if provided by the container runtime. Uniquely
// identifies the container image launched using a container image digest.
ImageId string `protobuf:"bytes,3,opt,name=image_id,json=imageId,proto3" json:"image_id,omitempty"`
// Container labels, as provided by the container runtime.
Labels []*Label `protobuf:"bytes,4,rep,name=labels,proto3" json:"labels,omitempty"`
// The time that the container was created.
CreateTime *timestamppb.Timestamp `protobuf:"bytes,5,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
// contains filtered or unexported fields
}Container associated with the finding.
func (*Container) Descriptor
Deprecated: Use Container.ProtoReflect.Descriptor instead.
func (*Container) GetCreateTime
func (x *Container) GetCreateTime() *timestamppb.Timestampfunc (*Container) GetImageId
func (*Container) GetLabels
func (*Container) GetName
func (*Container) GetUri
func (*Container) ProtoMessage
func (*Container) ProtoMessage()func (*Container) ProtoReflect
func (x *Container) ProtoReflect() protoreflect.Messagefunc (*Container) Reset
func (x *Container) Reset()func (*Container) String
CreateBigQueryExportRequest
type CreateBigQueryExportRequest struct {
// Required. The name of the parent resource of the new BigQuery export. Its
// format is `organizations/[organization_id]/locations/[location_id]`,
// `folders/[folder_id]/locations/[location_id]`, or
// `projects/[project_id]/locations/[location_id]`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Required. The BigQuery export being created.
BigQueryExport *BigQueryExport `protobuf:"bytes,2,opt,name=big_query_export,json=bigQueryExport,proto3" json:"big_query_export,omitempty"`
// Required. Unique identifier provided by the client within the parent scope.
// It must consist of only lowercase letters, numbers, and hyphens, must start
// with a letter, must end with either a letter or a number, and must be 63
// characters or less.
BigQueryExportId string `protobuf:"bytes,3,opt,name=big_query_export_id,json=bigQueryExportId,proto3" json:"big_query_export_id,omitempty"`
// contains filtered or unexported fields
}Request message for creating a BigQuery export.
func (*CreateBigQueryExportRequest) Descriptor
func (*CreateBigQueryExportRequest) Descriptor() ([]byte, []int)Deprecated: Use CreateBigQueryExportRequest.ProtoReflect.Descriptor instead.
func (*CreateBigQueryExportRequest) GetBigQueryExport
func (x *CreateBigQueryExportRequest) GetBigQueryExport() *BigQueryExportfunc (*CreateBigQueryExportRequest) GetBigQueryExportId
func (x *CreateBigQueryExportRequest) GetBigQueryExportId() stringfunc (*CreateBigQueryExportRequest) GetParent
func (x *CreateBigQueryExportRequest) GetParent() stringfunc (*CreateBigQueryExportRequest) ProtoMessage
func (*CreateBigQueryExportRequest) ProtoMessage()func (*CreateBigQueryExportRequest) ProtoReflect
func (x *CreateBigQueryExportRequest) ProtoReflect() protoreflect.Messagefunc (*CreateBigQueryExportRequest) Reset
func (x *CreateBigQueryExportRequest) Reset()func (*CreateBigQueryExportRequest) String
func (x *CreateBigQueryExportRequest) String() stringCreateFindingRequest
type CreateFindingRequest struct {
// Required. Resource name of the new finding's parent. The following list
// shows some examples of the format:
// +
// `organizations/[organization_id]/sources/[source_id]`
// +
// `organizations/[organization_id]/sources/[source_id]/locations/[location_id]`
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Required. Unique identifier provided by the client within the parent scope.
// It must be alphanumeric and less than or equal to 32 characters and
// greater than 0 characters in length.
FindingId string `protobuf:"bytes,2,opt,name=finding_id,json=findingId,proto3" json:"finding_id,omitempty"`
// Required. The Finding being created. The name and security_marks will be
// ignored as they are both output only fields on this resource.
Finding *Finding `protobuf:"bytes,3,opt,name=finding,proto3" json:"finding,omitempty"`
// contains filtered or unexported fields
}Request message for creating a finding.
func (*CreateFindingRequest) Descriptor
func (*CreateFindingRequest) Descriptor() ([]byte, []int)Deprecated: Use CreateFindingRequest.ProtoReflect.Descriptor instead.
func (*CreateFindingRequest) GetFinding
func (x *CreateFindingRequest) GetFinding() *Findingfunc (*CreateFindingRequest) GetFindingId
func (x *CreateFindingRequest) GetFindingId() stringfunc (*CreateFindingRequest) GetParent
func (x *CreateFindingRequest) GetParent() stringfunc (*CreateFindingRequest) ProtoMessage
func (*CreateFindingRequest) ProtoMessage()func (*CreateFindingRequest) ProtoReflect
func (x *CreateFindingRequest) ProtoReflect() protoreflect.Messagefunc (*CreateFindingRequest) Reset
func (x *CreateFindingRequest) Reset()func (*CreateFindingRequest) String
func (x *CreateFindingRequest) String() stringCreateMuteConfigRequest
type CreateMuteConfigRequest struct {
// Required. Resource name of the new mute configs's parent. Its format is
// `organizations/[organization_id]/locations/[location_id]`,
// `folders/[folder_id]/locations/[location_id]`, or
// `projects/[project_id]/locations/[location_id]`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Required. The mute config being created.
MuteConfig *MuteConfig `protobuf:"bytes,2,opt,name=mute_config,json=muteConfig,proto3" json:"mute_config,omitempty"`
// Required. Unique identifier provided by the client within the parent scope.
// It must consist of only lowercase letters, numbers, and hyphens, must start
// with a letter, must end with either a letter or a number, and must be 63
// characters or less.
MuteConfigId string `protobuf:"bytes,3,opt,name=mute_config_id,json=muteConfigId,proto3" json:"mute_config_id,omitempty"`
// contains filtered or unexported fields
}Request message for creating a mute config.
func (*CreateMuteConfigRequest) Descriptor
func (*CreateMuteConfigRequest) Descriptor() ([]byte, []int)Deprecated: Use CreateMuteConfigRequest.ProtoReflect.Descriptor instead.
func (*CreateMuteConfigRequest) GetMuteConfig
func (x *CreateMuteConfigRequest) GetMuteConfig() *MuteConfigfunc (*CreateMuteConfigRequest) GetMuteConfigId
func (x *CreateMuteConfigRequest) GetMuteConfigId() stringfunc (*CreateMuteConfigRequest) GetParent
func (x *CreateMuteConfigRequest) GetParent() stringfunc (*CreateMuteConfigRequest) ProtoMessage
func (*CreateMuteConfigRequest) ProtoMessage()func (*CreateMuteConfigRequest) ProtoReflect
func (x *CreateMuteConfigRequest) ProtoReflect() protoreflect.Messagefunc (*CreateMuteConfigRequest) Reset
func (x *CreateMuteConfigRequest) Reset()func (*CreateMuteConfigRequest) String
func (x *CreateMuteConfigRequest) String() stringCreateNotificationConfigRequest
type CreateNotificationConfigRequest struct {
// Required. Resource name of the new notification config's parent. Its format
// is `organizations/[organization_id]/locations/[location_id]`,
// `folders/[folder_id]/locations/[location_id]`, or
// `projects/[project_id]/locations/[location_id]`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Required.
// Unique identifier provided by the client within the parent scope.
// It must be between 1 and 128 characters and contain alphanumeric
// characters, underscores, or hyphens only.
ConfigId string `protobuf:"bytes,2,opt,name=config_id,json=configId,proto3" json:"config_id,omitempty"`
// Required. The notification config being created. The name and the service
// account will be ignored as they are both output only fields on this
// resource.
NotificationConfig *NotificationConfig `protobuf:"bytes,3,opt,name=notification_config,json=notificationConfig,proto3" json:"notification_config,omitempty"`
// contains filtered or unexported fields
}Request message for creating a notification config.
func (*CreateNotificationConfigRequest) Descriptor
func (*CreateNotificationConfigRequest) Descriptor() ([]byte, []int)Deprecated: Use CreateNotificationConfigRequest.ProtoReflect.Descriptor instead.
func (*CreateNotificationConfigRequest) GetConfigId
func (x *CreateNotificationConfigRequest) GetConfigId() stringfunc (*CreateNotificationConfigRequest) GetNotificationConfig
func (x *CreateNotificationConfigRequest) GetNotificationConfig() *NotificationConfigfunc (*CreateNotificationConfigRequest) GetParent
func (x *CreateNotificationConfigRequest) GetParent() stringfunc (*CreateNotificationConfigRequest) ProtoMessage
func (*CreateNotificationConfigRequest) ProtoMessage()func (*CreateNotificationConfigRequest) ProtoReflect
func (x *CreateNotificationConfigRequest) ProtoReflect() protoreflect.Messagefunc (*CreateNotificationConfigRequest) Reset
func (x *CreateNotificationConfigRequest) Reset()func (*CreateNotificationConfigRequest) String
func (x *CreateNotificationConfigRequest) String() stringCreateResourceValueConfigRequest
type CreateResourceValueConfigRequest struct {
// Required. Resource name of the new ResourceValueConfig's parent.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Required. The resource value config being created.
ResourceValueConfig *ResourceValueConfig `protobuf:"bytes,2,opt,name=resource_value_config,json=resourceValueConfig,proto3" json:"resource_value_config,omitempty"`
// contains filtered or unexported fields
}Request message to create single resource value config
func (*CreateResourceValueConfigRequest) Descriptor
func (*CreateResourceValueConfigRequest) Descriptor() ([]byte, []int)Deprecated: Use CreateResourceValueConfigRequest.ProtoReflect.Descriptor instead.
func (*CreateResourceValueConfigRequest) GetParent
func (x *CreateResourceValueConfigRequest) GetParent() stringfunc (*CreateResourceValueConfigRequest) GetResourceValueConfig
func (x *CreateResourceValueConfigRequest) GetResourceValueConfig() *ResourceValueConfigfunc (*CreateResourceValueConfigRequest) ProtoMessage
func (*CreateResourceValueConfigRequest) ProtoMessage()func (*CreateResourceValueConfigRequest) ProtoReflect
func (x *CreateResourceValueConfigRequest) ProtoReflect() protoreflect.Messagefunc (*CreateResourceValueConfigRequest) Reset
func (x *CreateResourceValueConfigRequest) Reset()func (*CreateResourceValueConfigRequest) String
func (x *CreateResourceValueConfigRequest) String() stringCreateSourceRequest
type CreateSourceRequest struct {
// Required. Resource name of the new source's parent. Its format should be
// `organizations/[organization_id]`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Required. The Source being created, only the display_name and description
// will be used. All other fields will be ignored.
Source *Source `protobuf:"bytes,2,opt,name=source,proto3" json:"source,omitempty"`
// contains filtered or unexported fields
}Request message for creating a source.
func (*CreateSourceRequest) Descriptor
func (*CreateSourceRequest) Descriptor() ([]byte, []int)Deprecated: Use CreateSourceRequest.ProtoReflect.Descriptor instead.
func (*CreateSourceRequest) GetParent
func (x *CreateSourceRequest) GetParent() stringfunc (*CreateSourceRequest) GetSource
func (x *CreateSourceRequest) GetSource() *Sourcefunc (*CreateSourceRequest) ProtoMessage
func (*CreateSourceRequest) ProtoMessage()func (*CreateSourceRequest) ProtoReflect
func (x *CreateSourceRequest) ProtoReflect() protoreflect.Messagefunc (*CreateSourceRequest) Reset
func (x *CreateSourceRequest) Reset()func (*CreateSourceRequest) String
func (x *CreateSourceRequest) String() stringCve
type Cve struct {
// The unique identifier for the vulnerability. e.g. CVE-2021-34527
Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
// Additional information about the CVE.
// e.g. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34527
References []*Reference `protobuf:"bytes,2,rep,name=references,proto3" json:"references,omitempty"`
// Describe Common Vulnerability Scoring System specified at
// https://www.first.org/cvss/v3.1/specification-document
Cvssv3 *Cvssv3 `protobuf:"bytes,3,opt,name=cvssv3,proto3" json:"cvssv3,omitempty"`
// Whether upstream fix is available for the CVE.
UpstreamFixAvailable bool `protobuf:"varint,4,opt,name=upstream_fix_available,json=upstreamFixAvailable,proto3" json:"upstream_fix_available,omitempty"`
// The potential impact of the vulnerability if it was to be exploited.
Impact Cve_RiskRating `protobuf:"varint,5,opt,name=impact,proto3,enum=google.cloud.securitycenter.v2.Cve_RiskRating" json:"impact,omitempty"`
// The exploitation activity of the vulnerability in the wild.
ExploitationActivity Cve_ExploitationActivity `protobuf:"varint,6,opt,name=exploitation_activity,json=exploitationActivity,proto3,enum=google.cloud.securitycenter.v2.Cve_ExploitationActivity" json:"exploitation_activity,omitempty"`
// Whether or not the vulnerability has been observed in the wild.
ObservedInTheWild bool `protobuf:"varint,7,opt,name=observed_in_the_wild,json=observedInTheWild,proto3" json:"observed_in_the_wild,omitempty"`
// Whether or not the vulnerability was zero day when the finding was
// published.
ZeroDay bool `protobuf:"varint,8,opt,name=zero_day,json=zeroDay,proto3" json:"zero_day,omitempty"`
// Date the first publicly available exploit or PoC was released.
ExploitReleaseDate *timestamppb.Timestamp `protobuf:"bytes,9,opt,name=exploit_release_date,json=exploitReleaseDate,proto3" json:"exploit_release_date,omitempty"`
// Date of the earliest known exploitation.
FirstExploitationDate *timestamppb.Timestamp `protobuf:"bytes,10,opt,name=first_exploitation_date,json=firstExploitationDate,proto3" json:"first_exploitation_date,omitempty"`
// contains filtered or unexported fields
}CVE stands for Common Vulnerabilities and Exposures. Information from the CVE record that describes this vulnerability.
func (*Cve) Descriptor
Deprecated: Use Cve.ProtoReflect.Descriptor instead.
func (*Cve) GetCvssv3
func (*Cve) GetExploitReleaseDate
func (x *Cve) GetExploitReleaseDate() *timestamppb.Timestampfunc (*Cve) GetExploitationActivity
func (x *Cve) GetExploitationActivity() Cve_ExploitationActivityfunc (*Cve) GetFirstExploitationDate
func (x *Cve) GetFirstExploitationDate() *timestamppb.Timestampfunc (*Cve) GetId
func (*Cve) GetImpact
func (x *Cve) GetImpact() Cve_RiskRatingfunc (*Cve) GetObservedInTheWild
func (*Cve) GetReferences
func (*Cve) GetUpstreamFixAvailable
func (*Cve) GetZeroDay
func (*Cve) ProtoMessage
func (*Cve) ProtoMessage()func (*Cve) ProtoReflect
func (x *Cve) ProtoReflect() protoreflect.Messagefunc (*Cve) Reset
func (x *Cve) Reset()func (*Cve) String
Cve_ExploitationActivity
type Cve_ExploitationActivity int32The possible values of exploitation activity of the vulnerability in the wild.
Cve_EXPLOITATION_ACTIVITY_UNSPECIFIED, Cve_WIDE, Cve_CONFIRMED, Cve_AVAILABLE, Cve_ANTICIPATED, Cve_NO_KNOWN
const (
// Invalid or empty value.
Cve_EXPLOITATION_ACTIVITY_UNSPECIFIED Cve_ExploitationActivity = 0
// Exploitation has been reported or confirmed to widely occur.
Cve_WIDE Cve_ExploitationActivity = 1
// Limited reported or confirmed exploitation activities.
Cve_CONFIRMED Cve_ExploitationActivity = 2
// Exploit is publicly available.
Cve_AVAILABLE Cve_ExploitationActivity = 3
// No known exploitation activity, but has a high potential for
// exploitation.
Cve_ANTICIPATED Cve_ExploitationActivity = 4
// No known exploitation activity.
Cve_NO_KNOWN Cve_ExploitationActivity = 5
)func (Cve_ExploitationActivity) Descriptor
func (Cve_ExploitationActivity) Descriptor() protoreflect.EnumDescriptorfunc (Cve_ExploitationActivity) Enum
func (x Cve_ExploitationActivity) Enum() *Cve_ExploitationActivityfunc (Cve_ExploitationActivity) EnumDescriptor
func (Cve_ExploitationActivity) EnumDescriptor() ([]byte, []int)Deprecated: Use Cve_ExploitationActivity.Descriptor instead.
func (Cve_ExploitationActivity) Number
func (x Cve_ExploitationActivity) Number() protoreflect.EnumNumberfunc (Cve_ExploitationActivity) String
func (x Cve_ExploitationActivity) String() stringfunc (Cve_ExploitationActivity) Type
func (Cve_ExploitationActivity) Type() protoreflect.EnumTypeCve_RiskRating
type Cve_RiskRating int32The possible values of impact of the vulnerability if it was to be exploited.
Cve_RISK_RATING_UNSPECIFIED, Cve_LOW, Cve_MEDIUM, Cve_HIGH, Cve_CRITICAL
const (
// Invalid or empty value.
Cve_RISK_RATING_UNSPECIFIED Cve_RiskRating = 0
// Exploitation would have little to no security impact.
Cve_LOW Cve_RiskRating = 1
// Exploitation would enable attackers to perform activities, or could allow
// attackers to have a direct impact, but would require additional steps.
Cve_MEDIUM Cve_RiskRating = 2
// Exploitation would enable attackers to have a notable direct impact
// without needing to overcome any major mitigating factors.
Cve_HIGH Cve_RiskRating = 3
// Exploitation would fundamentally undermine the security of affected
// systems, enable actors to perform significant attacks with minimal
// effort, with little to no mitigating factors to overcome.
Cve_CRITICAL Cve_RiskRating = 4
)func (Cve_RiskRating) Descriptor
func (Cve_RiskRating) Descriptor() protoreflect.EnumDescriptorfunc (Cve_RiskRating) Enum
func (x Cve_RiskRating) Enum() *Cve_RiskRatingfunc (Cve_RiskRating) EnumDescriptor
func (Cve_RiskRating) EnumDescriptor() ([]byte, []int)Deprecated: Use Cve_RiskRating.Descriptor instead.
func (Cve_RiskRating) Number
func (x Cve_RiskRating) Number() protoreflect.EnumNumberfunc (Cve_RiskRating) String
func (x Cve_RiskRating) String() stringfunc (Cve_RiskRating) Type
func (Cve_RiskRating) Type() protoreflect.EnumTypeCvssv3
type Cvssv3 struct {
// The base score is a function of the base metric scores.
BaseScore float64 `protobuf:"fixed64,1,opt,name=base_score,json=baseScore,proto3" json:"base_score,omitempty"`
// Base Metrics
// Represents the intrinsic characteristics of a vulnerability that are
// constant over time and across user environments.
// This metric reflects the context by which vulnerability exploitation is
// possible.
AttackVector Cvssv3_AttackVector `protobuf:"varint,2,opt,name=attack_vector,json=attackVector,proto3,enum=google.cloud.securitycenter.v2.Cvssv3_AttackVector" json:"attack_vector,omitempty"`
// This metric describes the conditions beyond the attacker's control that
// must exist in order to exploit the vulnerability.
AttackComplexity Cvssv3_AttackComplexity `protobuf:"varint,3,opt,name=attack_complexity,json=attackComplexity,proto3,enum=google.cloud.securitycenter.v2.Cvssv3_AttackComplexity" json:"attack_complexity,omitempty"`
// This metric describes the level of privileges an attacker must possess
// before successfully exploiting the vulnerability.
PrivilegesRequired Cvssv3_PrivilegesRequired `protobuf:"varint,4,opt,name=privileges_required,json=privilegesRequired,proto3,enum=google.cloud.securitycenter.v2.Cvssv3_PrivilegesRequired" json:"privileges_required,omitempty"`
// This metric captures the requirement for a human user, other than the
// attacker, to participate in the successful compromise of the vulnerable
// component.
UserInteraction Cvssv3_UserInteraction `protobuf:"varint,5,opt,name=user_interaction,json=userInteraction,proto3,enum=google.cloud.securitycenter.v2.Cvssv3_UserInteraction" json:"user_interaction,omitempty"`
// The Scope metric captures whether a vulnerability in one vulnerable
// component impacts resources in components beyond its security scope.
Scope Cvssv3_Scope `protobuf:"varint,6,opt,name=scope,proto3,enum=google.cloud.securitycenter.v2.Cvssv3_Scope" json:"scope,omitempty"`
// This metric measures the impact to the confidentiality of the information
// resources managed by a software component due to a successfully exploited
// vulnerability.
ConfidentialityImpact Cvssv3_Impact `protobuf:"varint,7,opt,name=confidentiality_impact,json=confidentialityImpact,proto3,enum=google.cloud.securitycenter.v2.Cvssv3_Impact" json:"confidentiality_impact,omitempty"`
// This metric measures the impact to integrity of a successfully exploited
// vulnerability.
IntegrityImpact Cvssv3_Impact `protobuf:"varint,8,opt,name=integrity_impact,json=integrityImpact,proto3,enum=google.cloud.securitycenter.v2.Cvssv3_Impact" json:"integrity_impact,omitempty"`
// This metric measures the impact to the availability of the impacted
// component resulting from a successfully exploited vulnerability.
AvailabilityImpact Cvssv3_Impact `protobuf:"varint,9,opt,name=availability_impact,json=availabilityImpact,proto3,enum=google.cloud.securitycenter.v2.Cvssv3_Impact" json:"availability_impact,omitempty"`
// contains filtered or unexported fields
}Common Vulnerability Scoring System version 3.
func (*Cvssv3) Descriptor
Deprecated: Use Cvssv3.ProtoReflect.Descriptor instead.
func (*Cvssv3) GetAttackComplexity
func (x *Cvssv3) GetAttackComplexity() Cvssv3_AttackComplexityfunc (*Cvssv3) GetAttackVector
func (x *Cvssv3) GetAttackVector() Cvssv3_AttackVectorfunc (*Cvssv3) GetAvailabilityImpact
func (x *Cvssv3) GetAvailabilityImpact() Cvssv3_Impactfunc (*Cvssv3) GetBaseScore
func (*Cvssv3) GetConfidentialityImpact
func (x *Cvssv3) GetConfidentialityImpact() Cvssv3_Impactfunc (*Cvssv3) GetIntegrityImpact
func (x *Cvssv3) GetIntegrityImpact() Cvssv3_Impactfunc (*Cvssv3) GetPrivilegesRequired
func (x *Cvssv3) GetPrivilegesRequired() Cvssv3_PrivilegesRequiredfunc (*Cvssv3) GetScope
func (x *Cvssv3) GetScope() Cvssv3_Scopefunc (*Cvssv3) GetUserInteraction
func (x *Cvssv3) GetUserInteraction() Cvssv3_UserInteractionfunc (*Cvssv3) ProtoMessage
func (*Cvssv3) ProtoMessage()func (*Cvssv3) ProtoReflect
func (x *Cvssv3) ProtoReflect() protoreflect.Messagefunc (*Cvssv3) Reset
func (x *Cvssv3) Reset()func (*Cvssv3) String
Cvssv3_AttackComplexity
type Cvssv3_AttackComplexity int32This metric describes the conditions beyond the attacker's control that must exist in order to exploit the vulnerability.
Cvssv3_ATTACK_COMPLEXITY_UNSPECIFIED, Cvssv3_ATTACK_COMPLEXITY_LOW, Cvssv3_ATTACK_COMPLEXITY_HIGH
const (
// Invalid value.
Cvssv3_ATTACK_COMPLEXITY_UNSPECIFIED Cvssv3_AttackComplexity = 0
// Specialized access conditions or extenuating circumstances do not exist.
// An attacker can expect repeatable success when attacking the vulnerable
// component.
Cvssv3_ATTACK_COMPLEXITY_LOW Cvssv3_AttackComplexity = 1
// A successful attack depends on conditions beyond the attacker's control.
// That is, a successful attack cannot be accomplished at will, but requires
// the attacker to invest in some measurable amount of effort in preparation
// or execution against the vulnerable component before a successful attack
// can be expected.
Cvssv3_ATTACK_COMPLEXITY_HIGH Cvssv3_AttackComplexity = 2
)func (Cvssv3_AttackComplexity) Descriptor
func (Cvssv3_AttackComplexity) Descriptor() protoreflect.EnumDescriptorfunc (Cvssv3_AttackComplexity) Enum
func (x Cvssv3_AttackComplexity) Enum() *Cvssv3_AttackComplexityfunc (Cvssv3_AttackComplexity) EnumDescriptor
func (Cvssv3_AttackComplexity) EnumDescriptor() ([]byte, []int)Deprecated: Use Cvssv3_AttackComplexity.Descriptor instead.
func (Cvssv3_AttackComplexity) Number
func (x Cvssv3_AttackComplexity) Number() protoreflect.EnumNumberfunc (Cvssv3_AttackComplexity) String
func (x Cvssv3_AttackComplexity) String() stringfunc (Cvssv3_AttackComplexity) Type
func (Cvssv3_AttackComplexity) Type() protoreflect.EnumTypeCvssv3_AttackVector
type Cvssv3_AttackVector int32This metric reflects the context by which vulnerability exploitation is possible.
Cvssv3_ATTACK_VECTOR_UNSPECIFIED, Cvssv3_ATTACK_VECTOR_NETWORK, Cvssv3_ATTACK_VECTOR_ADJACENT, Cvssv3_ATTACK_VECTOR_LOCAL, Cvssv3_ATTACK_VECTOR_PHYSICAL
const (
// Invalid value.
Cvssv3_ATTACK_VECTOR_UNSPECIFIED Cvssv3_AttackVector = 0
// The vulnerable component is bound to the network stack and the set of
// possible attackers extends beyond the other options listed below, up to
// and including the entire Internet.
Cvssv3_ATTACK_VECTOR_NETWORK Cvssv3_AttackVector = 1
// The vulnerable component is bound to the network stack, but the attack is
// limited at the protocol level to a logically adjacent topology.
Cvssv3_ATTACK_VECTOR_ADJACENT Cvssv3_AttackVector = 2
// The vulnerable component is not bound to the network stack and the
// attacker's path is via read/write/execute capabilities.
Cvssv3_ATTACK_VECTOR_LOCAL Cvssv3_AttackVector = 3
// The attack requires the attacker to physically touch or manipulate the
// vulnerable component.
Cvssv3_ATTACK_VECTOR_PHYSICAL Cvssv3_AttackVector = 4
)func (Cvssv3_AttackVector) Descriptor
func (Cvssv3_AttackVector) Descriptor() protoreflect.EnumDescriptorfunc (Cvssv3_AttackVector) Enum
func (x Cvssv3_AttackVector) Enum() *Cvssv3_AttackVectorfunc (Cvssv3_AttackVector) EnumDescriptor
func (Cvssv3_AttackVector) EnumDescriptor() ([]byte, []int)Deprecated: Use Cvssv3_AttackVector.Descriptor instead.
func (Cvssv3_AttackVector) Number
func (x Cvssv3_AttackVector) Number() protoreflect.EnumNumberfunc (Cvssv3_AttackVector) String
func (x Cvssv3_AttackVector) String() stringfunc (Cvssv3_AttackVector) Type
func (Cvssv3_AttackVector) Type() protoreflect.EnumTypeCvssv3_Impact
type Cvssv3_Impact int32The Impact metrics capture the effects of a successfully exploited vulnerability on the component that suffers the worst outcome that is most directly and predictably associated with the attack.
Cvssv3_IMPACT_UNSPECIFIED, Cvssv3_IMPACT_HIGH, Cvssv3_IMPACT_LOW, Cvssv3_IMPACT_NONE
const (
// Invalid value.
Cvssv3_IMPACT_UNSPECIFIED Cvssv3_Impact = 0
// High impact.
Cvssv3_IMPACT_HIGH Cvssv3_Impact = 1
// Low impact.
Cvssv3_IMPACT_LOW Cvssv3_Impact = 2
// No impact.
Cvssv3_IMPACT_NONE Cvssv3_Impact = 3
)func (Cvssv3_Impact) Descriptor
func (Cvssv3_Impact) Descriptor() protoreflect.EnumDescriptorfunc (Cvssv3_Impact) Enum
func (x Cvssv3_Impact) Enum() *Cvssv3_Impactfunc (Cvssv3_Impact) EnumDescriptor
func (Cvssv3_Impact) EnumDescriptor() ([]byte, []int)Deprecated: Use Cvssv3_Impact.Descriptor instead.
func (Cvssv3_Impact) Number
func (x Cvssv3_Impact) Number() protoreflect.EnumNumberfunc (Cvssv3_Impact) String
func (x Cvssv3_Impact) String() stringfunc (Cvssv3_Impact) Type
func (Cvssv3_Impact) Type() protoreflect.EnumTypeCvssv3_PrivilegesRequired
type Cvssv3_PrivilegesRequired int32This metric describes the level of privileges an attacker must possess before successfully exploiting the vulnerability.
Cvssv3_PRIVILEGES_REQUIRED_UNSPECIFIED, Cvssv3_PRIVILEGES_REQUIRED_NONE, Cvssv3_PRIVILEGES_REQUIRED_LOW, Cvssv3_PRIVILEGES_REQUIRED_HIGH
const (
// Invalid value.
Cvssv3_PRIVILEGES_REQUIRED_UNSPECIFIED Cvssv3_PrivilegesRequired = 0
// The attacker is unauthorized prior to attack, and therefore does not
// require any access to settings or files of the vulnerable system to
// carry out an attack.
Cvssv3_PRIVILEGES_REQUIRED_NONE Cvssv3_PrivilegesRequired = 1
// The attacker requires privileges that provide basic user capabilities
// that could normally affect only settings and files owned by a user.
// Alternatively, an attacker with Low privileges has the ability to access
// only non-sensitive resources.
Cvssv3_PRIVILEGES_REQUIRED_LOW Cvssv3_PrivilegesRequired = 2
// The attacker requires privileges that provide significant (e.g.,
// administrative) control over the vulnerable component allowing access to
// component-wide settings and files.
Cvssv3_PRIVILEGES_REQUIRED_HIGH Cvssv3_PrivilegesRequired = 3
)func (Cvssv3_PrivilegesRequired) Descriptor
func (Cvssv3_PrivilegesRequired) Descriptor() protoreflect.EnumDescriptorfunc (Cvssv3_PrivilegesRequired) Enum
func (x Cvssv3_PrivilegesRequired) Enum() *Cvssv3_PrivilegesRequiredfunc (Cvssv3_PrivilegesRequired) EnumDescriptor
func (Cvssv3_PrivilegesRequired) EnumDescriptor() ([]byte, []int)Deprecated: Use Cvssv3_PrivilegesRequired.Descriptor instead.
func (Cvssv3_PrivilegesRequired) Number
func (x Cvssv3_PrivilegesRequired) Number() protoreflect.EnumNumberfunc (Cvssv3_PrivilegesRequired) String
func (x Cvssv3_PrivilegesRequired) String() stringfunc (Cvssv3_PrivilegesRequired) Type
func (Cvssv3_PrivilegesRequired) Type() protoreflect.EnumTypeCvssv3_Scope
type Cvssv3_Scope int32The Scope metric captures whether a vulnerability in one vulnerable component impacts resources in components beyond its security scope.
Cvssv3_SCOPE_UNSPECIFIED, Cvssv3_SCOPE_UNCHANGED, Cvssv3_SCOPE_CHANGED
const (
// Invalid value.
Cvssv3_SCOPE_UNSPECIFIED Cvssv3_Scope = 0
// An exploited vulnerability can only affect resources managed by the same
// security authority.
Cvssv3_SCOPE_UNCHANGED Cvssv3_Scope = 1
// An exploited vulnerability can affect resources beyond the security scope
// managed by the security authority of the vulnerable component.
Cvssv3_SCOPE_CHANGED Cvssv3_Scope = 2
)func (Cvssv3_Scope) Descriptor
func (Cvssv3_Scope) Descriptor() protoreflect.EnumDescriptorfunc (Cvssv3_Scope) Enum
func (x Cvssv3_Scope) Enum() *Cvssv3_Scopefunc (Cvssv3_Scope) EnumDescriptor
func (Cvssv3_Scope) EnumDescriptor() ([]byte, []int)Deprecated: Use Cvssv3_Scope.Descriptor instead.
func (Cvssv3_Scope) Number
func (x Cvssv3_Scope) Number() protoreflect.EnumNumberfunc (Cvssv3_Scope) String
func (x Cvssv3_Scope) String() stringfunc (Cvssv3_Scope) Type
func (Cvssv3_Scope) Type() protoreflect.EnumTypeCvssv3_UserInteraction
type Cvssv3_UserInteraction int32This metric captures the requirement for a human user, other than the attacker, to participate in the successful compromise of the vulnerable component.
Cvssv3_USER_INTERACTION_UNSPECIFIED, Cvssv3_USER_INTERACTION_NONE, Cvssv3_USER_INTERACTION_REQUIRED
const (
// Invalid value.
Cvssv3_USER_INTERACTION_UNSPECIFIED Cvssv3_UserInteraction = 0
// The vulnerable system can be exploited without interaction from any user.
Cvssv3_USER_INTERACTION_NONE Cvssv3_UserInteraction = 1
// Successful exploitation of this vulnerability requires a user to take
// some action before the vulnerability can be exploited.
Cvssv3_USER_INTERACTION_REQUIRED Cvssv3_UserInteraction = 2
)func (Cvssv3_UserInteraction) Descriptor
func (Cvssv3_UserInteraction) Descriptor() protoreflect.EnumDescriptorfunc (Cvssv3_UserInteraction) Enum
func (x Cvssv3_UserInteraction) Enum() *Cvssv3_UserInteractionfunc (Cvssv3_UserInteraction) EnumDescriptor
func (Cvssv3_UserInteraction) EnumDescriptor() ([]byte, []int)Deprecated: Use Cvssv3_UserInteraction.Descriptor instead.
func (Cvssv3_UserInteraction) Number
func (x Cvssv3_UserInteraction) Number() protoreflect.EnumNumberfunc (Cvssv3_UserInteraction) String
func (x Cvssv3_UserInteraction) String() stringfunc (Cvssv3_UserInteraction) Type
func (Cvssv3_UserInteraction) Type() protoreflect.EnumTypeCwe
type Cwe struct {
// The CWE identifier, e.g. CWE-94
Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
// Any reference to the details on the CWE, for example,
// https://cwe.mitre.org/data/definitions/94.html
References []*Reference `protobuf:"bytes,2,rep,name=references,proto3" json:"references,omitempty"`
// contains filtered or unexported fields
}CWE stands for Common Weakness Enumeration. Information about this weakness, as described by CWE.
func (*Cwe) Descriptor
Deprecated: Use Cwe.ProtoReflect.Descriptor instead.
func (*Cwe) GetId
func (*Cwe) GetReferences
func (*Cwe) ProtoMessage
func (*Cwe) ProtoMessage()func (*Cwe) ProtoReflect
func (x *Cwe) ProtoReflect() protoreflect.Messagefunc (*Cwe) Reset
func (x *Cwe) Reset()func (*Cwe) String
DataAccessEvent
type DataAccessEvent struct {
// Unique identifier for data access event.
EventId string `protobuf:"bytes,1,opt,name=event_id,json=eventId,proto3" json:"event_id,omitempty"`
// The email address of the principal that accessed the data. The principal
// could be a user account, service account, Google group, or other.
PrincipalEmail string `protobuf:"bytes,2,opt,name=principal_email,json=principalEmail,proto3" json:"principal_email,omitempty"`
// The operation performed by the principal to access the data.
Operation DataAccessEvent_Operation `protobuf:"varint,3,opt,name=operation,proto3,enum=google.cloud.securitycenter.v2.DataAccessEvent_Operation" json:"operation,omitempty"`
// Timestamp of data access event.
EventTime *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=event_time,json=eventTime,proto3" json:"event_time,omitempty"`
// contains filtered or unexported fields
}Details about a data access attempt made by a principal not authorized under applicable data security policy.
func (*DataAccessEvent) Descriptor
func (*DataAccessEvent) Descriptor() ([]byte, []int)Deprecated: Use DataAccessEvent.ProtoReflect.Descriptor instead.
func (*DataAccessEvent) GetEventId
func (x *DataAccessEvent) GetEventId() stringfunc (*DataAccessEvent) GetEventTime
func (x *DataAccessEvent) GetEventTime() *timestamppb.Timestampfunc (*DataAccessEvent) GetOperation
func (x *DataAccessEvent) GetOperation() DataAccessEvent_Operationfunc (*DataAccessEvent) GetPrincipalEmail
func (x *DataAccessEvent) GetPrincipalEmail() stringfunc (*DataAccessEvent) ProtoMessage
func (*DataAccessEvent) ProtoMessage()func (*DataAccessEvent) ProtoReflect
func (x *DataAccessEvent) ProtoReflect() protoreflect.Messagefunc (*DataAccessEvent) Reset
func (x *DataAccessEvent) Reset()func (*DataAccessEvent) String
func (x *DataAccessEvent) String() stringDataAccessEvent_Operation
type DataAccessEvent_Operation int32The operation of a data access event.
DataAccessEvent_OPERATION_UNSPECIFIED, DataAccessEvent_READ, DataAccessEvent_MOVE, DataAccessEvent_COPY
const (
// The operation is unspecified.
DataAccessEvent_OPERATION_UNSPECIFIED DataAccessEvent_Operation = 0
// Represents a read operation.
DataAccessEvent_READ DataAccessEvent_Operation = 1
// Represents a move operation.
DataAccessEvent_MOVE DataAccessEvent_Operation = 2
// Represents a copy operation.
DataAccessEvent_COPY DataAccessEvent_Operation = 3
)func (DataAccessEvent_Operation) Descriptor
func (DataAccessEvent_Operation) Descriptor() protoreflect.EnumDescriptorfunc (DataAccessEvent_Operation) Enum
func (x DataAccessEvent_Operation) Enum() *DataAccessEvent_Operationfunc (DataAccessEvent_Operation) EnumDescriptor
func (DataAccessEvent_Operation) EnumDescriptor() ([]byte, []int)Deprecated: Use DataAccessEvent_Operation.Descriptor instead.
func (DataAccessEvent_Operation) Number
func (x DataAccessEvent_Operation) Number() protoreflect.EnumNumberfunc (DataAccessEvent_Operation) String
func (x DataAccessEvent_Operation) String() stringfunc (DataAccessEvent_Operation) Type
func (DataAccessEvent_Operation) Type() protoreflect.EnumTypeDataFlowEvent
type DataFlowEvent struct {
// Unique identifier for data flow event.
EventId string `protobuf:"bytes,1,opt,name=event_id,json=eventId,proto3" json:"event_id,omitempty"`
// The email address of the principal that initiated the data flow event. The
// principal could be a user account, service account, Google group, or other.
PrincipalEmail string `protobuf:"bytes,2,opt,name=principal_email,json=principalEmail,proto3" json:"principal_email,omitempty"`
// The operation performed by the principal for the data flow event.
Operation DataFlowEvent_Operation `protobuf:"varint,3,opt,name=operation,proto3,enum=google.cloud.securitycenter.v2.DataFlowEvent_Operation" json:"operation,omitempty"`
// Non-compliant location of the principal or the data destination.
ViolatedLocation string `protobuf:"bytes,4,opt,name=violated_location,json=violatedLocation,proto3" json:"violated_location,omitempty"`
// Timestamp of data flow event.
EventTime *timestamppb.Timestamp `protobuf:"bytes,5,opt,name=event_time,json=eventTime,proto3" json:"event_time,omitempty"`
// contains filtered or unexported fields
}Details about a data flow event, in which either the data is moved to or is accessed from a non-compliant geo-location, as defined in the applicable data security policy.
func (*DataFlowEvent) Descriptor
func (*DataFlowEvent) Descriptor() ([]byte, []int)Deprecated: Use DataFlowEvent.ProtoReflect.Descriptor instead.
func (*DataFlowEvent) GetEventId
func (x *DataFlowEvent) GetEventId() stringfunc (*DataFlowEvent) GetEventTime
func (x *DataFlowEvent) GetEventTime() *timestamppb.Timestampfunc (*DataFlowEvent) GetOperation
func (x *DataFlowEvent) GetOperation() DataFlowEvent_Operationfunc (*DataFlowEvent) GetPrincipalEmail
func (x *DataFlowEvent) GetPrincipalEmail() stringfunc (*DataFlowEvent) GetViolatedLocation
func (x *DataFlowEvent) GetViolatedLocation() stringfunc (*DataFlowEvent) ProtoMessage
func (*DataFlowEvent) ProtoMessage()func (*DataFlowEvent) ProtoReflect
func (x *DataFlowEvent) ProtoReflect() protoreflect.Messagefunc (*DataFlowEvent) Reset
func (x *DataFlowEvent) Reset()func (*DataFlowEvent) String
func (x *DataFlowEvent) String() stringDataFlowEvent_Operation
type DataFlowEvent_Operation int32The operation of a data flow event.
DataFlowEvent_OPERATION_UNSPECIFIED, DataFlowEvent_READ, DataFlowEvent_MOVE, DataFlowEvent_COPY
const (
// The operation is unspecified.
DataFlowEvent_OPERATION_UNSPECIFIED DataFlowEvent_Operation = 0
// Represents a read operation.
DataFlowEvent_READ DataFlowEvent_Operation = 1
// Represents a move operation.
DataFlowEvent_MOVE DataFlowEvent_Operation = 2
// Represents a copy operation.
DataFlowEvent_COPY DataFlowEvent_Operation = 3
)func (DataFlowEvent_Operation) Descriptor
func (DataFlowEvent_Operation) Descriptor() protoreflect.EnumDescriptorfunc (DataFlowEvent_Operation) Enum
func (x DataFlowEvent_Operation) Enum() *DataFlowEvent_Operationfunc (DataFlowEvent_Operation) EnumDescriptor
func (DataFlowEvent_Operation) EnumDescriptor() ([]byte, []int)Deprecated: Use DataFlowEvent_Operation.Descriptor instead.
func (DataFlowEvent_Operation) Number
func (x DataFlowEvent_Operation) Number() protoreflect.EnumNumberfunc (DataFlowEvent_Operation) String
func (x DataFlowEvent_Operation) String() stringfunc (DataFlowEvent_Operation) Type
func (DataFlowEvent_Operation) Type() protoreflect.EnumTypeDataRetentionDeletionEvent
type DataRetentionDeletionEvent struct {
// Timestamp indicating when the event was detected.
EventDetectionTime *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=event_detection_time,json=eventDetectionTime,proto3" json:"event_detection_time,omitempty"`
// Number of objects that violated the policy for this resource. If the number
// is less than 1,000, then the value of this field is the exact number. If
// the number of objects that violated the policy is greater than or equal to
// 1,000, then the value of this field is 1000.
DataObjectCount int64 `protobuf:"varint,3,opt,name=data_object_count,json=dataObjectCount,proto3" json:"data_object_count,omitempty"`
// Maximum duration of retention allowed from the DRD control. This comes
// from the DRD control where users set a max TTL for their data. For example,
// suppose that a user sets the max TTL for a Cloud Storage bucket to 90 days.
// However, an object in that bucket is 100 days old. In this case, a
// DataRetentionDeletionEvent will be generated for that Cloud Storage bucket,
// and the max_retention_allowed is 90 days.
MaxRetentionAllowed *durationpb.Duration `protobuf:"bytes,4,opt,name=max_retention_allowed,json=maxRetentionAllowed,proto3" json:"max_retention_allowed,omitempty"`
// Type of the DRD event.
EventType DataRetentionDeletionEvent_EventType `protobuf:"varint,5,opt,name=event_type,json=eventType,proto3,enum=google.cloud.securitycenter.v2.DataRetentionDeletionEvent_EventType" json:"event_type,omitempty"`
// contains filtered or unexported fields
}Details about data retention deletion violations, in which the data is non-compliant based on their retention or deletion time, as defined in the applicable data security policy. The Data Retention Deletion (DRD) control is a control of the DSPM (Data Security Posture Management) suite that enables organizations to manage data retention and deletion policies in compliance with regulations, such as GDPR and CRPA. DRD supports two primary policy types: maximum storage length (max TTL) and minimum storage length (min TTL). Both are aimed at helping organizations meet regulatory and data management commitments.
func (*DataRetentionDeletionEvent) Descriptor
func (*DataRetentionDeletionEvent) Descriptor() ([]byte, []int)Deprecated: Use DataRetentionDeletionEvent.ProtoReflect.Descriptor instead.
func (*DataRetentionDeletionEvent) GetDataObjectCount
func (x *DataRetentionDeletionEvent) GetDataObjectCount() int64func (*DataRetentionDeletionEvent) GetEventDetectionTime
func (x *DataRetentionDeletionEvent) GetEventDetectionTime() *timestamppb.Timestampfunc (*DataRetentionDeletionEvent) GetEventType
func (x *DataRetentionDeletionEvent) GetEventType() DataRetentionDeletionEvent_EventTypefunc (*DataRetentionDeletionEvent) GetMaxRetentionAllowed
func (x *DataRetentionDeletionEvent) GetMaxRetentionAllowed() *durationpb.Durationfunc (*DataRetentionDeletionEvent) ProtoMessage
func (*DataRetentionDeletionEvent) ProtoMessage()func (*DataRetentionDeletionEvent) ProtoReflect
func (x *DataRetentionDeletionEvent) ProtoReflect() protoreflect.Messagefunc (*DataRetentionDeletionEvent) Reset
func (x *DataRetentionDeletionEvent) Reset()func (*DataRetentionDeletionEvent) String
func (x *DataRetentionDeletionEvent) String() stringDataRetentionDeletionEvent_EventType
type DataRetentionDeletionEvent_EventType int32Type of the DRD event.
