Send feedback
Regulatory support in Secure Source Manager
Stay organized with collections
Save and categorize content based on your preferences.
This document describes the features, configurations and APIs in Secure Source Manager that align
with the controls for supported control packages. This document assumes that
you're using Assured Workloads .
Show All
Data Boundary for FedRAMP High
Supported services
The following table lists the Secure Source Manager APIs and versions that meet the requirements of Data Boundary for FedRAMP High.
Service
Version
Status
securesourcemanager.googleapis.com
v1
SUPPORTED
Compliance supported regions
Secure Source Manager is available for Data Boundary for FedRAMP High in the following Google Cloud regions:
API fields for sensitive data
Resource: securesourcemanager.googleapis.com/Instance
The following table specifies the API resources and fields that are designed to handle data that is protected under Data Boundary for FedRAMP High.
API Method
Protected fields
Service: securesourcemanager.googleapis.com
REST API: GET /v1/{parent=projects/*/locations/*}/instances
RPC methods:
google.cloud.securesourcemanager.v1.SecureSourceManager.ListInstances
Resource: securesourcemanager.googleapis.com/Issue
The following table specifies the API resources and fields that are designed to handle data that is protected under Data Boundary for FedRAMP High.
API Method
Protected fields
Service: securesourcemanager.googleapis.com
REST API: GET /v1/{parent=projects/*/locations/*/repositories/*}/issues
RPC methods:
google.cloud.securesourcemanager.v1.SecureSourceManager.ListIssues
Service: securesourcemanager.googleapis.com
REST API: PATCH /v1/{issue.name=projects/*/locations/*/repositories/*/issues/*}
RPC methods:
google.cloud.securesourcemanager.v1.SecureSourceManager.UpdateIssue
Service: securesourcemanager.googleapis.com
REST API: POST /v1/{parent=projects/*/locations/*/repositories/*}/issues
RPC methods:
google.cloud.securesourcemanager.v1.SecureSourceManager.CreateIssue
The following table specifies the API resources and fields that are designed to handle data that is protected under Data Boundary for FedRAMP High.
API Method
Protected fields
Service: securesourcemanager.googleapis.com
REST API: PATCH /v1/{issue_comment.name=projects/*/locations/*/repositories/*/issues/*/issueComments/*}
RPC methods:
google.cloud.securesourcemanager.v1.SecureSourceManager.UpdateIssueComment
Service: securesourcemanager.googleapis.com
REST API: POST /v1/{parent=projects/*/locations/*/repositories/*/issues/*}/issueComments
RPC methods:
google.cloud.securesourcemanager.v1.SecureSourceManager.CreateIssueComment
Resource: securesourcemanager.googleapis.com/PullRequest
The following table specifies the API resources and fields that are designed to handle data that is protected under Data Boundary for FedRAMP High.
API Method
Protected fields
Service: securesourcemanager.googleapis.com
REST API: PATCH /v1/{pull_request.name=projects/*/locations/*/repositories/*/pullRequests/*}
RPC methods:
google.cloud.securesourcemanager.v1.SecureSourceManager.UpdatePullRequest
pullRequest.base.refpullRequest.bodypullRequest.head.refpullRequest.title
Service: securesourcemanager.googleapis.com
REST API: POST /v1/{parent=projects/*/locations/*/repositories/*}/pullRequests
RPC methods:
google.cloud.securesourcemanager.v1.SecureSourceManager.CreatePullRequest
pullRequest.base.refpullRequest.bodypullRequest.head.refpullRequest.title
The following table specifies the API resources and fields that are designed to handle data that is protected under Data Boundary for FedRAMP High.
API Method
Protected fields
Service: securesourcemanager.googleapis.com
REST API: PATCH /v1/{pull_request_comment.name=projects/*/locations/*/repositories/*/pullRequests/*/pullRequestComments/*}
RPC methods:
google.cloud.securesourcemanager.v1.SecureSourceManager.UpdatePullRequestComment
pullRequestComment.code.bodypullRequestComment.code.position.pathpullRequestComment.comment.bodypullRequestComment.review.body
Service: securesourcemanager.googleapis.com
REST API: POST /v1/{parent=projects/*/locations/*/repositories/*/pullRequests/*}/pullRequestComments
RPC methods:
google.cloud.securesourcemanager.v1.SecureSourceManager.CreatePullRequestComment
pullRequestComment.code.bodypullRequestComment.code.position.pathpullRequestComment.comment.bodypullRequestComment.review.body
Service: securesourcemanager.googleapis.com
REST API: POST /v1/{parent=projects/*/locations/*/repositories/*/pullRequests/*}/pullRequestComments:batchCreate
RPC methods:
google.cloud.securesourcemanager.v1.SecureSourceManager.BatchCreatePullRequestComments
requests.pullRequestComment.code.bodyrequests.pullRequestComment.code.position.pathrequests.pullRequestComment.comment.bodyrequests.pullRequestComment.review.body
Resource: securesourcemanager.googleapis.com/Repository
The following table specifies the API resources and fields that are designed to handle data that is protected under Data Boundary for FedRAMP High.
API Method
Protected fields
Service: securesourcemanager.googleapis.com
REST API: GET /v1/{parent=projects/*/locations/*}/repositories
RPC methods:
google.cloud.securesourcemanager.v1.SecureSourceManager.ListRepositories
Service: securesourcemanager.googleapis.com
REST API: PATCH /v1/{repository.name=projects/*/locations/*/repositories/*}
RPC methods:
google.cloud.securesourcemanager.v1.SecureSourceManager.UpdateRepository
Service: securesourcemanager.googleapis.com
REST API: POST /v1/{parent=projects/*/locations/*}/repositories
RPC methods:
google.cloud.securesourcemanager.v1.SecureSourceManager.CreateRepository
What's next
Send feedback
Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License , and code samples are licensed under the Apache 2.0 License . For details, see the Google Developers Site Policies . Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2026-03-06 UTC.
Need to tell us more?
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2026-03-06 UTC."],[],[]]