DataRetentionDeletionEvent_EVENT_TYPE_UNSPECIFIED, DataRetentionDeletionEvent_EVENT_TYPE_MAX_TTL_EXCEEDED
const (
// Unspecified event type.
DataRetentionDeletionEvent_EVENT_TYPE_UNSPECIFIED DataRetentionDeletionEvent_EventType = 0
// The maximum retention time has been exceeded.
DataRetentionDeletionEvent_EVENT_TYPE_MAX_TTL_EXCEEDED DataRetentionDeletionEvent_EventType = 1
)func (DataRetentionDeletionEvent_EventType) Descriptor
func (DataRetentionDeletionEvent_EventType) Descriptor() protoreflect.EnumDescriptorfunc (DataRetentionDeletionEvent_EventType) Enum
func (x DataRetentionDeletionEvent_EventType) Enum() *DataRetentionDeletionEvent_EventTypefunc (DataRetentionDeletionEvent_EventType) EnumDescriptor
func (DataRetentionDeletionEvent_EventType) EnumDescriptor() ([]byte, []int)Deprecated: Use DataRetentionDeletionEvent_EventType.Descriptor instead.
func (DataRetentionDeletionEvent_EventType) Number
func (x DataRetentionDeletionEvent_EventType) Number() protoreflect.EnumNumberfunc (DataRetentionDeletionEvent_EventType) String
func (x DataRetentionDeletionEvent_EventType) String() stringfunc (DataRetentionDeletionEvent_EventType) Type
func (DataRetentionDeletionEvent_EventType) Type() protoreflect.EnumTypeDatabase
type Database struct {
// Some database resources may not have the [full resource
// name](https://google.aip.dev/122#full-resource-names) populated because
// these resource types are not yet supported by Cloud Asset Inventory (e.g.
// Cloud SQL databases). In these cases only the display name will be
// provided.
// The [full resource name](https://google.aip.dev/122#full-resource-names) of
// the database that the user connected to, if it is supported by Cloud Asset
// Inventory.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The human-readable name of the database that the user connected to.
DisplayName string `protobuf:"bytes,2,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
// The username used to connect to the database. The username might not be an
// IAM principal and does not have a set format.
UserName string `protobuf:"bytes,3,opt,name=user_name,json=userName,proto3" json:"user_name,omitempty"`
// The SQL statement that is associated with the database access.
Query string `protobuf:"bytes,4,opt,name=query,proto3" json:"query,omitempty"`
// The target usernames, roles, or groups of an SQL privilege grant, which is
// not an IAM policy change.
Grantees []string `protobuf:"bytes,5,rep,name=grantees,proto3" json:"grantees,omitempty"`
// The version of the database, for example, POSTGRES_14.
// See [the complete
// list](https://cloud.google.com/sql/docs/mysql/admin-api/rest/v1/SqlDatabaseVersion).
Version string `protobuf:"bytes,6,opt,name=version,proto3" json:"version,omitempty"`
// contains filtered or unexported fields
}Represents database access information, such as queries. A database may be a sub-resource of an instance (as in the case of Cloud SQL instances or Cloud Spanner instances), or the database instance itself. Some database resources might not have the full resource name populated because these resource types, such as Cloud SQL databases, are not yet supported by Cloud Asset Inventory. In these cases only the display name is provided.
func (*Database) Descriptor
Deprecated: Use Database.ProtoReflect.Descriptor instead.
func (*Database) GetDisplayName
func (*Database) GetGrantees
func (*Database) GetName
func (*Database) GetQuery
func (*Database) GetUserName
func (*Database) GetVersion
func (*Database) ProtoMessage
func (*Database) ProtoMessage()func (*Database) ProtoReflect
func (x *Database) ProtoReflect() protoreflect.Messagefunc (*Database) Reset
func (x *Database) Reset()func (*Database) String
DeleteBigQueryExportRequest
type DeleteBigQueryExportRequest struct {
// Required. The name of the BigQuery export to delete. The following list
// shows some examples of the format:
//
// +
// `organizations/{organization}/locations/{location}/bigQueryExports/{export_id}`
// + `folders/{folder}/locations/{location}/bigQueryExports/{export_id}`
// + `projects/{project}/locations/{location}/bigQueryExports/{export_id}`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for deleting a BigQuery export.
func (*DeleteBigQueryExportRequest) Descriptor
func (*DeleteBigQueryExportRequest) Descriptor() ([]byte, []int)Deprecated: Use DeleteBigQueryExportRequest.ProtoReflect.Descriptor instead.
func (*DeleteBigQueryExportRequest) GetName
func (x *DeleteBigQueryExportRequest) GetName() stringfunc (*DeleteBigQueryExportRequest) ProtoMessage
func (*DeleteBigQueryExportRequest) ProtoMessage()func (*DeleteBigQueryExportRequest) ProtoReflect
func (x *DeleteBigQueryExportRequest) ProtoReflect() protoreflect.Messagefunc (*DeleteBigQueryExportRequest) Reset
func (x *DeleteBigQueryExportRequest) Reset()func (*DeleteBigQueryExportRequest) String
func (x *DeleteBigQueryExportRequest) String() stringDeleteMuteConfigRequest
type DeleteMuteConfigRequest struct {
// Required. Name of the mute config to delete. The following list shows some
// examples of the format:
//
// + `organizations/{organization}/muteConfigs/{config_id}`
// +
// `organizations/{organization}/locations/{location}/muteConfigs/{config_id}`
// + `folders/{folder}/muteConfigs/{config_id}`
// + `folders/{folder}/locations/{location}/muteConfigs/{config_id}`
// + `projects/{project}/muteConfigs/{config_id}`
// + `projects/{project}/locations/{location}/muteConfigs/{config_id}`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for deleting a mute config. If no location is specified, default is global.
func (*DeleteMuteConfigRequest) Descriptor
func (*DeleteMuteConfigRequest) Descriptor() ([]byte, []int)Deprecated: Use DeleteMuteConfigRequest.ProtoReflect.Descriptor instead.
func (*DeleteMuteConfigRequest) GetName
func (x *DeleteMuteConfigRequest) GetName() stringfunc (*DeleteMuteConfigRequest) ProtoMessage
func (*DeleteMuteConfigRequest) ProtoMessage()func (*DeleteMuteConfigRequest) ProtoReflect
func (x *DeleteMuteConfigRequest) ProtoReflect() protoreflect.Messagefunc (*DeleteMuteConfigRequest) Reset
func (x *DeleteMuteConfigRequest) Reset()func (*DeleteMuteConfigRequest) String
func (x *DeleteMuteConfigRequest) String() stringDeleteNotificationConfigRequest
type DeleteNotificationConfigRequest struct {
// Required. Name of the notification config to delete. The following list
// shows some examples of the format:
//
// +
// `organizations/[organization_id]/locations/[location_id]/notificationConfigs/[config_id]`
// +
// `folders/[folder_id]/locations/[location_id]notificationConfigs/[config_id]`
// +
// `projects/[project_id]/locations/[location_id]notificationConfigs/[config_id]`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for deleting a notification config.
func (*DeleteNotificationConfigRequest) Descriptor
func (*DeleteNotificationConfigRequest) Descriptor() ([]byte, []int)Deprecated: Use DeleteNotificationConfigRequest.ProtoReflect.Descriptor instead.
func (*DeleteNotificationConfigRequest) GetName
func (x *DeleteNotificationConfigRequest) GetName() stringfunc (*DeleteNotificationConfigRequest) ProtoMessage
func (*DeleteNotificationConfigRequest) ProtoMessage()func (*DeleteNotificationConfigRequest) ProtoReflect
func (x *DeleteNotificationConfigRequest) ProtoReflect() protoreflect.Messagefunc (*DeleteNotificationConfigRequest) Reset
func (x *DeleteNotificationConfigRequest) Reset()func (*DeleteNotificationConfigRequest) String
func (x *DeleteNotificationConfigRequest) String() stringDeleteResourceValueConfigRequest
type DeleteResourceValueConfigRequest struct {
// Required. Name of the ResourceValueConfig to delete
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message to delete resource value config
func (*DeleteResourceValueConfigRequest) Descriptor
func (*DeleteResourceValueConfigRequest) Descriptor() ([]byte, []int)Deprecated: Use DeleteResourceValueConfigRequest.ProtoReflect.Descriptor instead.
func (*DeleteResourceValueConfigRequest) GetName
func (x *DeleteResourceValueConfigRequest) GetName() stringfunc (*DeleteResourceValueConfigRequest) ProtoMessage
func (*DeleteResourceValueConfigRequest) ProtoMessage()func (*DeleteResourceValueConfigRequest) ProtoReflect
func (x *DeleteResourceValueConfigRequest) ProtoReflect() protoreflect.Messagefunc (*DeleteResourceValueConfigRequest) Reset
func (x *DeleteResourceValueConfigRequest) Reset()func (*DeleteResourceValueConfigRequest) String
func (x *DeleteResourceValueConfigRequest) String() stringDenied
type Denied struct {
// Optional. Optional list of denied IP rules.
IpRules []*IpRule `protobuf:"bytes,1,rep,name=ip_rules,json=ipRules,proto3" json:"ip_rules,omitempty"`
// contains filtered or unexported fields
}Denied IP rule.
func (*Denied) Descriptor
Deprecated: Use Denied.ProtoReflect.Descriptor instead.
func (*Denied) GetIpRules
func (*Denied) ProtoMessage
func (*Denied) ProtoMessage()func (*Denied) ProtoReflect
func (x *Denied) ProtoReflect() protoreflect.Messagefunc (*Denied) Reset
func (x *Denied) Reset()func (*Denied) String
Disk
type Disk struct {
// The name of the disk, for example,
// "https://www.googleapis.com/compute/v1/projects/{project-id}/zones/{zone-id}/disks/{disk-id}".
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Contains information about the disk associated with the finding.
func (*Disk) Descriptor
Deprecated: Use Disk.ProtoReflect.Descriptor instead.
func (*Disk) GetName
func (*Disk) ProtoMessage
func (*Disk) ProtoMessage()func (*Disk) ProtoReflect
func (x *Disk) ProtoReflect() protoreflect.Messagefunc (*Disk) Reset
func (x *Disk) Reset()func (*Disk) String
EnvironmentVariable
type EnvironmentVariable struct {
// Environment variable name as a JSON encoded string.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Environment variable value as a JSON encoded string.
Val string `protobuf:"bytes,2,opt,name=val,proto3" json:"val,omitempty"`
// contains filtered or unexported fields
}A name-value pair representing an environment variable used in an operating system process.
func (*EnvironmentVariable) Descriptor
func (*EnvironmentVariable) Descriptor() ([]byte, []int)Deprecated: Use EnvironmentVariable.ProtoReflect.Descriptor instead.
func (*EnvironmentVariable) GetName
func (x *EnvironmentVariable) GetName() stringfunc (*EnvironmentVariable) GetVal
func (x *EnvironmentVariable) GetVal() stringfunc (*EnvironmentVariable) ProtoMessage
func (*EnvironmentVariable) ProtoMessage()func (*EnvironmentVariable) ProtoReflect
func (x *EnvironmentVariable) ProtoReflect() protoreflect.Messagefunc (*EnvironmentVariable) Reset
func (x *EnvironmentVariable) Reset()func (*EnvironmentVariable) String
func (x *EnvironmentVariable) String() stringExfilResource
type ExfilResource struct {
// The resource's [full resource
// name](https://cloud.google.com/apis/design/resource_names#full_resource_name).
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Subcomponents of the asset that was exfiltrated, like URIs used during
// exfiltration, table names, databases, and filenames. For example, multiple
// tables might have been exfiltrated from the same Cloud SQL instance, or
// multiple files might have been exfiltrated from the same Cloud Storage
// bucket.
Components []string `protobuf:"bytes,2,rep,name=components,proto3" json:"components,omitempty"`
// contains filtered or unexported fields
}Resource where data was exfiltrated from or exfiltrated to.
func (*ExfilResource) Descriptor
func (*ExfilResource) Descriptor() ([]byte, []int)Deprecated: Use ExfilResource.ProtoReflect.Descriptor instead.
func (*ExfilResource) GetComponents
func (x *ExfilResource) GetComponents() []stringfunc (*ExfilResource) GetName
func (x *ExfilResource) GetName() stringfunc (*ExfilResource) ProtoMessage
func (*ExfilResource) ProtoMessage()func (*ExfilResource) ProtoReflect
func (x *ExfilResource) ProtoReflect() protoreflect.Messagefunc (*ExfilResource) Reset
func (x *ExfilResource) Reset()func (*ExfilResource) String
func (x *ExfilResource) String() stringExfiltration
type Exfiltration struct {
// If there are multiple sources, then the data is considered "joined" between
// them. For instance, BigQuery can join multiple tables, and each
// table would be considered a source.
Sources []*ExfilResource `protobuf:"bytes,1,rep,name=sources,proto3" json:"sources,omitempty"`
// If there are multiple targets, each target would get a complete copy of the
// "joined" source data.
Targets []*ExfilResource `protobuf:"bytes,2,rep,name=targets,proto3" json:"targets,omitempty"`
// Total exfiltrated bytes processed for the entire job.
TotalExfiltratedBytes int64 `protobuf:"varint,3,opt,name=total_exfiltrated_bytes,json=totalExfiltratedBytes,proto3" json:"total_exfiltrated_bytes,omitempty"`
// contains filtered or unexported fields
}Exfiltration represents a data exfiltration attempt from one or more sources
to one or more targets. The sources attribute lists the sources of the
exfiltrated data. The targets attribute lists the destinations the data was
copied to.
func (*Exfiltration) Descriptor
func (*Exfiltration) Descriptor() ([]byte, []int)Deprecated: Use Exfiltration.ProtoReflect.Descriptor instead.
func (*Exfiltration) GetSources
func (x *Exfiltration) GetSources() []*ExfilResourcefunc (*Exfiltration) GetTargets
func (x *Exfiltration) GetTargets() []*ExfilResourcefunc (*Exfiltration) GetTotalExfiltratedBytes
func (x *Exfiltration) GetTotalExfiltratedBytes() int64func (*Exfiltration) ProtoMessage
func (*Exfiltration) ProtoMessage()func (*Exfiltration) ProtoReflect
func (x *Exfiltration) ProtoReflect() protoreflect.Messagefunc (*Exfiltration) Reset
func (x *Exfiltration) Reset()func (*Exfiltration) String
func (x *Exfiltration) String() stringExportFindingsMetadata
type ExportFindingsMetadata struct {
// Optional. Timestamp at which export was started
ExportStartTime *timestamppb.Timestamp `protobuf:"bytes,1,opt,name=export_start_time,json=exportStartTime,proto3" json:"export_start_time,omitempty"`
// The destination to export findings to.
//
// Types that are assignable to Destination:
//
// *ExportFindingsMetadata_BigQueryDestination
Destination isExportFindingsMetadata_Destination `protobuf_oneof:"destination"`
// contains filtered or unexported fields
}The LRO metadata for a ExportFindings request.
func (*ExportFindingsMetadata) Descriptor
func (*ExportFindingsMetadata) Descriptor() ([]byte, []int)Deprecated: Use ExportFindingsMetadata.ProtoReflect.Descriptor instead.
func (*ExportFindingsMetadata) GetBigQueryDestination
func (x *ExportFindingsMetadata) GetBigQueryDestination() *BigQueryDestinationfunc (*ExportFindingsMetadata) GetDestination
func (m *ExportFindingsMetadata) GetDestination() isExportFindingsMetadata_Destinationfunc (*ExportFindingsMetadata) GetExportStartTime
func (x *ExportFindingsMetadata) GetExportStartTime() *timestamppb.Timestampfunc (*ExportFindingsMetadata) ProtoMessage
func (*ExportFindingsMetadata) ProtoMessage()func (*ExportFindingsMetadata) ProtoReflect
func (x *ExportFindingsMetadata) ProtoReflect() protoreflect.Messagefunc (*ExportFindingsMetadata) Reset
func (x *ExportFindingsMetadata) Reset()func (*ExportFindingsMetadata) String
func (x *ExportFindingsMetadata) String() stringExportFindingsMetadata_BigQueryDestination
type ExportFindingsMetadata_BigQueryDestination struct {
// Required. The destination big query dataset to export findings to.
BigQueryDestination *BigQueryDestination `protobuf:"bytes,2,opt,name=big_query_destination,json=bigQueryDestination,proto3,oneof"`
}ExportFindingsResponse
type ExportFindingsResponse struct {
// contains filtered or unexported fields
}The response to a ExportFindings request. Contains the LRO information.
func (*ExportFindingsResponse) Descriptor
func (*ExportFindingsResponse) Descriptor() ([]byte, []int)Deprecated: Use ExportFindingsResponse.ProtoReflect.Descriptor instead.
func (*ExportFindingsResponse) ProtoMessage
func (*ExportFindingsResponse) ProtoMessage()func (*ExportFindingsResponse) ProtoReflect
func (x *ExportFindingsResponse) ProtoReflect() protoreflect.Messagefunc (*ExportFindingsResponse) Reset
func (x *ExportFindingsResponse) Reset()func (*ExportFindingsResponse) String
func (x *ExportFindingsResponse) String() stringExternalSystem
type ExternalSystem struct {
// Full resource name of the external system. The following list
// shows some examples:
//
// + `organizations/1234/sources/5678/findings/123456/externalSystems/jira`
// +
// `organizations/1234/sources/5678/locations/us/findings/123456/externalSystems/jira`
// + `folders/1234/sources/5678/findings/123456/externalSystems/jira`
// +
// `folders/1234/sources/5678/locations/us/findings/123456/externalSystems/jira`
// + `projects/1234/sources/5678/findings/123456/externalSystems/jira`
// +
// `projects/1234/sources/5678/locations/us/findings/123456/externalSystems/jira`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// References primary/secondary etc assignees in the external system.
Assignees []string `protobuf:"bytes,2,rep,name=assignees,proto3" json:"assignees,omitempty"`
// The identifier that's used to track the finding's corresponding case in the
// external system.
ExternalUid string `protobuf:"bytes,3,opt,name=external_uid,json=externalUid,proto3" json:"external_uid,omitempty"`
// The most recent status of the finding's corresponding case, as reported by
// the external system.
Status string `protobuf:"bytes,4,opt,name=status,proto3" json:"status,omitempty"`
// The time when the case was last updated, as reported by the external
// system.
ExternalSystemUpdateTime *timestamppb.Timestamp `protobuf:"bytes,5,opt,name=external_system_update_time,json=externalSystemUpdateTime,proto3" json:"external_system_update_time,omitempty"`
// The link to the finding's corresponding case in the external system.
CaseUri string `protobuf:"bytes,6,opt,name=case_uri,json=caseUri,proto3" json:"case_uri,omitempty"`
// The priority of the finding's corresponding case in the external system.
CasePriority string `protobuf:"bytes,7,opt,name=case_priority,json=casePriority,proto3" json:"case_priority,omitempty"`
// The SLA of the finding's corresponding case in the external system.
CaseSla *timestamppb.Timestamp `protobuf:"bytes,9,opt,name=case_sla,json=caseSla,proto3" json:"case_sla,omitempty"`
// The time when the case was created, as reported by the external system.
CaseCreateTime *timestamppb.Timestamp `protobuf:"bytes,10,opt,name=case_create_time,json=caseCreateTime,proto3" json:"case_create_time,omitempty"`
// The time when the case was closed, as reported by the external system.
CaseCloseTime *timestamppb.Timestamp `protobuf:"bytes,11,opt,name=case_close_time,json=caseCloseTime,proto3" json:"case_close_time,omitempty"`
// Information about the ticket, if any, that is being used to track the
// resolution of the issue that is identified by this finding.
TicketInfo *ExternalSystem_TicketInfo `protobuf:"bytes,8,opt,name=ticket_info,json=ticketInfo,proto3" json:"ticket_info,omitempty"`
// contains filtered or unexported fields
}Representation of third party SIEM/SOAR fields within SCC.
func (*ExternalSystem) Descriptor
func (*ExternalSystem) Descriptor() ([]byte, []int)Deprecated: Use ExternalSystem.ProtoReflect.Descriptor instead.
func (*ExternalSystem) GetAssignees
func (x *ExternalSystem) GetAssignees() []stringfunc (*ExternalSystem) GetCaseCloseTime
func (x *ExternalSystem) GetCaseCloseTime() *timestamppb.Timestampfunc (*ExternalSystem) GetCaseCreateTime
func (x *ExternalSystem) GetCaseCreateTime() *timestamppb.Timestampfunc (*ExternalSystem) GetCasePriority
func (x *ExternalSystem) GetCasePriority() stringfunc (*ExternalSystem) GetCaseSla
func (x *ExternalSystem) GetCaseSla() *timestamppb.Timestampfunc (*ExternalSystem) GetCaseUri
func (x *ExternalSystem) GetCaseUri() stringfunc (*ExternalSystem) GetExternalSystemUpdateTime
func (x *ExternalSystem) GetExternalSystemUpdateTime() *timestamppb.Timestampfunc (*ExternalSystem) GetExternalUid
func (x *ExternalSystem) GetExternalUid() stringfunc (*ExternalSystem) GetName
func (x *ExternalSystem) GetName() stringfunc (*ExternalSystem) GetStatus
func (x *ExternalSystem) GetStatus() stringfunc (*ExternalSystem) GetTicketInfo
func (x *ExternalSystem) GetTicketInfo() *ExternalSystem_TicketInfofunc (*ExternalSystem) ProtoMessage
func (*ExternalSystem) ProtoMessage()func (*ExternalSystem) ProtoReflect
func (x *ExternalSystem) ProtoReflect() protoreflect.Messagefunc (*ExternalSystem) Reset
func (x *ExternalSystem) Reset()func (*ExternalSystem) String
func (x *ExternalSystem) String() stringExternalSystem_TicketInfo
type ExternalSystem_TicketInfo struct {
// The identifier of the ticket in the ticket system.
Id string `protobuf:"bytes,1,opt,name=id,proto3" json:"id,omitempty"`
// The assignee of the ticket in the ticket system.
Assignee string `protobuf:"bytes,2,opt,name=assignee,proto3" json:"assignee,omitempty"`
// The description of the ticket in the ticket system.
Description string `protobuf:"bytes,3,opt,name=description,proto3" json:"description,omitempty"`
// The link to the ticket in the ticket system.
Uri string `protobuf:"bytes,4,opt,name=uri,proto3" json:"uri,omitempty"`
// The latest status of the ticket, as reported by the ticket system.
Status string `protobuf:"bytes,5,opt,name=status,proto3" json:"status,omitempty"`
// The time when the ticket was last updated, as reported by the ticket
// system.
UpdateTime *timestamppb.Timestamp `protobuf:"bytes,6,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
// contains filtered or unexported fields
}Information about the ticket, if any, that is being used to track the resolution of the issue that is identified by this finding.
func (*ExternalSystem_TicketInfo) Descriptor
func (*ExternalSystem_TicketInfo) Descriptor() ([]byte, []int)Deprecated: Use ExternalSystem_TicketInfo.ProtoReflect.Descriptor instead.
func (*ExternalSystem_TicketInfo) GetAssignee
func (x *ExternalSystem_TicketInfo) GetAssignee() stringfunc (*ExternalSystem_TicketInfo) GetDescription
func (x *ExternalSystem_TicketInfo) GetDescription() stringfunc (*ExternalSystem_TicketInfo) GetId
func (x *ExternalSystem_TicketInfo) GetId() stringfunc (*ExternalSystem_TicketInfo) GetStatus
func (x *ExternalSystem_TicketInfo) GetStatus() stringfunc (*ExternalSystem_TicketInfo) GetUpdateTime
func (x *ExternalSystem_TicketInfo) GetUpdateTime() *timestamppb.Timestampfunc (*ExternalSystem_TicketInfo) GetUri
func (x *ExternalSystem_TicketInfo) GetUri() stringfunc (*ExternalSystem_TicketInfo) ProtoMessage
func (*ExternalSystem_TicketInfo) ProtoMessage()func (*ExternalSystem_TicketInfo) ProtoReflect
func (x *ExternalSystem_TicketInfo) ProtoReflect() protoreflect.Messagefunc (*ExternalSystem_TicketInfo) Reset
func (x *ExternalSystem_TicketInfo) Reset()func (*ExternalSystem_TicketInfo) String
func (x *ExternalSystem_TicketInfo) String() stringFile
type File struct {
// Absolute path of the file as a JSON encoded string.
Path string `protobuf:"bytes,1,opt,name=path,proto3" json:"path,omitempty"`
// Size of the file in bytes.
Size int64 `protobuf:"varint,2,opt,name=size,proto3" json:"size,omitempty"`
// SHA256 hash of the first hashed_size bytes of the file encoded as a
// hex string. If hashed_size == size, sha256 represents the SHA256 hash
// of the entire file.
Sha256 string `protobuf:"bytes,3,opt,name=sha256,proto3" json:"sha256,omitempty"`
// The length in bytes of the file prefix that was hashed. If
// hashed_size == size, any hashes reported represent the entire
// file.
HashedSize int64 `protobuf:"varint,4,opt,name=hashed_size,json=hashedSize,proto3" json:"hashed_size,omitempty"`
// True when the hash covers only a prefix of the file.
PartiallyHashed bool `protobuf:"varint,5,opt,name=partially_hashed,json=partiallyHashed,proto3" json:"partially_hashed,omitempty"`
// Prefix of the file contents as a JSON-encoded string.
Contents string `protobuf:"bytes,6,opt,name=contents,proto3" json:"contents,omitempty"`
// Path of the file in terms of underlying disk/partition identifiers.
DiskPath *File_DiskPath `protobuf:"bytes,7,opt,name=disk_path,json=diskPath,proto3" json:"disk_path,omitempty"`
// Operation(s) performed on a file.
Operations []*File_FileOperation `protobuf:"bytes,8,rep,name=operations,proto3" json:"operations,omitempty"`
// contains filtered or unexported fields
}File information about the related binary/library used by an executable, or the script used by a script interpreter
func (*File) Descriptor
Deprecated: Use File.ProtoReflect.Descriptor instead.
func (*File) GetContents
func (*File) GetDiskPath
func (x *File) GetDiskPath() *File_DiskPathfunc (*File) GetHashedSize
func (*File) GetOperations
func (x *File) GetOperations() []*File_FileOperationfunc (*File) GetPartiallyHashed
func (*File) GetPath
func (*File) GetSha256
func (*File) GetSize
func (*File) ProtoMessage
func (*File) ProtoMessage()func (*File) ProtoReflect
func (x *File) ProtoReflect() protoreflect.Messagefunc (*File) Reset
func (x *File) Reset()func (*File) String
File_DiskPath
type File_DiskPath struct {
// UUID of the partition (format
// https://wiki.archlinux.org/title/persistent_block_device_naming#by-uuid)
PartitionUuid string `protobuf:"bytes,1,opt,name=partition_uuid,json=partitionUuid,proto3" json:"partition_uuid,omitempty"`
// Relative path of the file in the partition as a JSON encoded string.
// Example: /home/user1/executable_file.sh
RelativePath string `protobuf:"bytes,2,opt,name=relative_path,json=relativePath,proto3" json:"relative_path,omitempty"`
// contains filtered or unexported fields
}Path of the file in terms of underlying disk/partition identifiers.
func (*File_DiskPath) Descriptor
func (*File_DiskPath) Descriptor() ([]byte, []int)Deprecated: Use File_DiskPath.ProtoReflect.Descriptor instead.
func (*File_DiskPath) GetPartitionUuid
func (x *File_DiskPath) GetPartitionUuid() stringfunc (*File_DiskPath) GetRelativePath
func (x *File_DiskPath) GetRelativePath() stringfunc (*File_DiskPath) ProtoMessage
func (*File_DiskPath) ProtoMessage()func (*File_DiskPath) ProtoReflect
func (x *File_DiskPath) ProtoReflect() protoreflect.Messagefunc (*File_DiskPath) Reset
func (x *File_DiskPath) Reset()func (*File_DiskPath) String
func (x *File_DiskPath) String() stringFile_FileOperation
type File_FileOperation struct {
// The type of the operation
Type File_FileOperation_OperationType `protobuf:"varint,1,opt,name=type,proto3,enum=google.cloud.securitycenter.v2.File_FileOperation_OperationType" json:"type,omitempty"`
// contains filtered or unexported fields
}Operation(s) performed on a file.
func (*File_FileOperation) Descriptor
func (*File_FileOperation) Descriptor() ([]byte, []int)Deprecated: Use File_FileOperation.ProtoReflect.Descriptor instead.
func (*File_FileOperation) GetType
func (x *File_FileOperation) GetType() File_FileOperation_OperationTypefunc (*File_FileOperation) ProtoMessage
func (*File_FileOperation) ProtoMessage()func (*File_FileOperation) ProtoReflect
func (x *File_FileOperation) ProtoReflect() protoreflect.Messagefunc (*File_FileOperation) Reset
func (x *File_FileOperation) Reset()func (*File_FileOperation) String
func (x *File_FileOperation) String() stringFile_FileOperation_OperationType
type File_FileOperation_OperationType int32The type of the operation
File_FileOperation_OPERATION_TYPE_UNSPECIFIED, File_FileOperation_OPEN, File_FileOperation_READ, File_FileOperation_RENAME, File_FileOperation_WRITE, File_FileOperation_EXECUTE
const (
// The operation is unspecified.
File_FileOperation_OPERATION_TYPE_UNSPECIFIED File_FileOperation_OperationType = 0
// Represents an open operation.
File_FileOperation_OPEN File_FileOperation_OperationType = 1
// Represents a read operation.
File_FileOperation_READ File_FileOperation_OperationType = 2
// Represents a rename operation.
File_FileOperation_RENAME File_FileOperation_OperationType = 3
// Represents a write operation.
File_FileOperation_WRITE File_FileOperation_OperationType = 4
// Represents an execute operation.
File_FileOperation_EXECUTE File_FileOperation_OperationType = 5
)func (File_FileOperation_OperationType) Descriptor
func (File_FileOperation_OperationType) Descriptor() protoreflect.EnumDescriptorfunc (File_FileOperation_OperationType) Enum
func (x File_FileOperation_OperationType) Enum() *File_FileOperation_OperationTypefunc (File_FileOperation_OperationType) EnumDescriptor
func (File_FileOperation_OperationType) EnumDescriptor() ([]byte, []int)Deprecated: Use File_FileOperation_OperationType.Descriptor instead.
func (File_FileOperation_OperationType) Number
func (x File_FileOperation_OperationType) Number() protoreflect.EnumNumberfunc (File_FileOperation_OperationType) String
func (x File_FileOperation_OperationType) String() stringfunc (File_FileOperation_OperationType) Type
func (File_FileOperation_OperationType) Type() protoreflect.EnumTypeFinding
type Finding struct {
// Identifier. The [relative resource
// name](https://cloud.google.com/apis/design/resource_names#relative_resource_name)
// of the finding. The following list shows some examples:
//
// +
// `organizations/{organization_id}/sources/{source_id}/findings/{finding_id}`
// +
// `organizations/{organization_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}`
// + `folders/{folder_id}/sources/{source_id}/findings/{finding_id}`
// +
// `folders/{folder_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}`
// + `projects/{project_id}/sources/{source_id}/findings/{finding_id}`
// +
// `projects/{project_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Output only. The canonical name of the finding. The following list shows
// some examples:
//
// +
// `organizations/{organization_id}/sources/{source_id}/findings/{finding_id}`
// +
// `organizations/{organization_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}`
// + `folders/{folder_id}/sources/{source_id}/findings/{finding_id}`
// +
// `folders/{folder_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}`
// + `projects/{project_id}/sources/{source_id}/findings/{finding_id}`
// +
// `projects/{project_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}`
//
// The prefix is the closest CRM ancestor of the resource associated with the
// finding.
CanonicalName string `protobuf:"bytes,2,opt,name=canonical_name,json=canonicalName,proto3" json:"canonical_name,omitempty"`
// The relative resource name of the source and location the finding belongs
// to. See:
// https://cloud.google.com/apis/design/resource_names#relative_resource_name
// This field is immutable after creation time. The following list shows some
// examples:
//
// + `organizations/{organization_id}/sources/{source_id}`
// + `folders/{folders_id}/sources/{source_id}`
// + `projects/{projects_id}/sources/{source_id}`
// +
// `organizations/{organization_id}/sources/{source_id}/locations/{location_id}`
// + `folders/{folders_id}/sources/{source_id}/locations/{location_id}`
// + `projects/{projects_id}/sources/{source_id}/locations/{location_id}`
Parent string `protobuf:"bytes,3,opt,name=parent,proto3" json:"parent,omitempty"`
// Immutable. For findings on Google Cloud resources, the full resource
// name of the Google Cloud resource this finding is for. See:
// https://cloud.google.com/apis/design/resource_names#full_resource_name
// When the finding is for a non-Google Cloud resource, the resourceName can
// be a customer or partner defined string.
ResourceName string `protobuf:"bytes,4,opt,name=resource_name,json=resourceName,proto3" json:"resource_name,omitempty"`
// Output only. The state of the finding.
State Finding_State `protobuf:"varint,6,opt,name=state,proto3,enum=google.cloud.securitycenter.v2.Finding_State" json:"state,omitempty"`
// Immutable. The additional taxonomy group within findings from a given
// source. Example: "XSS_FLASH_INJECTION"
Category string `protobuf:"bytes,7,opt,name=category,proto3" json:"category,omitempty"`
// The URI that, if available, points to a web page outside of Security
// Command Center where additional information about the finding can be found.
// This field is guaranteed to be either empty or a well formed URL.
ExternalUri string `protobuf:"bytes,8,opt,name=external_uri,json=externalUri,proto3" json:"external_uri,omitempty"`
// Source specific properties. These properties are managed by the source
// that writes the finding. The key names in the source_properties map must be
// between 1 and 255 characters, and must start with a letter and contain
// alphanumeric characters or underscores only.
SourceProperties map[string]*structpb.Value `protobuf:"bytes,9,rep,name=source_properties,json=sourceProperties,proto3" json:"source_properties,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
// Output only. User specified security marks. These marks are entirely
// managed by the user and come from the SecurityMarks resource that belongs
// to the finding.
SecurityMarks *SecurityMarks `protobuf:"bytes,10,opt,name=security_marks,json=securityMarks,proto3" json:"security_marks,omitempty"`
// The time the finding was first detected. If an existing finding is updated,
// then this is the time the update occurred.
// For example, if the finding represents an open firewall, this property
// captures the time the detector believes the firewall became open. The
// accuracy is determined by the detector. If the finding is later resolved,
// then this time reflects when the finding was resolved. This must not
// be set to a value greater than the current timestamp.
EventTime *timestamppb.Timestamp `protobuf:"bytes,11,opt,name=event_time,json=eventTime,proto3" json:"event_time,omitempty"`
// Output only. The time at which the finding was created in Security Command
// Center.
CreateTime *timestamppb.Timestamp `protobuf:"bytes,12,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
// The severity of the finding. This field is managed by the source that
// writes the finding.
Severity Finding_Severity `protobuf:"varint,14,opt,name=severity,proto3,enum=google.cloud.securitycenter.v2.Finding_Severity" json:"severity,omitempty"`
// Indicates the mute state of a finding (either muted, unmuted
// or undefined). Unlike other attributes of a finding, a finding provider
// shouldn't set the value of mute.
Mute Finding_Mute `protobuf:"varint,15,opt,name=mute,proto3,enum=google.cloud.securitycenter.v2.Finding_Mute" json:"mute,omitempty"`
// Output only. The mute information regarding this finding.
MuteInfo *Finding_MuteInfo `protobuf:"bytes,53,opt,name=mute_info,json=muteInfo,proto3" json:"mute_info,omitempty"`
// The class of the finding.
FindingClass Finding_FindingClass `protobuf:"varint,16,opt,name=finding_class,json=findingClass,proto3,enum=google.cloud.securitycenter.v2.Finding_FindingClass" json:"finding_class,omitempty"`
// Represents what's commonly known as an *indicator of compromise* (IoC) in
// computer forensics. This is an artifact observed on a network or in an
// operating system that, with high confidence, indicates a computer
// intrusion. For more information, see [Indicator of
// compromise](https://en.wikipedia.org/wiki/Indicator_of_compromise).
Indicator *Indicator `protobuf:"bytes,17,opt,name=indicator,proto3" json:"indicator,omitempty"`
// Represents vulnerability-specific fields like CVE and CVSS scores.
// CVE stands for Common Vulnerabilities and Exposures
// (https://cve.mitre.org/about/)
Vulnerability *Vulnerability `protobuf:"bytes,18,opt,name=vulnerability,proto3" json:"vulnerability,omitempty"`
// Output only. The most recent time this finding was muted or unmuted.
MuteUpdateTime *timestamppb.Timestamp `protobuf:"bytes,19,opt,name=mute_update_time,json=muteUpdateTime,proto3" json:"mute_update_time,omitempty"`
// Output only. Third party SIEM/SOAR fields within SCC, contains external
// system information and external system finding fields.
ExternalSystems map[string]*ExternalSystem `protobuf:"bytes,20,rep,name=external_systems,json=externalSystems,proto3" json:"external_systems,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
// MITRE ATT&CK tactics and techniques related to this finding.
// See: https://attack.mitre.org
MitreAttack *MitreAttack `protobuf:"bytes,21,opt,name=mitre_attack,json=mitreAttack,proto3" json:"mitre_attack,omitempty"`
// Access details associated with the finding, such as more information on the
// caller, which method was accessed, and from where.
Access *Access `protobuf:"bytes,22,opt,name=access,proto3" json:"access,omitempty"`
// Contains information about the IP connection associated with the finding.
Connections []*Connection `protobuf:"bytes,23,rep,name=connections,proto3" json:"connections,omitempty"`
// Records additional information about the mute operation, for example, the
// [mute
// configuration](https://cloud.google.com/security-command-center/docs/how-to-mute-findings)
// that muted the finding and the user who muted the finding.
MuteInitiator string `protobuf:"bytes,24,opt,name=mute_initiator,json=muteInitiator,proto3" json:"mute_initiator,omitempty"`
// Represents operating system processes associated with the Finding.
Processes []*Process `protobuf:"bytes,25,rep,name=processes,proto3" json:"processes,omitempty"`
// Output only. Map containing the points of contact for the given finding.
// The key represents the type of contact, while the value contains a list of
// all the contacts that pertain. Please refer to:
// https://cloud.google.com/resource-manager/docs/managing-notification-contacts#notification-categories
//
// {
// "security": {
// "contacts": [
// {
// "email": "person1@company.com"
// },
// {
// "email": "person2@company.com"
// }
// ]
// }
// }
Contacts map[string]*ContactDetails `protobuf:"bytes,26,rep,name=contacts,proto3" json:"contacts,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
// Contains compliance information for security standards associated to the
// finding.
Compliances []*Compliance `protobuf:"bytes,27,rep,name=compliances,proto3" json:"compliances,omitempty"`
// Output only. The human readable display name of the finding source such as
// "Event Threat Detection" or "Security Health Analytics".
ParentDisplayName string `protobuf:"bytes,29,opt,name=parent_display_name,json=parentDisplayName,proto3" json:"parent_display_name,omitempty"`
// Contains more details about the finding.
Description string `protobuf:"bytes,30,opt,name=description,proto3" json:"description,omitempty"`
// Represents exfiltrations associated with the finding.
Exfiltration *Exfiltration `protobuf:"bytes,31,opt,name=exfiltration,proto3" json:"exfiltration,omitempty"`
// Represents IAM bindings associated with the finding.
IamBindings []*IamBinding `protobuf:"bytes,32,rep,name=iam_bindings,json=iamBindings,proto3" json:"iam_bindings,omitempty"`
// Steps to address the finding.
NextSteps string `protobuf:"bytes,33,opt,name=next_steps,json=nextSteps,proto3" json:"next_steps,omitempty"`
// Unique identifier of the module which generated the finding.
// Example:
// folders/598186756061/securityHealthAnalyticsSettings/customModules/56799441161885
ModuleName string `protobuf:"bytes,34,opt,name=module_name,json=moduleName,proto3" json:"module_name,omitempty"`
// Containers associated with the finding. This field provides information for
// both Kubernetes and non-Kubernetes containers.
Containers []*Container `protobuf:"bytes,35,rep,name=containers,proto3" json:"containers,omitempty"`
// Kubernetes resources associated with the finding.
Kubernetes *Kubernetes `protobuf:"bytes,36,opt,name=kubernetes,proto3" json:"kubernetes,omitempty"`
// Database associated with the finding.
Database *Database `protobuf:"bytes,37,opt,name=database,proto3" json:"database,omitempty"`
// The results of an attack path simulation relevant to this finding.
AttackExposure *AttackExposure `protobuf:"bytes,38,opt,name=attack_exposure,json=attackExposure,proto3" json:"attack_exposure,omitempty"`
// File associated with the finding.
Files []*File `protobuf:"bytes,39,rep,name=files,proto3" json:"files,omitempty"`
// Cloud Data Loss Prevention (Cloud DLP) inspection results that are
// associated with the finding.
CloudDlpInspection *CloudDlpInspection `protobuf:"bytes,40,opt,name=cloud_dlp_inspection,json=cloudDlpInspection,proto3" json:"cloud_dlp_inspection,omitempty"`
// Cloud DLP data profile that is associated with the finding.
CloudDlpDataProfile *CloudDlpDataProfile `protobuf:"bytes,41,opt,name=cloud_dlp_data_profile,json=cloudDlpDataProfile,proto3" json:"cloud_dlp_data_profile,omitempty"`
// Signature of the kernel rootkit.
KernelRootkit *KernelRootkit `protobuf:"bytes,42,opt,name=kernel_rootkit,json=kernelRootkit,proto3" json:"kernel_rootkit,omitempty"`
// Contains information about the org policies associated with the finding.
OrgPolicies []*OrgPolicy `protobuf:"bytes,43,rep,name=org_policies,json=orgPolicies,proto3" json:"org_policies,omitempty"`
// Job associated with the finding.
Job *Job `protobuf:"bytes,44,opt,name=job,proto3" json:"job,omitempty"`
// Represents an application associated with the finding.
Application *Application `protobuf:"bytes,45,opt,name=application,proto3" json:"application,omitempty"`
// IP rules associated with the finding.
IpRules *IpRules `protobuf:"bytes,46,opt,name=ip_rules,json=ipRules,proto3" json:"ip_rules,omitempty"`
// Fields related to Backup and DR findings.
BackupDisasterRecovery *BackupDisasterRecovery `protobuf:"bytes,47,opt,name=backup_disaster_recovery,json=backupDisasterRecovery,proto3" json:"backup_disaster_recovery,omitempty"`
// The security posture associated with the finding.
SecurityPosture *SecurityPosture `protobuf:"bytes,48,opt,name=security_posture,json=securityPosture,proto3" json:"security_posture,omitempty"`
// Log entries that are relevant to the finding.
LogEntries []*LogEntry `protobuf:"bytes,49,rep,name=log_entries,json=logEntries,proto3" json:"log_entries,omitempty"`
// The load balancers associated with the finding.
LoadBalancers []*LoadBalancer `protobuf:"bytes,50,rep,name=load_balancers,json=loadBalancers,proto3" json:"load_balancers,omitempty"`
// Fields related to Cloud Armor findings.
CloudArmor *CloudArmor `protobuf:"bytes,51,opt,name=cloud_armor,json=cloudArmor,proto3" json:"cloud_armor,omitempty"`
// Notebook associated with the finding.
Notebook *Notebook `protobuf:"bytes,55,opt,name=notebook,proto3" json:"notebook,omitempty"`
// Contains details about a group of security issues that, when the issues
// occur together, represent a greater risk than when the issues occur
// independently. A group of such issues is referred to as a toxic
// combination.
// This field cannot be updated. Its value is ignored in all update requests.
ToxicCombination *ToxicCombination `protobuf:"bytes,56,opt,name=toxic_combination,json=toxicCombination,proto3" json:"toxic_combination,omitempty"`
// Contains details about groups of which this finding is a member. A group is
// a collection of findings that are related in some way.
// This field cannot be updated. Its value is ignored in all update requests.
GroupMemberships []*GroupMembership `protobuf:"bytes,57,rep,name=group_memberships,json=groupMemberships,proto3" json:"group_memberships,omitempty"`
// Disk associated with the finding.
Disk *Disk `protobuf:"bytes,58,opt,name=disk,proto3" json:"disk,omitempty"`
// Data access events associated with the finding.
DataAccessEvents []*DataAccessEvent `protobuf:"bytes,61,rep,name=data_access_events,json=dataAccessEvents,proto3" json:"data_access_events,omitempty"`
// Data flow events associated with the finding.
DataFlowEvents []*DataFlowEvent `protobuf:"bytes,62,rep,name=data_flow_events,json=dataFlowEvents,proto3" json:"data_flow_events,omitempty"`
// Represents the VPC networks that the resource is attached to.
Networks []*Network `protobuf:"bytes,63,rep,name=networks,proto3" json:"networks,omitempty"`
// Data retention deletion events associated with the finding.
DataRetentionDeletionEvents []*DataRetentionDeletionEvent `protobuf:"bytes,64,rep,name=data_retention_deletion_events,json=dataRetentionDeletionEvents,proto3" json:"data_retention_deletion_events,omitempty"`
// AffectedResources associated with the finding.
AffectedResources *AffectedResources `protobuf:"bytes,65,opt,name=affected_resources,json=affectedResources,proto3" json:"affected_resources,omitempty"`
// The AI model associated with the finding.
AiModel *AiModel `protobuf:"bytes,66,opt,name=ai_model,json=aiModel,proto3" json:"ai_model,omitempty"`
// Contains details about a chokepoint, which is a resource or resource group
// where high-risk attack paths converge, based on [attack path simulations]
// (https://cloud.google.com/security-command-center/docs/attack-exposure-learn#attack_path_simulations).
// This field cannot be updated. Its value is ignored in all update requests.
Chokepoint *Chokepoint `protobuf:"bytes,69,opt,name=chokepoint,proto3" json:"chokepoint,omitempty"`
// VertexAi associated with the finding.
VertexAi *VertexAi `protobuf:"bytes,72,opt,name=vertex_ai,json=vertexAi,proto3" json:"vertex_ai,omitempty"`
// contains filtered or unexported fields
}Security Command Center finding.
A finding is a record of assessment data like security, risk, health, or privacy, that is ingested into Security Command Center for presentation, notification, analysis, policy testing, and enforcement. For example, a cross-site scripting (XSS) vulnerability in an App Engine application is a finding.
func (*Finding) Descriptor
Deprecated: Use Finding.ProtoReflect.Descriptor instead.
func (*Finding) GetAccess
func (*Finding) GetAffectedResources
func (x *Finding) GetAffectedResources() *AffectedResourcesfunc (*Finding) GetAiModel
func (*Finding) GetApplication
func (x *Finding) GetApplication() *Applicationfunc (*Finding) GetAttackExposure
func (x *Finding) GetAttackExposure() *AttackExposurefunc (*Finding) GetBackupDisasterRecovery
func (x *Finding) GetBackupDisasterRecovery() *BackupDisasterRecoveryfunc (*Finding) GetCanonicalName
func (*Finding) GetCategory
func (*Finding) GetChokepoint
func (x *Finding) GetChokepoint() *Chokepointfunc (*Finding) GetCloudArmor
func (x *Finding) GetCloudArmor() *CloudArmorfunc (*Finding) GetCloudDlpDataProfile
func (x *Finding) GetCloudDlpDataProfile() *CloudDlpDataProfilefunc (*Finding) GetCloudDlpInspection
func (x *Finding) GetCloudDlpInspection() *CloudDlpInspectionfunc (*Finding) GetCompliances
func (x *Finding) GetCompliances() []*Compliancefunc (*Finding) GetConnections
func (x *Finding) GetConnections() []*Connectionfunc (*Finding) GetContacts
func (x *Finding) GetContacts() map[string]*ContactDetailsfunc (*Finding) GetContainers
func (*Finding) GetCreateTime
func (x *Finding) GetCreateTime() *timestamppb.Timestampfunc (*Finding) GetDataAccessEvents
func (x *Finding) GetDataAccessEvents() []*DataAccessEventfunc (*Finding) GetDataFlowEvents
func (x *Finding) GetDataFlowEvents() []*DataFlowEventfunc (*Finding) GetDataRetentionDeletionEvents
func (x *Finding) GetDataRetentionDeletionEvents() []*DataRetentionDeletionEventfunc (*Finding) GetDatabase
func (*Finding) GetDescription
func (*Finding) GetDisk
func (*Finding) GetEventTime
func (x *Finding) GetEventTime() *timestamppb.Timestampfunc (*Finding) GetExfiltration
func (x *Finding) GetExfiltration() *Exfiltrationfunc (*Finding) GetExternalSystems
func (x *Finding) GetExternalSystems() map[string]*ExternalSystemfunc (*Finding) GetExternalUri
func (*Finding) GetFiles
func (*Finding) GetFindingClass
func (x *Finding) GetFindingClass() Finding_FindingClassfunc (*Finding) GetGroupMemberships
func (x *Finding) GetGroupMemberships() []*GroupMembershipfunc (*Finding) GetIamBindings
func (x *Finding) GetIamBindings() []*IamBindingfunc (*Finding) GetIndicator
func (*Finding) GetIpRules
func (*Finding) GetJob
func (*Finding) GetKernelRootkit
func (x *Finding) GetKernelRootkit() *KernelRootkitfunc (*Finding) GetKubernetes
func (x *Finding) GetKubernetes() *Kubernetesfunc (*Finding) GetLoadBalancers
func (x *Finding) GetLoadBalancers() []*LoadBalancerfunc (*Finding) GetLogEntries
func (*Finding) GetMitreAttack
func (x *Finding) GetMitreAttack() *MitreAttackfunc (*Finding) GetModuleName
func (*Finding) GetMute
func (x *Finding) GetMute() Finding_Mutefunc (*Finding) GetMuteInfo
func (x *Finding) GetMuteInfo() *Finding_MuteInfofunc (*Finding) GetMuteInitiator
func (*Finding) GetMuteUpdateTime
func (x *Finding) GetMuteUpdateTime() *timestamppb.Timestampfunc (*Finding) GetName
func (*Finding) GetNetworks
func (*Finding) GetNextSteps
func (*Finding) GetNotebook
func (*Finding) GetOrgPolicies
func (*Finding) GetParent
func (*Finding) GetParentDisplayName
func (*Finding) GetProcesses
func (*Finding) GetResourceName
func (*Finding) GetSecurityMarks
func (x *Finding) GetSecurityMarks() *SecurityMarksfunc (*Finding) GetSecurityPosture
func (x *Finding) GetSecurityPosture() *SecurityPosturefunc (*Finding) GetSeverity
func (x *Finding) GetSeverity() Finding_Severityfunc (*Finding) GetSourceProperties
func (*Finding) GetState
func (x *Finding) GetState() Finding_Statefunc (*Finding) GetToxicCombination
func (x *Finding) GetToxicCombination() *ToxicCombinationfunc (*Finding) GetVertexAi
func (*Finding) GetVulnerability
func (x *Finding) GetVulnerability() *Vulnerabilityfunc (*Finding) ProtoMessage
func (*Finding) ProtoMessage()func (*Finding) ProtoReflect
func (x *Finding) ProtoReflect() protoreflect.Messagefunc (*Finding) Reset
func (x *Finding) Reset()func (*Finding) String
Finding_FindingClass
type Finding_FindingClass int32Represents what kind of Finding it is.
Finding_FINDING_CLASS_UNSPECIFIED, Finding_THREAT, Finding_VULNERABILITY, Finding_MISCONFIGURATION, Finding_OBSERVATION, Finding_SCC_ERROR, Finding_POSTURE_VIOLATION, Finding_TOXIC_COMBINATION, Finding_SENSITIVE_DATA_RISK, Finding_CHOKEPOINT
const (
// Unspecified finding class.
Finding_FINDING_CLASS_UNSPECIFIED Finding_FindingClass = 0
// Describes unwanted or malicious activity.
Finding_THREAT Finding_FindingClass = 1
// Describes a potential weakness in software that increases risk to
// Confidentiality & Integrity & Availability.
Finding_VULNERABILITY Finding_FindingClass = 2
// Describes a potential weakness in cloud resource/asset configuration that
// increases risk.
Finding_MISCONFIGURATION Finding_FindingClass = 3
// Describes a security observation that is for informational purposes.
Finding_OBSERVATION Finding_FindingClass = 4
// Describes an error that prevents some SCC functionality.
Finding_SCC_ERROR Finding_FindingClass = 5
// Describes a potential security risk due to a change in the security
// posture.
Finding_POSTURE_VIOLATION Finding_FindingClass = 6
// Describes a combination of security issues that represent a more severe
// security problem when taken together.
Finding_TOXIC_COMBINATION Finding_FindingClass = 7
// Describes a potential security risk to data assets that contain sensitive
// data.
Finding_SENSITIVE_DATA_RISK Finding_FindingClass = 8
// Describes a resource or resource group where high risk attack paths
// converge, based on attack path simulations (APS).
Finding_CHOKEPOINT Finding_FindingClass = 9
)func (Finding_FindingClass) Descriptor
func (Finding_FindingClass) Descriptor() protoreflect.EnumDescriptorfunc (Finding_FindingClass) Enum
func (x Finding_FindingClass) Enum() *Finding_FindingClassfunc (Finding_FindingClass) EnumDescriptor
func (Finding_FindingClass) EnumDescriptor() ([]byte, []int)Deprecated: Use Finding_FindingClass.Descriptor instead.
func (Finding_FindingClass) Number
func (x Finding_FindingClass) Number() protoreflect.EnumNumberfunc (Finding_FindingClass) String
func (x Finding_FindingClass) String() stringfunc (Finding_FindingClass) Type
func (Finding_FindingClass) Type() protoreflect.EnumTypeFinding_Mute
type Finding_Mute int32Mute state a finding can be in.
Finding_MUTE_UNSPECIFIED, Finding_MUTED, Finding_UNMUTED, Finding_UNDEFINED
const (
// Unspecified.
Finding_MUTE_UNSPECIFIED Finding_Mute = 0
// Finding has been muted.
Finding_MUTED Finding_Mute = 1
// Finding has been unmuted.
Finding_UNMUTED Finding_Mute = 2
// Finding has never been muted/unmuted.
Finding_UNDEFINED Finding_Mute = 3
)func (Finding_Mute) Descriptor
func (Finding_Mute) Descriptor() protoreflect.EnumDescriptorfunc (Finding_Mute) Enum
func (x Finding_Mute) Enum() *Finding_Mutefunc (Finding_Mute) EnumDescriptor
func (Finding_Mute) EnumDescriptor() ([]byte, []int)Deprecated: Use Finding_Mute.Descriptor instead.
func (Finding_Mute) Number
func (x Finding_Mute) Number() protoreflect.EnumNumberfunc (Finding_Mute) String
func (x Finding_Mute) String() stringfunc (Finding_Mute) Type
func (Finding_Mute) Type() protoreflect.EnumTypeFinding_MuteInfo
type Finding_MuteInfo struct {
// If set, the static mute applied to this finding. Static mutes override
// dynamic mutes. If unset, there is no static mute.
StaticMute *Finding_MuteInfo_StaticMute `protobuf:"bytes,1,opt,name=static_mute,json=staticMute,proto3" json:"static_mute,omitempty"`
// The list of dynamic mute rules that currently match the finding.
DynamicMuteRecords []*Finding_MuteInfo_DynamicMuteRecord `protobuf:"bytes,2,rep,name=dynamic_mute_records,json=dynamicMuteRecords,proto3" json:"dynamic_mute_records,omitempty"`
// contains filtered or unexported fields
}Mute information about the finding, including whether the finding has a static mute or any matching dynamic mute rules.
func (*Finding_MuteInfo) Descriptor
func (*Finding_MuteInfo) Descriptor() ([]byte, []int)Deprecated: Use Finding_MuteInfo.ProtoReflect.Descriptor instead.
func (*Finding_MuteInfo) GetDynamicMuteRecords
func (x *Finding_MuteInfo) GetDynamicMuteRecords() []*Finding_MuteInfo_DynamicMuteRecordfunc (*Finding_MuteInfo) GetStaticMute
func (x *Finding_MuteInfo) GetStaticMute() *Finding_MuteInfo_StaticMutefunc (*Finding_MuteInfo) ProtoMessage
func (*Finding_MuteInfo) ProtoMessage()func (*Finding_MuteInfo) ProtoReflect
func (x *Finding_MuteInfo) ProtoReflect() protoreflect.Messagefunc (*Finding_MuteInfo) Reset
func (x *Finding_MuteInfo) Reset()func (*Finding_MuteInfo) String
func (x *Finding_MuteInfo) String() stringFinding_MuteInfo_DynamicMuteRecord
type Finding_MuteInfo_DynamicMuteRecord struct {
// The relative resource name of the mute rule, represented by a mute
// config, that created this record, for example
// `organizations/123/muteConfigs/mymuteconfig` or
// `organizations/123/locations/global/muteConfigs/mymuteconfig`.
MuteConfig string `protobuf:"bytes,1,opt,name=mute_config,json=muteConfig,proto3" json:"mute_config,omitempty"`
// When the dynamic mute rule first matched the finding.
MatchTime *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=match_time,json=matchTime,proto3" json:"match_time,omitempty"`
// contains filtered or unexported fields
}The record of a dynamic mute rule that matches the finding.
func (*Finding_MuteInfo_DynamicMuteRecord) Descriptor
func (*Finding_MuteInfo_DynamicMuteRecord) Descriptor() ([]byte, []int)Deprecated: Use Finding_MuteInfo_DynamicMuteRecord.ProtoReflect.Descriptor instead.
func (*Finding_MuteInfo_DynamicMuteRecord) GetMatchTime
func (x *Finding_MuteInfo_DynamicMuteRecord) GetMatchTime() *timestamppb.Timestampfunc (*Finding_MuteInfo_DynamicMuteRecord) GetMuteConfig
func (x *Finding_MuteInfo_DynamicMuteRecord) GetMuteConfig() stringfunc (*Finding_MuteInfo_DynamicMuteRecord) ProtoMessage
func (*Finding_MuteInfo_DynamicMuteRecord) ProtoMessage()func (*Finding_MuteInfo_DynamicMuteRecord) ProtoReflect
func (x *Finding_MuteInfo_DynamicMuteRecord) ProtoReflect() protoreflect.Messagefunc (*Finding_MuteInfo_DynamicMuteRecord) Reset
func (x *Finding_MuteInfo_DynamicMuteRecord) Reset()func (*Finding_MuteInfo_DynamicMuteRecord) String
func (x *Finding_MuteInfo_DynamicMuteRecord) String() stringFinding_MuteInfo_StaticMute
type Finding_MuteInfo_StaticMute struct {
// The static mute state. If the value is `MUTED` or `UNMUTED`, then the
// finding's overall mute state will have the same value.
State Finding_Mute `protobuf:"varint,1,opt,name=state,proto3,enum=google.cloud.securitycenter.v2.Finding_Mute" json:"state,omitempty"`
// When the static mute was applied.
ApplyTime *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=apply_time,json=applyTime,proto3" json:"apply_time,omitempty"`
// contains filtered or unexported fields
}Information about the static mute state. A static mute state overrides any dynamic mute rules that apply to this finding. The static mute state can be set by a static mute rule or by muting the finding directly.
func (*Finding_MuteInfo_StaticMute) Descriptor
func (*Finding_MuteInfo_StaticMute) Descriptor() ([]byte, []int)Deprecated: Use Finding_MuteInfo_StaticMute.ProtoReflect.Descriptor instead.
func (*Finding_MuteInfo_StaticMute) GetApplyTime
func (x *Finding_MuteInfo_StaticMute) GetApplyTime() *timestamppb.Timestampfunc (*Finding_MuteInfo_StaticMute) GetState
func (x *Finding_MuteInfo_StaticMute) GetState() Finding_Mutefunc (*Finding_MuteInfo_StaticMute) ProtoMessage
func (*Finding_MuteInfo_StaticMute) ProtoMessage()func (*Finding_MuteInfo_StaticMute) ProtoReflect
func (x *Finding_MuteInfo_StaticMute) ProtoReflect() protoreflect.Messagefunc (*Finding_MuteInfo_StaticMute) Reset
func (x *Finding_MuteInfo_StaticMute) Reset()func (*Finding_MuteInfo_StaticMute) String
func (x *Finding_MuteInfo_StaticMute) String() stringFinding_Severity
type Finding_Severity int32The severity of the finding.
Finding_SEVERITY_UNSPECIFIED, Finding_CRITICAL, Finding_HIGH, Finding_MEDIUM, Finding_LOW
const (
// This value is used for findings when a source doesn't write a severity
// value.
Finding_SEVERITY_UNSPECIFIED Finding_Severity = 0
// Vulnerability:
// A critical vulnerability is easily discoverable by an external actor,
// exploitable, and results in the direct ability to execute arbitrary code,
// exfiltrate data, and otherwise gain additional access and privileges to
// cloud resources and workloads. Examples include publicly accessible
// unprotected user data and public SSH access with weak or no
// passwords.
//
// Threat:
// Indicates a threat that is able to access, modify, or delete data or
// execute unauthorized code within existing resources.
Finding_CRITICAL Finding_Severity = 1
// Vulnerability:
// A high risk vulnerability can be easily discovered and exploited in
// combination with other vulnerabilities in order to gain direct access and
// the ability to execute arbitrary code, exfiltrate data, and otherwise
// gain additional access and privileges to cloud resources and workloads.
// An example is a database with weak or no passwords that is only
// accessible internally. This database could easily be compromised by an
// actor that had access to the internal network.
//
// Threat:
// Indicates a threat that is able to create new computational resources in
// an environment but not able to access data or execute code in existing
// resources.
Finding_HIGH Finding_Severity = 2
// Vulnerability:
// A medium risk vulnerability could be used by an actor to gain access to
// resources or privileges that enable them to eventually (through multiple
// steps or a complex exploit) gain access and the ability to execute
// arbitrary code or exfiltrate data. An example is a service account with
// access to more projects than it should have. If an actor gains access to
// the service account, they could potentially use that access to manipulate
// a project the service account was not intended to.
//
// Threat:
// Indicates a threat that is able to cause operational impact but may not
// access data or execute unauthorized code.
Finding_MEDIUM Finding_Severity = 3
// Vulnerability:
// A low risk vulnerability hampers a security organization's ability to
// detect vulnerabilities or active threats in their deployment, or prevents
// the root cause investigation of security issues. An example is monitoring
// and logs being disabled for resource configurations and access.
//
// Threat:
// Indicates a threat that has obtained minimal access to an environment but
// is not able to access data, execute code, or create resources.
Finding_LOW Finding_Severity = 4
)func (Finding_Severity) Descriptor
func (Finding_Severity) Descriptor() protoreflect.EnumDescriptorfunc (Finding_Severity) Enum
func (x Finding_Severity) Enum() *Finding_Severityfunc (Finding_Severity) EnumDescriptor
func (Finding_Severity) EnumDescriptor() ([]byte, []int)Deprecated: Use Finding_Severity.Descriptor instead.
func (Finding_Severity) Number
func (x Finding_Severity) Number() protoreflect.EnumNumberfunc (Finding_Severity) String
func (x Finding_Severity) String() stringfunc (Finding_Severity) Type
func (Finding_Severity) Type() protoreflect.EnumTypeFinding_State
type Finding_State int32The state of the finding.
Finding_STATE_UNSPECIFIED, Finding_ACTIVE, Finding_INACTIVE
const (
// Unspecified state.
Finding_STATE_UNSPECIFIED Finding_State = 0
// The finding requires attention and has not been addressed yet.
Finding_ACTIVE Finding_State = 1
// The finding has been fixed, triaged as a non-issue or otherwise addressed
// and is no longer active.
Finding_INACTIVE Finding_State = 2
)func (Finding_State) Descriptor
func (Finding_State) Descriptor() protoreflect.EnumDescriptorfunc (Finding_State) Enum
func (x Finding_State) Enum() *Finding_Statefunc (Finding_State) EnumDescriptor
func (Finding_State) EnumDescriptor() ([]byte, []int)Deprecated: Use Finding_State.Descriptor instead.
func (Finding_State) Number
func (x Finding_State) Number() protoreflect.EnumNumberfunc (Finding_State) String
func (x Finding_State) String() stringfunc (Finding_State) Type
func (Finding_State) Type() protoreflect.EnumTypeFolder
type Folder struct {
// Full resource name of this folder. See:
// https://cloud.google.com/apis/design/resource_names#full_resource_name
ResourceFolder string `protobuf:"bytes,1,opt,name=resource_folder,json=resourceFolder,proto3" json:"resource_folder,omitempty"`
// The user defined display name for this folder.
ResourceFolderDisplayName string `protobuf:"bytes,2,opt,name=resource_folder_display_name,json=resourceFolderDisplayName,proto3" json:"resource_folder_display_name,omitempty"`
// contains filtered or unexported fields
}Message that contains the resource name and display name of a folder resource.
func (*Folder) Descriptor
Deprecated: Use Folder.ProtoReflect.Descriptor instead.
func (*Folder) GetResourceFolder
func (*Folder) GetResourceFolderDisplayName
func (*Folder) ProtoMessage
func (*Folder) ProtoMessage()func (*Folder) ProtoReflect
func (x *Folder) ProtoReflect() protoreflect.Messagefunc (*Folder) Reset
func (x *Folder) Reset()func (*Folder) String
GcpMetadata
type GcpMetadata struct {
// The full resource name of project that the resource belongs to.
Project string `protobuf:"bytes,1,opt,name=project,proto3" json:"project,omitempty"`
// The project ID that the resource belongs to.
ProjectDisplayName string `protobuf:"bytes,2,opt,name=project_display_name,json=projectDisplayName,proto3" json:"project_display_name,omitempty"`
// The full resource name of resource's parent.
Parent string `protobuf:"bytes,3,opt,name=parent,proto3" json:"parent,omitempty"`
// The human readable name of resource's parent.
ParentDisplayName string `protobuf:"bytes,4,opt,name=parent_display_name,json=parentDisplayName,proto3" json:"parent_display_name,omitempty"`
// Output only. Contains a Folder message for each folder in the assets
// ancestry. The first folder is the deepest nested folder, and the last
// folder is the folder directly under the Organization.
Folders []*Folder `protobuf:"bytes,5,rep,name=folders,proto3" json:"folders,omitempty"`
// The name of the organization that the resource belongs to.
Organization string `protobuf:"bytes,6,opt,name=organization,proto3" json:"organization,omitempty"`
// contains filtered or unexported fields
}Google Cloud metadata associated with the resource. Only applicable if the finding's cloud provider is Google Cloud.
func (*GcpMetadata) Descriptor
func (*GcpMetadata) Descriptor() ([]byte, []int)Deprecated: Use GcpMetadata.ProtoReflect.Descriptor instead.
func (*GcpMetadata) GetFolders
func (x *GcpMetadata) GetFolders() []*Folderfunc (*GcpMetadata) GetOrganization
func (x *GcpMetadata) GetOrganization() stringfunc (*GcpMetadata) GetParent
func (x *GcpMetadata) GetParent() stringfunc (*GcpMetadata) GetParentDisplayName
func (x *GcpMetadata) GetParentDisplayName() stringfunc (*GcpMetadata) GetProject
func (x *GcpMetadata) GetProject() stringfunc (*GcpMetadata) GetProjectDisplayName
func (x *GcpMetadata) GetProjectDisplayName() stringfunc (*GcpMetadata) ProtoMessage
func (*GcpMetadata) ProtoMessage()func (*GcpMetadata) ProtoReflect
func (x *GcpMetadata) ProtoReflect() protoreflect.Messagefunc (*GcpMetadata) Reset
func (x *GcpMetadata) Reset()func (*GcpMetadata) String
func (x *GcpMetadata) String() stringGeolocation
type Geolocation struct {
// A CLDR.
RegionCode string `protobuf:"bytes,1,opt,name=region_code,json=regionCode,proto3" json:"region_code,omitempty"`
// contains filtered or unexported fields
}Represents a geographical location for a given access.
func (*Geolocation) Descriptor
func (*Geolocation) Descriptor() ([]byte, []int)Deprecated: Use Geolocation.ProtoReflect.Descriptor instead.
func (*Geolocation) GetRegionCode
func (x *Geolocation) GetRegionCode() stringfunc (*Geolocation) ProtoMessage
func (*Geolocation) ProtoMessage()func (*Geolocation) ProtoReflect
func (x *Geolocation) ProtoReflect() protoreflect.Messagefunc (*Geolocation) Reset
func (x *Geolocation) Reset()func (*Geolocation) String
func (x *Geolocation) String() stringGetBigQueryExportRequest
type GetBigQueryExportRequest struct {
// Required. Name of the BigQuery export to retrieve. The following list shows
// some examples of the format:
//
// +
// `organizations/{organization}/locations/{location}/bigQueryExports/{export_id}`
// + `folders/{folder}/locations/{location}/bigQueryExports/{export_id}`
// + `projects/{project}locations/{location}//bigQueryExports/{export_id}`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for retrieving a BigQuery export.
func (*GetBigQueryExportRequest) Descriptor
func (*GetBigQueryExportRequest) Descriptor() ([]byte, []int)Deprecated: Use GetBigQueryExportRequest.ProtoReflect.Descriptor instead.
func (*GetBigQueryExportRequest) GetName
func (x *GetBigQueryExportRequest) GetName() stringfunc (*GetBigQueryExportRequest) ProtoMessage
func (*GetBigQueryExportRequest) ProtoMessage()func (*GetBigQueryExportRequest) ProtoReflect
func (x *GetBigQueryExportRequest) ProtoReflect() protoreflect.Messagefunc (*GetBigQueryExportRequest) Reset
func (x *GetBigQueryExportRequest) Reset()func (*GetBigQueryExportRequest) String
func (x *GetBigQueryExportRequest) String() stringGetMuteConfigRequest
type GetMuteConfigRequest struct {
// Required. Name of the mute config to retrieve. The following list shows
// some examples of the format:
//
// + `organizations/{organization}/muteConfigs/{config_id}`
// +
// `organizations/{organization}/locations/{location}/muteConfigs/{config_id}`
// + `folders/{folder}/muteConfigs/{config_id}`
// + `folders/{folder}/locations/{location}/muteConfigs/{config_id}`
// + `projects/{project}/muteConfigs/{config_id}`
// + `projects/{project}/locations/{location}/muteConfigs/{config_id}`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for retrieving a mute config. If no location is specified, default is global.
func (*GetMuteConfigRequest) Descriptor
func (*GetMuteConfigRequest) Descriptor() ([]byte, []int)Deprecated: Use GetMuteConfigRequest.ProtoReflect.Descriptor instead.
func (*GetMuteConfigRequest) GetName
func (x *GetMuteConfigRequest) GetName() stringfunc (*GetMuteConfigRequest) ProtoMessage
func (*GetMuteConfigRequest) ProtoMessage()func (*GetMuteConfigRequest) ProtoReflect
func (x *GetMuteConfigRequest) ProtoReflect() protoreflect.Messagefunc (*GetMuteConfigRequest) Reset
func (x *GetMuteConfigRequest) Reset()func (*GetMuteConfigRequest) String
func (x *GetMuteConfigRequest) String() stringGetNotificationConfigRequest
type GetNotificationConfigRequest struct {
// Required. Name of the notification config to get. The following list shows
// some examples of the format:
//
// +
// `organizations/[organization_id]/locations/[location_id]/notificationConfigs/[config_id]`
// +
// `folders/[folder_id]/locations/[location_id]/notificationConfigs/[config_id]`
// +
// `projects/[project_id]/locations/[location_id]/notificationConfigs/[config_id]`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for getting a notification config.
func (*GetNotificationConfigRequest) Descriptor
func (*GetNotificationConfigRequest) Descriptor() ([]byte, []int)Deprecated: Use GetNotificationConfigRequest.ProtoReflect.Descriptor instead.
func (*GetNotificationConfigRequest) GetName
func (x *GetNotificationConfigRequest) GetName() stringfunc (*GetNotificationConfigRequest) ProtoMessage
func (*GetNotificationConfigRequest) ProtoMessage()func (*GetNotificationConfigRequest) ProtoReflect
func (x *GetNotificationConfigRequest) ProtoReflect() protoreflect.Messagefunc (*GetNotificationConfigRequest) Reset
func (x *GetNotificationConfigRequest) Reset()func (*GetNotificationConfigRequest) String
func (x *GetNotificationConfigRequest) String() stringGetResourceValueConfigRequest
type GetResourceValueConfigRequest struct {
// Required. Name of the resource value config to retrieve. Its format is
// organizations/{organization}/resourceValueConfigs/{config_id}.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message to get resource value config
func (*GetResourceValueConfigRequest) Descriptor
func (*GetResourceValueConfigRequest) Descriptor() ([]byte, []int)Deprecated: Use GetResourceValueConfigRequest.ProtoReflect.Descriptor instead.
func (*GetResourceValueConfigRequest) GetName
func (x *GetResourceValueConfigRequest) GetName() stringfunc (*GetResourceValueConfigRequest) ProtoMessage
func (*GetResourceValueConfigRequest) ProtoMessage()func (*GetResourceValueConfigRequest) ProtoReflect
func (x *GetResourceValueConfigRequest) ProtoReflect() protoreflect.Messagefunc (*GetResourceValueConfigRequest) Reset
func (x *GetResourceValueConfigRequest) Reset()func (*GetResourceValueConfigRequest) String
func (x *GetResourceValueConfigRequest) String() stringGetSimulationRequest
type GetSimulationRequest struct {
// Required. The organization name or simulation name of this simulation
//
// Valid format:
// `organizations/{organization}/simulations/latest`
// `organizations/{organization}/simulations/{simulation}`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for getting simulation. Simulation name can include "latest" to retrieve the latest simulation For example, "organizations/123/simulations/latest"
func (*GetSimulationRequest) Descriptor
func (*GetSimulationRequest) Descriptor() ([]byte, []int)Deprecated: Use GetSimulationRequest.ProtoReflect.Descriptor instead.
func (*GetSimulationRequest) GetName
func (x *GetSimulationRequest) GetName() stringfunc (*GetSimulationRequest) ProtoMessage
func (*GetSimulationRequest) ProtoMessage()func (*GetSimulationRequest) ProtoReflect
func (x *GetSimulationRequest) ProtoReflect() protoreflect.Messagefunc (*GetSimulationRequest) Reset
func (x *GetSimulationRequest) Reset()func (*GetSimulationRequest) String
func (x *GetSimulationRequest) String() stringGetSourceRequest
type GetSourceRequest struct {
// Required. Relative resource name of the source. Its format is
// `organizations/[organization_id]/source/[source_id]`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for getting a source.
func (*GetSourceRequest) Descriptor
func (*GetSourceRequest) Descriptor() ([]byte, []int)Deprecated: Use GetSourceRequest.ProtoReflect.Descriptor instead.
func (*GetSourceRequest) GetName
func (x *GetSourceRequest) GetName() stringfunc (*GetSourceRequest) ProtoMessage
func (*GetSourceRequest) ProtoMessage()func (*GetSourceRequest) ProtoReflect
func (x *GetSourceRequest) ProtoReflect() protoreflect.Messagefunc (*GetSourceRequest) Reset
func (x *GetSourceRequest) Reset()func (*GetSourceRequest) String
func (x *GetSourceRequest) String() stringGetValuedResourceRequest
type GetValuedResourceRequest struct {
// Required. The name of this valued resource
//
// Valid format:
// `organizations/{organization}/simulations/{simulation}/valuedResources/{valued_resource}`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Request message for getting a valued resource.
func (*GetValuedResourceRequest) Descriptor
func (*GetValuedResourceRequest) Descriptor() ([]byte, []int)Deprecated: Use GetValuedResourceRequest.ProtoReflect.Descriptor instead.
func (*GetValuedResourceRequest) GetName
func (x *GetValuedResourceRequest) GetName() stringfunc (*GetValuedResourceRequest) ProtoMessage
func (*GetValuedResourceRequest) ProtoMessage()func (*GetValuedResourceRequest) ProtoReflect
func (x *GetValuedResourceRequest) ProtoReflect() protoreflect.Messagefunc (*GetValuedResourceRequest) Reset
func (x *GetValuedResourceRequest) Reset()func (*GetValuedResourceRequest) String
func (x *GetValuedResourceRequest) String() stringGroupFindingsRequest
type GroupFindingsRequest struct {
// Required. Name of the source to groupBy. If no location is specified,
// finding is assumed to be in global.
//
// The following list shows some examples:
//
// + `organizations/[organization_id]/sources/[source_id]`
// +
// `organizations/[organization_id]/sources/[source_id]/locations/[location_id]`
// + `folders/[folder_id]/sources/[source_id]`
// + `folders/[folder_id]/sources/[source_id]/locations/[location_id]`
// + `projects/[project_id]/sources/[source_id]`
// + `projects/[project_id]/sources/[source_id]/locations/[location_id]`
//
// To groupBy across all sources provide a source_id of `-`. The following
// list shows some examples:
//
// + `organizations/{organization_id}/sources/-`
// + `organizations/{organization_id}/sources/-/locations/[location_id]`
// + `folders/{folder_id}/sources/-`
// + `folders/{folder_id}/sources/-/locations/[location_id]`
// + `projects/{project_id}/sources/-`
// + `projects/{project_id}/sources/-/locations/[location_id]`
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Expression that defines the filter to apply across findings.
// The expression is a list of one or more restrictions combined via logical
// operators `AND` and `OR`.
// Parentheses are supported, and `OR` has higher precedence than `AND`.
//
// Restrictions have the form `Request message for grouping by findings.
func (*GroupFindingsRequest) Descriptor
func (*GroupFindingsRequest) Descriptor() ([]byte, []int)Deprecated: Use GroupFindingsRequest.ProtoReflect.Descriptor instead.
func (*GroupFindingsRequest) GetFilter
func (x *GroupFindingsRequest) GetFilter() stringfunc (*GroupFindingsRequest) GetGroupBy
func (x *GroupFindingsRequest) GetGroupBy() stringfunc (*GroupFindingsRequest) GetPageSize
func (x *GroupFindingsRequest) GetPageSize() int32func (*GroupFindingsRequest) GetPageToken
func (x *GroupFindingsRequest) GetPageToken() stringfunc (*GroupFindingsRequest) GetParent
func (x *GroupFindingsRequest) GetParent() stringfunc (*GroupFindingsRequest) ProtoMessage
func (*GroupFindingsRequest) ProtoMessage()func (*GroupFindingsRequest) ProtoReflect
func (x *GroupFindingsRequest) ProtoReflect() protoreflect.Messagefunc (*GroupFindingsRequest) Reset
func (x *GroupFindingsRequest) Reset()func (*GroupFindingsRequest) String
func (x *GroupFindingsRequest) String() stringGroupFindingsResponse
type GroupFindingsResponse struct {
// Group results. There exists an element for each existing unique
// combination of property/values. The element contains a count for the number
// of times those specific property/values appear.
GroupByResults []*GroupResult `protobuf:"bytes,1,rep,name=group_by_results,json=groupByResults,proto3" json:"group_by_results,omitempty"`
// Token to retrieve the next page of results, or empty if there are no more
// results.
NextPageToken string `protobuf:"bytes,3,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
// The total number of results matching the query.
TotalSize int32 `protobuf:"varint,4,opt,name=total_size,json=totalSize,proto3" json:"total_size,omitempty"`
// contains filtered or unexported fields
}Response message for group by findings.
func (*GroupFindingsResponse) Descriptor
func (*GroupFindingsResponse) Descriptor() ([]byte, []int)Deprecated: Use GroupFindingsResponse.ProtoReflect.Descriptor instead.
func (*GroupFindingsResponse) GetGroupByResults
func (x *GroupFindingsResponse) GetGroupByResults() []*GroupResultfunc (*GroupFindingsResponse) GetNextPageToken
func (x *GroupFindingsResponse) GetNextPageToken() stringfunc (*GroupFindingsResponse) GetTotalSize
func (x *GroupFindingsResponse) GetTotalSize() int32func (*GroupFindingsResponse) ProtoMessage
func (*GroupFindingsResponse) ProtoMessage()func (*GroupFindingsResponse) ProtoReflect
func (x *GroupFindingsResponse) ProtoReflect() protoreflect.Messagefunc (*GroupFindingsResponse) Reset
func (x *GroupFindingsResponse) Reset()func (*GroupFindingsResponse) String
func (x *GroupFindingsResponse) String() stringGroupMembership
type GroupMembership struct {
// Type of group.
GroupType GroupMembership_GroupType `protobuf:"varint,1,opt,name=group_type,json=groupType,proto3,enum=google.cloud.securitycenter.v2.GroupMembership_GroupType" json:"group_type,omitempty"`
// ID of the group.
GroupId string `protobuf:"bytes,2,opt,name=group_id,json=groupId,proto3" json:"group_id,omitempty"`
// contains filtered or unexported fields
}Contains details about groups of which this finding is a member. A group is a collection of findings that are related in some way.
func (*GroupMembership) Descriptor
func (*GroupMembership) Descriptor() ([]byte, []int)Deprecated: Use GroupMembership.ProtoReflect.Descriptor instead.
func (*GroupMembership) GetGroupId
func (x *GroupMembership) GetGroupId() stringfunc (*GroupMembership) GetGroupType
func (x *GroupMembership) GetGroupType() GroupMembership_GroupTypefunc (*GroupMembership) ProtoMessage
func (*GroupMembership) ProtoMessage()func (*GroupMembership) ProtoReflect
func (x *GroupMembership) ProtoReflect() protoreflect.Messagefunc (*GroupMembership) Reset
func (x *GroupMembership) Reset()func (*GroupMembership) String
func (x *GroupMembership) String() stringGroupMembership_GroupType
type GroupMembership_GroupType int32Possible types of groups.
GroupMembership_GROUP_TYPE_UNSPECIFIED, GroupMembership_GROUP_TYPE_TOXIC_COMBINATION, GroupMembership_GROUP_TYPE_CHOKEPOINT
const (
// Default value.
GroupMembership_GROUP_TYPE_UNSPECIFIED GroupMembership_GroupType = 0
// Group represents a toxic combination.
GroupMembership_GROUP_TYPE_TOXIC_COMBINATION GroupMembership_GroupType = 1
// Group represents a chokepoint.
GroupMembership_GROUP_TYPE_CHOKEPOINT GroupMembership_GroupType = 3
)func (GroupMembership_GroupType) Descriptor
func (GroupMembership_GroupType) Descriptor() protoreflect.EnumDescriptorfunc (GroupMembership_GroupType) Enum
func (x GroupMembership_GroupType) Enum() *GroupMembership_GroupTypefunc (GroupMembership_GroupType) EnumDescriptor
func (GroupMembership_GroupType) EnumDescriptor() ([]byte, []int)Deprecated: Use GroupMembership_GroupType.Descriptor instead.
func (GroupMembership_GroupType) Number
func (x GroupMembership_GroupType) Number() protoreflect.EnumNumberfunc (GroupMembership_GroupType) String
func (x GroupMembership_GroupType) String() stringfunc (GroupMembership_GroupType) Type
func (GroupMembership_GroupType) Type() protoreflect.EnumTypeGroupResult
type GroupResult struct {
// Properties matching the groupBy fields in the request.
Properties map[string]*structpb.Value `protobuf:"bytes,1,rep,name=properties,proto3" json:"properties,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
// Total count of resources for the given properties.
Count int64 `protobuf:"varint,2,opt,name=count,proto3" json:"count,omitempty"`
// contains filtered or unexported fields
}Result containing the properties and count of a groupBy request.
func (*GroupResult) Descriptor
func (*GroupResult) Descriptor() ([]byte, []int)Deprecated: Use GroupResult.ProtoReflect.Descriptor instead.
func (*GroupResult) GetCount
func (x *GroupResult) GetCount() int64func (*GroupResult) GetProperties
func (x *GroupResult) GetProperties() map[string]*structpb.Valuefunc (*GroupResult) ProtoMessage
func (*GroupResult) ProtoMessage()func (*GroupResult) ProtoReflect
func (x *GroupResult) ProtoReflect() protoreflect.Messagefunc (*GroupResult) Reset
func (x *GroupResult) Reset()func (*GroupResult) String
func (x *GroupResult) String() stringIamBinding
type IamBinding struct {
// The action that was performed on a Binding.
Action IamBinding_Action `protobuf:"varint,1,opt,name=action,proto3,enum=google.cloud.securitycenter.v2.IamBinding_Action" json:"action,omitempty"`
// Role that is assigned to "members".
// For example, "roles/viewer", "roles/editor", or "roles/owner".
Role string `protobuf:"bytes,2,opt,name=role,proto3" json:"role,omitempty"`
// A single identity requesting access for a Cloud Platform resource, for
// example, "foo@google.com".
Member string `protobuf:"bytes,3,opt,name=member,proto3" json:"member,omitempty"`
// contains filtered or unexported fields
}Represents a particular IAM binding, which captures a member's role addition, removal, or state.
func (*IamBinding) Descriptor
func (*IamBinding) Descriptor() ([]byte, []int)Deprecated: Use IamBinding.ProtoReflect.Descriptor instead.
func (*IamBinding) GetAction
func (x *IamBinding) GetAction() IamBinding_Actionfunc (*IamBinding) GetMember
func (x *IamBinding) GetMember() stringfunc (*IamBinding) GetRole
func (x *IamBinding) GetRole() stringfunc (*IamBinding) ProtoMessage
func (*IamBinding) ProtoMessage()func (*IamBinding) ProtoReflect
func (x *IamBinding) ProtoReflect() protoreflect.Messagefunc (*IamBinding) Reset
func (x *IamBinding) Reset()func (*IamBinding) String
func (x *IamBinding) String() stringIamBinding_Action
type IamBinding_Action int32The type of action performed on a Binding in a policy.
IamBinding_ACTION_UNSPECIFIED, IamBinding_ADD, IamBinding_REMOVE
const (
// Unspecified.
IamBinding_ACTION_UNSPECIFIED IamBinding_Action = 0
// Addition of a Binding.
IamBinding_ADD IamBinding_Action = 1
// Removal of a Binding.
IamBinding_REMOVE IamBinding_Action = 2
)func (IamBinding_Action) Descriptor
func (IamBinding_Action) Descriptor() protoreflect.EnumDescriptorfunc (IamBinding_Action) Enum
func (x IamBinding_Action) Enum() *IamBinding_Actionfunc (IamBinding_Action) EnumDescriptor
func (IamBinding_Action) EnumDescriptor() ([]byte, []int)Deprecated: Use IamBinding_Action.Descriptor instead.
func (IamBinding_Action) Number
func (x IamBinding_Action) Number() protoreflect.EnumNumberfunc (IamBinding_Action) String
func (x IamBinding_Action) String() stringfunc (IamBinding_Action) Type
func (IamBinding_Action) Type() protoreflect.EnumTypeIndicator
type Indicator struct {
// The list of IP addresses that are associated with the finding.
IpAddresses []string `protobuf:"bytes,1,rep,name=ip_addresses,json=ipAddresses,proto3" json:"ip_addresses,omitempty"`
// List of domains associated to the Finding.
Domains []string `protobuf:"bytes,2,rep,name=domains,proto3" json:"domains,omitempty"`
// The list of matched signatures indicating that the given
// process is present in the environment.
Signatures []*Indicator_ProcessSignature `protobuf:"bytes,3,rep,name=signatures,proto3" json:"signatures,omitempty"`
// The list of URIs associated to the Findings.
Uris []string `protobuf:"bytes,4,rep,name=uris,proto3" json:"uris,omitempty"`
// contains filtered or unexported fields
}Represents what's commonly known as an indicator of compromise (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. For more information, see Indicator of compromise.
func (*Indicator) Descriptor
Deprecated: Use Indicator.ProtoReflect.Descriptor instead.
func (*Indicator) GetDomains
func (*Indicator) GetIpAddresses
func (*Indicator) GetSignatures
func (x *Indicator) GetSignatures() []*Indicator_ProcessSignaturefunc (*Indicator) GetUris
func (*Indicator) ProtoMessage
func (*Indicator) ProtoMessage()func (*Indicator) ProtoReflect
func (x *Indicator) ProtoReflect() protoreflect.Messagefunc (*Indicator) Reset
func (x *Indicator) Reset()func (*Indicator) String
Indicator_ProcessSignature
type Indicator_ProcessSignature struct {
// The signature.
//
// Types that are assignable to Signature:
//
// *Indicator_ProcessSignature_MemoryHashSignature_
// *Indicator_ProcessSignature_YaraRuleSignature_
Signature isIndicator_ProcessSignature_Signature `protobuf_oneof:"signature"`
// Describes the type of resource associated with the signature.
SignatureType Indicator_ProcessSignature_SignatureType `protobuf:"varint,8,opt,name=signature_type,json=signatureType,proto3,enum=google.cloud.securitycenter.v2.Indicator_ProcessSignature_SignatureType" json:"signature_type,omitempty"`
// contains filtered or unexported fields
}Indicates what signature matched this process.
func (*Indicator_ProcessSignature) Descriptor
func (*Indicator_ProcessSignature) Descriptor() ([]byte, []int)Deprecated: Use Indicator_ProcessSignature.ProtoReflect.Descriptor instead.
func (*Indicator_ProcessSignature) GetMemoryHashSignature
func (x *Indicator_ProcessSignature) GetMemoryHashSignature() *Indicator_ProcessSignature_MemoryHashSignaturefunc (*Indicator_ProcessSignature) GetSignature
func (m *Indicator_ProcessSignature) GetSignature() isIndicator_ProcessSignature_Signaturefunc (*Indicator_ProcessSignature) GetSignatureType
func (x *Indicator_ProcessSignature) GetSignatureType() Indicator_ProcessSignature_SignatureTypefunc (*Indicator_ProcessSignature) GetYaraRuleSignature
func (x *Indicator_ProcessSignature) GetYaraRuleSignature() *Indicator_ProcessSignature_YaraRuleSignaturefunc (*Indicator_ProcessSignature) ProtoMessage
func (*Indicator_ProcessSignature) ProtoMessage()func (*Indicator_ProcessSignature) ProtoReflect
func (x *Indicator_ProcessSignature) ProtoReflect() protoreflect.Messagefunc (*Indicator_ProcessSignature) Reset
func (x *Indicator_ProcessSignature) Reset()func (*Indicator_ProcessSignature) String
func (x *Indicator_ProcessSignature) String() stringIndicator_ProcessSignature_MemoryHashSignature
type Indicator_ProcessSignature_MemoryHashSignature struct {
// The binary family.
BinaryFamily string `protobuf:"bytes,1,opt,name=binary_family,json=binaryFamily,proto3" json:"binary_family,omitempty"`
// The list of memory hash detections contributing to the binary family
// match.
Detections []*Indicator_ProcessSignature_MemoryHashSignature_Detection `protobuf:"bytes,4,rep,name=detections,proto3" json:"detections,omitempty"`
// contains filtered or unexported fields
}A signature corresponding to memory page hashes.
func (*Indicator_ProcessSignature_MemoryHashSignature) Descriptor
func (*Indicator_ProcessSignature_MemoryHashSignature) Descriptor() ([]byte, []int)Deprecated: Use Indicator_ProcessSignature_MemoryHashSignature.ProtoReflect.Descriptor instead.
func (*Indicator_ProcessSignature_MemoryHashSignature) GetBinaryFamily
func (x *Indicator_ProcessSignature_MemoryHashSignature) GetBinaryFamily() stringfunc (*Indicator_ProcessSignature_MemoryHashSignature) GetDetections
func (x *Indicator_ProcessSignature_MemoryHashSignature) GetDetections() []*Indicator_ProcessSignature_MemoryHashSignature_Detectionfunc (*Indicator_ProcessSignature_MemoryHashSignature) ProtoMessage
func (*Indicator_ProcessSignature_MemoryHashSignature) ProtoMessage()func (*Indicator_ProcessSignature_MemoryHashSignature) ProtoReflect
func (x *Indicator_ProcessSignature_MemoryHashSignature) ProtoReflect() protoreflect.Messagefunc (*Indicator_ProcessSignature_MemoryHashSignature) Reset
func (x *Indicator_ProcessSignature_MemoryHashSignature) Reset()func (*Indicator_ProcessSignature_MemoryHashSignature) String
func (x *Indicator_ProcessSignature_MemoryHashSignature) String() stringIndicator_ProcessSignature_MemoryHashSignature_
type Indicator_ProcessSignature_MemoryHashSignature_ struct {
// Signature indicating that a binary family was matched.
MemoryHashSignature *Indicator_ProcessSignature_MemoryHashSignature `protobuf:"bytes,6,opt,name=memory_hash_signature,json=memoryHashSignature,proto3,oneof"`
}Indicator_ProcessSignature_MemoryHashSignature_Detection
type Indicator_ProcessSignature_MemoryHashSignature_Detection struct {
// The name of the binary associated with the memory hash
// signature detection.
Binary string `protobuf:"bytes,2,opt,name=binary,proto3" json:"binary,omitempty"`
// The percentage of memory page hashes in the signature
// that were matched.
PercentPagesMatched float64 `protobuf:"fixed64,3,opt,name=percent_pages_matched,json=percentPagesMatched,proto3" json:"percent_pages_matched,omitempty"`
// contains filtered or unexported fields
}Memory hash detection contributing to the binary family match.
func (*Indicator_ProcessSignature_MemoryHashSignature_Detection) Descriptor
func (*Indicator_ProcessSignature_MemoryHashSignature_Detection) Descriptor() ([]byte, []int)Deprecated: Use Indicator_ProcessSignature_MemoryHashSignature_Detection.ProtoReflect.Descriptor instead.
func (*Indicator_ProcessSignature_MemoryHashSignature_Detection) GetBinary
func (x *Indicator_ProcessSignature_MemoryHashSignature_Detection) GetBinary() stringfunc (*Indicator_ProcessSignature_MemoryHashSignature_Detection) GetPercentPagesMatched
func (x *Indicator_ProcessSignature_MemoryHashSignature_Detection) GetPercentPagesMatched() float64func (*Indicator_ProcessSignature_MemoryHashSignature_Detection) ProtoMessage
func (*Indicator_ProcessSignature_MemoryHashSignature_Detection) ProtoMessage()func (*Indicator_ProcessSignature_MemoryHashSignature_Detection) ProtoReflect
func (x *Indicator_ProcessSignature_MemoryHashSignature_Detection) ProtoReflect() protoreflect.Messagefunc (*Indicator_ProcessSignature_MemoryHashSignature_Detection) Reset
func (x *Indicator_ProcessSignature_MemoryHashSignature_Detection) Reset()func (*Indicator_ProcessSignature_MemoryHashSignature_Detection) String
func (x *Indicator_ProcessSignature_MemoryHashSignature_Detection) String() stringIndicator_ProcessSignature_SignatureType
type Indicator_ProcessSignature_SignatureType int32Possible resource types to be associated with a signature.
Indicator_ProcessSignature_SIGNATURE_TYPE_UNSPECIFIED, Indicator_ProcessSignature_SIGNATURE_TYPE_PROCESS, Indicator_ProcessSignature_SIGNATURE_TYPE_FILE
const (
// The default signature type.
Indicator_ProcessSignature_SIGNATURE_TYPE_UNSPECIFIED Indicator_ProcessSignature_SignatureType = 0
// Used for signatures concerning processes.
Indicator_ProcessSignature_SIGNATURE_TYPE_PROCESS Indicator_ProcessSignature_SignatureType = 1
// Used for signatures concerning disks.
Indicator_ProcessSignature_SIGNATURE_TYPE_FILE Indicator_ProcessSignature_SignatureType = 2
)func (Indicator_ProcessSignature_SignatureType) Descriptor
func (Indicator_ProcessSignature_SignatureType) Descriptor() protoreflect.EnumDescriptorfunc (Indicator_ProcessSignature_SignatureType) Enum
func (Indicator_ProcessSignature_SignatureType) EnumDescriptor
func (Indicator_ProcessSignature_SignatureType) EnumDescriptor() ([]byte, []int)Deprecated: Use Indicator_ProcessSignature_SignatureType.Descriptor instead.
func (Indicator_ProcessSignature_SignatureType) Number
func (x Indicator_ProcessSignature_SignatureType) Number() protoreflect.EnumNumberfunc (Indicator_ProcessSignature_SignatureType) String
func (x Indicator_ProcessSignature_SignatureType) String() stringfunc (Indicator_ProcessSignature_SignatureType) Type
func (Indicator_ProcessSignature_SignatureType) Type() protoreflect.EnumTypeIndicator_ProcessSignature_YaraRuleSignature
type Indicator_ProcessSignature_YaraRuleSignature struct {
// The name of the YARA rule.
YaraRule string `protobuf:"bytes,5,opt,name=yara_rule,json=yaraRule,proto3" json:"yara_rule,omitempty"`
// contains filtered or unexported fields
}A signature corresponding to a YARA rule.
func (*Indicator_ProcessSignature_YaraRuleSignature) Descriptor
func (*Indicator_ProcessSignature_YaraRuleSignature) Descriptor() ([]byte, []int)Deprecated: Use Indicator_ProcessSignature_YaraRuleSignature.ProtoReflect.Descriptor instead.
func (*Indicator_ProcessSignature_YaraRuleSignature) GetYaraRule
func (x *Indicator_ProcessSignature_YaraRuleSignature) GetYaraRule() stringfunc (*Indicator_ProcessSignature_YaraRuleSignature) ProtoMessage
func (*Indicator_ProcessSignature_YaraRuleSignature) ProtoMessage()func (*Indicator_ProcessSignature_YaraRuleSignature) ProtoReflect
func (x *Indicator_ProcessSignature_YaraRuleSignature) ProtoReflect() protoreflect.Messagefunc (*Indicator_ProcessSignature_YaraRuleSignature) Reset
func (x *Indicator_ProcessSignature_YaraRuleSignature) Reset()func (*Indicator_ProcessSignature_YaraRuleSignature) String
func (x *Indicator_ProcessSignature_YaraRuleSignature) String() stringIndicator_ProcessSignature_YaraRuleSignature_
type Indicator_ProcessSignature_YaraRuleSignature_ struct {
// Signature indicating that a YARA rule was matched.
YaraRuleSignature *Indicator_ProcessSignature_YaraRuleSignature `protobuf:"bytes,7,opt,name=yara_rule_signature,json=yaraRuleSignature,proto3,oneof"`
}IpRule
type IpRule struct {
// The IP protocol this rule applies to. This value can either be one of the
// following well known protocol strings (TCP, UDP, ICMP, ESP, AH, IPIP,
// SCTP) or a string representation of the integer value.
Protocol string `protobuf:"bytes,1,opt,name=protocol,proto3" json:"protocol,omitempty"`
// Optional. An optional list of ports to which this rule applies. This field
// is only applicable for the UDP or (S)TCP protocols. Each entry must be
// either an integer or a range including a min and max port number.
PortRanges []*IpRule_PortRange `protobuf:"bytes,2,rep,name=port_ranges,json=portRanges,proto3" json:"port_ranges,omitempty"`
// contains filtered or unexported fields
}IP rule information.
func (*IpRule) Descriptor
Deprecated: Use IpRule.ProtoReflect.Descriptor instead.
func (*IpRule) GetPortRanges
func (x *IpRule) GetPortRanges() []*IpRule_PortRangefunc (*IpRule) GetProtocol
func (*IpRule) ProtoMessage
func (*IpRule) ProtoMessage()func (*IpRule) ProtoReflect
func (x *IpRule) ProtoReflect() protoreflect.Messagefunc (*IpRule) Reset
func (x *IpRule) Reset()func (*IpRule) String
IpRule_PortRange
type IpRule_PortRange struct {
// Minimum port value.
Min int64 `protobuf:"varint,1,opt,name=min,proto3" json:"min,omitempty"`
// Maximum port value.
Max int64 `protobuf:"varint,2,opt,name=max,proto3" json:"max,omitempty"`
// contains filtered or unexported fields
}A port range which is inclusive of the min and max values. Values are between 0 and 2^16-1. The max can be equal / must be not smaller than the min value. If min and max are equal this indicates that it is a single port.
func (*IpRule_PortRange) Descriptor
func (*IpRule_PortRange) Descriptor() ([]byte, []int)Deprecated: Use IpRule_PortRange.ProtoReflect.Descriptor instead.
func (*IpRule_PortRange) GetMax
func (x *IpRule_PortRange) GetMax() int64func (*IpRule_PortRange) GetMin
func (x *IpRule_PortRange) GetMin() int64func (*IpRule_PortRange) ProtoMessage
func (*IpRule_PortRange) ProtoMessage()func (*IpRule_PortRange) ProtoReflect
func (x *IpRule_PortRange) ProtoReflect() protoreflect.Messagefunc (*IpRule_PortRange) Reset
func (x *IpRule_PortRange) Reset()func (*IpRule_PortRange) String
func (x *IpRule_PortRange) String() stringIpRules
type IpRules struct {
// The direction that the rule is applicable to, one of ingress or egress.
Direction IpRules_Direction `protobuf:"varint,1,opt,name=direction,proto3,enum=google.cloud.securitycenter.v2.IpRules_Direction" json:"direction,omitempty"`
// The list of allow rules specified by this firewall. Each rule specifies a
// protocol and port-range tuple that describes a permitted connection.
//
// Types that are assignable to Rules:
//
// *IpRules_Allowed
// *IpRules_Denied
Rules isIpRules_Rules `protobuf_oneof:"rules"`
// If source IP ranges are specified, the firewall rule applies only to
// traffic that has a source IP address in these ranges. These ranges must be
// expressed in CIDR format. Only supports IPv4.
SourceIpRanges []string `protobuf:"bytes,4,rep,name=source_ip_ranges,json=sourceIpRanges,proto3" json:"source_ip_ranges,omitempty"`
// If destination IP ranges are specified, the firewall rule applies only to
// traffic that has a destination IP address in these ranges. These ranges
// must be expressed in CIDR format. Only supports IPv4.
DestinationIpRanges []string `protobuf:"bytes,5,rep,name=destination_ip_ranges,json=destinationIpRanges,proto3" json:"destination_ip_ranges,omitempty"`
// Name of the network protocol service, such as FTP, that is exposed by the
// open port. Follows the naming convention available at:
// https://www.iana.org/assignments/service-names-port-numbers/service-names-port-numbers.xhtml.
ExposedServices []string `protobuf:"bytes,6,rep,name=exposed_services,json=exposedServices,proto3" json:"exposed_services,omitempty"`
// contains filtered or unexported fields
}IP rules associated with the finding.
func (*IpRules) Descriptor
Deprecated: Use IpRules.ProtoReflect.Descriptor instead.
func (*IpRules) GetAllowed
func (*IpRules) GetDenied
func (*IpRules) GetDestinationIpRanges
func (*IpRules) GetDirection
func (x *IpRules) GetDirection() IpRules_Directionfunc (*IpRules) GetExposedServices
func (*IpRules) GetRules
func (m *IpRules) GetRules() isIpRules_Rulesfunc (*IpRules) GetSourceIpRanges
func (*IpRules) ProtoMessage
func (*IpRules) ProtoMessage()func (*IpRules) ProtoReflect
func (x *IpRules) ProtoReflect() protoreflect.Messagefunc (*IpRules) Reset
func (x *IpRules) Reset()func (*IpRules) String
IpRules_Allowed
type IpRules_Allowed struct {
// Tuple with allowed rules.
Allowed *Allowed `protobuf:"bytes,2,opt,name=allowed,proto3,oneof"`
}IpRules_Denied
type IpRules_Denied struct {
// Tuple with denied rules.
Denied *Denied `protobuf:"bytes,3,opt,name=denied,proto3,oneof"`
}IpRules_Direction
type IpRules_Direction int32The type of direction that the rule is applicable to, one of ingress or egress. Not applicable to OPEN_X_PORT findings.
IpRules_DIRECTION_UNSPECIFIED, IpRules_INGRESS, IpRules_EGRESS
const (
// Unspecified direction value.
IpRules_DIRECTION_UNSPECIFIED IpRules_Direction = 0
// Ingress direction value.
IpRules_INGRESS IpRules_Direction = 1
// Egress direction value.
IpRules_EGRESS IpRules_Direction = 2
)func (IpRules_Direction) Descriptor
func (IpRules_Direction) Descriptor() protoreflect.EnumDescriptorfunc (IpRules_Direction) Enum
func (x IpRules_Direction) Enum() *IpRules_Directionfunc (IpRules_Direction) EnumDescriptor
func (IpRules_Direction) EnumDescriptor() ([]byte, []int)Deprecated: Use IpRules_Direction.Descriptor instead.
func (IpRules_Direction) Number
func (x IpRules_Direction) Number() protoreflect.EnumNumberfunc (IpRules_Direction) String
func (x IpRules_Direction) String() stringfunc (IpRules_Direction) Type
func (IpRules_Direction) Type() protoreflect.EnumTypeJob
type Job struct {
// The fully-qualified name for a job.
// e.g. `projects/Describes a job
func (*Job) Descriptor
Deprecated: Use Job.ProtoReflect.Descriptor instead.
func (*Job) GetErrorCode
func (*Job) GetLocation
func (*Job) GetName
func (*Job) GetState
func (*Job) ProtoMessage
func (*Job) ProtoMessage()func (*Job) ProtoReflect
func (x *Job) ProtoReflect() protoreflect.Messagefunc (*Job) Reset
func (x *Job) Reset()func (*Job) String
JobState
type JobState int32JobState represents the state of the job.
JobState_JOB_STATE_UNSPECIFIED, JobState_PENDING, JobState_RUNNING, JobState_SUCCEEDED, JobState_FAILED
const (
// Unspecified represents an unknown state and should not be used.
JobState_JOB_STATE_UNSPECIFIED JobState = 0
// Job is scheduled and pending for run
JobState_PENDING JobState = 1
// Job in progress
JobState_RUNNING JobState = 2
// Job has completed with success
JobState_SUCCEEDED JobState = 3
// Job has completed but with failure
JobState_FAILED JobState = 4
)func (JobState) Descriptor
func (JobState) Descriptor() protoreflect.EnumDescriptorfunc (JobState) Enum
func (JobState) EnumDescriptor
Deprecated: Use JobState.Descriptor instead.
func (JobState) Number
func (x JobState) Number() protoreflect.EnumNumberfunc (JobState) String
func (JobState) Type
func (JobState) Type() protoreflect.EnumTypeKernelRootkit
type KernelRootkit struct {
// Rootkit name, when available.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// True if unexpected modifications of kernel code memory are present.
UnexpectedCodeModification bool `protobuf:"varint,2,opt,name=unexpected_code_modification,json=unexpectedCodeModification,proto3" json:"unexpected_code_modification,omitempty"`
// True if unexpected modifications of kernel read-only data memory are
// present.
UnexpectedReadOnlyDataModification bool `protobuf:"varint,3,opt,name=unexpected_read_only_data_modification,json=unexpectedReadOnlyDataModification,proto3" json:"unexpected_read_only_data_modification,omitempty"`
// True if `ftrace` points are present with callbacks pointing to regions
// that are not in the expected kernel or module code range.
UnexpectedFtraceHandler bool `protobuf:"varint,4,opt,name=unexpected_ftrace_handler,json=unexpectedFtraceHandler,proto3" json:"unexpected_ftrace_handler,omitempty"`
// True if `kprobe` points are present with callbacks pointing to regions
// that are not in the expected kernel or module code range.
UnexpectedKprobeHandler bool `protobuf:"varint,5,opt,name=unexpected_kprobe_handler,json=unexpectedKprobeHandler,proto3" json:"unexpected_kprobe_handler,omitempty"`
// True if kernel code pages that are not in the expected kernel or module
// code regions are present.
UnexpectedKernelCodePages bool `protobuf:"varint,6,opt,name=unexpected_kernel_code_pages,json=unexpectedKernelCodePages,proto3" json:"unexpected_kernel_code_pages,omitempty"`
// True if system call handlers that are are not in the expected kernel or
// module code regions are present.
UnexpectedSystemCallHandler bool `protobuf:"varint,7,opt,name=unexpected_system_call_handler,json=unexpectedSystemCallHandler,proto3" json:"unexpected_system_call_handler,omitempty"`
// True if interrupt handlers that are are not in the expected kernel or
// module code regions are present.
UnexpectedInterruptHandler bool `protobuf:"varint,8,opt,name=unexpected_interrupt_handler,json=unexpectedInterruptHandler,proto3" json:"unexpected_interrupt_handler,omitempty"`
// True if unexpected processes in the scheduler run queue are present. Such
// processes are in the run queue, but not in the process task list.
UnexpectedProcessesInRunqueue bool `protobuf:"varint,9,opt,name=unexpected_processes_in_runqueue,json=unexpectedProcessesInRunqueue,proto3" json:"unexpected_processes_in_runqueue,omitempty"`
// contains filtered or unexported fields
}Kernel mode rootkit signatures.
func (*KernelRootkit) Descriptor
func (*KernelRootkit) Descriptor() ([]byte, []int)Deprecated: Use KernelRootkit.ProtoReflect.Descriptor instead.
func (*KernelRootkit) GetName
func (x *KernelRootkit) GetName() stringfunc (*KernelRootkit) GetUnexpectedCodeModification
func (x *KernelRootkit) GetUnexpectedCodeModification() boolfunc (*KernelRootkit) GetUnexpectedFtraceHandler
func (x *KernelRootkit) GetUnexpectedFtraceHandler() boolfunc (*KernelRootkit) GetUnexpectedInterruptHandler
func (x *KernelRootkit) GetUnexpectedInterruptHandler() boolfunc (*KernelRootkit) GetUnexpectedKernelCodePages
func (x *KernelRootkit) GetUnexpectedKernelCodePages() boolfunc (*KernelRootkit) GetUnexpectedKprobeHandler
func (x *KernelRootkit) GetUnexpectedKprobeHandler() boolfunc (*KernelRootkit) GetUnexpectedProcessesInRunqueue
func (x *KernelRootkit) GetUnexpectedProcessesInRunqueue() boolfunc (*KernelRootkit) GetUnexpectedReadOnlyDataModification
func (x *KernelRootkit) GetUnexpectedReadOnlyDataModification() boolfunc (*KernelRootkit) GetUnexpectedSystemCallHandler
func (x *KernelRootkit) GetUnexpectedSystemCallHandler() boolfunc (*KernelRootkit) ProtoMessage
func (*KernelRootkit) ProtoMessage()func (*KernelRootkit) ProtoReflect
func (x *KernelRootkit) ProtoReflect() protoreflect.Messagefunc (*KernelRootkit) Reset
func (x *KernelRootkit) Reset()func (*KernelRootkit) String
func (x *KernelRootkit) String() stringKubernetes
type Kubernetes struct {
// Kubernetes
// [Pods](https://cloud.google.com/kubernetes-engine/docs/concepts/pod)
// associated with the finding. This field contains Pod records for each
// container that is owned by a Pod.
Pods []*Kubernetes_Pod `protobuf:"bytes,1,rep,name=pods,proto3" json:"pods,omitempty"`
// Provides Kubernetes
// [node](https://cloud.google.com/kubernetes-engine/docs/concepts/cluster-architecture#nodes)
// information.
Nodes []*Kubernetes_Node `protobuf:"bytes,2,rep,name=nodes,proto3" json:"nodes,omitempty"`
// GKE [node
// pools](https://cloud.google.com/kubernetes-engine/docs/concepts/node-pools)
// associated with the finding. This field contains node pool information for
// each node, when it is available.
NodePools []*Kubernetes_NodePool `protobuf:"bytes,3,rep,name=node_pools,json=nodePools,proto3" json:"node_pools,omitempty"`
// Provides Kubernetes role information for findings that involve [Roles or
// ClusterRoles](https://cloud.google.com/kubernetes-engine/docs/how-to/role-based-access-control).
Roles []*Kubernetes_Role `protobuf:"bytes,4,rep,name=roles,proto3" json:"roles,omitempty"`
// Provides Kubernetes role binding information for findings that involve
// [RoleBindings or
// ClusterRoleBindings](https://cloud.google.com/kubernetes-engine/docs/how-to/role-based-access-control).
Bindings []*Kubernetes_Binding `protobuf:"bytes,5,rep,name=bindings,proto3" json:"bindings,omitempty"`
// Provides information on any Kubernetes access reviews (privilege checks)
// relevant to the finding.
AccessReviews []*Kubernetes_AccessReview `protobuf:"bytes,6,rep,name=access_reviews,json=accessReviews,proto3" json:"access_reviews,omitempty"`
// Kubernetes objects related to the finding.
Objects []*Kubernetes_Object `protobuf:"bytes,7,rep,name=objects,proto3" json:"objects,omitempty"`
// contains filtered or unexported fields
}Kubernetes-related attributes.
func (*Kubernetes) Descriptor
func (*Kubernetes) Descriptor() ([]byte, []int)Deprecated: Use Kubernetes.ProtoReflect.Descriptor instead.
func (*Kubernetes) GetAccessReviews
func (x *Kubernetes) GetAccessReviews() []*Kubernetes_AccessReviewfunc (*Kubernetes) GetBindings
func (x *Kubernetes) GetBindings() []*Kubernetes_Bindingfunc (*Kubernetes) GetNodePools
func (x *Kubernetes) GetNodePools() []*Kubernetes_NodePoolfunc (*Kubernetes) GetNodes
func (x *Kubernetes) GetNodes() []*Kubernetes_Nodefunc (*Kubernetes) GetObjects
func (x *Kubernetes) GetObjects() []*Kubernetes_Objectfunc (*Kubernetes) GetPods
func (x *Kubernetes) GetPods() []*Kubernetes_Podfunc (*Kubernetes) GetRoles
func (x *Kubernetes) GetRoles() []*Kubernetes_Rolefunc (*Kubernetes) ProtoMessage
func (*Kubernetes) ProtoMessage()func (*Kubernetes) ProtoReflect
func (x *Kubernetes) ProtoReflect() protoreflect.Messagefunc (*Kubernetes) Reset
func (x *Kubernetes) Reset()func (*Kubernetes) String
func (x *Kubernetes) String() stringKubernetes_AccessReview
type Kubernetes_AccessReview struct {
// The API group of the resource. "*" means all.
Group string `protobuf:"bytes,1,opt,name=group,proto3" json:"group,omitempty"`
// Namespace of the action being requested. Currently, there is no
// distinction between no namespace and all namespaces. Both
// are represented by "" (empty).
Ns string `protobuf:"bytes,2,opt,name=ns,proto3" json:"ns,omitempty"`
// The name of the resource being requested. Empty means all.
Name string `protobuf:"bytes,3,opt,name=name,proto3" json:"name,omitempty"`
// The optional resource type requested. "*" means all.
Resource string `protobuf:"bytes,4,opt,name=resource,proto3" json:"resource,omitempty"`
// The optional subresource type.
Subresource string `protobuf:"bytes,5,opt,name=subresource,proto3" json:"subresource,omitempty"`
// A Kubernetes resource API verb, like get, list, watch, create, update,
// delete, proxy. "*" means all.
Verb string `protobuf:"bytes,6,opt,name=verb,proto3" json:"verb,omitempty"`
// The API version of the resource. "*" means all.
Version string `protobuf:"bytes,7,opt,name=version,proto3" json:"version,omitempty"`
// contains filtered or unexported fields
}Conveys information about a Kubernetes access review (such as one returned
by a kubectl auth
can-i
command) that was involved in a finding.
func (*Kubernetes_AccessReview) Descriptor
func (*Kubernetes_AccessReview) Descriptor() ([]byte, []int)Deprecated: Use Kubernetes_AccessReview.ProtoReflect.Descriptor instead.
func (*Kubernetes_AccessReview) GetGroup
func (x *Kubernetes_AccessReview) GetGroup() stringfunc (*Kubernetes_AccessReview) GetName
func (x *Kubernetes_AccessReview) GetName() stringfunc (*Kubernetes_AccessReview) GetNs
func (x *Kubernetes_AccessReview) GetNs() stringfunc (*Kubernetes_AccessReview) GetResource
func (x *Kubernetes_AccessReview) GetResource() stringfunc (*Kubernetes_AccessReview) GetSubresource
func (x *Kubernetes_AccessReview) GetSubresource() stringfunc (*Kubernetes_AccessReview) GetVerb
func (x *Kubernetes_AccessReview) GetVerb() stringfunc (*Kubernetes_AccessReview) GetVersion
func (x *Kubernetes_AccessReview) GetVersion() stringfunc (*Kubernetes_AccessReview) ProtoMessage
func (*Kubernetes_AccessReview) ProtoMessage()func (*Kubernetes_AccessReview) ProtoReflect
func (x *Kubernetes_AccessReview) ProtoReflect() protoreflect.Messagefunc (*Kubernetes_AccessReview) Reset
func (x *Kubernetes_AccessReview) Reset()func (*Kubernetes_AccessReview) String
func (x *Kubernetes_AccessReview) String() stringKubernetes_Binding
type Kubernetes_Binding struct {
// Namespace for the binding.
Ns string `protobuf:"bytes,1,opt,name=ns,proto3" json:"ns,omitempty"`
// Name for the binding.
Name string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
// The Role or ClusterRole referenced by the binding.
Role *Kubernetes_Role `protobuf:"bytes,3,opt,name=role,proto3" json:"role,omitempty"`
// Represents one or more subjects that are bound to the role. Not always
// available for PATCH requests.
Subjects []*Kubernetes_Subject `protobuf:"bytes,4,rep,name=subjects,proto3" json:"subjects,omitempty"`
// contains filtered or unexported fields
}Represents a Kubernetes RoleBinding or ClusterRoleBinding.
func (*Kubernetes_Binding) Descriptor
func (*Kubernetes_Binding) Descriptor() ([]byte, []int)Deprecated: Use Kubernetes_Binding.ProtoReflect.Descriptor instead.
func (*Kubernetes_Binding) GetName
func (x *Kubernetes_Binding) GetName() stringfunc (*Kubernetes_Binding) GetNs
func (x *Kubernetes_Binding) GetNs() stringfunc (*Kubernetes_Binding) GetRole
func (x *Kubernetes_Binding) GetRole() *Kubernetes_Rolefunc (*Kubernetes_Binding) GetSubjects
func (x *Kubernetes_Binding) GetSubjects() []*Kubernetes_Subjectfunc (*Kubernetes_Binding) ProtoMessage
func (*Kubernetes_Binding) ProtoMessage()func (*Kubernetes_Binding) ProtoReflect
func (x *Kubernetes_Binding) ProtoReflect() protoreflect.Messagefunc (*Kubernetes_Binding) Reset
func (x *Kubernetes_Binding) Reset()func (*Kubernetes_Binding) String
func (x *Kubernetes_Binding) String() stringKubernetes_Node
type Kubernetes_Node struct {
// [Full resource name](https://google.aip.dev/122#full-resource-names) of
// the Compute Engine VM running the cluster node.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Kubernetes nodes associated with the finding.
func (*Kubernetes_Node) Descriptor
func (*Kubernetes_Node) Descriptor() ([]byte, []int)Deprecated: Use Kubernetes_Node.ProtoReflect.Descriptor instead.
func (*Kubernetes_Node) GetName
func (x *Kubernetes_Node) GetName() stringfunc (*Kubernetes_Node) ProtoMessage
func (*Kubernetes_Node) ProtoMessage()func (*Kubernetes_Node) ProtoReflect
func (x *Kubernetes_Node) ProtoReflect() protoreflect.Messagefunc (*Kubernetes_Node) Reset
func (x *Kubernetes_Node) Reset()func (*Kubernetes_Node) String
func (x *Kubernetes_Node) String() stringKubernetes_NodePool
type Kubernetes_NodePool struct {
// Kubernetes node pool name.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Nodes associated with the finding.
Nodes []*Kubernetes_Node `protobuf:"bytes,2,rep,name=nodes,proto3" json:"nodes,omitempty"`
// contains filtered or unexported fields
}Provides GKE node pool information.
func (*Kubernetes_NodePool) Descriptor
func (*Kubernetes_NodePool) Descriptor() ([]byte, []int)Deprecated: Use Kubernetes_NodePool.ProtoReflect.Descriptor instead.
func (*Kubernetes_NodePool) GetName
func (x *Kubernetes_NodePool) GetName() stringfunc (*Kubernetes_NodePool) GetNodes
func (x *Kubernetes_NodePool) GetNodes() []*Kubernetes_Nodefunc (*Kubernetes_NodePool) ProtoMessage
func (*Kubernetes_NodePool) ProtoMessage()func (*Kubernetes_NodePool) ProtoReflect
func (x *Kubernetes_NodePool) ProtoReflect() protoreflect.Messagefunc (*Kubernetes_NodePool) Reset
func (x *Kubernetes_NodePool) Reset()func (*Kubernetes_NodePool) String
func (x *Kubernetes_NodePool) String() stringKubernetes_Object
type Kubernetes_Object struct {
// Kubernetes object group, such as "policy.k8s.io/v1".
Group string `protobuf:"bytes,1,opt,name=group,proto3" json:"group,omitempty"`
// Kubernetes object kind, such as "Namespace".
Kind string `protobuf:"bytes,2,opt,name=kind,proto3" json:"kind,omitempty"`
// Kubernetes object namespace. Must be a valid DNS label. Named
// "ns" to avoid collision with C++ namespace keyword. For details see
// https://kubernetes.io/docs/tasks/administer-cluster/namespaces/.
Ns string `protobuf:"bytes,3,opt,name=ns,proto3" json:"ns,omitempty"`
// Kubernetes object name. For details see
// https://kubernetes.io/docs/concepts/overview/working-with-objects/names/.
Name string `protobuf:"bytes,4,opt,name=name,proto3" json:"name,omitempty"`
// Pod containers associated with this finding, if any.
Containers []*Container `protobuf:"bytes,5,rep,name=containers,proto3" json:"containers,omitempty"`
// contains filtered or unexported fields
}Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview.
func (*Kubernetes_Object) Descriptor
func (*Kubernetes_Object) Descriptor() ([]byte, []int)Deprecated: Use Kubernetes_Object.ProtoReflect.Descriptor instead.
func (*Kubernetes_Object) GetContainers
func (x *Kubernetes_Object) GetContainers() []*Containerfunc (*Kubernetes_Object) GetGroup
func (x *Kubernetes_Object) GetGroup() stringfunc (*Kubernetes_Object) GetKind
func (x *Kubernetes_Object) GetKind() stringfunc (*Kubernetes_Object) GetName
func (x *Kubernetes_Object) GetName() stringfunc (*Kubernetes_Object) GetNs
func (x *Kubernetes_Object) GetNs() stringfunc (*Kubernetes_Object) ProtoMessage
func (*Kubernetes_Object) ProtoMessage()func (*Kubernetes_Object) ProtoReflect
func (x *Kubernetes_Object) ProtoReflect() protoreflect.Messagefunc (*Kubernetes_Object) Reset
func (x *Kubernetes_Object) Reset()func (*Kubernetes_Object) String
func (x *Kubernetes_Object) String() stringKubernetes_Pod
type Kubernetes_Pod struct {
// Kubernetes Pod namespace.
Ns string `protobuf:"bytes,1,opt,name=ns,proto3" json:"ns,omitempty"`
// Kubernetes Pod name.
Name string `protobuf:"bytes,2,opt,name=name,proto3" json:"name,omitempty"`
// Pod labels. For Kubernetes containers, these are applied to the
// container.
Labels []*Label `protobuf:"bytes,3,rep,name=labels,proto3" json:"labels,omitempty"`
// Pod containers associated with this finding, if any.
Containers []*Container `protobuf:"bytes,4,rep,name=containers,proto3" json:"containers,omitempty"`
// contains filtered or unexported fields
}A Kubernetes Pod.
func (*Kubernetes_Pod) Descriptor
func (*Kubernetes_Pod) Descriptor() ([]byte, []int)Deprecated: Use Kubernetes_Pod.ProtoReflect.Descriptor instead.
func (*Kubernetes_Pod) GetContainers
func (x *Kubernetes_Pod) GetContainers() []*Containerfunc (*Kubernetes_Pod) GetLabels
func (x *Kubernetes_Pod) GetLabels() []*Labelfunc (*Kubernetes_Pod) GetName
func (x *Kubernetes_Pod) GetName() stringfunc (*Kubernetes_Pod) GetNs
func (x *Kubernetes_Pod) GetNs() stringfunc (*Kubernetes_Pod) ProtoMessage
func (*Kubernetes_Pod) ProtoMessage()func (*Kubernetes_Pod) ProtoReflect
func (x *Kubernetes_Pod) ProtoReflect() protoreflect.Messagefunc (*Kubernetes_Pod) Reset
func (x *Kubernetes_Pod) Reset()func (*Kubernetes_Pod) String
func (x *Kubernetes_Pod) String() stringKubernetes_Role
type Kubernetes_Role struct {
// Role type.
Kind Kubernetes_Role_Kind `protobuf:"varint,1,opt,name=kind,proto3,enum=google.cloud.securitycenter.v2.Kubernetes_Role_Kind" json:"kind,omitempty"`
// Role namespace.
Ns string `protobuf:"bytes,2,opt,name=ns,proto3" json:"ns,omitempty"`
// Role name.
Name string `protobuf:"bytes,3,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Kubernetes Role or ClusterRole.
func (*Kubernetes_Role) Descriptor
func (*Kubernetes_Role) Descriptor() ([]byte, []int)Deprecated: Use Kubernetes_Role.ProtoReflect.Descriptor instead.
func (*Kubernetes_Role) GetKind
func (x *Kubernetes_Role) GetKind() Kubernetes_Role_Kindfunc (*Kubernetes_Role) GetName
func (x *Kubernetes_Role) GetName() stringfunc (*Kubernetes_Role) GetNs
func (x *Kubernetes_Role) GetNs() stringfunc (*Kubernetes_Role) ProtoMessage
func (*Kubernetes_Role) ProtoMessage()func (*Kubernetes_Role) ProtoReflect
func (x *Kubernetes_Role) ProtoReflect() protoreflect.Messagefunc (*Kubernetes_Role) Reset
func (x *Kubernetes_Role) Reset()func (*Kubernetes_Role) String
func (x *Kubernetes_Role) String() stringKubernetes_Role_Kind
type Kubernetes_Role_Kind int32Types of Kubernetes roles.
Kubernetes_Role_KIND_UNSPECIFIED, Kubernetes_Role_ROLE, Kubernetes_Role_CLUSTER_ROLE
const (
// Role type is not specified.
Kubernetes_Role_KIND_UNSPECIFIED Kubernetes_Role_Kind = 0
// Kubernetes Role.
Kubernetes_Role_ROLE Kubernetes_Role_Kind = 1
// Kubernetes ClusterRole.
Kubernetes_Role_CLUSTER_ROLE Kubernetes_Role_Kind = 2
)func (Kubernetes_Role_Kind) Descriptor
func (Kubernetes_Role_Kind) Descriptor() protoreflect.EnumDescriptorfunc (Kubernetes_Role_Kind) Enum
func (x Kubernetes_Role_Kind) Enum() *Kubernetes_Role_Kindfunc (Kubernetes_Role_Kind) EnumDescriptor
func (Kubernetes_Role_Kind) EnumDescriptor() ([]byte, []int)Deprecated: Use Kubernetes_Role_Kind.Descriptor instead.
func (Kubernetes_Role_Kind) Number
func (x Kubernetes_Role_Kind) Number() protoreflect.EnumNumberfunc (Kubernetes_Role_Kind) String
func (x Kubernetes_Role_Kind) String() stringfunc (Kubernetes_Role_Kind) Type
func (Kubernetes_Role_Kind) Type() protoreflect.EnumTypeKubernetes_Subject
type Kubernetes_Subject struct {
// Authentication type for the subject.
Kind Kubernetes_Subject_AuthType `protobuf:"varint,1,opt,name=kind,proto3,enum=google.cloud.securitycenter.v2.Kubernetes_Subject_AuthType" json:"kind,omitempty"`
// Namespace for the subject.
Ns string `protobuf:"bytes,2,opt,name=ns,proto3" json:"ns,omitempty"`
// Name for the subject.
Name string `protobuf:"bytes,3,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Represents a Kubernetes subject.
func (*Kubernetes_Subject) Descriptor
func (*Kubernetes_Subject) Descriptor() ([]byte, []int)Deprecated: Use Kubernetes_Subject.ProtoReflect.Descriptor instead.
func (*Kubernetes_Subject) GetKind
func (x *Kubernetes_Subject) GetKind() Kubernetes_Subject_AuthTypefunc (*Kubernetes_Subject) GetName
func (x *Kubernetes_Subject) GetName() stringfunc (*Kubernetes_Subject) GetNs
func (x *Kubernetes_Subject) GetNs() stringfunc (*Kubernetes_Subject) ProtoMessage
func (*Kubernetes_Subject) ProtoMessage()func (*Kubernetes_Subject) ProtoReflect
func (x *Kubernetes_Subject) ProtoReflect() protoreflect.Messagefunc (*Kubernetes_Subject) Reset
func (x *Kubernetes_Subject) Reset()func (*Kubernetes_Subject) String
func (x *Kubernetes_Subject) String() stringKubernetes_Subject_AuthType
type Kubernetes_Subject_AuthType int32Auth types that can be used for the subject's kind field.
Kubernetes_Subject_AUTH_TYPE_UNSPECIFIED, Kubernetes_Subject_USER, Kubernetes_Subject_SERVICEACCOUNT, Kubernetes_Subject_GROUP
const (
// Authentication is not specified.
Kubernetes_Subject_AUTH_TYPE_UNSPECIFIED Kubernetes_Subject_AuthType = 0
// User with valid certificate.
Kubernetes_Subject_USER Kubernetes_Subject_AuthType = 1
// Users managed by Kubernetes API with credentials stored as secrets.
Kubernetes_Subject_SERVICEACCOUNT Kubernetes_Subject_AuthType = 2
// Collection of users.
Kubernetes_Subject_GROUP Kubernetes_Subject_AuthType = 3
)func (Kubernetes_Subject_AuthType) Descriptor
func (Kubernetes_Subject_AuthType) Descriptor() protoreflect.EnumDescriptorfunc (Kubernetes_Subject_AuthType) Enum
func (x Kubernetes_Subject_AuthType) Enum() *Kubernetes_Subject_AuthTypefunc (Kubernetes_Subject_AuthType) EnumDescriptor
func (Kubernetes_Subject_AuthType) EnumDescriptor() ([]byte, []int)Deprecated: Use Kubernetes_Subject_AuthType.Descriptor instead.
func (Kubernetes_Subject_AuthType) Number
func (x Kubernetes_Subject_AuthType) Number() protoreflect.EnumNumberfunc (Kubernetes_Subject_AuthType) String
func (x Kubernetes_Subject_AuthType) String() stringfunc (Kubernetes_Subject_AuthType) Type
func (Kubernetes_Subject_AuthType) Type() protoreflect.EnumTypeLabel
type Label struct {
// Name of the label.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Value that corresponds to the label's name.
Value string `protobuf:"bytes,2,opt,name=value,proto3" json:"value,omitempty"`
// contains filtered or unexported fields
}Represents a generic name-value label. A label has separate name and value
fields to support filtering with the contains() function. For more
information, see Filtering on array-type
fields.
func (*Label) Descriptor
Deprecated: Use Label.ProtoReflect.Descriptor instead.
func (*Label) GetName
func (*Label) GetValue
func (*Label) ProtoMessage
func (*Label) ProtoMessage()func (*Label) ProtoReflect
func (x *Label) ProtoReflect() protoreflect.Messagefunc (*Label) Reset
func (x *Label) Reset()func (*Label) String
ListAttackPathsRequest
type ListAttackPathsRequest struct {
// Required. Name of parent to list attack paths.
//
// Valid formats:
// `organizations/{organization}`,
// `organizations/{organization}/simulations/{simulation}`
// `organizations/{organization}/simulations/{simulation}/attackExposureResults/{attack_exposure_result_v2}`
// `organizations/{organization}/simulations/{simulation}/valuedResources/{valued_resource}`
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// The filter expression that filters the attack path in the response.
// Supported fields:
//
// - `valued_resources` supports =
Filter string `protobuf:"bytes,2,opt,name=filter,proto3" json:"filter,omitempty"`
// The value returned by the last `ListAttackPathsResponse`; indicates
// that this is a continuation of a prior `ListAttackPaths` call, and
// that the system should return the next page of data.
PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
// The maximum number of results to return in a single response. Default is
// 10, minimum is 1, maximum is 1000.
PageSize int32 `protobuf:"varint,4,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
// contains filtered or unexported fields
}Request message for listing the attack paths for a given simulation or valued resource.
func (*ListAttackPathsRequest) Descriptor
func (*ListAttackPathsRequest) Descriptor() ([]byte, []int)Deprecated: Use ListAttackPathsRequest.ProtoReflect.Descriptor instead.
func (*ListAttackPathsRequest) GetFilter
func (x *ListAttackPathsRequest) GetFilter() stringfunc (*ListAttackPathsRequest) GetPageSize
func (x *ListAttackPathsRequest) GetPageSize() int32func (*ListAttackPathsRequest) GetPageToken
func (x *ListAttackPathsRequest) GetPageToken() stringfunc (*ListAttackPathsRequest) GetParent
func (x *ListAttackPathsRequest) GetParent() stringfunc (*ListAttackPathsRequest) ProtoMessage
func (*ListAttackPathsRequest) ProtoMessage()func (*ListAttackPathsRequest) ProtoReflect
func (x *ListAttackPathsRequest) ProtoReflect() protoreflect.Messagefunc (*ListAttackPathsRequest) Reset
func (x *ListAttackPathsRequest) Reset()func (*ListAttackPathsRequest) String
func (x *ListAttackPathsRequest) String() stringListAttackPathsResponse
type ListAttackPathsResponse struct {
// The attack paths that the attack path simulation identified.
AttackPaths []*AttackPath `protobuf:"bytes,1,rep,name=attack_paths,json=attackPaths,proto3" json:"attack_paths,omitempty"`
// Token to retrieve the next page of results, or empty if there are no more
// results.
NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
// contains filtered or unexported fields
}Response message for listing the attack paths for a given simulation or valued resource.
func (*ListAttackPathsResponse) Descriptor
func (*ListAttackPathsResponse) Descriptor() ([]byte, []int)Deprecated: Use ListAttackPathsResponse.ProtoReflect.Descriptor instead.
func (*ListAttackPathsResponse) GetAttackPaths
func (x *ListAttackPathsResponse) GetAttackPaths() []*AttackPathfunc (*ListAttackPathsResponse) GetNextPageToken
func (x *ListAttackPathsResponse) GetNextPageToken() stringfunc (*ListAttackPathsResponse) ProtoMessage
func (*ListAttackPathsResponse) ProtoMessage()func (*ListAttackPathsResponse) ProtoReflect
func (x *ListAttackPathsResponse) ProtoReflect() protoreflect.Messagefunc (*ListAttackPathsResponse) Reset
func (x *ListAttackPathsResponse) Reset()func (*ListAttackPathsResponse) String
func (x *ListAttackPathsResponse) String() stringListBigQueryExportsRequest
type ListBigQueryExportsRequest struct {
// Required. The parent, which owns the collection of BigQuery exports. Its
// format is `organizations/[organization_id]/locations/[location_id]`,
// `folders/[folder_id]/locations/[location_id]`, or
// `projects/[project_id]/locations/[location_id]`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// The maximum number of configs to return. The service may return fewer than
// this value.
// If unspecified, at most 10 configs will be returned.
// The maximum value is 1000; values above 1000 will be coerced to 1000.
PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
// A page token, received from a previous `ListBigQueryExports` call.
// Provide this to retrieve the subsequent page.
// When paginating, all other parameters provided to `ListBigQueryExports`
// must match the call that provided the page token.
PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
// contains filtered or unexported fields
}Request message for listing BigQuery exports at a given scope e.g. organization, folder or project.
func (*ListBigQueryExportsRequest) Descriptor
func (*ListBigQueryExportsRequest) Descriptor() ([]byte, []int)Deprecated: Use ListBigQueryExportsRequest.ProtoReflect.Descriptor instead.
func (*ListBigQueryExportsRequest) GetPageSize
func (x *ListBigQueryExportsRequest) GetPageSize() int32func (*ListBigQueryExportsRequest) GetPageToken
func (x *ListBigQueryExportsRequest) GetPageToken() stringfunc (*ListBigQueryExportsRequest) GetParent
func (x *ListBigQueryExportsRequest) GetParent() stringfunc (*ListBigQueryExportsRequest) ProtoMessage
func (*ListBigQueryExportsRequest) ProtoMessage()func (*ListBigQueryExportsRequest) ProtoReflect
func (x *ListBigQueryExportsRequest) ProtoReflect() protoreflect.Messagefunc (*ListBigQueryExportsRequest) Reset
func (x *ListBigQueryExportsRequest) Reset()func (*ListBigQueryExportsRequest) String
func (x *ListBigQueryExportsRequest) String() stringListBigQueryExportsResponse
type ListBigQueryExportsResponse struct {
// The BigQuery exports from the specified parent.
BigQueryExports []*BigQueryExport `protobuf:"bytes,1,rep,name=big_query_exports,json=bigQueryExports,proto3" json:"big_query_exports,omitempty"`
// A token, which can be sent as `page_token` to retrieve the next page.
// If this field is omitted, there are no subsequent pages.
NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
// contains filtered or unexported fields
}Response message for listing BigQuery exports.
func (*ListBigQueryExportsResponse) Descriptor
func (*ListBigQueryExportsResponse) Descriptor() ([]byte, []int)Deprecated: Use ListBigQueryExportsResponse.ProtoReflect.Descriptor instead.
func (*ListBigQueryExportsResponse) GetBigQueryExports
func (x *ListBigQueryExportsResponse) GetBigQueryExports() []*BigQueryExportfunc (*ListBigQueryExportsResponse) GetNextPageToken
func (x *ListBigQueryExportsResponse) GetNextPageToken() stringfunc (*ListBigQueryExportsResponse) ProtoMessage
func (*ListBigQueryExportsResponse) ProtoMessage()func (*ListBigQueryExportsResponse) ProtoReflect
func (x *ListBigQueryExportsResponse) ProtoReflect() protoreflect.Messagefunc (*ListBigQueryExportsResponse) Reset
func (x *ListBigQueryExportsResponse) Reset()func (*ListBigQueryExportsResponse) String
func (x *ListBigQueryExportsResponse) String() stringListFindingsRequest
type ListFindingsRequest struct {
// Required. Name of the source the findings belong to. If no location is
// specified, the default is global. The following list shows some examples:
//
// + `organizations/[organization_id]/sources/[source_id]`
// +
// `organizations/[organization_id]/sources/[source_id]/locations/[location_id]`
// + `folders/[folder_id]/sources/[source_id]`
// + `folders/[folder_id]/sources/[source_id]/locations/[location_id]`
// + `projects/[project_id]/sources/[source_id]`
// + `projects/[project_id]/sources/[source_id]/locations/[location_id]`
//
// To list across all sources provide a source_id of `-`. The following
// list shows some examples:
//
// + `organizations/{organization_id}/sources/-`
// + `organizations/{organization_id}/sources/-/locations/{location_id}`
// + `folders/{folder_id}/sources/-`
// + `folders/{folder_id}/sources/-locations/{location_id}`
// + `projects/{projects_id}/sources/-`
// + `projects/{projects_id}/sources/-/locations/{location_id}`
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// Expression that defines the filter to apply across findings.
// The expression is a list of one or more restrictions combined via logical
// operators `AND` and `OR`.
// Parentheses are supported, and `OR` has higher precedence than `AND`.
//
// Restrictions have the form `Request message for listing findings.
func (*ListFindingsRequest) Descriptor
func (*ListFindingsRequest) Descriptor() ([]byte, []int)Deprecated: Use ListFindingsRequest.ProtoReflect.Descriptor instead.
func (*ListFindingsRequest) GetFieldMask
func (x *ListFindingsRequest) GetFieldMask() *fieldmaskpb.FieldMaskfunc (*ListFindingsRequest) GetFilter
func (x *ListFindingsRequest) GetFilter() stringfunc (*ListFindingsRequest) GetOrderBy
func (x *ListFindingsRequest) GetOrderBy() stringfunc (*ListFindingsRequest) GetPageSize
func (x *ListFindingsRequest) GetPageSize() int32func (*ListFindingsRequest) GetPageToken
func (x *ListFindingsRequest) GetPageToken() stringfunc (*ListFindingsRequest) GetParent
func (x *ListFindingsRequest) GetParent() stringfunc (*ListFindingsRequest) ProtoMessage
func (*ListFindingsRequest) ProtoMessage()func (*ListFindingsRequest) ProtoReflect
func (x *ListFindingsRequest) ProtoReflect() protoreflect.Messagefunc (*ListFindingsRequest) Reset
func (x *ListFindingsRequest) Reset()func (*ListFindingsRequest) String
func (x *ListFindingsRequest) String() stringListFindingsResponse
type ListFindingsResponse struct {
// Findings matching the list request.
ListFindingsResults []*ListFindingsResponse_ListFindingsResult `protobuf:"bytes,1,rep,name=list_findings_results,json=listFindingsResults,proto3" json:"list_findings_results,omitempty"`
// Token to retrieve the next page of results, or empty if there are no more
// results.
NextPageToken string `protobuf:"bytes,3,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
// The total number of findings matching the query.
TotalSize int32 `protobuf:"varint,4,opt,name=total_size,json=totalSize,proto3" json:"total_size,omitempty"`
// contains filtered or unexported fields
}Response message for listing findings.
func (*ListFindingsResponse) Descriptor
func (*ListFindingsResponse) Descriptor() ([]byte, []int)Deprecated: Use ListFindingsResponse.ProtoReflect.Descriptor instead.
func (*ListFindingsResponse) GetListFindingsResults
func (x *ListFindingsResponse) GetListFindingsResults() []*ListFindingsResponse_ListFindingsResultfunc (*ListFindingsResponse) GetNextPageToken
func (x *ListFindingsResponse) GetNextPageToken() stringfunc (*ListFindingsResponse) GetTotalSize
func (x *ListFindingsResponse) GetTotalSize() int32func (*ListFindingsResponse) ProtoMessage
func (*ListFindingsResponse) ProtoMessage()func (*ListFindingsResponse) ProtoReflect
func (x *ListFindingsResponse) ProtoReflect() protoreflect.Messagefunc (*ListFindingsResponse) Reset
func (x *ListFindingsResponse) Reset()func (*ListFindingsResponse) String
func (x *ListFindingsResponse) String() stringListFindingsResponse_ListFindingsResult
type ListFindingsResponse_ListFindingsResult struct {
// Finding matching the search request.
Finding *Finding `protobuf:"bytes,1,opt,name=finding,proto3" json:"finding,omitempty"`
// Output only. Resource that is associated with this finding.
Resource *ListFindingsResponse_ListFindingsResult_Resource `protobuf:"bytes,3,opt,name=resource,proto3" json:"resource,omitempty"`
// contains filtered or unexported fields
}Result containing the Finding.
func (*ListFindingsResponse_ListFindingsResult) Descriptor
func (*ListFindingsResponse_ListFindingsResult) Descriptor() ([]byte, []int)Deprecated: Use ListFindingsResponse_ListFindingsResult.ProtoReflect.Descriptor instead.
func (*ListFindingsResponse_ListFindingsResult) GetFinding
func (x *ListFindingsResponse_ListFindingsResult) GetFinding() *Findingfunc (*ListFindingsResponse_ListFindingsResult) GetResource
func (x *ListFindingsResponse_ListFindingsResult) GetResource() *ListFindingsResponse_ListFindingsResult_Resourcefunc (*ListFindingsResponse_ListFindingsResult) ProtoMessage
func (*ListFindingsResponse_ListFindingsResult) ProtoMessage()func (*ListFindingsResponse_ListFindingsResult) ProtoReflect
func (x *ListFindingsResponse_ListFindingsResult) ProtoReflect() protoreflect.Messagefunc (*ListFindingsResponse_ListFindingsResult) Reset
func (x *ListFindingsResponse_ListFindingsResult) Reset()func (*ListFindingsResponse_ListFindingsResult) String
func (x *ListFindingsResponse_ListFindingsResult) String() stringListFindingsResponse_ListFindingsResult_Resource
type ListFindingsResponse_ListFindingsResult_Resource struct {
// The full resource name of the resource. See:
// https://cloud.google.com/apis/design/resource_names#full_resource_name
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The human readable name of the resource.
DisplayName string `protobuf:"bytes,2,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
// The full resource type of the resource.
Type string `protobuf:"bytes,3,opt,name=type,proto3" json:"type,omitempty"`
// Indicates which cloud provider the finding is from.
CloudProvider CloudProvider `protobuf:"varint,4,opt,name=cloud_provider,json=cloudProvider,proto3,enum=google.cloud.securitycenter.v2.CloudProvider" json:"cloud_provider,omitempty"`
// The service or resource provider associated with the resource.
Service string `protobuf:"bytes,5,opt,name=service,proto3" json:"service,omitempty"`
// The region or location of the service (if applicable).
Location string `protobuf:"bytes,6,opt,name=location,proto3" json:"location,omitempty"`
// The metadata associated with the cloud provider.
//
// Types that are assignable to CloudProviderMetadata:
//
// *ListFindingsResponse_ListFindingsResult_Resource_GcpMetadata
// *ListFindingsResponse_ListFindingsResult_Resource_AwsMetadata
// *ListFindingsResponse_ListFindingsResult_Resource_AzureMetadata
CloudProviderMetadata isListFindingsResponse_ListFindingsResult_Resource_CloudProviderMetadata `protobuf_oneof:"cloud_provider_metadata"`
// Provides the path to the resource within the resource hierarchy.
ResourcePath *ResourcePath `protobuf:"bytes,10,opt,name=resource_path,json=resourcePath,proto3" json:"resource_path,omitempty"`
// A string representation of the resource path.
// For Google Cloud, it has the format of
// `organizations/{organization_id}/folders/{folder_id}/folders/{folder_id}/projects/{project_id}`
// where there can be any number of folders.
// For AWS, it has the format of
// `org/{organization_id}/ou/{organizational_unit_id}/ou/{organizational_unit_id}/account/{account_id}`
// where there can be any number of organizational units.
// For Azure, it has the format of
// `mg/{management_group_id}/mg/{management_group_id}/subscription/{subscription_id}/rg/{resource_group_name}`
// where there can be any number of management groups.
ResourcePathString string `protobuf:"bytes,11,opt,name=resource_path_string,json=resourcePathString,proto3" json:"resource_path_string,omitempty"`
// contains filtered or unexported fields
}Information related to the Google Cloud resource that is associated with this finding.
func (*ListFindingsResponse_ListFindingsResult_Resource) Descriptor
func (*ListFindingsResponse_ListFindingsResult_Resource) Descriptor() ([]byte, []int)Deprecated: Use ListFindingsResponse_ListFindingsResult_Resource.ProtoReflect.Descriptor instead.
func (*ListFindingsResponse_ListFindingsResult_Resource) GetAwsMetadata
func (x *ListFindingsResponse_ListFindingsResult_Resource) GetAwsMetadata() *AwsMetadatafunc (*ListFindingsResponse_ListFindingsResult_Resource) GetAzureMetadata
func (x *ListFindingsResponse_ListFindingsResult_Resource) GetAzureMetadata() *AzureMetadatafunc (*ListFindingsResponse_ListFindingsResult_Resource) GetCloudProvider
func (x *ListFindingsResponse_ListFindingsResult_Resource) GetCloudProvider() CloudProviderfunc (*ListFindingsResponse_ListFindingsResult_Resource) GetCloudProviderMetadata
func (m *ListFindingsResponse_ListFindingsResult_Resource) GetCloudProviderMetadata() isListFindingsResponse_ListFindingsResult_Resource_CloudProviderMetadatafunc (*ListFindingsResponse_ListFindingsResult_Resource) GetDisplayName
func (x *ListFindingsResponse_ListFindingsResult_Resource) GetDisplayName() stringfunc (*ListFindingsResponse_ListFindingsResult_Resource) GetGcpMetadata
func (x *ListFindingsResponse_ListFindingsResult_Resource) GetGcpMetadata() *GcpMetadatafunc (*ListFindingsResponse_ListFindingsResult_Resource) GetLocation
func (x *ListFindingsResponse_ListFindingsResult_Resource) GetLocation() stringfunc (*ListFindingsResponse_ListFindingsResult_Resource) GetName
func (x *ListFindingsResponse_ListFindingsResult_Resource) GetName() stringfunc (*ListFindingsResponse_ListFindingsResult_Resource) GetResourcePath
func (x *ListFindingsResponse_ListFindingsResult_Resource) GetResourcePath() *ResourcePathfunc (*ListFindingsResponse_ListFindingsResult_Resource) GetResourcePathString
func (x *ListFindingsResponse_ListFindingsResult_Resource) GetResourcePathString() stringfunc (*ListFindingsResponse_ListFindingsResult_Resource) GetService
func (x *ListFindingsResponse_ListFindingsResult_Resource) GetService() stringfunc (*ListFindingsResponse_ListFindingsResult_Resource) GetType
func (x *ListFindingsResponse_ListFindingsResult_Resource) GetType() stringfunc (*ListFindingsResponse_ListFindingsResult_Resource) ProtoMessage
func (*ListFindingsResponse_ListFindingsResult_Resource) ProtoMessage()func (*ListFindingsResponse_ListFindingsResult_Resource) ProtoReflect
func (x *ListFindingsResponse_ListFindingsResult_Resource) ProtoReflect() protoreflect.Messagefunc (*ListFindingsResponse_ListFindingsResult_Resource) Reset
func (x *ListFindingsResponse_ListFindingsResult_Resource) Reset()func (*ListFindingsResponse_ListFindingsResult_Resource) String
func (x *ListFindingsResponse_ListFindingsResult_Resource) String() stringListFindingsResponse_ListFindingsResult_Resource_AwsMetadata
type ListFindingsResponse_ListFindingsResult_Resource_AwsMetadata struct {
// The AWS metadata associated with the finding.
AwsMetadata *AwsMetadata `protobuf:"bytes,8,opt,name=aws_metadata,json=awsMetadata,proto3,oneof"`
}ListFindingsResponse_ListFindingsResult_Resource_AzureMetadata
type ListFindingsResponse_ListFindingsResult_Resource_AzureMetadata struct {
// The Azure metadata associated with the finding.
AzureMetadata *AzureMetadata `protobuf:"bytes,9,opt,name=azure_metadata,json=azureMetadata,proto3,oneof"`
}ListFindingsResponse_ListFindingsResult_Resource_GcpMetadata
type ListFindingsResponse_ListFindingsResult_Resource_GcpMetadata struct {
// The GCP metadata associated with the finding.
GcpMetadata *GcpMetadata `protobuf:"bytes,7,opt,name=gcp_metadata,json=gcpMetadata,proto3,oneof"`
}ListMuteConfigsRequest
type ListMuteConfigsRequest struct {
// Required. The parent, which owns the collection of mute configs. Its format
// is `organizations/[organization_id]", "folders/[folder_id]`,
// `projects/[project_id]`,
// `organizations/[organization_id]/locations/[location_id]`,
// `folders/[folder_id]/locations/[location_id]`,
// `projects/[project_id]/locations/[location_id]`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// The maximum number of configs to return. The service may return fewer than
// this value.
// If unspecified, at most 10 configs will be returned.
// The maximum value is 1000; values above 1000 will be coerced to 1000.
PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
// A page token, received from a previous `ListMuteConfigs` call.
// Provide this to retrieve the subsequent page.
//
// When paginating, all other parameters provided to `ListMuteConfigs` must
// match the call that provided the page token.
PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
// contains filtered or unexported fields
}Request message for listing mute configs at a given scope e.g. organization, folder or project. If no location is specified, default is global.
func (*ListMuteConfigsRequest) Descriptor
func (*ListMuteConfigsRequest) Descriptor() ([]byte, []int)Deprecated: Use ListMuteConfigsRequest.ProtoReflect.Descriptor instead.
func (*ListMuteConfigsRequest) GetPageSize
func (x *ListMuteConfigsRequest) GetPageSize() int32func (*ListMuteConfigsRequest) GetPageToken
func (x *ListMuteConfigsRequest) GetPageToken() stringfunc (*ListMuteConfigsRequest) GetParent
func (x *ListMuteConfigsRequest) GetParent() stringfunc (*ListMuteConfigsRequest) ProtoMessage
func (*ListMuteConfigsRequest) ProtoMessage()func (*ListMuteConfigsRequest) ProtoReflect
func (x *ListMuteConfigsRequest) ProtoReflect() protoreflect.Messagefunc (*ListMuteConfigsRequest) Reset
func (x *ListMuteConfigsRequest) Reset()func (*ListMuteConfigsRequest) String
func (x *ListMuteConfigsRequest) String() stringListMuteConfigsResponse
type ListMuteConfigsResponse struct {
// The mute configs from the specified parent.
MuteConfigs []*MuteConfig `protobuf:"bytes,1,rep,name=mute_configs,json=muteConfigs,proto3" json:"mute_configs,omitempty"`
// A token, which can be sent as `page_token` to retrieve the next page.
// If this field is omitted, there are no subsequent pages.
NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
// contains filtered or unexported fields
}Response message for listing mute configs.
func (*ListMuteConfigsResponse) Descriptor
func (*ListMuteConfigsResponse) Descriptor() ([]byte, []int)Deprecated: Use ListMuteConfigsResponse.ProtoReflect.Descriptor instead.
func (*ListMuteConfigsResponse) GetMuteConfigs
func (x *ListMuteConfigsResponse) GetMuteConfigs() []*MuteConfigfunc (*ListMuteConfigsResponse) GetNextPageToken
func (x *ListMuteConfigsResponse) GetNextPageToken() stringfunc (*ListMuteConfigsResponse) ProtoMessage
func (*ListMuteConfigsResponse) ProtoMessage()func (*ListMuteConfigsResponse) ProtoReflect
func (x *ListMuteConfigsResponse) ProtoReflect() protoreflect.Messagefunc (*ListMuteConfigsResponse) Reset
func (x *ListMuteConfigsResponse) Reset()func (*ListMuteConfigsResponse) String
func (x *ListMuteConfigsResponse) String() stringListNotificationConfigsRequest
type ListNotificationConfigsRequest struct {
// Required. The name of the parent in which to list the notification
// configurations. Its format is
// "organizations/[organization_id]/locations/[location_id]",
// "folders/[folder_id]/locations/[location_id]", or
// "projects/[project_id]/locations/[location_id]".
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// The value returned by the last `ListNotificationConfigsResponse`; indicates
// that this is a continuation of a prior `ListNotificationConfigs` call, and
// that the system should return the next page of data.
PageToken string `protobuf:"bytes,2,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
// The maximum number of results to return in a single response. Default is
// 10, minimum is 1, maximum is 1000.
PageSize int32 `protobuf:"varint,3,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
// contains filtered or unexported fields
}Request message for listing notification configs.
func (*ListNotificationConfigsRequest) Descriptor
func (*ListNotificationConfigsRequest) Descriptor() ([]byte, []int)Deprecated: Use ListNotificationConfigsRequest.ProtoReflect.Descriptor instead.
func (*ListNotificationConfigsRequest) GetPageSize
func (x *ListNotificationConfigsRequest) GetPageSize() int32func (*ListNotificationConfigsRequest) GetPageToken
func (x *ListNotificationConfigsRequest) GetPageToken() stringfunc (*ListNotificationConfigsRequest) GetParent
func (x *ListNotificationConfigsRequest) GetParent() stringfunc (*ListNotificationConfigsRequest) ProtoMessage
func (*ListNotificationConfigsRequest) ProtoMessage()func (*ListNotificationConfigsRequest) ProtoReflect
func (x *ListNotificationConfigsRequest) ProtoReflect() protoreflect.Messagefunc (*ListNotificationConfigsRequest) Reset
func (x *ListNotificationConfigsRequest) Reset()func (*ListNotificationConfigsRequest) String
func (x *ListNotificationConfigsRequest) String() stringListNotificationConfigsResponse
type ListNotificationConfigsResponse struct {
// Notification configs belonging to the requested parent.
NotificationConfigs []*NotificationConfig `protobuf:"bytes,1,rep,name=notification_configs,json=notificationConfigs,proto3" json:"notification_configs,omitempty"`
// Token to retrieve the next page of results, or empty if there are no more
// results.
NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
// contains filtered or unexported fields
}Response message for listing notification configs.
func (*ListNotificationConfigsResponse) Descriptor
func (*ListNotificationConfigsResponse) Descriptor() ([]byte, []int)Deprecated: Use ListNotificationConfigsResponse.ProtoReflect.Descriptor instead.
func (*ListNotificationConfigsResponse) GetNextPageToken
func (x *ListNotificationConfigsResponse) GetNextPageToken() stringfunc (*ListNotificationConfigsResponse) GetNotificationConfigs
func (x *ListNotificationConfigsResponse) GetNotificationConfigs() []*NotificationConfigfunc (*ListNotificationConfigsResponse) ProtoMessage
func (*ListNotificationConfigsResponse) ProtoMessage()func (*ListNotificationConfigsResponse) ProtoReflect
func (x *ListNotificationConfigsResponse) ProtoReflect() protoreflect.Messagefunc (*ListNotificationConfigsResponse) Reset
func (x *ListNotificationConfigsResponse) Reset()func (*ListNotificationConfigsResponse) String
func (x *ListNotificationConfigsResponse) String() stringListResourceValueConfigsRequest
type ListResourceValueConfigsRequest struct {
// Required. The parent, which owns the collection of resource value configs.
// Its format is
// `organizations/[organization_id]`
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// The maximum number of configs to return. The service may return fewer than
// this value.
// If unspecified, at most 10 configs will be returned.
// The maximum value is 1000; values above 1000 will be coerced to 1000.
PageSize int32 `protobuf:"varint,2,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
// A page token, received from a previous `ListResourceValueConfigs` call.
// Provide this to retrieve the subsequent page.
//
// When paginating, all other parameters provided to
// `ListResourceValueConfigs` must match the call that provided the
// page token.
//
// page_size can be specified, and the new page_size will be used.
PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
// contains filtered or unexported fields
}Request message to list resource value configs of a parent
func (*ListResourceValueConfigsRequest) Descriptor
func (*ListResourceValueConfigsRequest) Descriptor() ([]byte, []int)Deprecated: Use ListResourceValueConfigsRequest.ProtoReflect.Descriptor instead.
func (*ListResourceValueConfigsRequest) GetPageSize
func (x *ListResourceValueConfigsRequest) GetPageSize() int32func (*ListResourceValueConfigsRequest) GetPageToken
func (x *ListResourceValueConfigsRequest) GetPageToken() stringfunc (*ListResourceValueConfigsRequest) GetParent
func (x *ListResourceValueConfigsRequest) GetParent() stringfunc (*ListResourceValueConfigsRequest) ProtoMessage
func (*ListResourceValueConfigsRequest) ProtoMessage()func (*ListResourceValueConfigsRequest) ProtoReflect
func (x *ListResourceValueConfigsRequest) ProtoReflect() protoreflect.Messagefunc (*ListResourceValueConfigsRequest) Reset
func (x *ListResourceValueConfigsRequest) Reset()func (*ListResourceValueConfigsRequest) String
func (x *ListResourceValueConfigsRequest) String() stringListResourceValueConfigsResponse
type ListResourceValueConfigsResponse struct {
// The resource value configs from the specified parent.
ResourceValueConfigs []*ResourceValueConfig `protobuf:"bytes,1,rep,name=resource_value_configs,json=resourceValueConfigs,proto3" json:"resource_value_configs,omitempty"`
// A token, which can be sent as `page_token` to retrieve the next page.
// If this field is empty, there are no subsequent pages.
NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
// contains filtered or unexported fields
}Response message to list resource value configs
func (*ListResourceValueConfigsResponse) Descriptor
func (*ListResourceValueConfigsResponse) Descriptor() ([]byte, []int)Deprecated: Use ListResourceValueConfigsResponse.ProtoReflect.Descriptor instead.
func (*ListResourceValueConfigsResponse) GetNextPageToken
func (x *ListResourceValueConfigsResponse) GetNextPageToken() stringfunc (*ListResourceValueConfigsResponse) GetResourceValueConfigs
func (x *ListResourceValueConfigsResponse) GetResourceValueConfigs() []*ResourceValueConfigfunc (*ListResourceValueConfigsResponse) ProtoMessage
func (*ListResourceValueConfigsResponse) ProtoMessage()func (*ListResourceValueConfigsResponse) ProtoReflect
func (x *ListResourceValueConfigsResponse) ProtoReflect() protoreflect.Messagefunc (*ListResourceValueConfigsResponse) Reset
func (x *ListResourceValueConfigsResponse) Reset()func (*ListResourceValueConfigsResponse) String
func (x *ListResourceValueConfigsResponse) String() stringListSourcesRequest
type ListSourcesRequest struct {
// Required. Resource name of the parent of sources to list. Its format should
// be `organizations/[organization_id]`, `folders/[folder_id]`, or
// `projects/[project_id]`.
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// The value returned by the last `ListSourcesResponse`; indicates
// that this is a continuation of a prior `ListSources` call, and
// that the system should return the next page of data.
PageToken string `protobuf:"bytes,2,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
// The maximum number of results to return in a single response. Default is
// 10, minimum is 1, maximum is 1000.
PageSize int32 `protobuf:"varint,7,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
// contains filtered or unexported fields
}Request message for listing sources.
func (*ListSourcesRequest) Descriptor
func (*ListSourcesRequest) Descriptor() ([]byte, []int)Deprecated: Use ListSourcesRequest.ProtoReflect.Descriptor instead.
func (*ListSourcesRequest) GetPageSize
func (x *ListSourcesRequest) GetPageSize() int32func (*ListSourcesRequest) GetPageToken
func (x *ListSourcesRequest) GetPageToken() stringfunc (*ListSourcesRequest) GetParent
func (x *ListSourcesRequest) GetParent() stringfunc (*ListSourcesRequest) ProtoMessage
func (*ListSourcesRequest) ProtoMessage()func (*ListSourcesRequest) ProtoReflect
func (x *ListSourcesRequest) ProtoReflect() protoreflect.Messagefunc (*ListSourcesRequest) Reset
func (x *ListSourcesRequest) Reset()func (*ListSourcesRequest) String
func (x *ListSourcesRequest) String() stringListSourcesResponse
type ListSourcesResponse struct {
// Sources belonging to the requested parent.
Sources []*Source `protobuf:"bytes,1,rep,name=sources,proto3" json:"sources,omitempty"`
// Token to retrieve the next page of results, or empty if there are no more
// results.
NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
// contains filtered or unexported fields
}Response message for listing sources.
func (*ListSourcesResponse) Descriptor
func (*ListSourcesResponse) Descriptor() ([]byte, []int)Deprecated: Use ListSourcesResponse.ProtoReflect.Descriptor instead.
func (*ListSourcesResponse) GetNextPageToken
func (x *ListSourcesResponse) GetNextPageToken() stringfunc (*ListSourcesResponse) GetSources
func (x *ListSourcesResponse) GetSources() []*Sourcefunc (*ListSourcesResponse) ProtoMessage
func (*ListSourcesResponse) ProtoMessage()func (*ListSourcesResponse) ProtoReflect
func (x *ListSourcesResponse) ProtoReflect() protoreflect.Messagefunc (*ListSourcesResponse) Reset
func (x *ListSourcesResponse) Reset()func (*ListSourcesResponse) String
func (x *ListSourcesResponse) String() stringListValuedResourcesRequest
type ListValuedResourcesRequest struct {
// Required. Name of parent to list exposed resources.
//
// Valid formats:
// `organizations/{organization}`,
// `organizations/{organization}/simulations/{simulation}`
// `organizations/{organization}/simulations/{simulation}/attackExposureResults/{attack_exposure_result_v2}`
Parent string `protobuf:"bytes,1,opt,name=parent,proto3" json:"parent,omitempty"`
// The filter expression that filters the valued resources in the response.
// Supported fields:
//
// - `resource_value` supports =
// - `resource_type` supports =
Filter string `protobuf:"bytes,2,opt,name=filter,proto3" json:"filter,omitempty"`
// The value returned by the last `ListValuedResourcesResponse`; indicates
// that this is a continuation of a prior `ListValuedResources` call, and
// that the system should return the next page of data.
PageToken string `protobuf:"bytes,3,opt,name=page_token,json=pageToken,proto3" json:"page_token,omitempty"`
// The maximum number of results to return in a single response. Default is
// 10, minimum is 1, maximum is 1000.
PageSize int32 `protobuf:"varint,4,opt,name=page_size,json=pageSize,proto3" json:"page_size,omitempty"`
// Optional. The fields by which to order the valued resources response.
//
// Supported fields:
//
// - `exposed_score`
//
// - `resource_value`
//
// - `resource_type`
//
// Values should be a comma separated list of fields. For example:
// `exposed_score,resource_value`.
//
// The default sorting order is descending. To specify ascending or descending
// order for a field, append a " ASC" or a " DESC" suffix, respectively; for
// example: `exposed_score DESC`.
OrderBy string `protobuf:"bytes,5,opt,name=order_by,json=orderBy,proto3" json:"order_by,omitempty"`
// contains filtered or unexported fields
}Request message for listing the valued resources for a given simulation.
func (*ListValuedResourcesRequest) Descriptor
func (*ListValuedResourcesRequest) Descriptor() ([]byte, []int)Deprecated: Use ListValuedResourcesRequest.ProtoReflect.Descriptor instead.
func (*ListValuedResourcesRequest) GetFilter
func (x *ListValuedResourcesRequest) GetFilter() stringfunc (*ListValuedResourcesRequest) GetOrderBy
func (x *ListValuedResourcesRequest) GetOrderBy() stringfunc (*ListValuedResourcesRequest) GetPageSize
func (x *ListValuedResourcesRequest) GetPageSize() int32func (*ListValuedResourcesRequest) GetPageToken
func (x *ListValuedResourcesRequest) GetPageToken() stringfunc (*ListValuedResourcesRequest) GetParent
func (x *ListValuedResourcesRequest) GetParent() stringfunc (*ListValuedResourcesRequest) ProtoMessage
func (*ListValuedResourcesRequest) ProtoMessage()func (*ListValuedResourcesRequest) ProtoReflect
func (x *ListValuedResourcesRequest) ProtoReflect() protoreflect.Messagefunc (*ListValuedResourcesRequest) Reset
func (x *ListValuedResourcesRequest) Reset()func (*ListValuedResourcesRequest) String
func (x *ListValuedResourcesRequest) String() stringListValuedResourcesResponse
type ListValuedResourcesResponse struct {
// The valued resources that the attack path simulation identified.
ValuedResources []*ValuedResource `protobuf:"bytes,1,rep,name=valued_resources,json=valuedResources,proto3" json:"valued_resources,omitempty"`
// Token to retrieve the next page of results, or empty if there are no more
// results.
NextPageToken string `protobuf:"bytes,2,opt,name=next_page_token,json=nextPageToken,proto3" json:"next_page_token,omitempty"`
// The estimated total number of results matching the query.
TotalSize int32 `protobuf:"varint,3,opt,name=total_size,json=totalSize,proto3" json:"total_size,omitempty"`
// contains filtered or unexported fields
}Response message for listing the valued resources for a given simulation.
func (*ListValuedResourcesResponse) Descriptor
func (*ListValuedResourcesResponse) Descriptor() ([]byte, []int)Deprecated: Use ListValuedResourcesResponse.ProtoReflect.Descriptor instead.
func (*ListValuedResourcesResponse) GetNextPageToken
func (x *ListValuedResourcesResponse) GetNextPageToken() stringfunc (*ListValuedResourcesResponse) GetTotalSize
func (x *ListValuedResourcesResponse) GetTotalSize() int32func (*ListValuedResourcesResponse) GetValuedResources
func (x *ListValuedResourcesResponse) GetValuedResources() []*ValuedResourcefunc (*ListValuedResourcesResponse) ProtoMessage
func (*ListValuedResourcesResponse) ProtoMessage()func (*ListValuedResourcesResponse) ProtoReflect
func (x *ListValuedResourcesResponse) ProtoReflect() protoreflect.Messagefunc (*ListValuedResourcesResponse) Reset
func (x *ListValuedResourcesResponse) Reset()func (*ListValuedResourcesResponse) String
func (x *ListValuedResourcesResponse) String() stringLoadBalancer
type LoadBalancer struct {
// The name of the load balancer associated with the finding.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Contains information related to the load balancer associated with the finding.
func (*LoadBalancer) Descriptor
func (*LoadBalancer) Descriptor() ([]byte, []int)Deprecated: Use LoadBalancer.ProtoReflect.Descriptor instead.
func (*LoadBalancer) GetName
func (x *LoadBalancer) GetName() stringfunc (*LoadBalancer) ProtoMessage
func (*LoadBalancer) ProtoMessage()func (*LoadBalancer) ProtoReflect
func (x *LoadBalancer) ProtoReflect() protoreflect.Messagefunc (*LoadBalancer) Reset
func (x *LoadBalancer) Reset()func (*LoadBalancer) String
func (x *LoadBalancer) String() stringLogEntry
type LogEntry struct {
// The log entry.
//
// Types that are assignable to LogEntry:
//
// *LogEntry_CloudLoggingEntry
LogEntry isLogEntry_LogEntry `protobuf_oneof:"log_entry"`
// contains filtered or unexported fields
}An individual entry in a log.
func (*LogEntry) Descriptor
Deprecated: Use LogEntry.ProtoReflect.Descriptor instead.
func (*LogEntry) GetCloudLoggingEntry
func (x *LogEntry) GetCloudLoggingEntry() *CloudLoggingEntryfunc (*LogEntry) GetLogEntry
func (m *LogEntry) GetLogEntry() isLogEntry_LogEntryfunc (*LogEntry) ProtoMessage
func (*LogEntry) ProtoMessage()func (*LogEntry) ProtoReflect
func (x *LogEntry) ProtoReflect() protoreflect.Messagefunc (*LogEntry) Reset
func (x *LogEntry) Reset()func (*LogEntry) String
LogEntry_CloudLoggingEntry
type LogEntry_CloudLoggingEntry struct {
// An individual entry in a log stored in Cloud Logging.
CloudLoggingEntry *CloudLoggingEntry `protobuf:"bytes,1,opt,name=cloud_logging_entry,json=cloudLoggingEntry,proto3,oneof"`
}MitreAttack
type MitreAttack struct {
// The MITRE ATT&CK tactic most closely represented by this finding, if any.
PrimaryTactic MitreAttack_Tactic `protobuf:"varint,1,opt,name=primary_tactic,json=primaryTactic,proto3,enum=google.cloud.securitycenter.v2.MitreAttack_Tactic" json:"primary_tactic,omitempty"`
// The MITRE ATT&CK technique most closely represented by this finding, if
// any. primary_techniques is a repeated field because there are multiple
// levels of MITRE ATT&CK techniques. If the technique most closely
// represented by this finding is a sub-technique (e.g. `SCANNING_IP_BLOCKS`),
// both the sub-technique and its parent technique(s) will be listed (e.g.
// `SCANNING_IP_BLOCKS`, `ACTIVE_SCANNING`).
PrimaryTechniques []MitreAttack_Technique `protobuf:"varint,2,rep,packed,name=primary_techniques,json=primaryTechniques,proto3,enum=google.cloud.securitycenter.v2.MitreAttack_Technique" json:"primary_techniques,omitempty"`
// Additional MITRE ATT&CK tactics related to this finding, if any.
AdditionalTactics []MitreAttack_Tactic `protobuf:"varint,3,rep,packed,name=additional_tactics,json=additionalTactics,proto3,enum=google.cloud.securitycenter.v2.MitreAttack_Tactic" json:"additional_tactics,omitempty"`
// Additional MITRE ATT&CK techniques related to this finding, if any, along
// with any of their respective parent techniques.
AdditionalTechniques []MitreAttack_Technique `protobuf:"varint,4,rep,packed,name=additional_techniques,json=additionalTechniques,proto3,enum=google.cloud.securitycenter.v2.MitreAttack_Technique" json:"additional_techniques,omitempty"`
// The MITRE ATT&CK version referenced by the above fields. E.g. "8".
Version string `protobuf:"bytes,5,opt,name=version,proto3" json:"version,omitempty"`
// contains filtered or unexported fields
}MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org
func (*MitreAttack) Descriptor
func (*MitreAttack) Descriptor() ([]byte, []int)Deprecated: Use MitreAttack.ProtoReflect.Descriptor instead.
func (*MitreAttack) GetAdditionalTactics
func (x *MitreAttack) GetAdditionalTactics() []MitreAttack_Tacticfunc (*MitreAttack) GetAdditionalTechniques
func (x *MitreAttack) GetAdditionalTechniques() []MitreAttack_Techniquefunc (*MitreAttack) GetPrimaryTactic
func (x *MitreAttack) GetPrimaryTactic() MitreAttack_Tacticfunc (*MitreAttack) GetPrimaryTechniques
func (x *MitreAttack) GetPrimaryTechniques() []MitreAttack_Techniquefunc (*MitreAttack) GetVersion
func (x *MitreAttack) GetVersion() stringfunc (*MitreAttack) ProtoMessage
func (*MitreAttack) ProtoMessage()func (*MitreAttack) ProtoReflect
func (x *MitreAttack) ProtoReflect() protoreflect.Messagefunc (*MitreAttack) Reset
func (x *MitreAttack) Reset()func (*MitreAttack) String
func (x *MitreAttack) String() stringMitreAttack_Tactic
type MitreAttack_Tactic int32MITRE ATT&CK tactics that can be referenced by SCC findings. See: https://attack.mitre.org/tactics/enterprise/
MitreAttack_TACTIC_UNSPECIFIED, MitreAttack_RECONNAISSANCE, MitreAttack_RESOURCE_DEVELOPMENT, MitreAttack_INITIAL_ACCESS, MitreAttack_EXECUTION, MitreAttack_PERSISTENCE, MitreAttack_PRIVILEGE_ESCALATION, MitreAttack_DEFENSE_EVASION, MitreAttack_CREDENTIAL_ACCESS, MitreAttack_DISCOVERY, MitreAttack_LATERAL_MOVEMENT, MitreAttack_COLLECTION, MitreAttack_COMMAND_AND_CONTROL, MitreAttack_EXFILTRATION, MitreAttack_IMPACT
const (
// Unspecified value.
MitreAttack_TACTIC_UNSPECIFIED MitreAttack_Tactic = 0
// TA0043
MitreAttack_RECONNAISSANCE MitreAttack_Tactic = 1
// TA0042
MitreAttack_RESOURCE_DEVELOPMENT MitreAttack_Tactic = 2
// TA0001
MitreAttack_INITIAL_ACCESS MitreAttack_Tactic = 5
// TA0002
MitreAttack_EXECUTION MitreAttack_Tactic = 3
// TA0003
MitreAttack_PERSISTENCE MitreAttack_Tactic = 6
// TA0004
MitreAttack_PRIVILEGE_ESCALATION MitreAttack_Tactic = 8
// TA0005
MitreAttack_DEFENSE_EVASION MitreAttack_Tactic = 7
// TA0006
MitreAttack_CREDENTIAL_ACCESS MitreAttack_Tactic = 9
// TA0007
MitreAttack_DISCOVERY MitreAttack_Tactic = 10
// TA0008
MitreAttack_LATERAL_MOVEMENT MitreAttack_Tactic = 11
// TA0009
MitreAttack_COLLECTION MitreAttack_Tactic = 12
// TA0011
MitreAttack_COMMAND_AND_CONTROL MitreAttack_Tactic = 4
// TA0010
MitreAttack_EXFILTRATION MitreAttack_Tactic = 13
// TA0040
MitreAttack_IMPACT MitreAttack_Tactic = 14
)func (MitreAttack_Tactic) Descriptor
func (MitreAttack_Tactic) Descriptor() protoreflect.EnumDescriptorfunc (MitreAttack_Tactic) Enum
func (x MitreAttack_Tactic) Enum() *MitreAttack_Tacticfunc (MitreAttack_Tactic) EnumDescriptor
func (MitreAttack_Tactic) EnumDescriptor() ([]byte, []int)Deprecated: Use MitreAttack_Tactic.Descriptor instead.
func (MitreAttack_Tactic) Number
func (x MitreAttack_Tactic) Number() protoreflect.EnumNumberfunc (MitreAttack_Tactic) String
func (x MitreAttack_Tactic) String() stringfunc (MitreAttack_Tactic) Type
func (MitreAttack_Tactic) Type() protoreflect.EnumTypeMitreAttack_Technique
type MitreAttack_Technique int32MITRE ATT&CK techniques that can be referenced by Security Command Center findings. See: https://attack.mitre.org/techniques/enterprise/
MitreAttack_TECHNIQUE_UNSPECIFIED, MitreAttack_DATA_OBFUSCATION, MitreAttack_DATA_OBFUSCATION_STEGANOGRAPHY, MitreAttack_OS_CREDENTIAL_DUMPING, MitreAttack_OS_CREDENTIAL_DUMPING_PROC_FILESYSTEM, MitreAttack_OS_CREDENTIAL_DUMPING_ETC_PASSWORD_AND_ETC_SHADOW, MitreAttack_DATA_FROM_LOCAL_SYSTEM, MitreAttack_AUTOMATED_EXFILTRATION, MitreAttack_OBFUSCATED_FILES_OR_INFO, MitreAttack_STEGANOGRAPHY, MitreAttack_COMPILE_AFTER_DELIVERY, MitreAttack_COMMAND_OBFUSCATION, MitreAttack_SCHEDULED_TRANSFER, MitreAttack_SYSTEM_OWNER_USER_DISCOVERY, MitreAttack_MASQUERADING, MitreAttack_MATCH_LEGITIMATE_NAME_OR_LOCATION, MitreAttack_BOOT_OR_LOGON_INITIALIZATION_SCRIPTS, MitreAttack_STARTUP_ITEMS, MitreAttack_NETWORK_SERVICE_DISCOVERY, MitreAttack_SCHEDULED_TASK_JOB, MitreAttack_SCHEDULED_TASK_JOB_CRON, MitreAttack_CONTAINER_ORCHESTRATION_JOB, MitreAttack_PROCESS_INJECTION, MitreAttack_INPUT_CAPTURE, MitreAttack_INPUT_CAPTURE_KEYLOGGING, MitreAttack_PROCESS_DISCOVERY, MitreAttack_COMMAND_AND_SCRIPTING_INTERPRETER, MitreAttack_UNIX_SHELL, MitreAttack_PYTHON, MitreAttack_EXPLOITATION_FOR_PRIVILEGE_ESCALATION, MitreAttack_PERMISSION_GROUPS_DISCOVERY, MitreAttack_CLOUD_GROUPS, MitreAttack_INDICATOR_REMOVAL, MitreAttack_INDICATOR_REMOVAL_CLEAR_LINUX_OR_MAC_SYSTEM_LOGS, MitreAttack_INDICATOR_REMOVAL_CLEAR_COMMAND_HISTORY, MitreAttack_INDICATOR_REMOVAL_FILE_DELETION, MitreAttack_INDICATOR_REMOVAL_TIMESTOMP, MitreAttack_INDICATOR_REMOVAL_CLEAR_MAILBOX_DATA, MitreAttack_APPLICATION_LAYER_PROTOCOL, MitreAttack_DNS, MitreAttack_SOFTWARE_DEPLOYMENT_TOOLS, MitreAttack_VALID_ACCOUNTS, MitreAttack_DEFAULT_ACCOUNTS, MitreAttack_LOCAL_ACCOUNTS, MitreAttack_CLOUD_ACCOUNTS, MitreAttack_FILE_AND_DIRECTORY_DISCOVERY, MitreAttack_ACCOUNT_DISCOVERY_LOCAL_ACCOUNT, MitreAttack_PROXY, MitreAttack_EXTERNAL_PROXY, MitreAttack_MULTI_HOP_PROXY, MitreAttack_ACCOUNT_MANIPULATION, MitreAttack_ADDITIONAL_CLOUD_CREDENTIALS, MitreAttack_ADDITIONAL_CLOUD_ROLES, MitreAttack_SSH_AUTHORIZED_KEYS, MitreAttack_ADDITIONAL_CONTAINER_CLUSTER_ROLES, MitreAttack_MULTI_STAGE_CHANNELS, MitreAttack_INGRESS_TOOL_TRANSFER, MitreAttack_NATIVE_API, MitreAttack_BRUTE_FORCE, MitreAttack_AUTOMATED_COLLECTION, MitreAttack_SHARED_MODULES, MitreAttack_DATA_ENCODING, MitreAttack_STANDARD_ENCODING, MitreAttack_ACCESS_TOKEN_MANIPULATION, MitreAttack_TOKEN_IMPERSONATION_OR_THEFT, MitreAttack_CREATE_ACCOUNT, MitreAttack_LOCAL_ACCOUNT, MitreAttack_DEOBFUSCATE_DECODE_FILES_OR_INFO, MitreAttack_EXPLOIT_PUBLIC_FACING_APPLICATION, MitreAttack_SUPPLY_CHAIN_COMPROMISE, MitreAttack_COMPROMISE_SOFTWARE_DEPENDENCIES_AND_DEVELOPMENT_TOOLS, MitreAttack_EXPLOITATION_FOR_CLIENT_EXECUTION, MitreAttack_USER_EXECUTION, MitreAttack_LINUX_AND_MAC_FILE_AND_DIRECTORY_PERMISSIONS_MODIFICATION, MitreAttack_DOMAIN_POLICY_MODIFICATION, MitreAttack_DATA_DESTRUCTION, MitreAttack_DATA_ENCRYPTED_FOR_IMPACT, MitreAttack_SERVICE_STOP, MitreAttack_INHIBIT_SYSTEM_RECOVERY, MitreAttack_FIRMWARE_CORRUPTION, MitreAttack_RESOURCE_HIJACKING, MitreAttack_NETWORK_DENIAL_OF_SERVICE, MitreAttack_CLOUD_SERVICE_DISCOVERY, MitreAttack_STEAL_APPLICATION_ACCESS_TOKEN, MitreAttack_ACCOUNT_ACCESS_REMOVAL, MitreAttack_TRANSFER_DATA_TO_CLOUD_ACCOUNT, MitreAttack_STEAL_WEB_SESSION_COOKIE, MitreAttack_CREATE_OR_MODIFY_SYSTEM_PROCESS, MitreAttack_EVENT_TRIGGERED_EXECUTION, MitreAttack_BOOT_OR_LOGON_AUTOSTART_EXECUTION, MitreAttack_KERNEL_MODULES_AND_EXTENSIONS, MitreAttack_SHORTCUT_MODIFICATION, MitreAttack_ABUSE_ELEVATION_CONTROL_MECHANISM, MitreAttack_ABUSE_ELEVATION_CONTROL_MECHANISM_SETUID_AND_SETGID, MitreAttack_ABUSE_ELEVATION_CONTROL_MECHANISM_SUDO_AND_SUDO_CACHING, MitreAttack_UNSECURED_CREDENTIALS, MitreAttack_CREDENTIALS_IN_FILES, MitreAttack_BASH_HISTORY, MitreAttack_PRIVATE_KEYS, MitreAttack_SUBVERT_TRUST_CONTROL, MitreAttack_INSTALL_ROOT_CERTIFICATE, MitreAttack_COMPROMISE_HOST_SOFTWARE_BINARY, MitreAttack_CREDENTIALS_FROM_PASSWORD_STORES, MitreAttack_MODIFY_AUTHENTICATION_PROCESS, MitreAttack_PLUGGABLE_AUTHENTICATION_MODULES, MitreAttack_MULTI_FACTOR_AUTHENTICATION, MitreAttack_IMPAIR_DEFENSES, MitreAttack_DISABLE_OR_MODIFY_TOOLS, MitreAttack_INDICATOR_BLOCKING, MitreAttack_DISABLE_OR_MODIFY_LINUX_AUDIT_SYSTEM, MitreAttack_HIDE_ARTIFACTS, MitreAttack_HIDDEN_FILES_AND_DIRECTORIES, MitreAttack_HIDDEN_USERS, MitreAttack_EXFILTRATION_OVER_WEB_SERVICE, MitreAttack_EXFILTRATION_TO_CLOUD_STORAGE, MitreAttack_DYNAMIC_RESOLUTION, MitreAttack_LATERAL_TOOL_TRANSFER, MitreAttack_HIJACK_EXECUTION_FLOW, MitreAttack_HIJACK_EXECUTION_FLOW_DYNAMIC_LINKER_HIJACKING, MitreAttack_MODIFY_CLOUD_COMPUTE_INFRASTRUCTURE, MitreAttack_CREATE_SNAPSHOT, MitreAttack_CLOUD_INFRASTRUCTURE_DISCOVERY, MitreAttack_DEVELOP_CAPABILITIES, MitreAttack_DEVELOP_CAPABILITIES_MALWARE, MitreAttack_OBTAIN_CAPABILITIES, MitreAttack_OBTAIN_CAPABILITIES_MALWARE, MitreAttack_OBTAIN_CAPABILITIES_VULNERABILITIES, MitreAttack_ACTIVE_SCANNING, MitreAttack_SCANNING_IP_BLOCKS, MitreAttack_STAGE_CAPABILITIES, MitreAttack_UPLOAD_MALWARE, MitreAttack_CONTAINER_ADMINISTRATION_COMMAND, MitreAttack_DEPLOY_CONTAINER, MitreAttack_ESCAPE_TO_HOST, MitreAttack_CONTAINER_AND_RESOURCE_DISCOVERY, MitreAttack_REFLECTIVE_CODE_LOADING, MitreAttack_STEAL_OR_FORGE_AUTHENTICATION_CERTIFICATES, MitreAttack_FINANCIAL_THEFT
const (
// Unspecified value.
MitreAttack_TECHNIQUE_UNSPECIFIED MitreAttack_Technique = 0
// T1001
MitreAttack_DATA_OBFUSCATION MitreAttack_Technique = 70
// T1001.002
MitreAttack_DATA_OBFUSCATION_STEGANOGRAPHY MitreAttack_Technique = 71
// T1003
MitreAttack_OS_CREDENTIAL_DUMPING MitreAttack_Technique = 114
// T1003.007
MitreAttack_OS_CREDENTIAL_DUMPING_PROC_FILESYSTEM MitreAttack_Technique = 115
// T1003.008
MitreAttack_OS_CREDENTIAL_DUMPING_ETC_PASSWORD_AND_ETC_SHADOW MitreAttack_Technique = 122
// T1005
MitreAttack_DATA_FROM_LOCAL_SYSTEM MitreAttack_Technique = 117
// T1020
MitreAttack_AUTOMATED_EXFILTRATION MitreAttack_Technique = 68
// T1027
MitreAttack_OBFUSCATED_FILES_OR_INFO MitreAttack_Technique = 72
// T1027.003
MitreAttack_STEGANOGRAPHY MitreAttack_Technique = 73
// T1027.004
MitreAttack_COMPILE_AFTER_DELIVERY MitreAttack_Technique = 74
// T1027.010
MitreAttack_COMMAND_OBFUSCATION MitreAttack_Technique = 75
// T1029
MitreAttack_SCHEDULED_TRANSFER MitreAttack_Technique = 120
// T1033
MitreAttack_SYSTEM_OWNER_USER_DISCOVERY MitreAttack_Technique = 118
// T1036
MitreAttack_MASQUERADING MitreAttack_Technique = 49
// T1036.005
MitreAttack_MATCH_LEGITIMATE_NAME_OR_LOCATION MitreAttack_Technique = 50
// T1037
MitreAttack_BOOT_OR_LOGON_INITIALIZATION_SCRIPTS MitreAttack_Technique = 37
// T1037.005
MitreAttack_STARTUP_ITEMS MitreAttack_Technique = 38
// T1046
MitreAttack_NETWORK_SERVICE_DISCOVERY MitreAttack_Technique = 32
// T1053
MitreAttack_SCHEDULED_TASK_JOB MitreAttack_Technique = 89
// T1053.003
MitreAttack_SCHEDULED_TASK_JOB_CRON MitreAttack_Technique = 119
// T1053.007
MitreAttack_CONTAINER_ORCHESTRATION_JOB MitreAttack_Technique = 90
// T1055
MitreAttack_PROCESS_INJECTION MitreAttack_Technique = 93
// T1056
MitreAttack_INPUT_CAPTURE MitreAttack_Technique = 103
// T1056.001
MitreAttack_INPUT_CAPTURE_KEYLOGGING MitreAttack_Technique = 104
// T1057
MitreAttack_PROCESS_DISCOVERY MitreAttack_Technique = 56
// T1059
MitreAttack_COMMAND_AND_SCRIPTING_INTERPRETER MitreAttack_Technique = 6
// T1059.004
MitreAttack_UNIX_SHELL MitreAttack_Technique = 7
// T1059.006
MitreAttack_PYTHON MitreAttack_Technique = 59
// T1068
MitreAttack_EXPLOITATION_FOR_PRIVILEGE_ESCALATION MitreAttack_Technique = 63
// T1069
MitreAttack_PERMISSION_GROUPS_DISCOVERY MitreAttack_Technique = 18
// T1069.003
MitreAttack_CLOUD_GROUPS MitreAttack_Technique = 19
// T1070
MitreAttack_INDICATOR_REMOVAL MitreAttack_Technique = 123
// T1070.002
MitreAttack_INDICATOR_REMOVAL_CLEAR_LINUX_OR_MAC_SYSTEM_LOGS MitreAttack_Technique = 124
// T1070.003
MitreAttack_INDICATOR_REMOVAL_CLEAR_COMMAND_HISTORY MitreAttack_Technique = 125
// T1070.004
MitreAttack_INDICATOR_REMOVAL_FILE_DELETION MitreAttack_Technique = 64
// T1070.006
MitreAttack_INDICATOR_REMOVAL_TIMESTOMP MitreAttack_Technique = 128
// T1070.008
MitreAttack_INDICATOR_REMOVAL_CLEAR_MAILBOX_DATA MitreAttack_Technique = 126
// T1071
MitreAttack_APPLICATION_LAYER_PROTOCOL MitreAttack_Technique = 45
// T1071.004
MitreAttack_DNS MitreAttack_Technique = 46
// T1072
MitreAttack_SOFTWARE_DEPLOYMENT_TOOLS MitreAttack_Technique = 47
// T1078
MitreAttack_VALID_ACCOUNTS MitreAttack_Technique = 14
// T1078.001
MitreAttack_DEFAULT_ACCOUNTS MitreAttack_Technique = 35
// T1078.003
MitreAttack_LOCAL_ACCOUNTS MitreAttack_Technique = 15
// T1078.004
MitreAttack_CLOUD_ACCOUNTS MitreAttack_Technique = 16
// T1083
MitreAttack_FILE_AND_DIRECTORY_DISCOVERY MitreAttack_Technique = 121
// T1087.001
MitreAttack_ACCOUNT_DISCOVERY_LOCAL_ACCOUNT MitreAttack_Technique = 116
// T1090
MitreAttack_PROXY MitreAttack_Technique = 9
// T1090.002
MitreAttack_EXTERNAL_PROXY MitreAttack_Technique = 10
// T1090.003
MitreAttack_MULTI_HOP_PROXY MitreAttack_Technique = 11
// T1098
MitreAttack_ACCOUNT_MANIPULATION MitreAttack_Technique = 22
// T1098.001
MitreAttack_ADDITIONAL_CLOUD_CREDENTIALS MitreAttack_Technique = 40
// T1098.003
MitreAttack_ADDITIONAL_CLOUD_ROLES MitreAttack_Technique = 67
// T1098.004
MitreAttack_SSH_AUTHORIZED_KEYS MitreAttack_Technique = 23
// T1098.006
MitreAttack_ADDITIONAL_CONTAINER_CLUSTER_ROLES MitreAttack_Technique = 58
// T1104
MitreAttack_MULTI_STAGE_CHANNELS MitreAttack_Technique = 76
// T1105
MitreAttack_INGRESS_TOOL_TRANSFER MitreAttack_Technique = 3
// T1106
MitreAttack_NATIVE_API MitreAttack_Technique = 4
// T1110
MitreAttack_BRUTE_FORCE MitreAttack_Technique = 44
// T1119
MitreAttack_AUTOMATED_COLLECTION MitreAttack_Technique = 94
// T1129
MitreAttack_SHARED_MODULES MitreAttack_Technique = 5
// T1132
MitreAttack_DATA_ENCODING MitreAttack_Technique = 77
// T1132.001
MitreAttack_STANDARD_ENCODING MitreAttack_Technique = 78
// T1134
MitreAttack_ACCESS_TOKEN_MANIPULATION MitreAttack_Technique = 33
// T1134.001
MitreAttack_TOKEN_IMPERSONATION_OR_THEFT MitreAttack_Technique = 39
// T1136
MitreAttack_CREATE_ACCOUNT MitreAttack_Technique = 79
// T1136.001
MitreAttack_LOCAL_ACCOUNT MitreAttack_Technique = 80
// T1140
MitreAttack_DEOBFUSCATE_DECODE_FILES_OR_INFO MitreAttack_Technique = 95
// T1190
MitreAttack_EXPLOIT_PUBLIC_FACING_APPLICATION MitreAttack_Technique = 27
// T1195
MitreAttack_SUPPLY_CHAIN_COMPROMISE MitreAttack_Technique = 129
// T1195.001
MitreAttack_COMPROMISE_SOFTWARE_DEPENDENCIES_AND_DEVELOPMENT_TOOLS MitreAttack_Technique = 130
// T1203
MitreAttack_EXPLOITATION_FOR_CLIENT_EXECUTION MitreAttack_Technique = 134
// T1204
MitreAttack_USER_EXECUTION MitreAttack_Technique = 69
// T1222.002
MitreAttack_LINUX_AND_MAC_FILE_AND_DIRECTORY_PERMISSIONS_MODIFICATION MitreAttack_Technique = 135
// T1484
MitreAttack_DOMAIN_POLICY_MODIFICATION MitreAttack_Technique = 30
// T1485
MitreAttack_DATA_DESTRUCTION MitreAttack_Technique = 29
// T1486
MitreAttack_DATA_ENCRYPTED_FOR_IMPACT MitreAttack_Technique = 132
// T1489
MitreAttack_SERVICE_STOP MitreAttack_Technique = 52
// T1490
MitreAttack_INHIBIT_SYSTEM_RECOVERY MitreAttack_Technique = 36
// T1495
MitreAttack_FIRMWARE_CORRUPTION MitreAttack_Technique = 81
// T1496
MitreAttack_RESOURCE_HIJACKING MitreAttack_Technique = 8
// T1498
MitreAttack_NETWORK_DENIAL_OF_SERVICE MitreAttack_Technique = 17
// T1526
MitreAttack_CLOUD_SERVICE_DISCOVERY MitreAttack_Technique = 48
// T1528
MitreAttack_STEAL_APPLICATION_ACCESS_TOKEN MitreAttack_Technique = 42
// T1531
MitreAttack_ACCOUNT_ACCESS_REMOVAL MitreAttack_Technique = 51
// T1537
MitreAttack_TRANSFER_DATA_TO_CLOUD_ACCOUNT MitreAttack_Technique = 91
// T1539
MitreAttack_STEAL_WEB_SESSION_COOKIE MitreAttack_Technique = 25
// T1543
MitreAttack_CREATE_OR_MODIFY_SYSTEM_PROCESS MitreAttack_Technique = 24
// T1546
MitreAttack_EVENT_TRIGGERED_EXECUTION MitreAttack_Technique = 65
// T1547
MitreAttack_BOOT_OR_LOGON_AUTOSTART_EXECUTION MitreAttack_Technique = 82
// T1547.006
MitreAttack_KERNEL_MODULES_AND_EXTENSIONS MitreAttack_Technique = 83
// T1547.009
MitreAttack_SHORTCUT_MODIFICATION MitreAttack_Technique = 127
// T1548
MitreAttack_ABUSE_ELEVATION_CONTROL_MECHANISM MitreAttack_Technique = 34
// T1548.001
MitreAttack_ABUSE_ELEVATION_CONTROL_MECHANISM_SETUID_AND_SETGID MitreAttack_Technique = 136
// T1548.003
MitreAttack_ABUSE_ELEVATION_CONTROL_MECHANISM_SUDO_AND_SUDO_CACHING MitreAttack_Technique = 109
// T1552
MitreAttack_UNSECURED_CREDENTIALS MitreAttack_Technique = 13
// T1552.001
MitreAttack_CREDENTIALS_IN_FILES MitreAttack_Technique = 105
// T1552.003
MitreAttack_BASH_HISTORY MitreAttack_Technique = 96
// T1552.004
MitreAttack_PRIVATE_KEYS MitreAttack_Technique = 97
// T1553
MitreAttack_SUBVERT_TRUST_CONTROL MitreAttack_Technique = 106
// T1553.004
MitreAttack_INSTALL_ROOT_CERTIFICATE MitreAttack_Technique = 107
// T1554
MitreAttack_COMPROMISE_HOST_SOFTWARE_BINARY MitreAttack_Technique = 84
// T1555
MitreAttack_CREDENTIALS_FROM_PASSWORD_STORES MitreAttack_Technique = 98
// T1556
MitreAttack_MODIFY_AUTHENTICATION_PROCESS MitreAttack_Technique = 28
// T1556.003
MitreAttack_PLUGGABLE_AUTHENTICATION_MODULES MitreAttack_Technique = 108
// T1556.006
MitreAttack_MULTI_FACTOR_AUTHENTICATION MitreAttack_Technique = 137
// T1562
MitreAttack_IMPAIR_DEFENSES MitreAttack_Technique = 31
// T1562.001
MitreAttack_DISABLE_OR_MODIFY_TOOLS MitreAttack_Technique = 55
// T1562.006
MitreAttack_INDICATOR_BLOCKING MitreAttack_Technique = 110
// T1562.012
MitreAttack_DISABLE_OR_MODIFY_LINUX_AUDIT_SYSTEM MitreAttack_Technique = 111
// T1564
MitreAttack_HIDE_ARTIFACTS MitreAttack_Technique = 85
// T1564.001
MitreAttack_HIDDEN_FILES_AND_DIRECTORIES MitreAttack_Technique = 86
// T1564.002
MitreAttack_HIDDEN_USERS MitreAttack_Technique = 87
// T1567
MitreAttack_EXFILTRATION_OVER_WEB_SERVICE MitreAttack_Technique = 20
// T1567.002
MitreAttack_EXFILTRATION_TO_CLOUD_STORAGE MitreAttack_Technique = 21
// T1568
MitreAttack_DYNAMIC_RESOLUTION MitreAttack_Technique = 12
// T1570
MitreAttack_LATERAL_TOOL_TRANSFER MitreAttack_Technique = 41
// T1574
MitreAttack_HIJACK_EXECUTION_FLOW MitreAttack_Technique = 112
// T1574.006
MitreAttack_HIJACK_EXECUTION_FLOW_DYNAMIC_LINKER_HIJACKING MitreAttack_Technique = 113
// T1578
MitreAttack_MODIFY_CLOUD_COMPUTE_INFRASTRUCTURE MitreAttack_Technique = 26
// T1578.001
MitreAttack_CREATE_SNAPSHOT MitreAttack_Technique = 54
// T1580
MitreAttack_CLOUD_INFRASTRUCTURE_DISCOVERY MitreAttack_Technique = 53
// T1587
MitreAttack_DEVELOP_CAPABILITIES MitreAttack_Technique = 99
// T1587.001
MitreAttack_DEVELOP_CAPABILITIES_MALWARE MitreAttack_Technique = 100
// T1588
MitreAttack_OBTAIN_CAPABILITIES MitreAttack_Technique = 43
// T1588.001
MitreAttack_OBTAIN_CAPABILITIES_MALWARE MitreAttack_Technique = 101
// T1588.006
MitreAttack_OBTAIN_CAPABILITIES_VULNERABILITIES MitreAttack_Technique = 133
// T1595
MitreAttack_ACTIVE_SCANNING MitreAttack_Technique = 1
// T1595.001
MitreAttack_SCANNING_IP_BLOCKS MitreAttack_Technique = 2
// T1608
MitreAttack_STAGE_CAPABILITIES MitreAttack_Technique = 88
// T1608.001
MitreAttack_UPLOAD_MALWARE MitreAttack_Technique = 102
// T1609
MitreAttack_CONTAINER_ADMINISTRATION_COMMAND MitreAttack_Technique = 60
// T1610
MitreAttack_DEPLOY_CONTAINER MitreAttack_Technique = 66
// T1611
MitreAttack_ESCAPE_TO_HOST MitreAttack_Technique = 61
// T1613
MitreAttack_CONTAINER_AND_RESOURCE_DISCOVERY MitreAttack_Technique = 57
// T1620
MitreAttack_REFLECTIVE_CODE_LOADING MitreAttack_Technique = 92
// T1649
MitreAttack_STEAL_OR_FORGE_AUTHENTICATION_CERTIFICATES MitreAttack_Technique = 62
// T1657
MitreAttack_FINANCIAL_THEFT MitreAttack_Technique = 131
)func (MitreAttack_Technique) Descriptor
func (MitreAttack_Technique) Descriptor() protoreflect.EnumDescriptorfunc (MitreAttack_Technique) Enum
func (x MitreAttack_Technique) Enum() *MitreAttack_Techniquefunc (MitreAttack_Technique) EnumDescriptor
func (MitreAttack_Technique) EnumDescriptor() ([]byte, []int)Deprecated: Use MitreAttack_Technique.Descriptor instead.
func (MitreAttack_Technique) Number
func (x MitreAttack_Technique) Number() protoreflect.EnumNumberfunc (MitreAttack_Technique) String
func (x MitreAttack_Technique) String() stringfunc (MitreAttack_Technique) Type
func (MitreAttack_Technique) Type() protoreflect.EnumTypeMuteConfig
type MuteConfig struct {
// Identifier. This field will be ignored if provided on config creation. The
// following list shows some examples of the format:
//
// + `organizations/{organization}/muteConfigs/{mute_config}`
// +
// `organizations/{organization}locations/{location}//muteConfigs/{mute_config}`
// + `folders/{folder}/muteConfigs/{mute_config}`
// + `folders/{folder}/locations/{location}/muteConfigs/{mute_config}`
// + `projects/{project}/muteConfigs/{mute_config}`
// + `projects/{project}/locations/{location}/muteConfigs/{mute_config}`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// A description of the mute config.
Description string `protobuf:"bytes,2,opt,name=description,proto3" json:"description,omitempty"`
// Required. An expression that defines the filter to apply across
// create/update events of findings. While creating a filter string, be
// mindful of the scope in which the mute configuration is being created.
// E.g., If a filter contains project = X but is created under the project = Y
// scope, it might not match any findings.
//
// The following field and operator combinations are supported:
//
// * severity: `=`, `:`
// * category: `=`, `:`
// * resource.name: `=`, `:`
// * resource.project_name: `=`, `:`
// * resource.project_display_name: `=`, `:`
// * resource.folders.resource_folder: `=`, `:`
// * resource.parent_name: `=`, `:`
// * resource.parent_display_name: `=`, `:`
// * resource.type: `=`, `:`
// * finding_class: `=`, `:`
// * indicator.ip_addresses: `=`, `:`
// * indicator.domains: `=`, `:`
Filter string `protobuf:"bytes,3,opt,name=filter,proto3" json:"filter,omitempty"`
// Output only. The time at which the mute config was created.
// This field is set by the server and will be ignored if provided on config
// creation.
CreateTime *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
// Output only. The most recent time at which the mute config was updated.
// This field is set by the server and will be ignored if provided on config
// creation or update.
UpdateTime *timestamppb.Timestamp `protobuf:"bytes,5,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
// Output only. Email address of the user who last edited the mute config.
// This field is set by the server and will be ignored if provided on config
// creation or update.
MostRecentEditor string `protobuf:"bytes,6,opt,name=most_recent_editor,json=mostRecentEditor,proto3" json:"most_recent_editor,omitempty"`
// Required. The type of the mute config, which determines what type of mute
// state the config affects. Immutable after creation.
Type MuteConfig_MuteConfigType `protobuf:"varint,8,opt,name=type,proto3,enum=google.cloud.securitycenter.v2.MuteConfig_MuteConfigType" json:"type,omitempty"`
// Optional. The expiry of the mute config. Only applicable for dynamic
// configs. If the expiry is set, when the config expires, it is removed from
// all findings.
ExpiryTime *timestamppb.Timestamp `protobuf:"bytes,9,opt,name=expiry_time,json=expiryTime,proto3" json:"expiry_time,omitempty"`
// contains filtered or unexported fields
}A mute config is a Cloud SCC resource that contains the configuration to mute create/update events of findings.
func (*MuteConfig) Descriptor
func (*MuteConfig) Descriptor() ([]byte, []int)Deprecated: Use MuteConfig.ProtoReflect.Descriptor instead.
func (*MuteConfig) GetCreateTime
func (x *MuteConfig) GetCreateTime() *timestamppb.Timestampfunc (*MuteConfig) GetDescription
func (x *MuteConfig) GetDescription() stringfunc (*MuteConfig) GetExpiryTime
func (x *MuteConfig) GetExpiryTime() *timestamppb.Timestampfunc (*MuteConfig) GetFilter
func (x *MuteConfig) GetFilter() stringfunc (*MuteConfig) GetMostRecentEditor
func (x *MuteConfig) GetMostRecentEditor() stringfunc (*MuteConfig) GetName
func (x *MuteConfig) GetName() stringfunc (*MuteConfig) GetType
func (x *MuteConfig) GetType() MuteConfig_MuteConfigTypefunc (*MuteConfig) GetUpdateTime
func (x *MuteConfig) GetUpdateTime() *timestamppb.Timestampfunc (*MuteConfig) ProtoMessage
func (*MuteConfig) ProtoMessage()func (*MuteConfig) ProtoReflect
func (x *MuteConfig) ProtoReflect() protoreflect.Messagefunc (*MuteConfig) Reset
func (x *MuteConfig) Reset()func (*MuteConfig) String
func (x *MuteConfig) String() stringMuteConfig_MuteConfigType
type MuteConfig_MuteConfigType int32The type of MuteConfig.
MuteConfig_MUTE_CONFIG_TYPE_UNSPECIFIED, MuteConfig_STATIC, MuteConfig_DYNAMIC
const (
// Unused.
MuteConfig_MUTE_CONFIG_TYPE_UNSPECIFIED MuteConfig_MuteConfigType = 0
// A static mute config, which sets the static mute state of future matching
// findings to muted. Once the static mute state has been set, finding or
// config modifications will not affect the state.
MuteConfig_STATIC MuteConfig_MuteConfigType = 1
// A dynamic mute config, which is applied to existing and future matching
// findings, setting their dynamic mute state to "muted". If the config is
// updated or deleted, or a matching finding is updated, such that the
// finding doesn't match the config, the config will be removed from the
// finding, and the finding's dynamic mute state may become "unmuted"
// (unless other configs still match).
MuteConfig_DYNAMIC MuteConfig_MuteConfigType = 2
)func (MuteConfig_MuteConfigType) Descriptor
func (MuteConfig_MuteConfigType) Descriptor() protoreflect.EnumDescriptorfunc (MuteConfig_MuteConfigType) Enum
func (x MuteConfig_MuteConfigType) Enum() *MuteConfig_MuteConfigTypefunc (MuteConfig_MuteConfigType) EnumDescriptor
func (MuteConfig_MuteConfigType) EnumDescriptor() ([]byte, []int)Deprecated: Use MuteConfig_MuteConfigType.Descriptor instead.
func (MuteConfig_MuteConfigType) Number
func (x MuteConfig_MuteConfigType) Number() protoreflect.EnumNumberfunc (MuteConfig_MuteConfigType) String
func (x MuteConfig_MuteConfigType) String() stringfunc (MuteConfig_MuteConfigType) Type
func (MuteConfig_MuteConfigType) Type() protoreflect.EnumTypeNetwork
type Network struct {
// The name of the VPC network resource, for example,
// `//compute.googleapis.com/projects/my-project/global/networks/my-network`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Contains information about a VPC network associated with the finding.
func (*Network) Descriptor
Deprecated: Use Network.ProtoReflect.Descriptor instead.
func (*Network) GetName
func (*Network) ProtoMessage
func (*Network) ProtoMessage()func (*Network) ProtoReflect
func (x *Network) ProtoReflect() protoreflect.Messagefunc (*Network) Reset
func (x *Network) Reset()func (*Network) String
Notebook
type Notebook struct {
// The name of the notebook.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The source notebook service, for example, "Colab Enterprise".
Service string `protobuf:"bytes,2,opt,name=service,proto3" json:"service,omitempty"`
// The user ID of the latest author to modify the notebook.
LastAuthor string `protobuf:"bytes,3,opt,name=last_author,json=lastAuthor,proto3" json:"last_author,omitempty"`
// The most recent time the notebook was updated.
NotebookUpdateTime *timestamppb.Timestamp `protobuf:"bytes,4,opt,name=notebook_update_time,json=notebookUpdateTime,proto3" json:"notebook_update_time,omitempty"`
// contains filtered or unexported fields
}Represents a Jupyter notebook IPYNB file, such as a Colab Enterprise notebook file, that is associated with a finding.
func (*Notebook) Descriptor
Deprecated: Use Notebook.ProtoReflect.Descriptor instead.
func (*Notebook) GetLastAuthor
func (*Notebook) GetName
func (*Notebook) GetNotebookUpdateTime
func (x *Notebook) GetNotebookUpdateTime() *timestamppb.Timestampfunc (*Notebook) GetService
func (*Notebook) ProtoMessage
func (*Notebook) ProtoMessage()func (*Notebook) ProtoReflect
func (x *Notebook) ProtoReflect() protoreflect.Messagefunc (*Notebook) Reset
func (x *Notebook) Reset()func (*Notebook) String
NotificationConfig
type NotificationConfig struct {
// Identifier. The relative resource name of this notification config. See:
// https://cloud.google.com/apis/design/resource_names#relative_resource_name
// The following list shows some examples:
// +
// `organizations/{organization_id}/locations/{location_id}/notificationConfigs/notify_public_bucket`
// +
// `folders/{folder_id}/locations/{location_id}/notificationConfigs/notify_public_bucket`
// +
// `projects/{project_id}/locations/{location_id}/notificationConfigs/notify_public_bucket`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The description of the notification config (max of 1024 characters).
Description string `protobuf:"bytes,2,opt,name=description,proto3" json:"description,omitempty"`
// The Pub/Sub topic to send notifications to. Its format is
// "projects/[project_id]/topics/[topic]".
PubsubTopic string `protobuf:"bytes,3,opt,name=pubsub_topic,json=pubsubTopic,proto3" json:"pubsub_topic,omitempty"`
// Output only. The service account that needs "pubsub.topics.publish"
// permission to publish to the Pub/Sub topic.
ServiceAccount string `protobuf:"bytes,4,opt,name=service_account,json=serviceAccount,proto3" json:"service_account,omitempty"`
// The config for triggering notifications.
//
// Types that are assignable to NotifyConfig:
//
// *NotificationConfig_StreamingConfig_
NotifyConfig isNotificationConfig_NotifyConfig `protobuf_oneof:"notify_config"`
// Output only. The timestamp of when the notification config was last
// updated.
UpdateTime *timestamppb.Timestamp `protobuf:"bytes,7,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
// contains filtered or unexported fields
}Cloud Security Command Center (Cloud SCC) notification configs.
A notification config is a Cloud SCC resource that contains the configuration to send notifications for create/update events of findings, assets and etc.
func (*NotificationConfig) Descriptor
func (*NotificationConfig) Descriptor() ([]byte, []int)Deprecated: Use NotificationConfig.ProtoReflect.Descriptor instead.
func (*NotificationConfig) GetDescription
func (x *NotificationConfig) GetDescription() stringfunc (*NotificationConfig) GetName
func (x *NotificationConfig) GetName() stringfunc (*NotificationConfig) GetNotifyConfig
func (m *NotificationConfig) GetNotifyConfig() isNotificationConfig_NotifyConfigfunc (*NotificationConfig) GetPubsubTopic
func (x *NotificationConfig) GetPubsubTopic() stringfunc (*NotificationConfig) GetServiceAccount
func (x *NotificationConfig) GetServiceAccount() stringfunc (*NotificationConfig) GetStreamingConfig
func (x *NotificationConfig) GetStreamingConfig() *NotificationConfig_StreamingConfigfunc (*NotificationConfig) GetUpdateTime
func (x *NotificationConfig) GetUpdateTime() *timestamppb.Timestampfunc (*NotificationConfig) ProtoMessage
func (*NotificationConfig) ProtoMessage()func (*NotificationConfig) ProtoReflect
func (x *NotificationConfig) ProtoReflect() protoreflect.Messagefunc (*NotificationConfig) Reset
func (x *NotificationConfig) Reset()func (*NotificationConfig) String
func (x *NotificationConfig) String() stringNotificationConfig_StreamingConfig
type NotificationConfig_StreamingConfig struct {
// Expression that defines the filter to apply across create/update events
// of assets or findings as specified by the event type. The expression is a
// list of zero or more restrictions combined via logical operators `AND`
// and `OR`. Parentheses are supported, and `OR` has higher precedence than
// `AND`.
//
// Restrictions have the form `The config for streaming-based notifications, which send each event as soon as it is detected.
func (*NotificationConfig_StreamingConfig) Descriptor
func (*NotificationConfig_StreamingConfig) Descriptor() ([]byte, []int)Deprecated: Use NotificationConfig_StreamingConfig.ProtoReflect.Descriptor instead.
func (*NotificationConfig_StreamingConfig) GetFilter
func (x *NotificationConfig_StreamingConfig) GetFilter() stringfunc (*NotificationConfig_StreamingConfig) ProtoMessage
func (*NotificationConfig_StreamingConfig) ProtoMessage()func (*NotificationConfig_StreamingConfig) ProtoReflect
func (x *NotificationConfig_StreamingConfig) ProtoReflect() protoreflect.Messagefunc (*NotificationConfig_StreamingConfig) Reset
func (x *NotificationConfig_StreamingConfig) Reset()func (*NotificationConfig_StreamingConfig) String
func (x *NotificationConfig_StreamingConfig) String() stringNotificationConfig_StreamingConfig_
type NotificationConfig_StreamingConfig_ struct {
// The config for triggering streaming-based notifications.
StreamingConfig *NotificationConfig_StreamingConfig `protobuf:"bytes,5,opt,name=streaming_config,json=streamingConfig,proto3,oneof"`
}NotificationMessage
type NotificationMessage struct {
// Name of the notification config that generated current notification.
NotificationConfigName string `protobuf:"bytes,1,opt,name=notification_config_name,json=notificationConfigName,proto3" json:"notification_config_name,omitempty"`
// Notification Event.
//
// Types that are assignable to Event:
//
// *NotificationMessage_Finding
Event isNotificationMessage_Event `protobuf_oneof:"event"`
// The Cloud resource tied to this notification's Finding.
Resource *Resource `protobuf:"bytes,3,opt,name=resource,proto3" json:"resource,omitempty"`
// contains filtered or unexported fields
}Cloud SCC's Notification
func (*NotificationMessage) Descriptor
func (*NotificationMessage) Descriptor() ([]byte, []int)Deprecated: Use NotificationMessage.ProtoReflect.Descriptor instead.
func (*NotificationMessage) GetEvent
func (m *NotificationMessage) GetEvent() isNotificationMessage_Eventfunc (*NotificationMessage) GetFinding
func (x *NotificationMessage) GetFinding() *Findingfunc (*NotificationMessage) GetNotificationConfigName
func (x *NotificationMessage) GetNotificationConfigName() stringfunc (*NotificationMessage) GetResource
func (x *NotificationMessage) GetResource() *Resourcefunc (*NotificationMessage) ProtoMessage
func (*NotificationMessage) ProtoMessage()func (*NotificationMessage) ProtoReflect
func (x *NotificationMessage) ProtoReflect() protoreflect.Messagefunc (*NotificationMessage) Reset
func (x *NotificationMessage) Reset()func (*NotificationMessage) String
func (x *NotificationMessage) String() stringNotificationMessage_Finding
type NotificationMessage_Finding struct {
// If it's a Finding based notification config, this field will be
// populated.
Finding *Finding `protobuf:"bytes,2,opt,name=finding,proto3,oneof"`
}OrgPolicy
type OrgPolicy struct {
// Identifier. The resource name of the org policy.
// Example:
// "organizations/{organization_id}/policies/{constraint_name}"
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Contains information about the org policies associated with the finding.
func (*OrgPolicy) Descriptor
Deprecated: Use OrgPolicy.ProtoReflect.Descriptor instead.
func (*OrgPolicy) GetName
func (*OrgPolicy) ProtoMessage
func (*OrgPolicy) ProtoMessage()func (*OrgPolicy) ProtoReflect
func (x *OrgPolicy) ProtoReflect() protoreflect.Messagefunc (*OrgPolicy) Reset
func (x *OrgPolicy) Reset()func (*OrgPolicy) String
Package
type Package struct {
// The name of the package where the vulnerability was detected.
PackageName string `protobuf:"bytes,1,opt,name=package_name,json=packageName,proto3" json:"package_name,omitempty"`
// The CPE URI where the vulnerability was detected.
CpeUri string `protobuf:"bytes,2,opt,name=cpe_uri,json=cpeUri,proto3" json:"cpe_uri,omitempty"`
// Type of package, for example, os, maven, or go.
PackageType string `protobuf:"bytes,3,opt,name=package_type,json=packageType,proto3" json:"package_type,omitempty"`
// The version of the package.
PackageVersion string `protobuf:"bytes,4,opt,name=package_version,json=packageVersion,proto3" json:"package_version,omitempty"`
// contains filtered or unexported fields
}Package is a generic definition of a package.
func (*Package) Descriptor
Deprecated: Use Package.ProtoReflect.Descriptor instead.
func (*Package) GetCpeUri
func (*Package) GetPackageName
func (*Package) GetPackageType
func (*Package) GetPackageVersion
func (*Package) ProtoMessage
func (*Package) ProtoMessage()func (*Package) ProtoReflect
func (x *Package) ProtoReflect() protoreflect.Messagefunc (*Package) Reset
func (x *Package) Reset()func (*Package) String
Process
type Process struct {
// The process name, as displayed in utilities like `top` and `ps`. This name
// can be accessed through `/proc/[pid]/comm` and changed with
// `prctl(PR_SET_NAME)`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// File information for the process executable.
Binary *File `protobuf:"bytes,2,opt,name=binary,proto3" json:"binary,omitempty"`
// File information for libraries loaded by the process.
Libraries []*File `protobuf:"bytes,3,rep,name=libraries,proto3" json:"libraries,omitempty"`
// When the process represents the invocation of a script, `binary` provides
// information about the interpreter, while `script` provides information
// about the script file provided to the interpreter.
Script *File `protobuf:"bytes,4,opt,name=script,proto3" json:"script,omitempty"`
// Process arguments as JSON encoded strings.
Args []string `protobuf:"bytes,5,rep,name=args,proto3" json:"args,omitempty"`
// True if `args` is incomplete.
ArgumentsTruncated bool `protobuf:"varint,6,opt,name=arguments_truncated,json=argumentsTruncated,proto3" json:"arguments_truncated,omitempty"`
// Process environment variables.
EnvVariables []*EnvironmentVariable `protobuf:"bytes,7,rep,name=env_variables,json=envVariables,proto3" json:"env_variables,omitempty"`
// True if `env_variables` is incomplete.
EnvVariablesTruncated bool `protobuf:"varint,8,opt,name=env_variables_truncated,json=envVariablesTruncated,proto3" json:"env_variables_truncated,omitempty"`
// The process ID.
Pid int64 `protobuf:"varint,9,opt,name=pid,proto3" json:"pid,omitempty"`
// The parent process ID.
ParentPid int64 `protobuf:"varint,10,opt,name=parent_pid,json=parentPid,proto3" json:"parent_pid,omitempty"`
// The ID of the user that executed the process. E.g. If this is the root user
// this will always be 0.
UserId int64 `protobuf:"varint,11,opt,name=user_id,json=userId,proto3" json:"user_id,omitempty"`
// contains filtered or unexported fields
}Represents an operating system process.
func (*Process) Descriptor
Deprecated: Use Process.ProtoReflect.Descriptor instead.
func (*Process) GetArgs
func (*Process) GetArgumentsTruncated
func (*Process) GetBinary
func (*Process) GetEnvVariables
func (x *Process) GetEnvVariables() []*EnvironmentVariablefunc (*Process) GetEnvVariablesTruncated
func (*Process) GetLibraries
func (*Process) GetName
func (*Process) GetParentPid
func (*Process) GetPid
func (*Process) GetScript
func (*Process) GetUserId
func (*Process) ProtoMessage
func (*Process) ProtoMessage()func (*Process) ProtoReflect
func (x *Process) ProtoReflect() protoreflect.Messagefunc (*Process) Reset
func (x *Process) Reset()func (*Process) String
Reference
type Reference struct {
// Source of the reference e.g. NVD
Source string `protobuf:"bytes,1,opt,name=source,proto3" json:"source,omitempty"`
// Uri for the mentioned source e.g.
// https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34527.
Uri string `protobuf:"bytes,2,opt,name=uri,proto3" json:"uri,omitempty"`
// contains filtered or unexported fields
}Additional Links
func (*Reference) Descriptor
Deprecated: Use Reference.ProtoReflect.Descriptor instead.
func (*Reference) GetSource
func (*Reference) GetUri
func (*Reference) ProtoMessage
func (*Reference) ProtoMessage()func (*Reference) ProtoReflect
func (x *Reference) ProtoReflect() protoreflect.Messagefunc (*Reference) Reset
func (x *Reference) Reset()func (*Reference) String
Requests
type Requests struct {
// For 'Increasing deny ratio', the ratio is the denied traffic divided by the
// allowed traffic. For 'Allowed traffic spike', the ratio is the allowed
// traffic in the short term divided by allowed traffic in the long term.
Ratio float64 `protobuf:"fixed64,1,opt,name=ratio,proto3" json:"ratio,omitempty"`
// Allowed RPS (requests per second) in the short term.
ShortTermAllowed int32 `protobuf:"varint,2,opt,name=short_term_allowed,json=shortTermAllowed,proto3" json:"short_term_allowed,omitempty"`
// Allowed RPS (requests per second) over the long term.
LongTermAllowed int32 `protobuf:"varint,3,opt,name=long_term_allowed,json=longTermAllowed,proto3" json:"long_term_allowed,omitempty"`
// Denied RPS (requests per second) over the long term.
LongTermDenied int32 `protobuf:"varint,4,opt,name=long_term_denied,json=longTermDenied,proto3" json:"long_term_denied,omitempty"`
// contains filtered or unexported fields
}Information about the requests relevant to the finding.
func (*Requests) Descriptor
Deprecated: Use Requests.ProtoReflect.Descriptor instead.
func (*Requests) GetLongTermAllowed
func (*Requests) GetLongTermDenied
func (*Requests) GetRatio
func (*Requests) GetShortTermAllowed
func (*Requests) ProtoMessage
func (*Requests) ProtoMessage()func (*Requests) ProtoReflect
func (x *Requests) ProtoReflect() protoreflect.Messagefunc (*Requests) Reset
func (x *Requests) Reset()func (*Requests) String
Resource
type Resource struct {
// The full resource name of the resource. See:
// https://cloud.google.com/apis/design/resource_names#full_resource_name
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The human readable name of the resource.
DisplayName string `protobuf:"bytes,2,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
// The full resource type of the resource.
Type string `protobuf:"bytes,3,opt,name=type,proto3" json:"type,omitempty"`
// Indicates which cloud provider the finding is from.
CloudProvider CloudProvider `protobuf:"varint,4,opt,name=cloud_provider,json=cloudProvider,proto3,enum=google.cloud.securitycenter.v2.CloudProvider" json:"cloud_provider,omitempty"`
// The service or resource provider associated with the resource.
Service string `protobuf:"bytes,5,opt,name=service,proto3" json:"service,omitempty"`
// The region or location of the service (if applicable).
Location string `protobuf:"bytes,6,opt,name=location,proto3" json:"location,omitempty"`
// The metadata associated with the cloud provider.
//
// Types that are assignable to CloudProviderMetadata:
//
// *Resource_GcpMetadata
// *Resource_AwsMetadata
// *Resource_AzureMetadata
CloudProviderMetadata isResource_CloudProviderMetadata `protobuf_oneof:"cloud_provider_metadata"`
// Provides the path to the resource within the resource hierarchy.
ResourcePath *ResourcePath `protobuf:"bytes,10,opt,name=resource_path,json=resourcePath,proto3" json:"resource_path,omitempty"`
// A string representation of the resource path.
// For Google Cloud, it has the format of
// `organizations/{organization_id}/folders/{folder_id}/folders/{folder_id}/projects/{project_id}`
// where there can be any number of folders.
// For AWS, it has the format of
// `org/{organization_id}/ou/{organizational_unit_id}/ou/{organizational_unit_id}/account/{account_id}`
// where there can be any number of organizational units.
// For Azure, it has the format of
// `mg/{management_group_id}/mg/{management_group_id}/subscription/{subscription_id}/rg/{resource_group_name}`
// where there can be any number of management groups.
ResourcePathString string `protobuf:"bytes,11,opt,name=resource_path_string,json=resourcePathString,proto3" json:"resource_path_string,omitempty"`
// contains filtered or unexported fields
}Information related to the Google Cloud resource.
func (*Resource) Descriptor
Deprecated: Use Resource.ProtoReflect.Descriptor instead.
func (*Resource) GetAwsMetadata
func (x *Resource) GetAwsMetadata() *AwsMetadatafunc (*Resource) GetAzureMetadata
func (x *Resource) GetAzureMetadata() *AzureMetadatafunc (*Resource) GetCloudProvider
func (x *Resource) GetCloudProvider() CloudProviderfunc (*Resource) GetCloudProviderMetadata
func (m *Resource) GetCloudProviderMetadata() isResource_CloudProviderMetadatafunc (*Resource) GetDisplayName
func (*Resource) GetGcpMetadata
func (x *Resource) GetGcpMetadata() *GcpMetadatafunc (*Resource) GetLocation
func (*Resource) GetName
func (*Resource) GetResourcePath
func (x *Resource) GetResourcePath() *ResourcePathfunc (*Resource) GetResourcePathString
func (*Resource) GetService
func (*Resource) GetType
func (*Resource) ProtoMessage
func (*Resource) ProtoMessage()func (*Resource) ProtoReflect
func (x *Resource) ProtoReflect() protoreflect.Messagefunc (*Resource) Reset
func (x *Resource) Reset()func (*Resource) String
ResourcePath
type ResourcePath struct {
// The list of nodes that make the up resource path, ordered from lowest
// level to highest level.
Nodes []*ResourcePath_ResourcePathNode `protobuf:"bytes,1,rep,name=nodes,proto3" json:"nodes,omitempty"`
// contains filtered or unexported fields
}Represents the path of resources leading up to the resource this finding is about.
func (*ResourcePath) Descriptor
func (*ResourcePath) Descriptor() ([]byte, []int)Deprecated: Use ResourcePath.ProtoReflect.Descriptor instead.
func (*ResourcePath) GetNodes
func (x *ResourcePath) GetNodes() []*ResourcePath_ResourcePathNodefunc (*ResourcePath) ProtoMessage
func (*ResourcePath) ProtoMessage()func (*ResourcePath) ProtoReflect
func (x *ResourcePath) ProtoReflect() protoreflect.Messagefunc (*ResourcePath) Reset
func (x *ResourcePath) Reset()func (*ResourcePath) String
func (x *ResourcePath) String() stringResourcePath_ResourcePathNode
type ResourcePath_ResourcePathNode struct {
// The type of resource this node represents.
NodeType ResourcePath_ResourcePathNodeType `protobuf:"varint,1,opt,name=node_type,json=nodeType,proto3,enum=google.cloud.securitycenter.v2.ResourcePath_ResourcePathNodeType" json:"node_type,omitempty"`
// The ID of the resource this node represents.
Id string `protobuf:"bytes,2,opt,name=id,proto3" json:"id,omitempty"`
// The display name of the resource this node represents.
DisplayName string `protobuf:"bytes,3,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
// contains filtered or unexported fields
}A node within the resource path. Each node represents a resource within the resource hierarchy.
func (*ResourcePath_ResourcePathNode) Descriptor
func (*ResourcePath_ResourcePathNode) Descriptor() ([]byte, []int)Deprecated: Use ResourcePath_ResourcePathNode.ProtoReflect.Descriptor instead.
func (*ResourcePath_ResourcePathNode) GetDisplayName
func (x *ResourcePath_ResourcePathNode) GetDisplayName() stringfunc (*ResourcePath_ResourcePathNode) GetId
func (x *ResourcePath_ResourcePathNode) GetId() stringfunc (*ResourcePath_ResourcePathNode) GetNodeType
func (x *ResourcePath_ResourcePathNode) GetNodeType() ResourcePath_ResourcePathNodeTypefunc (*ResourcePath_ResourcePathNode) ProtoMessage
func (*ResourcePath_ResourcePathNode) ProtoMessage()func (*ResourcePath_ResourcePathNode) ProtoReflect
func (x *ResourcePath_ResourcePathNode) ProtoReflect() protoreflect.Messagefunc (*ResourcePath_ResourcePathNode) Reset
func (x *ResourcePath_ResourcePathNode) Reset()func (*ResourcePath_ResourcePathNode) String
func (x *ResourcePath_ResourcePathNode) String() stringResourcePath_ResourcePathNodeType
type ResourcePath_ResourcePathNodeType int32The type of resource the node represents.
ResourcePath_RESOURCE_PATH_NODE_TYPE_UNSPECIFIED, ResourcePath_GCP_ORGANIZATION, ResourcePath_GCP_FOLDER, ResourcePath_GCP_PROJECT, ResourcePath_AWS_ORGANIZATION, ResourcePath_AWS_ORGANIZATIONAL_UNIT, ResourcePath_AWS_ACCOUNT, ResourcePath_AZURE_MANAGEMENT_GROUP, ResourcePath_AZURE_SUBSCRIPTION, ResourcePath_AZURE_RESOURCE_GROUP
const (
// Node type is unspecified.
ResourcePath_RESOURCE_PATH_NODE_TYPE_UNSPECIFIED ResourcePath_ResourcePathNodeType = 0
// The node represents a Google Cloud organization.
ResourcePath_GCP_ORGANIZATION ResourcePath_ResourcePathNodeType = 1
// The node represents a Google Cloud folder.
ResourcePath_GCP_FOLDER ResourcePath_ResourcePathNodeType = 2
// The node represents a Google Cloud project.
ResourcePath_GCP_PROJECT ResourcePath_ResourcePathNodeType = 3
// The node represents an AWS organization.
ResourcePath_AWS_ORGANIZATION ResourcePath_ResourcePathNodeType = 4
// The node represents an AWS organizational unit.
ResourcePath_AWS_ORGANIZATIONAL_UNIT ResourcePath_ResourcePathNodeType = 5
// The node represents an AWS account.
ResourcePath_AWS_ACCOUNT ResourcePath_ResourcePathNodeType = 6
// The node represents an Azure management group.
ResourcePath_AZURE_MANAGEMENT_GROUP ResourcePath_ResourcePathNodeType = 7
// The node represents an Azure subscription.
ResourcePath_AZURE_SUBSCRIPTION ResourcePath_ResourcePathNodeType = 8
// The node represents an Azure resource group.
ResourcePath_AZURE_RESOURCE_GROUP ResourcePath_ResourcePathNodeType = 9
)func (ResourcePath_ResourcePathNodeType) Descriptor
func (ResourcePath_ResourcePathNodeType) Descriptor() protoreflect.EnumDescriptorfunc (ResourcePath_ResourcePathNodeType) Enum
func (x ResourcePath_ResourcePathNodeType) Enum() *ResourcePath_ResourcePathNodeTypefunc (ResourcePath_ResourcePathNodeType) EnumDescriptor
func (ResourcePath_ResourcePathNodeType) EnumDescriptor() ([]byte, []int)Deprecated: Use ResourcePath_ResourcePathNodeType.Descriptor instead.
func (ResourcePath_ResourcePathNodeType) Number
func (x ResourcePath_ResourcePathNodeType) Number() protoreflect.EnumNumberfunc (ResourcePath_ResourcePathNodeType) String
func (x ResourcePath_ResourcePathNodeType) String() stringfunc (ResourcePath_ResourcePathNodeType) Type
func (ResourcePath_ResourcePathNodeType) Type() protoreflect.EnumTypeResourceValue
type ResourceValue int32Value enum to map to a resource
ResourceValue_RESOURCE_VALUE_UNSPECIFIED, ResourceValue_HIGH, ResourceValue_MEDIUM, ResourceValue_LOW, ResourceValue_NONE
const (
// Unspecific value
ResourceValue_RESOURCE_VALUE_UNSPECIFIED ResourceValue = 0
// High resource value
ResourceValue_HIGH ResourceValue = 1
// Medium resource value
ResourceValue_MEDIUM ResourceValue = 2
// Low resource value
ResourceValue_LOW ResourceValue = 3
// No resource value, e.g. ignore these resources
ResourceValue_NONE ResourceValue = 4
)func (ResourceValue) Descriptor
func (ResourceValue) Descriptor() protoreflect.EnumDescriptorfunc (ResourceValue) Enum
func (x ResourceValue) Enum() *ResourceValuefunc (ResourceValue) EnumDescriptor
func (ResourceValue) EnumDescriptor() ([]byte, []int)Deprecated: Use ResourceValue.Descriptor instead.
func (ResourceValue) Number
func (x ResourceValue) Number() protoreflect.EnumNumberfunc (ResourceValue) String
func (x ResourceValue) String() stringfunc (ResourceValue) Type
func (ResourceValue) Type() protoreflect.EnumTypeResourceValueConfig
type ResourceValueConfig struct {
// Identifier. Name for the resource value configuration
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Resource value level this expression represents
// Only required when there is no Sensitive Data Protection mapping in the
// request
ResourceValue ResourceValue `protobuf:"varint,2,opt,name=resource_value,json=resourceValue,proto3,enum=google.cloud.securitycenter.v2.ResourceValue" json:"resource_value,omitempty"`
// Tag values combined with `AND` to check against.
// For Google Cloud resources, they are tag value IDs in the form of
// "tagValues/123". Example: `[ "tagValues/123", "tagValues/456",
// "tagValues/789" ]`
// https://cloud.google.com/resource-manager/docs/tags/tags-creating-and-managing
TagValues []string `protobuf:"bytes,3,rep,name=tag_values,json=tagValues,proto3" json:"tag_values,omitempty"`
// Apply resource_value only to resources that match resource_type.
// resource_type will be checked with `AND` of other resources.
// For example, "storage.googleapis.com/Bucket" with resource_value "HIGH"
// will apply "HIGH" value only to "storage.googleapis.com/Bucket" resources.
ResourceType string `protobuf:"bytes,4,opt,name=resource_type,json=resourceType,proto3" json:"resource_type,omitempty"`
// Project or folder to scope this configuration to.
// For example, "project/456" would apply this configuration only to resources
// in "project/456" scope and will be checked with `AND` of other resources.
Scope string `protobuf:"bytes,5,opt,name=scope,proto3" json:"scope,omitempty"`
// List of resource labels to search for, evaluated with `AND`.
// For example, "resource_labels_selector": {"key": "value", "env": "prod"}
// will match resources with labels "key": "value" `AND` "env":
// "prod"
// https://cloud.google.com/resource-manager/docs/creating-managing-labels
ResourceLabelsSelector map[string]string `protobuf:"bytes,6,rep,name=resource_labels_selector,json=resourceLabelsSelector,proto3" json:"resource_labels_selector,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
// Description of the resource value configuration.
Description string `protobuf:"bytes,7,opt,name=description,proto3" json:"description,omitempty"`
// Output only. Timestamp this resource value configuration was created.
CreateTime *timestamppb.Timestamp `protobuf:"bytes,8,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
// Output only. Timestamp this resource value configuration was last updated.
UpdateTime *timestamppb.Timestamp `protobuf:"bytes,9,opt,name=update_time,json=updateTime,proto3" json:"update_time,omitempty"`
// Cloud provider this configuration applies to
CloudProvider CloudProvider `protobuf:"varint,10,opt,name=cloud_provider,json=cloudProvider,proto3,enum=google.cloud.securitycenter.v2.CloudProvider" json:"cloud_provider,omitempty"`
// A mapping of the sensitivity on Sensitive Data Protection finding to
// resource values. This mapping can only be used in combination with a
// resource_type that is related to BigQuery, e.g.
// "bigquery.googleapis.com/Dataset".
SensitiveDataProtectionMapping *ResourceValueConfig_SensitiveDataProtectionMapping `protobuf:"bytes,11,opt,name=sensitive_data_protection_mapping,json=sensitiveDataProtectionMapping,proto3" json:"sensitive_data_protection_mapping,omitempty"`
// contains filtered or unexported fields
}A resource value configuration (RVC) is a mapping configuration of user's resources to resource values. Used in Attack path simulations.
func (*ResourceValueConfig) Descriptor
func (*ResourceValueConfig) Descriptor() ([]byte, []int)Deprecated: Use ResourceValueConfig.ProtoReflect.Descriptor instead.
func (*ResourceValueConfig) GetCloudProvider
func (x *ResourceValueConfig) GetCloudProvider() CloudProviderfunc (*ResourceValueConfig) GetCreateTime
func (x *ResourceValueConfig) GetCreateTime() *timestamppb.Timestampfunc (*ResourceValueConfig) GetDescription
func (x *ResourceValueConfig) GetDescription() stringfunc (*ResourceValueConfig) GetName
func (x *ResourceValueConfig) GetName() stringfunc (*ResourceValueConfig) GetResourceLabelsSelector
func (x *ResourceValueConfig) GetResourceLabelsSelector() map[string]stringfunc (*ResourceValueConfig) GetResourceType
func (x *ResourceValueConfig) GetResourceType() stringfunc (*ResourceValueConfig) GetResourceValue
func (x *ResourceValueConfig) GetResourceValue() ResourceValuefunc (*ResourceValueConfig) GetScope
func (x *ResourceValueConfig) GetScope() stringfunc (*ResourceValueConfig) GetSensitiveDataProtectionMapping
func (x *ResourceValueConfig) GetSensitiveDataProtectionMapping() *ResourceValueConfig_SensitiveDataProtectionMappingfunc (*ResourceValueConfig) GetTagValues
func (x *ResourceValueConfig) GetTagValues() []stringfunc (*ResourceValueConfig) GetUpdateTime
func (x *ResourceValueConfig) GetUpdateTime() *timestamppb.Timestampfunc (*ResourceValueConfig) ProtoMessage
func (*ResourceValueConfig) ProtoMessage()func (*ResourceValueConfig) ProtoReflect
func (x *ResourceValueConfig) ProtoReflect() protoreflect.Messagefunc (*ResourceValueConfig) Reset
func (x *ResourceValueConfig) Reset()func (*ResourceValueConfig) String
func (x *ResourceValueConfig) String() stringResourceValueConfigMetadata
type ResourceValueConfigMetadata struct {
// Resource value config name
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// contains filtered or unexported fields
}Metadata about a ResourceValueConfig. For example, id and name.
func (*ResourceValueConfigMetadata) Descriptor
func (*ResourceValueConfigMetadata) Descriptor() ([]byte, []int)Deprecated: Use ResourceValueConfigMetadata.ProtoReflect.Descriptor instead.
func (*ResourceValueConfigMetadata) GetName
func (x *ResourceValueConfigMetadata) GetName() stringfunc (*ResourceValueConfigMetadata) ProtoMessage
func (*ResourceValueConfigMetadata) ProtoMessage()func (*ResourceValueConfigMetadata) ProtoReflect
func (x *ResourceValueConfigMetadata) ProtoReflect() protoreflect.Messagefunc (*ResourceValueConfigMetadata) Reset
func (x *ResourceValueConfigMetadata) Reset()func (*ResourceValueConfigMetadata) String
func (x *ResourceValueConfigMetadata) String() stringResourceValueConfig_SensitiveDataProtectionMapping
type ResourceValueConfig_SensitiveDataProtectionMapping struct {
// Resource value mapping for high-sensitivity Sensitive Data Protection
// findings
HighSensitivityMapping ResourceValue `protobuf:"varint,1,opt,name=high_sensitivity_mapping,json=highSensitivityMapping,proto3,enum=google.cloud.securitycenter.v2.ResourceValue" json:"high_sensitivity_mapping,omitempty"`
// Resource value mapping for medium-sensitivity Sensitive Data Protection
// findings
MediumSensitivityMapping ResourceValue `protobuf:"varint,2,opt,name=medium_sensitivity_mapping,json=mediumSensitivityMapping,proto3,enum=google.cloud.securitycenter.v2.ResourceValue" json:"medium_sensitivity_mapping,omitempty"`
// contains filtered or unexported fields
}Resource value mapping for Sensitive Data Protection findings If any of these mappings have a resource value that is not unspecified, the resource_value field will be ignored when reading this configuration.
func (*ResourceValueConfig_SensitiveDataProtectionMapping) Descriptor
func (*ResourceValueConfig_SensitiveDataProtectionMapping) Descriptor() ([]byte, []int)Deprecated: Use ResourceValueConfig_SensitiveDataProtectionMapping.ProtoReflect.Descriptor instead.
func (*ResourceValueConfig_SensitiveDataProtectionMapping) GetHighSensitivityMapping
func (x *ResourceValueConfig_SensitiveDataProtectionMapping) GetHighSensitivityMapping() ResourceValuefunc (*ResourceValueConfig_SensitiveDataProtectionMapping) GetMediumSensitivityMapping
func (x *ResourceValueConfig_SensitiveDataProtectionMapping) GetMediumSensitivityMapping() ResourceValuefunc (*ResourceValueConfig_SensitiveDataProtectionMapping) ProtoMessage
func (*ResourceValueConfig_SensitiveDataProtectionMapping) ProtoMessage()func (*ResourceValueConfig_SensitiveDataProtectionMapping) ProtoReflect
func (x *ResourceValueConfig_SensitiveDataProtectionMapping) ProtoReflect() protoreflect.Messagefunc (*ResourceValueConfig_SensitiveDataProtectionMapping) Reset
func (x *ResourceValueConfig_SensitiveDataProtectionMapping) Reset()func (*ResourceValueConfig_SensitiveDataProtectionMapping) String
func (x *ResourceValueConfig_SensitiveDataProtectionMapping) String() stringResource_AwsMetadata
type Resource_AwsMetadata struct {
// The AWS metadata associated with the finding.
AwsMetadata *AwsMetadata `protobuf:"bytes,8,opt,name=aws_metadata,json=awsMetadata,proto3,oneof"`
}Resource_AzureMetadata
type Resource_AzureMetadata struct {
// The Azure metadata associated with the finding.
AzureMetadata *AzureMetadata `protobuf:"bytes,9,opt,name=azure_metadata,json=azureMetadata,proto3,oneof"`
}Resource_GcpMetadata
type Resource_GcpMetadata struct {
// The GCP metadata associated with the finding.
GcpMetadata *GcpMetadata `protobuf:"bytes,7,opt,name=gcp_metadata,json=gcpMetadata,proto3,oneof"`
}SecurityBulletin
type SecurityBulletin struct {
// ID of the bulletin corresponding to the vulnerability.
BulletinId string `protobuf:"bytes,1,opt,name=bulletin_id,json=bulletinId,proto3" json:"bulletin_id,omitempty"`
// Submission time of this Security Bulletin.
SubmissionTime *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=submission_time,json=submissionTime,proto3" json:"submission_time,omitempty"`
// This represents a version that the cluster receiving this notification
// should be upgraded to, based on its current version. For example, 1.15.0
SuggestedUpgradeVersion string `protobuf:"bytes,3,opt,name=suggested_upgrade_version,json=suggestedUpgradeVersion,proto3" json:"suggested_upgrade_version,omitempty"`
// contains filtered or unexported fields
}SecurityBulletin are notifications of vulnerabilities of Google products.
func (*SecurityBulletin) Descriptor
func (*SecurityBulletin) Descriptor() ([]byte, []int)Deprecated: Use SecurityBulletin.ProtoReflect.Descriptor instead.
func (*SecurityBulletin) GetBulletinId
func (x *SecurityBulletin) GetBulletinId() stringfunc (*SecurityBulletin) GetSubmissionTime
func (x *SecurityBulletin) GetSubmissionTime() *timestamppb.Timestampfunc (*SecurityBulletin) GetSuggestedUpgradeVersion
func (x *SecurityBulletin) GetSuggestedUpgradeVersion() stringfunc (*SecurityBulletin) ProtoMessage
func (*SecurityBulletin) ProtoMessage()func (*SecurityBulletin) ProtoReflect
func (x *SecurityBulletin) ProtoReflect() protoreflect.Messagefunc (*SecurityBulletin) Reset
func (x *SecurityBulletin) Reset()func (*SecurityBulletin) String
func (x *SecurityBulletin) String() stringSecurityCenterClient
type SecurityCenterClient interface {
// Creates a ResourceValueConfig for an organization. Maps user's tags to
// difference resource values for use by the attack path simulation.
BatchCreateResourceValueConfigs(ctx context.Context, in *BatchCreateResourceValueConfigsRequest, opts ...grpc.CallOption) (*BatchCreateResourceValueConfigsResponse, error)
// Kicks off an LRO to bulk mute findings for a parent based on a filter. If
// no location is specified, findings are muted in global. The parent
// can be either an organization, folder, or project. The findings matched by
// the filter will be muted after the LRO is done.
BulkMuteFindings(ctx context.Context, in *BulkMuteFindingsRequest, opts ...grpc.CallOption) (*longrunningpb.Operation, error)
// Creates a BigQuery export.
CreateBigQueryExport(ctx context.Context, in *CreateBigQueryExportRequest, opts ...grpc.CallOption) (*BigQueryExport, error)
// Creates a finding in a location. The corresponding source must exist for
// finding creation to succeed.
CreateFinding(ctx context.Context, in *CreateFindingRequest, opts ...grpc.CallOption) (*Finding, error)
// Creates a mute config.
CreateMuteConfig(ctx context.Context, in *CreateMuteConfigRequest, opts ...grpc.CallOption) (*MuteConfig, error)
// Creates a notification config.
CreateNotificationConfig(ctx context.Context, in *CreateNotificationConfigRequest, opts ...grpc.CallOption) (*NotificationConfig, error)
// Creates a source.
CreateSource(ctx context.Context, in *CreateSourceRequest, opts ...grpc.CallOption) (*Source, error)
// Deletes an existing BigQuery export.
DeleteBigQueryExport(ctx context.Context, in *DeleteBigQueryExportRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
// Deletes an existing mute config. If no location is specified, default is
// global.
DeleteMuteConfig(ctx context.Context, in *DeleteMuteConfigRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
// Deletes a notification config.
DeleteNotificationConfig(ctx context.Context, in *DeleteNotificationConfigRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
// Deletes a ResourceValueConfig.
DeleteResourceValueConfig(ctx context.Context, in *DeleteResourceValueConfigRequest, opts ...grpc.CallOption) (*emptypb.Empty, error)
// Gets a BigQuery export.
GetBigQueryExport(ctx context.Context, in *GetBigQueryExportRequest, opts ...grpc.CallOption) (*BigQueryExport, error)
// Get the simulation by name or the latest simulation for the given
// organization.
GetSimulation(ctx context.Context, in *GetSimulationRequest, opts ...grpc.CallOption) (*Simulation, error)
// Get the valued resource by name
GetValuedResource(ctx context.Context, in *GetValuedResourceRequest, opts ...grpc.CallOption) (*ValuedResource, error)
// Gets the access control policy on the specified Source.
GetIamPolicy(ctx context.Context, in *iampb.GetIamPolicyRequest, opts ...grpc.CallOption) (*iampb.Policy, error)
// Gets a mute config. If no location is specified, default is
// global.
GetMuteConfig(ctx context.Context, in *GetMuteConfigRequest, opts ...grpc.CallOption) (*MuteConfig, error)
// Gets a notification config.
GetNotificationConfig(ctx context.Context, in *GetNotificationConfigRequest, opts ...grpc.CallOption) (*NotificationConfig, error)
// Gets a ResourceValueConfig.
GetResourceValueConfig(ctx context.Context, in *GetResourceValueConfigRequest, opts ...grpc.CallOption) (*ResourceValueConfig, error)
// Gets a source.
GetSource(ctx context.Context, in *GetSourceRequest, opts ...grpc.CallOption) (*Source, error)
// Filters an organization or source's findings and groups them by their
// specified properties in a location. If no location is specified, findings
// are assumed to be in global
//
// To group across all sources provide a `-` as the source id.
// The following list shows some examples:
//
// + `/v2/organizations/{organization_id}/sources/-/findings`
// +
// `/v2/organizations/{organization_id}/sources/-/locations/{location_id}/findings`
// + `/v2/folders/{folder_id}/sources/-/findings`
// + `/v2/folders/{folder_id}/sources/-/locations/{location_id}/findings`
// + `/v2/projects/{project_id}/sources/-/findings`
// + `/v2/projects/{project_id}/sources/-/locations/{location_id}/findings`
GroupFindings(ctx context.Context, in *GroupFindingsRequest, opts ...grpc.CallOption) (*GroupFindingsResponse, error)
// Lists the attack paths for a set of simulation results or valued resources
// and filter.
ListAttackPaths(ctx context.Context, in *ListAttackPathsRequest, opts ...grpc.CallOption) (*ListAttackPathsResponse, error)
// Lists BigQuery exports. Note that when requesting BigQuery exports at a
// given level all exports under that level are also returned e.g. if
// requesting BigQuery exports under a folder, then all BigQuery exports
// immediately under the folder plus the ones created under the projects
// within the folder are returned.
ListBigQueryExports(ctx context.Context, in *ListBigQueryExportsRequest, opts ...grpc.CallOption) (*ListBigQueryExportsResponse, error)
// Lists an organization or source's findings.
//
// To list across all sources for a given location provide a `-` as the source
// id. If no location is specified, finding are assumed to be in global.
// The following list shows some examples:
//
// + `/v2/organizations/{organization_id}/sources/-/findings`
// +
// `/v2/organizations/{organization_id}/sources/-/locations/{location_id}/findings`
ListFindings(ctx context.Context, in *ListFindingsRequest, opts ...grpc.CallOption) (*ListFindingsResponse, error)
// Lists mute configs. If no location is specified, default is
// global.
ListMuteConfigs(ctx context.Context, in *ListMuteConfigsRequest, opts ...grpc.CallOption) (*ListMuteConfigsResponse, error)
// Lists notification configs.
ListNotificationConfigs(ctx context.Context, in *ListNotificationConfigsRequest, opts ...grpc.CallOption) (*ListNotificationConfigsResponse, error)
// Lists all ResourceValueConfigs.
ListResourceValueConfigs(ctx context.Context, in *ListResourceValueConfigsRequest, opts ...grpc.CallOption) (*ListResourceValueConfigsResponse, error)
// Lists all sources belonging to an organization.
ListSources(ctx context.Context, in *ListSourcesRequest, opts ...grpc.CallOption) (*ListSourcesResponse, error)
// Lists the valued resources for a set of simulation results and filter.
ListValuedResources(ctx context.Context, in *ListValuedResourcesRequest, opts ...grpc.CallOption) (*ListValuedResourcesResponse, error)
// Updates the state of a finding. If no location is specified, finding is
// assumed to be in global
SetFindingState(ctx context.Context, in *SetFindingStateRequest, opts ...grpc.CallOption) (*Finding, error)
// Sets the access control policy on the specified Source.
SetIamPolicy(ctx context.Context, in *iampb.SetIamPolicyRequest, opts ...grpc.CallOption) (*iampb.Policy, error)
// Updates the mute state of a finding. If no location is specified, finding
// is assumed to be in global
SetMute(ctx context.Context, in *SetMuteRequest, opts ...grpc.CallOption) (*Finding, error)
// Returns the permissions that a caller has on the specified source.
TestIamPermissions(ctx context.Context, in *iampb.TestIamPermissionsRequest, opts ...grpc.CallOption) (*iampb.TestIamPermissionsResponse, error)
// Updates a BigQuery export.
UpdateBigQueryExport(ctx context.Context, in *UpdateBigQueryExportRequest, opts ...grpc.CallOption) (*BigQueryExport, error)
// Updates external system. This is for a given finding. If no location is
// specified, finding is assumed to be in global
UpdateExternalSystem(ctx context.Context, in *UpdateExternalSystemRequest, opts ...grpc.CallOption) (*ExternalSystem, error)
// Creates or updates a finding. If no location is specified, finding is
// assumed to be in global. The corresponding source must exist for a finding
// creation to succeed.
UpdateFinding(ctx context.Context, in *UpdateFindingRequest, opts ...grpc.CallOption) (*Finding, error)
// Updates a mute config. If no location is specified, default is
// global.
UpdateMuteConfig(ctx context.Context, in *UpdateMuteConfigRequest, opts ...grpc.CallOption) (*MuteConfig, error)
// Updates a notification config. The following update
// fields are allowed: description, pubsub_topic, streaming_config.filter
UpdateNotificationConfig(ctx context.Context, in *UpdateNotificationConfigRequest, opts ...grpc.CallOption) (*NotificationConfig, error)
// Updates an existing ResourceValueConfigs with new rules.
UpdateResourceValueConfig(ctx context.Context, in *UpdateResourceValueConfigRequest, opts ...grpc.CallOption) (*ResourceValueConfig, error)
// Updates security marks. For Finding Security marks, if no location is
// specified, finding is assumed to be in global. Assets Security Marks can
// only be accessed through global endpoint.
UpdateSecurityMarks(ctx context.Context, in *UpdateSecurityMarksRequest, opts ...grpc.CallOption) (*SecurityMarks, error)
// Updates a source.
UpdateSource(ctx context.Context, in *UpdateSourceRequest, opts ...grpc.CallOption) (*Source, error)
}SecurityCenterClient is the client API for SecurityCenter service.
For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.
func NewSecurityCenterClient
func NewSecurityCenterClient(cc grpc.ClientConnInterface) SecurityCenterClientSecurityCenterServer
type SecurityCenterServer interface {
// Creates a ResourceValueConfig for an organization. Maps user's tags to
// difference resource values for use by the attack path simulation.
BatchCreateResourceValueConfigs(context.Context, *BatchCreateResourceValueConfigsRequest) (*BatchCreateResourceValueConfigsResponse, error)
// Kicks off an LRO to bulk mute findings for a parent based on a filter. If
// no location is specified, findings are muted in global. The parent
// can be either an organization, folder, or project. The findings matched by
// the filter will be muted after the LRO is done.
BulkMuteFindings(context.Context, *BulkMuteFindingsRequest) (*longrunningpb.Operation, error)
// Creates a BigQuery export.
CreateBigQueryExport(context.Context, *CreateBigQueryExportRequest) (*BigQueryExport, error)
// Creates a finding in a location. The corresponding source must exist for
// finding creation to succeed.
CreateFinding(context.Context, *CreateFindingRequest) (*Finding, error)
// Creates a mute config.
CreateMuteConfig(context.Context, *CreateMuteConfigRequest) (*MuteConfig, error)
// Creates a notification config.
CreateNotificationConfig(context.Context, *CreateNotificationConfigRequest) (*NotificationConfig, error)
// Creates a source.
CreateSource(context.Context, *CreateSourceRequest) (*Source, error)
// Deletes an existing BigQuery export.
DeleteBigQueryExport(context.Context, *DeleteBigQueryExportRequest) (*emptypb.Empty, error)
// Deletes an existing mute config. If no location is specified, default is
// global.
DeleteMuteConfig(context.Context, *DeleteMuteConfigRequest) (*emptypb.Empty, error)
// Deletes a notification config.
DeleteNotificationConfig(context.Context, *DeleteNotificationConfigRequest) (*emptypb.Empty, error)
// Deletes a ResourceValueConfig.
DeleteResourceValueConfig(context.Context, *DeleteResourceValueConfigRequest) (*emptypb.Empty, error)
// Gets a BigQuery export.
GetBigQueryExport(context.Context, *GetBigQueryExportRequest) (*BigQueryExport, error)
// Get the simulation by name or the latest simulation for the given
// organization.
GetSimulation(context.Context, *GetSimulationRequest) (*Simulation, error)
// Get the valued resource by name
GetValuedResource(context.Context, *GetValuedResourceRequest) (*ValuedResource, error)
// Gets the access control policy on the specified Source.
GetIamPolicy(context.Context, *iampb.GetIamPolicyRequest) (*iampb.Policy, error)
// Gets a mute config. If no location is specified, default is
// global.
GetMuteConfig(context.Context, *GetMuteConfigRequest) (*MuteConfig, error)
// Gets a notification config.
GetNotificationConfig(context.Context, *GetNotificationConfigRequest) (*NotificationConfig, error)
// Gets a ResourceValueConfig.
GetResourceValueConfig(context.Context, *GetResourceValueConfigRequest) (*ResourceValueConfig, error)
// Gets a source.
GetSource(context.Context, *GetSourceRequest) (*Source, error)
// Filters an organization or source's findings and groups them by their
// specified properties in a location. If no location is specified, findings
// are assumed to be in global
//
// To group across all sources provide a `-` as the source id.
// The following list shows some examples:
//
// + `/v2/organizations/{organization_id}/sources/-/findings`
// +
// `/v2/organizations/{organization_id}/sources/-/locations/{location_id}/findings`
// + `/v2/folders/{folder_id}/sources/-/findings`
// + `/v2/folders/{folder_id}/sources/-/locations/{location_id}/findings`
// + `/v2/projects/{project_id}/sources/-/findings`
// + `/v2/projects/{project_id}/sources/-/locations/{location_id}/findings`
GroupFindings(context.Context, *GroupFindingsRequest) (*GroupFindingsResponse, error)
// Lists the attack paths for a set of simulation results or valued resources
// and filter.
ListAttackPaths(context.Context, *ListAttackPathsRequest) (*ListAttackPathsResponse, error)
// Lists BigQuery exports. Note that when requesting BigQuery exports at a
// given level all exports under that level are also returned e.g. if
// requesting BigQuery exports under a folder, then all BigQuery exports
// immediately under the folder plus the ones created under the projects
// within the folder are returned.
ListBigQueryExports(context.Context, *ListBigQueryExportsRequest) (*ListBigQueryExportsResponse, error)
// Lists an organization or source's findings.
//
// To list across all sources for a given location provide a `-` as the source
// id. If no location is specified, finding are assumed to be in global.
// The following list shows some examples:
//
// + `/v2/organizations/{organization_id}/sources/-/findings`
// +
// `/v2/organizations/{organization_id}/sources/-/locations/{location_id}/findings`
ListFindings(context.Context, *ListFindingsRequest) (*ListFindingsResponse, error)
// Lists mute configs. If no location is specified, default is
// global.
ListMuteConfigs(context.Context, *ListMuteConfigsRequest) (*ListMuteConfigsResponse, error)
// Lists notification configs.
ListNotificationConfigs(context.Context, *ListNotificationConfigsRequest) (*ListNotificationConfigsResponse, error)
// Lists all ResourceValueConfigs.
ListResourceValueConfigs(context.Context, *ListResourceValueConfigsRequest) (*ListResourceValueConfigsResponse, error)
// Lists all sources belonging to an organization.
ListSources(context.Context, *ListSourcesRequest) (*ListSourcesResponse, error)
// Lists the valued resources for a set of simulation results and filter.
ListValuedResources(context.Context, *ListValuedResourcesRequest) (*ListValuedResourcesResponse, error)
// Updates the state of a finding. If no location is specified, finding is
// assumed to be in global
SetFindingState(context.Context, *SetFindingStateRequest) (*Finding, error)
// Sets the access control policy on the specified Source.
SetIamPolicy(context.Context, *iampb.SetIamPolicyRequest) (*iampb.Policy, error)
// Updates the mute state of a finding. If no location is specified, finding
// is assumed to be in global
SetMute(context.Context, *SetMuteRequest) (*Finding, error)
// Returns the permissions that a caller has on the specified source.
TestIamPermissions(context.Context, *iampb.TestIamPermissionsRequest) (*iampb.TestIamPermissionsResponse, error)
// Updates a BigQuery export.
UpdateBigQueryExport(context.Context, *UpdateBigQueryExportRequest) (*BigQueryExport, error)
// Updates external system. This is for a given finding. If no location is
// specified, finding is assumed to be in global
UpdateExternalSystem(context.Context, *UpdateExternalSystemRequest) (*ExternalSystem, error)
// Creates or updates a finding. If no location is specified, finding is
// assumed to be in global. The corresponding source must exist for a finding
// creation to succeed.
UpdateFinding(context.Context, *UpdateFindingRequest) (*Finding, error)
// Updates a mute config. If no location is specified, default is
// global.
UpdateMuteConfig(context.Context, *UpdateMuteConfigRequest) (*MuteConfig, error)
// Updates a notification config. The following update
// fields are allowed: description, pubsub_topic, streaming_config.filter
UpdateNotificationConfig(context.Context, *UpdateNotificationConfigRequest) (*NotificationConfig, error)
// Updates an existing ResourceValueConfigs with new rules.
UpdateResourceValueConfig(context.Context, *UpdateResourceValueConfigRequest) (*ResourceValueConfig, error)
// Updates security marks. For Finding Security marks, if no location is
// specified, finding is assumed to be in global. Assets Security Marks can
// only be accessed through global endpoint.
UpdateSecurityMarks(context.Context, *UpdateSecurityMarksRequest) (*SecurityMarks, error)
// Updates a source.
UpdateSource(context.Context, *UpdateSourceRequest) (*Source, error)
}SecurityCenterServer is the server API for SecurityCenter service. All implementations should embed UnimplementedSecurityCenterServer for forward compatibility
SecurityMarks
type SecurityMarks struct {
// The relative resource name of the SecurityMarks. See:
// https://cloud.google.com/apis/design/resource_names#relative_resource_name
// The following list shows some examples:
//
// + `organizations/{organization_id}/assets/{asset_id}/securityMarks`
// +
// `organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks`
// +
// `organizations/{organization_id}/sources/{source_id}/locations/{location}/findings/{finding_id}/securityMarks`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Mutable user specified security marks belonging to the parent resource.
// Constraints are as follows:
//
// - Keys and values are treated as case insensitive
// - Keys must be between 1 - 256 characters (inclusive)
// - Keys must be letters, numbers, underscores, or dashes
// - Values have leading and trailing whitespace trimmed, remaining
// characters must be between 1 - 4096 characters (inclusive)
Marks map[string]string `protobuf:"bytes,2,rep,name=marks,proto3" json:"marks,omitempty" protobuf_key:"bytes,1,opt,name=key,proto3" protobuf_val:"bytes,2,opt,name=value,proto3"`
// The canonical name of the marks. The following list shows some examples:
//
// + `organizations/{organization_id}/assets/{asset_id}/securityMarks`
// +
// `organizations/{organization_id}/sources/{source_id}/findings/{finding_id}/securityMarks`
// +
// `organizations/{organization_id}/sources/{source_id}/locations/{location}/findings/{finding_id}/securityMarks`
// + `folders/{folder_id}/assets/{asset_id}/securityMarks`
// +
// `folders/{folder_id}/sources/{source_id}/findings/{finding_id}/securityMarks`
// +
// `folders/{folder_id}/sources/{source_id}/locations/{location}/findings/{finding_id}/securityMarks`
// + `projects/{project_number}/assets/{asset_id}/securityMarks`
// +
// `projects/{project_number}/sources/{source_id}/findings/{finding_id}/securityMarks`
// +
// `projects/{project_number}/sources/{source_id}/locations/{location}/findings/{finding_id}/securityMarks`
CanonicalName string `protobuf:"bytes,3,opt,name=canonical_name,json=canonicalName,proto3" json:"canonical_name,omitempty"`
// contains filtered or unexported fields
}User specified security marks that are attached to the parent Security Command Center resource. Security marks are scoped within a Security Command Center organization -- they can be modified and viewed by all users who have proper permissions on the organization.
func (*SecurityMarks) Descriptor
func (*SecurityMarks) Descriptor() ([]byte, []int)Deprecated: Use SecurityMarks.ProtoReflect.Descriptor instead.
func (*SecurityMarks) GetCanonicalName
func (x *SecurityMarks) GetCanonicalName() stringfunc (*SecurityMarks) GetMarks
func (x *SecurityMarks) GetMarks() map[string]stringfunc (*SecurityMarks) GetName
func (x *SecurityMarks) GetName() stringfunc (*SecurityMarks) ProtoMessage
func (*SecurityMarks) ProtoMessage()func (*SecurityMarks) ProtoReflect
func (x *SecurityMarks) ProtoReflect() protoreflect.Messagefunc (*SecurityMarks) Reset
func (x *SecurityMarks) Reset()func (*SecurityMarks) String
func (x *SecurityMarks) String() stringSecurityPolicy
type SecurityPolicy struct {
// The name of the Google Cloud Armor security policy, for example,
// "my-security-policy".
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The type of Google Cloud Armor security policy for example, 'backend
// security policy', 'edge security policy', 'network edge security policy',
// or 'always-on DDoS protection'.
Type string `protobuf:"bytes,2,opt,name=type,proto3" json:"type,omitempty"`
// Whether or not the associated rule or policy is in preview mode.
Preview bool `protobuf:"varint,3,opt,name=preview,proto3" json:"preview,omitempty"`
// contains filtered or unexported fields
}Information about the Google Cloud Armor security policy relevant to the finding.
func (*SecurityPolicy) Descriptor
func (*SecurityPolicy) Descriptor() ([]byte, []int)Deprecated: Use SecurityPolicy.ProtoReflect.Descriptor instead.
func (*SecurityPolicy) GetName
func (x *SecurityPolicy) GetName() stringfunc (*SecurityPolicy) GetPreview
func (x *SecurityPolicy) GetPreview() boolfunc (*SecurityPolicy) GetType
func (x *SecurityPolicy) GetType() stringfunc (*SecurityPolicy) ProtoMessage
func (*SecurityPolicy) ProtoMessage()func (*SecurityPolicy) ProtoReflect
func (x *SecurityPolicy) ProtoReflect() protoreflect.Messagefunc (*SecurityPolicy) Reset
func (x *SecurityPolicy) Reset()func (*SecurityPolicy) String
func (x *SecurityPolicy) String() stringSecurityPosture
type SecurityPosture struct {
// Name of the posture, for example, `CIS-Posture`.
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The version of the posture, for example, `c7cfa2a8`.
RevisionId string `protobuf:"bytes,2,opt,name=revision_id,json=revisionId,proto3" json:"revision_id,omitempty"`
// The project, folder, or organization on which the posture is deployed,
// for example, `projects/{project_number}`.
PostureDeploymentResource string `protobuf:"bytes,3,opt,name=posture_deployment_resource,json=postureDeploymentResource,proto3" json:"posture_deployment_resource,omitempty"`
// The name of the posture deployment, for example,
// `organizations/{org_id}/posturedeployments/{posture_deployment_id}`.
PostureDeployment string `protobuf:"bytes,4,opt,name=posture_deployment,json=postureDeployment,proto3" json:"posture_deployment,omitempty"`
// The name of the updated policy, for example,
// `projects/{project_id}/policies/{constraint_name}`.
ChangedPolicy string `protobuf:"bytes,5,opt,name=changed_policy,json=changedPolicy,proto3" json:"changed_policy,omitempty"`
// The name of the updated policy set, for example, `cis-policyset`.
PolicySet string `protobuf:"bytes,6,opt,name=policy_set,json=policySet,proto3" json:"policy_set,omitempty"`
// The ID of the updated policy, for example, `compute-policy-1`.
Policy string `protobuf:"bytes,7,opt,name=policy,proto3" json:"policy,omitempty"`
// The details about a change in an updated policy that violates the deployed
// posture.
PolicyDriftDetails []*SecurityPosture_PolicyDriftDetails `protobuf:"bytes,8,rep,name=policy_drift_details,json=policyDriftDetails,proto3" json:"policy_drift_details,omitempty"`
// contains filtered or unexported fields
}Represents a posture that is deployed on Google Cloud by the Security Command Center Posture Management service. A posture contains one or more policy sets. A policy set is a group of policies that enforce a set of security rules on Google Cloud.
func (*SecurityPosture) Descriptor
func (*SecurityPosture) Descriptor() ([]byte, []int)Deprecated: Use SecurityPosture.ProtoReflect.Descriptor instead.
func (*SecurityPosture) GetChangedPolicy
func (x *SecurityPosture) GetChangedPolicy() stringfunc (*SecurityPosture) GetName
func (x *SecurityPosture) GetName() stringfunc (*SecurityPosture) GetPolicy
func (x *SecurityPosture) GetPolicy() stringfunc (*SecurityPosture) GetPolicyDriftDetails
func (x *SecurityPosture) GetPolicyDriftDetails() []*SecurityPosture_PolicyDriftDetailsfunc (*SecurityPosture) GetPolicySet
func (x *SecurityPosture) GetPolicySet() stringfunc (*SecurityPosture) GetPostureDeployment
func (x *SecurityPosture) GetPostureDeployment() stringfunc (*SecurityPosture) GetPostureDeploymentResource
func (x *SecurityPosture) GetPostureDeploymentResource() stringfunc (*SecurityPosture) GetRevisionId
func (x *SecurityPosture) GetRevisionId() stringfunc (*SecurityPosture) ProtoMessage
func (*SecurityPosture) ProtoMessage()func (*SecurityPosture) ProtoReflect
func (x *SecurityPosture) ProtoReflect() protoreflect.Messagefunc (*SecurityPosture) Reset
func (x *SecurityPosture) Reset()func (*SecurityPosture) String
func (x *SecurityPosture) String() stringSecurityPosture_PolicyDriftDetails
type SecurityPosture_PolicyDriftDetails struct {
// The name of the updated field, for example
// constraint.implementation.policy_rules[0].enforce
Field string `protobuf:"bytes,1,opt,name=field,proto3" json:"field,omitempty"`
// The value of this field that was configured in a posture, for example,
// `true` or `allowed_values={"projects/29831892"}`.
ExpectedValue string `protobuf:"bytes,2,opt,name=expected_value,json=expectedValue,proto3" json:"expected_value,omitempty"`
// The detected value that violates the deployed posture, for example,
// `false` or `allowed_values={"projects/22831892"}`.
DetectedValue string `protobuf:"bytes,3,opt,name=detected_value,json=detectedValue,proto3" json:"detected_value,omitempty"`
// contains filtered or unexported fields
}The policy field that violates the deployed posture and its expected and detected values.
func (*SecurityPosture_PolicyDriftDetails) Descriptor
func (*SecurityPosture_PolicyDriftDetails) Descriptor() ([]byte, []int)Deprecated: Use SecurityPosture_PolicyDriftDetails.ProtoReflect.Descriptor instead.
func (*SecurityPosture_PolicyDriftDetails) GetDetectedValue
func (x *SecurityPosture_PolicyDriftDetails) GetDetectedValue() stringfunc (*SecurityPosture_PolicyDriftDetails) GetExpectedValue
func (x *SecurityPosture_PolicyDriftDetails) GetExpectedValue() stringfunc (*SecurityPosture_PolicyDriftDetails) GetField
func (x *SecurityPosture_PolicyDriftDetails) GetField() stringfunc (*SecurityPosture_PolicyDriftDetails) ProtoMessage
func (*SecurityPosture_PolicyDriftDetails) ProtoMessage()func (*SecurityPosture_PolicyDriftDetails) ProtoReflect
func (x *SecurityPosture_PolicyDriftDetails) ProtoReflect() protoreflect.Messagefunc (*SecurityPosture_PolicyDriftDetails) Reset
func (x *SecurityPosture_PolicyDriftDetails) Reset()func (*SecurityPosture_PolicyDriftDetails) String
func (x *SecurityPosture_PolicyDriftDetails) String() stringServiceAccountDelegationInfo
type ServiceAccountDelegationInfo struct {
// The email address of a Google account.
PrincipalEmail string `protobuf:"bytes,1,opt,name=principal_email,json=principalEmail,proto3" json:"principal_email,omitempty"`
// A string representing the principal_subject associated with the identity.
// As compared to `principal_email`, supports principals that aren't
// associated with email addresses, such as third party principals. For most
// identities, the format will be `principal://iam.googleapis.com/{identity
// pool name}/subjects/{subject}` except for some GKE identities
// (GKE_WORKLOAD, FREEFORM, GKE_HUB_WORKLOAD) that are still in the legacy
// format `serviceAccount:{identity pool name}[{subject}]`
PrincipalSubject string `protobuf:"bytes,2,opt,name=principal_subject,json=principalSubject,proto3" json:"principal_subject,omitempty"`
// contains filtered or unexported fields
}Identity delegation history of an authenticated service account.
func (*ServiceAccountDelegationInfo) Descriptor
func (*ServiceAccountDelegationInfo) Descriptor() ([]byte, []int)Deprecated: Use ServiceAccountDelegationInfo.ProtoReflect.Descriptor instead.
func (*ServiceAccountDelegationInfo) GetPrincipalEmail
func (x *ServiceAccountDelegationInfo) GetPrincipalEmail() stringfunc (*ServiceAccountDelegationInfo) GetPrincipalSubject
func (x *ServiceAccountDelegationInfo) GetPrincipalSubject() stringfunc (*ServiceAccountDelegationInfo) ProtoMessage
func (*ServiceAccountDelegationInfo) ProtoMessage()func (*ServiceAccountDelegationInfo) ProtoReflect
func (x *ServiceAccountDelegationInfo) ProtoReflect() protoreflect.Messagefunc (*ServiceAccountDelegationInfo) Reset
func (x *ServiceAccountDelegationInfo) Reset()func (*ServiceAccountDelegationInfo) String
func (x *ServiceAccountDelegationInfo) String() stringSetFindingStateRequest
type SetFindingStateRequest struct {
// Required. The [relative resource
// name](https://cloud.google.com/apis/design/resource_names#relative_resource_name)
// of the finding. If no location is specified, finding is assumed to be in
// global. The following list shows some examples:
//
// +
// `organizations/{organization_id}/sources/{source_id}/findings/{finding_id}`
// +
// `organizations/{organization_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}`
// + `folders/{folder_id}/sources/{source_id}/findings/{finding_id}`
// +
// `folders/{folder_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}`
// + `projects/{project_id}/sources/{source_id}/findings/{finding_id}`
// +
// `projects/{project_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Required. The desired State of the finding.
State Finding_State `protobuf:"varint,2,opt,name=state,proto3,enum=google.cloud.securitycenter.v2.Finding_State" json:"state,omitempty"`
// contains filtered or unexported fields
}Request message for updating a finding's state.
func (*SetFindingStateRequest) Descriptor
func (*SetFindingStateRequest) Descriptor() ([]byte, []int)Deprecated: Use SetFindingStateRequest.ProtoReflect.Descriptor instead.
func (*SetFindingStateRequest) GetName
func (x *SetFindingStateRequest) GetName() stringfunc (*SetFindingStateRequest) GetState
func (x *SetFindingStateRequest) GetState() Finding_Statefunc (*SetFindingStateRequest) ProtoMessage
func (*SetFindingStateRequest) ProtoMessage()func (*SetFindingStateRequest) ProtoReflect
func (x *SetFindingStateRequest) ProtoReflect() protoreflect.Messagefunc (*SetFindingStateRequest) Reset
func (x *SetFindingStateRequest) Reset()func (*SetFindingStateRequest) String
func (x *SetFindingStateRequest) String() stringSetMuteRequest
type SetMuteRequest struct {
// Required. The [relative resource
// name](https://cloud.google.com/apis/design/resource_names#relative_resource_name)
// of the finding. If no location is specified, finding is assumed to be in
// global. The following list shows some examples:
//
// +
// `organizations/{organization_id}/sources/{source_id}/findings/{finding_id}`
// +
// `organizations/{organization_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}`
// + `folders/{folder_id}/sources/{source_id}/findings/{finding_id}`
// +
// `folders/{folder_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}`
// + `projects/{project_id}/sources/{source_id}/findings/{finding_id}`
// +
// `projects/{project_id}/sources/{source_id}/locations/{location_id}/findings/{finding_id}`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Required. The desired state of the Mute.
Mute Finding_Mute `protobuf:"varint,2,opt,name=mute,proto3,enum=google.cloud.securitycenter.v2.Finding_Mute" json:"mute,omitempty"`
// contains filtered or unexported fields
}Request message for updating a finding's mute status.
func (*SetMuteRequest) Descriptor
func (*SetMuteRequest) Descriptor() ([]byte, []int)Deprecated: Use SetMuteRequest.ProtoReflect.Descriptor instead.
func (*SetMuteRequest) GetMute
func (x *SetMuteRequest) GetMute() Finding_Mutefunc (*SetMuteRequest) GetName
func (x *SetMuteRequest) GetName() stringfunc (*SetMuteRequest) ProtoMessage
func (*SetMuteRequest) ProtoMessage()func (*SetMuteRequest) ProtoReflect
func (x *SetMuteRequest) ProtoReflect() protoreflect.Messagefunc (*SetMuteRequest) Reset
func (x *SetMuteRequest) Reset()func (*SetMuteRequest) String
func (x *SetMuteRequest) String() stringSimulation
type Simulation struct {
// Full resource name of the Simulation:
// `organizations/123/simulations/456`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// Output only. Time simulation was created
CreateTime *timestamppb.Timestamp `protobuf:"bytes,2,opt,name=create_time,json=createTime,proto3" json:"create_time,omitempty"`
// Resource value configurations' metadata used in this simulation. Maximum of
// 100.
ResourceValueConfigsMetadata []*ResourceValueConfigMetadata `protobuf:"bytes,3,rep,name=resource_value_configs_metadata,json=resourceValueConfigsMetadata,proto3" json:"resource_value_configs_metadata,omitempty"`
// Indicates which cloud provider was used in this simulation.
CloudProvider CloudProvider `protobuf:"varint,4,opt,name=cloud_provider,json=cloudProvider,proto3,enum=google.cloud.securitycenter.v2.CloudProvider" json:"cloud_provider,omitempty"`
// contains filtered or unexported fields
}Attack path simulation
func (*Simulation) Descriptor
func (*Simulation) Descriptor() ([]byte, []int)Deprecated: Use Simulation.ProtoReflect.Descriptor instead.
func (*Simulation) GetCloudProvider
func (x *Simulation) GetCloudProvider() CloudProviderfunc (*Simulation) GetCreateTime
func (x *Simulation) GetCreateTime() *timestamppb.Timestampfunc (*Simulation) GetName
func (x *Simulation) GetName() stringfunc (*Simulation) GetResourceValueConfigsMetadata
func (x *Simulation) GetResourceValueConfigsMetadata() []*ResourceValueConfigMetadatafunc (*Simulation) ProtoMessage
func (*Simulation) ProtoMessage()func (*Simulation) ProtoReflect
func (x *Simulation) ProtoReflect() protoreflect.Messagefunc (*Simulation) Reset
func (x *Simulation) Reset()func (*Simulation) String
func (x *Simulation) String() stringSource
type Source struct {
// The relative resource name of this source. See:
// https://cloud.google.com/apis/design/resource_names#relative_resource_name
// Example:
// "organizations/{organization_id}/sources/{source_id}"
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The source's display name.
// A source's display name must be unique amongst its siblings, for example,
// two sources with the same parent can't share the same display name.
// The display name must have a length between 1 and 64 characters
// (inclusive).
DisplayName string `protobuf:"bytes,2,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
// The description of the source (max of 1024 characters).
// Example:
// "Web Security Scanner is a web security scanner for common
// vulnerabilities in App Engine applications. It can automatically
// scan and detect four common vulnerabilities, including cross-site-scripting
// (XSS), Flash injection, mixed content (HTTP in HTTPS), and
// outdated or insecure libraries."
Description string `protobuf:"bytes,3,opt,name=description,proto3" json:"description,omitempty"`
// The canonical name of the finding source. It's either
// "organizations/{organization_id}/sources/{source_id}",
// "folders/{folder_id}/sources/{source_id}", or
// "projects/{project_number}/sources/{source_id}",
// depending on the closest CRM ancestor of the resource associated with the
// finding.
CanonicalName string `protobuf:"bytes,4,opt,name=canonical_name,json=canonicalName,proto3" json:"canonical_name,omitempty"`
// contains filtered or unexported fields
}Security Command Center finding source. A finding source is an entity or a mechanism that can produce a finding. A source is like a container of findings that come from the same scanner, logger, monitor, and other tools.
func (*Source) Descriptor
Deprecated: Use Source.ProtoReflect.Descriptor instead.
func (*Source) GetCanonicalName
func (*Source) GetDescription
func (*Source) GetDisplayName
func (*Source) GetName
func (*Source) ProtoMessage
func (*Source) ProtoMessage()func (*Source) ProtoReflect
func (x *Source) ProtoReflect() protoreflect.Messagefunc (*Source) Reset
func (x *Source) Reset()func (*Source) String
ToxicCombination
type ToxicCombination struct {
// The
// [Attack exposure
// score](https://cloud.google.com/security-command-center/docs/attack-exposure-learn#attack_exposure_scores)
// of this toxic combination. The score is a measure of how much this toxic
// combination exposes one or more high-value resources to potential attack.
AttackExposureScore float64 `protobuf:"fixed64,1,opt,name=attack_exposure_score,json=attackExposureScore,proto3" json:"attack_exposure_score,omitempty"`
// List of resource names of findings associated with this toxic combination.
// For example, `organizations/123/sources/456/findings/789`.
RelatedFindings []string `protobuf:"bytes,2,rep,name=related_findings,json=relatedFindings,proto3" json:"related_findings,omitempty"`
// contains filtered or unexported fields
}Contains details about a group of security issues that, when the issues occur together, represent a greater risk than when the issues occur independently. A group of such issues is referred to as a toxic combination.
func (*ToxicCombination) Descriptor
func (*ToxicCombination) Descriptor() ([]byte, []int)Deprecated: Use ToxicCombination.ProtoReflect.Descriptor instead.
func (*ToxicCombination) GetAttackExposureScore
func (x *ToxicCombination) GetAttackExposureScore() float64func (*ToxicCombination) GetRelatedFindings
func (x *ToxicCombination) GetRelatedFindings() []stringfunc (*ToxicCombination) ProtoMessage
func (*ToxicCombination) ProtoMessage()func (*ToxicCombination) ProtoReflect
func (x *ToxicCombination) ProtoReflect() protoreflect.Messagefunc (*ToxicCombination) Reset
func (x *ToxicCombination) Reset()func (*ToxicCombination) String
func (x *ToxicCombination) String() stringUnimplementedSecurityCenterServer
type UnimplementedSecurityCenterServer struct {
}UnimplementedSecurityCenterServer should be embedded to have forward compatible implementations.
func (UnimplementedSecurityCenterServer) BatchCreateResourceValueConfigs
func (UnimplementedSecurityCenterServer) BatchCreateResourceValueConfigs(context.Context, *BatchCreateResourceValueConfigsRequest) (*BatchCreateResourceValueConfigsResponse, error)func (UnimplementedSecurityCenterServer) BulkMuteFindings
func (UnimplementedSecurityCenterServer) BulkMuteFindings(context.Context, *BulkMuteFindingsRequest) (*longrunningpb.Operation, error)func (UnimplementedSecurityCenterServer) CreateBigQueryExport
func (UnimplementedSecurityCenterServer) CreateBigQueryExport(context.Context, *CreateBigQueryExportRequest) (*BigQueryExport, error)func (UnimplementedSecurityCenterServer) CreateFinding
func (UnimplementedSecurityCenterServer) CreateFinding(context.Context, *CreateFindingRequest) (*Finding, error)func (UnimplementedSecurityCenterServer) CreateMuteConfig
func (UnimplementedSecurityCenterServer) CreateMuteConfig(context.Context, *CreateMuteConfigRequest) (*MuteConfig, error)func (UnimplementedSecurityCenterServer) CreateNotificationConfig
func (UnimplementedSecurityCenterServer) CreateNotificationConfig(context.Context, *CreateNotificationConfigRequest) (*NotificationConfig, error)func (UnimplementedSecurityCenterServer) CreateSource
func (UnimplementedSecurityCenterServer) CreateSource(context.Context, *CreateSourceRequest) (*Source, error)func (UnimplementedSecurityCenterServer) DeleteBigQueryExport
func (UnimplementedSecurityCenterServer) DeleteBigQueryExport(context.Context, *DeleteBigQueryExportRequest) (*emptypb.Empty, error)func (UnimplementedSecurityCenterServer) DeleteMuteConfig
func (UnimplementedSecurityCenterServer) DeleteMuteConfig(context.Context, *DeleteMuteConfigRequest) (*emptypb.Empty, error)func (UnimplementedSecurityCenterServer) DeleteNotificationConfig
func (UnimplementedSecurityCenterServer) DeleteNotificationConfig(context.Context, *DeleteNotificationConfigRequest) (*emptypb.Empty, error)func (UnimplementedSecurityCenterServer) DeleteResourceValueConfig
func (UnimplementedSecurityCenterServer) DeleteResourceValueConfig(context.Context, *DeleteResourceValueConfigRequest) (*emptypb.Empty, error)func (UnimplementedSecurityCenterServer) GetBigQueryExport
func (UnimplementedSecurityCenterServer) GetBigQueryExport(context.Context, *GetBigQueryExportRequest) (*BigQueryExport, error)func (UnimplementedSecurityCenterServer) GetIamPolicy
func (UnimplementedSecurityCenterServer) GetIamPolicy(context.Context, *iampb.GetIamPolicyRequest) (*iampb.Policy, error)func (UnimplementedSecurityCenterServer) GetMuteConfig
func (UnimplementedSecurityCenterServer) GetMuteConfig(context.Context, *GetMuteConfigRequest) (*MuteConfig, error)func (UnimplementedSecurityCenterServer) GetNotificationConfig
func (UnimplementedSecurityCenterServer) GetNotificationConfig(context.Context, *GetNotificationConfigRequest) (*NotificationConfig, error)func (UnimplementedSecurityCenterServer) GetResourceValueConfig
func (UnimplementedSecurityCenterServer) GetResourceValueConfig(context.Context, *GetResourceValueConfigRequest) (*ResourceValueConfig, error)func (UnimplementedSecurityCenterServer) GetSimulation
func (UnimplementedSecurityCenterServer) GetSimulation(context.Context, *GetSimulationRequest) (*Simulation, error)func (UnimplementedSecurityCenterServer) GetSource
func (UnimplementedSecurityCenterServer) GetSource(context.Context, *GetSourceRequest) (*Source, error)func (UnimplementedSecurityCenterServer) GetValuedResource
func (UnimplementedSecurityCenterServer) GetValuedResource(context.Context, *GetValuedResourceRequest) (*ValuedResource, error)func (UnimplementedSecurityCenterServer) GroupFindings
func (UnimplementedSecurityCenterServer) GroupFindings(context.Context, *GroupFindingsRequest) (*GroupFindingsResponse, error)func (UnimplementedSecurityCenterServer) ListAttackPaths
func (UnimplementedSecurityCenterServer) ListAttackPaths(context.Context, *ListAttackPathsRequest) (*ListAttackPathsResponse, error)func (UnimplementedSecurityCenterServer) ListBigQueryExports
func (UnimplementedSecurityCenterServer) ListBigQueryExports(context.Context, *ListBigQueryExportsRequest) (*ListBigQueryExportsResponse, error)func (UnimplementedSecurityCenterServer) ListFindings
func (UnimplementedSecurityCenterServer) ListFindings(context.Context, *ListFindingsRequest) (*ListFindingsResponse, error)func (UnimplementedSecurityCenterServer) ListMuteConfigs
func (UnimplementedSecurityCenterServer) ListMuteConfigs(context.Context, *ListMuteConfigsRequest) (*ListMuteConfigsResponse, error)func (UnimplementedSecurityCenterServer) ListNotificationConfigs
func (UnimplementedSecurityCenterServer) ListNotificationConfigs(context.Context, *ListNotificationConfigsRequest) (*ListNotificationConfigsResponse, error)func (UnimplementedSecurityCenterServer) ListResourceValueConfigs
func (UnimplementedSecurityCenterServer) ListResourceValueConfigs(context.Context, *ListResourceValueConfigsRequest) (*ListResourceValueConfigsResponse, error)func (UnimplementedSecurityCenterServer) ListSources
func (UnimplementedSecurityCenterServer) ListSources(context.Context, *ListSourcesRequest) (*ListSourcesResponse, error)func (UnimplementedSecurityCenterServer) ListValuedResources
func (UnimplementedSecurityCenterServer) ListValuedResources(context.Context, *ListValuedResourcesRequest) (*ListValuedResourcesResponse, error)func (UnimplementedSecurityCenterServer) SetFindingState
func (UnimplementedSecurityCenterServer) SetFindingState(context.Context, *SetFindingStateRequest) (*Finding, error)func (UnimplementedSecurityCenterServer) SetIamPolicy
func (UnimplementedSecurityCenterServer) SetIamPolicy(context.Context, *iampb.SetIamPolicyRequest) (*iampb.Policy, error)func (UnimplementedSecurityCenterServer) SetMute
func (UnimplementedSecurityCenterServer) SetMute(context.Context, *SetMuteRequest) (*Finding, error)func (UnimplementedSecurityCenterServer) TestIamPermissions
func (UnimplementedSecurityCenterServer) TestIamPermissions(context.Context, *iampb.TestIamPermissionsRequest) (*iampb.TestIamPermissionsResponse, error)func (UnimplementedSecurityCenterServer) UpdateBigQueryExport
func (UnimplementedSecurityCenterServer) UpdateBigQueryExport(context.Context, *UpdateBigQueryExportRequest) (*BigQueryExport, error)func (UnimplementedSecurityCenterServer) UpdateExternalSystem
func (UnimplementedSecurityCenterServer) UpdateExternalSystem(context.Context, *UpdateExternalSystemRequest) (*ExternalSystem, error)func (UnimplementedSecurityCenterServer) UpdateFinding
func (UnimplementedSecurityCenterServer) UpdateFinding(context.Context, *UpdateFindingRequest) (*Finding, error)func (UnimplementedSecurityCenterServer) UpdateMuteConfig
func (UnimplementedSecurityCenterServer) UpdateMuteConfig(context.Context, *UpdateMuteConfigRequest) (*MuteConfig, error)func (UnimplementedSecurityCenterServer) UpdateNotificationConfig
func (UnimplementedSecurityCenterServer) UpdateNotificationConfig(context.Context, *UpdateNotificationConfigRequest) (*NotificationConfig, error)func (UnimplementedSecurityCenterServer) UpdateResourceValueConfig
func (UnimplementedSecurityCenterServer) UpdateResourceValueConfig(context.Context, *UpdateResourceValueConfigRequest) (*ResourceValueConfig, error)func (UnimplementedSecurityCenterServer) UpdateSecurityMarks
func (UnimplementedSecurityCenterServer) UpdateSecurityMarks(context.Context, *UpdateSecurityMarksRequest) (*SecurityMarks, error)func (UnimplementedSecurityCenterServer) UpdateSource
func (UnimplementedSecurityCenterServer) UpdateSource(context.Context, *UpdateSourceRequest) (*Source, error)UnsafeSecurityCenterServer
type UnsafeSecurityCenterServer interface {
// contains filtered or unexported methods
}UnsafeSecurityCenterServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to SecurityCenterServer will result in compilation errors.
UpdateBigQueryExportRequest
type UpdateBigQueryExportRequest struct {
// Required. The BigQuery export being updated.
BigQueryExport *BigQueryExport `protobuf:"bytes,1,opt,name=big_query_export,json=bigQueryExport,proto3" json:"big_query_export,omitempty"`
// The list of fields to be updated.
// If empty all mutable fields will be updated.
UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,2,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
// contains filtered or unexported fields
}Request message for updating a BigQuery export.
func (*UpdateBigQueryExportRequest) Descriptor
func (*UpdateBigQueryExportRequest) Descriptor() ([]byte, []int)Deprecated: Use UpdateBigQueryExportRequest.ProtoReflect.Descriptor instead.
func (*UpdateBigQueryExportRequest) GetBigQueryExport
func (x *UpdateBigQueryExportRequest) GetBigQueryExport() *BigQueryExportfunc (*UpdateBigQueryExportRequest) GetUpdateMask
func (x *UpdateBigQueryExportRequest) GetUpdateMask() *fieldmaskpb.FieldMaskfunc (*UpdateBigQueryExportRequest) ProtoMessage
func (*UpdateBigQueryExportRequest) ProtoMessage()func (*UpdateBigQueryExportRequest) ProtoReflect
func (x *UpdateBigQueryExportRequest) ProtoReflect() protoreflect.Messagefunc (*UpdateBigQueryExportRequest) Reset
func (x *UpdateBigQueryExportRequest) Reset()func (*UpdateBigQueryExportRequest) String
func (x *UpdateBigQueryExportRequest) String() stringUpdateExternalSystemRequest
type UpdateExternalSystemRequest struct {
// Required. The external system resource to update.
ExternalSystem *ExternalSystem `protobuf:"bytes,1,opt,name=external_system,json=externalSystem,proto3" json:"external_system,omitempty"`
// The FieldMask to use when updating the external system resource.
//
// If empty all mutable fields will be updated.
UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,2,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
// contains filtered or unexported fields
}Request message for updating a ExternalSystem resource.
func (*UpdateExternalSystemRequest) Descriptor
func (*UpdateExternalSystemRequest) Descriptor() ([]byte, []int)Deprecated: Use UpdateExternalSystemRequest.ProtoReflect.Descriptor instead.
func (*UpdateExternalSystemRequest) GetExternalSystem
func (x *UpdateExternalSystemRequest) GetExternalSystem() *ExternalSystemfunc (*UpdateExternalSystemRequest) GetUpdateMask
func (x *UpdateExternalSystemRequest) GetUpdateMask() *fieldmaskpb.FieldMaskfunc (*UpdateExternalSystemRequest) ProtoMessage
func (*UpdateExternalSystemRequest) ProtoMessage()func (*UpdateExternalSystemRequest) ProtoReflect
func (x *UpdateExternalSystemRequest) ProtoReflect() protoreflect.Messagefunc (*UpdateExternalSystemRequest) Reset
func (x *UpdateExternalSystemRequest) Reset()func (*UpdateExternalSystemRequest) String
func (x *UpdateExternalSystemRequest) String() stringUpdateFindingRequest
type UpdateFindingRequest struct {
// Required. The finding resource to update or create if it does not already
// exist. parent, security_marks, and update_time will be ignored.
//
// In the case of creation, the finding id portion of the name must be
// alphanumeric and less than or equal to 32 characters and greater than 0
// characters in length.
Finding *Finding `protobuf:"bytes,1,opt,name=finding,proto3" json:"finding,omitempty"`
// The FieldMask to use when updating the finding resource. This field should
// not be specified when creating a finding.
//
// When updating a finding, an empty mask is treated as updating all mutable
// fields and replacing source_properties. Individual source_properties can
// be added/updated by using "source_properties.Request message for updating or creating a finding.
func (*UpdateFindingRequest) Descriptor
func (*UpdateFindingRequest) Descriptor() ([]byte, []int)Deprecated: Use UpdateFindingRequest.ProtoReflect.Descriptor instead.
func (*UpdateFindingRequest) GetFinding
func (x *UpdateFindingRequest) GetFinding() *Findingfunc (*UpdateFindingRequest) GetUpdateMask
func (x *UpdateFindingRequest) GetUpdateMask() *fieldmaskpb.FieldMaskfunc (*UpdateFindingRequest) ProtoMessage
func (*UpdateFindingRequest) ProtoMessage()func (*UpdateFindingRequest) ProtoReflect
func (x *UpdateFindingRequest) ProtoReflect() protoreflect.Messagefunc (*UpdateFindingRequest) Reset
func (x *UpdateFindingRequest) Reset()func (*UpdateFindingRequest) String
func (x *UpdateFindingRequest) String() stringUpdateMuteConfigRequest
type UpdateMuteConfigRequest struct {
// Required. The mute config being updated.
MuteConfig *MuteConfig `protobuf:"bytes,1,opt,name=mute_config,json=muteConfig,proto3" json:"mute_config,omitempty"`
// The list of fields to be updated.
// If empty all mutable fields will be updated.
UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,2,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
// contains filtered or unexported fields
}Request message for updating a mute config.
func (*UpdateMuteConfigRequest) Descriptor
func (*UpdateMuteConfigRequest) Descriptor() ([]byte, []int)Deprecated: Use UpdateMuteConfigRequest.ProtoReflect.Descriptor instead.
func (*UpdateMuteConfigRequest) GetMuteConfig
func (x *UpdateMuteConfigRequest) GetMuteConfig() *MuteConfigfunc (*UpdateMuteConfigRequest) GetUpdateMask
func (x *UpdateMuteConfigRequest) GetUpdateMask() *fieldmaskpb.FieldMaskfunc (*UpdateMuteConfigRequest) ProtoMessage
func (*UpdateMuteConfigRequest) ProtoMessage()func (*UpdateMuteConfigRequest) ProtoReflect
func (x *UpdateMuteConfigRequest) ProtoReflect() protoreflect.Messagefunc (*UpdateMuteConfigRequest) Reset
func (x *UpdateMuteConfigRequest) Reset()func (*UpdateMuteConfigRequest) String
func (x *UpdateMuteConfigRequest) String() stringUpdateNotificationConfigRequest
type UpdateNotificationConfigRequest struct {
// Required. The notification config to update.
NotificationConfig *NotificationConfig `protobuf:"bytes,1,opt,name=notification_config,json=notificationConfig,proto3" json:"notification_config,omitempty"`
// The FieldMask to use when updating the notification config.
//
// If empty all mutable fields will be updated.
UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,2,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
// contains filtered or unexported fields
}Request message for updating a notification config.
func (*UpdateNotificationConfigRequest) Descriptor
func (*UpdateNotificationConfigRequest) Descriptor() ([]byte, []int)Deprecated: Use UpdateNotificationConfigRequest.ProtoReflect.Descriptor instead.
func (*UpdateNotificationConfigRequest) GetNotificationConfig
func (x *UpdateNotificationConfigRequest) GetNotificationConfig() *NotificationConfigfunc (*UpdateNotificationConfigRequest) GetUpdateMask
func (x *UpdateNotificationConfigRequest) GetUpdateMask() *fieldmaskpb.FieldMaskfunc (*UpdateNotificationConfigRequest) ProtoMessage
func (*UpdateNotificationConfigRequest) ProtoMessage()func (*UpdateNotificationConfigRequest) ProtoReflect
func (x *UpdateNotificationConfigRequest) ProtoReflect() protoreflect.Messagefunc (*UpdateNotificationConfigRequest) Reset
func (x *UpdateNotificationConfigRequest) Reset()func (*UpdateNotificationConfigRequest) String
func (x *UpdateNotificationConfigRequest) String() stringUpdateResourceValueConfigRequest
type UpdateResourceValueConfigRequest struct {
// Required. The resource value config being updated.
ResourceValueConfig *ResourceValueConfig `protobuf:"bytes,1,opt,name=resource_value_config,json=resourceValueConfig,proto3" json:"resource_value_config,omitempty"`
// The list of fields to be updated.
// If empty all mutable fields will be updated.
//
// To update nested fields, include the top level field in the mask
// For example, to update gcp_metadata.resource_type, include the
// "gcp_metadata" field mask
UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,2,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
// contains filtered or unexported fields
}Request message to update resource value config
func (*UpdateResourceValueConfigRequest) Descriptor
func (*UpdateResourceValueConfigRequest) Descriptor() ([]byte, []int)Deprecated: Use UpdateResourceValueConfigRequest.ProtoReflect.Descriptor instead.
func (*UpdateResourceValueConfigRequest) GetResourceValueConfig
func (x *UpdateResourceValueConfigRequest) GetResourceValueConfig() *ResourceValueConfigfunc (*UpdateResourceValueConfigRequest) GetUpdateMask
func (x *UpdateResourceValueConfigRequest) GetUpdateMask() *fieldmaskpb.FieldMaskfunc (*UpdateResourceValueConfigRequest) ProtoMessage
func (*UpdateResourceValueConfigRequest) ProtoMessage()func (*UpdateResourceValueConfigRequest) ProtoReflect
func (x *UpdateResourceValueConfigRequest) ProtoReflect() protoreflect.Messagefunc (*UpdateResourceValueConfigRequest) Reset
func (x *UpdateResourceValueConfigRequest) Reset()func (*UpdateResourceValueConfigRequest) String
func (x *UpdateResourceValueConfigRequest) String() stringUpdateSecurityMarksRequest
type UpdateSecurityMarksRequest struct {
// Required. The security marks resource to update.
SecurityMarks *SecurityMarks `protobuf:"bytes,1,opt,name=security_marks,json=securityMarks,proto3" json:"security_marks,omitempty"`
// The FieldMask to use when updating the security marks resource.
//
// The field mask must not contain duplicate fields.
// If empty or set to "marks", all marks will be replaced. Individual
// marks can be updated using "marks.Request message for updating a SecurityMarks resource.
func (*UpdateSecurityMarksRequest) Descriptor
func (*UpdateSecurityMarksRequest) Descriptor() ([]byte, []int)Deprecated: Use UpdateSecurityMarksRequest.ProtoReflect.Descriptor instead.
func (*UpdateSecurityMarksRequest) GetSecurityMarks
func (x *UpdateSecurityMarksRequest) GetSecurityMarks() *SecurityMarksfunc (*UpdateSecurityMarksRequest) GetUpdateMask
func (x *UpdateSecurityMarksRequest) GetUpdateMask() *fieldmaskpb.FieldMaskfunc (*UpdateSecurityMarksRequest) ProtoMessage
func (*UpdateSecurityMarksRequest) ProtoMessage()func (*UpdateSecurityMarksRequest) ProtoReflect
func (x *UpdateSecurityMarksRequest) ProtoReflect() protoreflect.Messagefunc (*UpdateSecurityMarksRequest) Reset
func (x *UpdateSecurityMarksRequest) Reset()func (*UpdateSecurityMarksRequest) String
func (x *UpdateSecurityMarksRequest) String() stringUpdateSourceRequest
type UpdateSourceRequest struct {
// Required. The source resource to update.
Source *Source `protobuf:"bytes,1,opt,name=source,proto3" json:"source,omitempty"`
// The FieldMask to use when updating the source resource.
//
// If empty all mutable fields will be updated.
UpdateMask *fieldmaskpb.FieldMask `protobuf:"bytes,2,opt,name=update_mask,json=updateMask,proto3" json:"update_mask,omitempty"`
// contains filtered or unexported fields
}Request message for updating a source.
func (*UpdateSourceRequest) Descriptor
func (*UpdateSourceRequest) Descriptor() ([]byte, []int)Deprecated: Use UpdateSourceRequest.ProtoReflect.Descriptor instead.
func (*UpdateSourceRequest) GetSource
func (x *UpdateSourceRequest) GetSource() *Sourcefunc (*UpdateSourceRequest) GetUpdateMask
func (x *UpdateSourceRequest) GetUpdateMask() *fieldmaskpb.FieldMaskfunc (*UpdateSourceRequest) ProtoMessage
func (*UpdateSourceRequest) ProtoMessage()func (*UpdateSourceRequest) ProtoReflect
func (x *UpdateSourceRequest) ProtoReflect() protoreflect.Messagefunc (*UpdateSourceRequest) Reset
func (x *UpdateSourceRequest) Reset()func (*UpdateSourceRequest) String
func (x *UpdateSourceRequest) String() stringValuedResource
type ValuedResource struct {
// Valued resource name, for example,
//
// e.g.:
// `organizations/123/simulations/456/valuedResources/789`
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The
// [full resource
// name](https://cloud.google.com/apis/design/resource_names#full_resource_name)
// of the valued resource.
Resource string `protobuf:"bytes,2,opt,name=resource,proto3" json:"resource,omitempty"`
// The [resource
// type](https://cloud.google.com/asset-inventory/docs/supported-asset-types)
// of the valued resource.
ResourceType string `protobuf:"bytes,3,opt,name=resource_type,json=resourceType,proto3" json:"resource_type,omitempty"`
// Human-readable name of the valued resource.
DisplayName string `protobuf:"bytes,4,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
// How valuable this resource is.
ResourceValue ValuedResource_ResourceValue `protobuf:"varint,5,opt,name=resource_value,json=resourceValue,proto3,enum=google.cloud.securitycenter.v2.ValuedResource_ResourceValue" json:"resource_value,omitempty"`
// Exposed score for this valued resource. A value of 0 means no exposure was
// detected exposure.
ExposedScore float64 `protobuf:"fixed64,6,opt,name=exposed_score,json=exposedScore,proto3" json:"exposed_score,omitempty"`
// List of resource value configurations' metadata used to determine the value
// of this resource. Maximum of 100.
ResourceValueConfigsUsed []*ResourceValueConfigMetadata `protobuf:"bytes,7,rep,name=resource_value_configs_used,json=resourceValueConfigsUsed,proto3" json:"resource_value_configs_used,omitempty"`
// contains filtered or unexported fields
}A resource that is determined to have value to a user's system
func (*ValuedResource) Descriptor
func (*ValuedResource) Descriptor() ([]byte, []int)Deprecated: Use ValuedResource.ProtoReflect.Descriptor instead.
func (*ValuedResource) GetDisplayName
func (x *ValuedResource) GetDisplayName() stringfunc (*ValuedResource) GetExposedScore
func (x *ValuedResource) GetExposedScore() float64func (*ValuedResource) GetName
func (x *ValuedResource) GetName() stringfunc (*ValuedResource) GetResource
func (x *ValuedResource) GetResource() stringfunc (*ValuedResource) GetResourceType
func (x *ValuedResource) GetResourceType() stringfunc (*ValuedResource) GetResourceValue
func (x *ValuedResource) GetResourceValue() ValuedResource_ResourceValuefunc (*ValuedResource) GetResourceValueConfigsUsed
func (x *ValuedResource) GetResourceValueConfigsUsed() []*ResourceValueConfigMetadatafunc (*ValuedResource) ProtoMessage
func (*ValuedResource) ProtoMessage()func (*ValuedResource) ProtoReflect
func (x *ValuedResource) ProtoReflect() protoreflect.Messagefunc (*ValuedResource) Reset
func (x *ValuedResource) Reset()func (*ValuedResource) String
func (x *ValuedResource) String() stringValuedResource_ResourceValue
type ValuedResource_ResourceValue int32How valuable the resource is.
ValuedResource_RESOURCE_VALUE_UNSPECIFIED, ValuedResource_RESOURCE_VALUE_LOW, ValuedResource_RESOURCE_VALUE_MEDIUM, ValuedResource_RESOURCE_VALUE_HIGH
const (
// The resource value isn't specified.
ValuedResource_RESOURCE_VALUE_UNSPECIFIED ValuedResource_ResourceValue = 0
// This is a low-value resource.
ValuedResource_RESOURCE_VALUE_LOW ValuedResource_ResourceValue = 1
// This is a medium-value resource.
ValuedResource_RESOURCE_VALUE_MEDIUM ValuedResource_ResourceValue = 2
// This is a high-value resource.
ValuedResource_RESOURCE_VALUE_HIGH ValuedResource_ResourceValue = 3
)func (ValuedResource_ResourceValue) Descriptor
func (ValuedResource_ResourceValue) Descriptor() protoreflect.EnumDescriptorfunc (ValuedResource_ResourceValue) Enum
func (x ValuedResource_ResourceValue) Enum() *ValuedResource_ResourceValuefunc (ValuedResource_ResourceValue) EnumDescriptor
func (ValuedResource_ResourceValue) EnumDescriptor() ([]byte, []int)Deprecated: Use ValuedResource_ResourceValue.Descriptor instead.
func (ValuedResource_ResourceValue) Number
func (x ValuedResource_ResourceValue) Number() protoreflect.EnumNumberfunc (ValuedResource_ResourceValue) String
func (x ValuedResource_ResourceValue) String() stringfunc (ValuedResource_ResourceValue) Type
func (ValuedResource_ResourceValue) Type() protoreflect.EnumTypeVertexAi
type VertexAi struct {
// Datasets associated with the finding.
Datasets []*VertexAi_Dataset `protobuf:"bytes,1,rep,name=datasets,proto3" json:"datasets,omitempty"`
// Pipelines associated with the finding.
Pipelines []*VertexAi_Pipeline `protobuf:"bytes,2,rep,name=pipelines,proto3" json:"pipelines,omitempty"`
// contains filtered or unexported fields
}Vertex AI-related information associated with the finding.
func (*VertexAi) Descriptor
Deprecated: Use VertexAi.ProtoReflect.Descriptor instead.
func (*VertexAi) GetDatasets
func (x *VertexAi) GetDatasets() []*VertexAi_Datasetfunc (*VertexAi) GetPipelines
func (x *VertexAi) GetPipelines() []*VertexAi_Pipelinefunc (*VertexAi) ProtoMessage
func (*VertexAi) ProtoMessage()func (*VertexAi) ProtoReflect
func (x *VertexAi) ProtoReflect() protoreflect.Messagefunc (*VertexAi) Reset
func (x *VertexAi) Reset()func (*VertexAi) String
VertexAi_Dataset
type VertexAi_Dataset struct {
// Resource name of the dataset, e.g.
// projects/{project}/locations/{location}/datasets/2094040236064505856
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The user defined display name of dataset, e.g. plants-dataset
DisplayName string `protobuf:"bytes,2,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
// Data source, such as a BigQuery source URI, e.g.
// bq://scc-nexus-test.AIPPtest.gsod
Source string `protobuf:"bytes,3,opt,name=source,proto3" json:"source,omitempty"`
// contains filtered or unexported fields
}Vertex AI dataset associated with the finding.
func (*VertexAi_Dataset) Descriptor
func (*VertexAi_Dataset) Descriptor() ([]byte, []int)Deprecated: Use VertexAi_Dataset.ProtoReflect.Descriptor instead.
func (*VertexAi_Dataset) GetDisplayName
func (x *VertexAi_Dataset) GetDisplayName() stringfunc (*VertexAi_Dataset) GetName
func (x *VertexAi_Dataset) GetName() stringfunc (*VertexAi_Dataset) GetSource
func (x *VertexAi_Dataset) GetSource() stringfunc (*VertexAi_Dataset) ProtoMessage
func (*VertexAi_Dataset) ProtoMessage()func (*VertexAi_Dataset) ProtoReflect
func (x *VertexAi_Dataset) ProtoReflect() protoreflect.Messagefunc (*VertexAi_Dataset) Reset
func (x *VertexAi_Dataset) Reset()func (*VertexAi_Dataset) String
func (x *VertexAi_Dataset) String() stringVertexAi_Pipeline
type VertexAi_Pipeline struct {
// Resource name of the pipeline, e.g.
// projects/{project}/locations/{location}/trainingPipelines/5253428229225578496
Name string `protobuf:"bytes,1,opt,name=name,proto3" json:"name,omitempty"`
// The user-defined display name of pipeline, e.g. plants-classification
DisplayName string `protobuf:"bytes,2,opt,name=display_name,json=displayName,proto3" json:"display_name,omitempty"`
// contains filtered or unexported fields
}Vertex AI training pipeline associated with the finding.
func (*VertexAi_Pipeline) Descriptor
func (*VertexAi_Pipeline) Descriptor() ([]byte, []int)Deprecated: Use VertexAi_Pipeline.ProtoReflect.Descriptor instead.
func (*VertexAi_Pipeline) GetDisplayName
func (x *VertexAi_Pipeline) GetDisplayName() stringfunc (*VertexAi_Pipeline) GetName
func (x *VertexAi_Pipeline) GetName() stringfunc (*VertexAi_Pipeline) ProtoMessage
func (*VertexAi_Pipeline) ProtoMessage()func (*VertexAi_Pipeline) ProtoReflect
func (x *VertexAi_Pipeline) ProtoReflect() protoreflect.Messagefunc (*VertexAi_Pipeline) Reset
func (x *VertexAi_Pipeline) Reset()func (*VertexAi_Pipeline) String
func (x *VertexAi_Pipeline) String() stringVulnerability
type Vulnerability struct {
// CVE stands for Common Vulnerabilities and Exposures
// (https://cve.mitre.org/about/)
Cve *Cve `protobuf:"bytes,1,opt,name=cve,proto3" json:"cve,omitempty"`
// The offending package is relevant to the finding.
OffendingPackage *Package `protobuf:"bytes,2,opt,name=offending_package,json=offendingPackage,proto3" json:"offending_package,omitempty"`
// The fixed package is relevant to the finding.
FixedPackage *Package `protobuf:"bytes,3,opt,name=fixed_package,json=fixedPackage,proto3" json:"fixed_package,omitempty"`
// The security bulletin is relevant to this finding.
SecurityBulletin *SecurityBulletin `protobuf:"bytes,4,opt,name=security_bulletin,json=securityBulletin,proto3" json:"security_bulletin,omitempty"`
// Provider provided risk_score based on multiple factors. The higher the risk
// score, the more risky the vulnerability is.
ProviderRiskScore int64 `protobuf:"varint,5,opt,name=provider_risk_score,json=providerRiskScore,proto3" json:"provider_risk_score,omitempty"`
// Represents whether the vulnerability is reachable (detected via static
// analysis)
Reachable bool `protobuf:"varint,6,opt,name=reachable,proto3" json:"reachable,omitempty"`
// Represents one or more Common Weakness Enumeration (CWE) information on
// this vulnerability.
Cwes []*Cwe `protobuf:"bytes,7,rep,name=cwes,proto3" json:"cwes,omitempty"`
// contains filtered or unexported fields
}Refers to common vulnerability fields e.g. cve, cvss, cwe etc.
func (*Vulnerability) Descriptor
func (*Vulnerability) Descriptor() ([]byte, []int)Deprecated: Use Vulnerability.ProtoReflect.Descriptor instead.
func (*Vulnerability) GetCve
func (x *Vulnerability) GetCve() *Cvefunc (*Vulnerability) GetCwes
func (x *Vulnerability) GetCwes() []*Cwefunc (*Vulnerability) GetFixedPackage
func (x *Vulnerability) GetFixedPackage() *Packagefunc (*Vulnerability) GetOffendingPackage
func (x *Vulnerability) GetOffendingPackage() *Packagefunc (*Vulnerability) GetProviderRiskScore
func (x *Vulnerability) GetProviderRiskScore() int64func (*Vulnerability) GetReachable
func (x *Vulnerability) GetReachable() boolfunc (*Vulnerability) GetSecurityBulletin
func (x *Vulnerability) GetSecurityBulletin() *SecurityBulletinfunc (*Vulnerability) ProtoMessage
func (*Vulnerability) ProtoMessage()func (*Vulnerability) ProtoReflect
func (x *Vulnerability) ProtoReflect() protoreflect.Messagefunc (*Vulnerability) Reset
func (x *Vulnerability) Reset()func (*Vulnerability) String
func (x *Vulnerability) String() string