New creates a new Service.

NewService creates a new Service.

See, edit, configure, and delete your Google Cloud data and see the email address for your Google Account.

AnalysisCompleted: Indicates which analysis completed successfully.

Artifact: Artifact describes a build product.

Assessment: Assessment provides all information that is related to a single vulnerability for this product.

Attestation: Occurrence that represents a single "attestation".

AttestationAuthority: Note kind that represents a logical attestation "role" or "authority".

AttestationAuthorityHint: This submessage provides human-readable hints about the purpose of the AttestationAuthority.

Basis: Basis describes the base image portion (Note) of the DockerImage relationship.

Binding: Associates `members`, or principals, with a `role`.

BuildDetails: Message encapsulating build provenance details.

BuildProvenance: Provenance of a build.

BuildSignature: Message encapsulating the signature of the verified build.

BuildStep: A step in the build pipeline.

BuildType: Note holding the version of the provider's builder and the signature of the provenance message in linked BuildDetails.

CisBenchmark: A compliance check that is a CIS benchmark.

Command: Command describes a step performed as part of the build pipeline.

Completeness: Indicates that the builder claims certain fields in this message to be complete.

ComplianceNote: ComplianceNote encapsulates all information about a specific compliance check.

ComplianceOccurrence: An indication that the compliance checks in the associated ComplianceNote were not satisfied for particular resources or a specified reason.

ComplianceVersion: Describes the CIS benchmark version that is applicable to a given OS and os version.

ContaineranalysisGoogleDevtoolsCloudbuildV1ApprovalConfig: ApprovalConfig describes configuration for manual approval of a build.

ContaineranalysisGoogleDevtoolsCloudbuildV1ApprovalResult: ApprovalResult describes the decision and associated metadata of a manual approval of a build.

ContaineranalysisGoogleDevtoolsCloudbuildV1Artifacts: Artifacts produced by a build that should be uploaded upon successful completion of all build steps.

ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsArtifactObjects: Files in the workspace to upload to Cloud Storage upon successful completion of all build steps.

ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsGoModule: Go module to upload to Artifact Registry upon successful completion of all build steps.

ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsMavenArtifact: A Maven artifact to upload to Artifact Registry upon successful completion of all build steps.

ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsNpmPackage: Npm package to upload to Artifact Registry upon successful completion of all build steps.

ContaineranalysisGoogleDevtoolsCloudbuildV1ArtifactsPythonPackage: Python package to upload to Artifact Registry upon successful completion of all build steps.

ContaineranalysisGoogleDevtoolsCloudbuildV1Build: A build resource in the Cloud Build API.

ContaineranalysisGoogleDevtoolsCloudbuildV1BuildApproval: BuildApproval describes a build's approval configuration, state, and result.

ContaineranalysisGoogleDevtoolsCloudbuildV1BuildFailureInfo: A fatal problem encountered during the execution of the build.

ContaineranalysisGoogleDevtoolsCloudbuildV1BuildOptions: Optional arguments to enable specific features of builds.

ContaineranalysisGoogleDevtoolsCloudbuildV1BuildOptionsPoolOption: Details about how a build should be executed on a `WorkerPool`.

ContaineranalysisGoogleDevtoolsCloudbuildV1BuildStep: A step in the build pipeline.

ContaineranalysisGoogleDevtoolsCloudbuildV1BuildWarning: A non-fatal problem encountered during the execution of the build.

ContaineranalysisGoogleDevtoolsCloudbuildV1BuiltImage: An image built by the pipeline.

ContaineranalysisGoogleDevtoolsCloudbuildV1ConnectedRepository: Location of the source in a 2nd-gen Google Cloud Build repository resource.

ContaineranalysisGoogleDevtoolsCloudbuildV1Dependency: A dependency that the Cloud Build worker will fetch before executing user steps.

ContaineranalysisGoogleDevtoolsCloudbuildV1DependencyGitSourceDependency: Represents a git repository as a build dependency.

ContaineranalysisGoogleDevtoolsCloudbuildV1DependencyGitSourceRepository: A repository for a git source.

ContaineranalysisGoogleDevtoolsCloudbuildV1DeveloperConnectConfig: This config defines the location of a source through Developer Connect.

ContaineranalysisGoogleDevtoolsCloudbuildV1FileHashes: Container message for hashes of byte content of files, used in SourceProvenance messages to verify integrity of source input to the build.

ContaineranalysisGoogleDevtoolsCloudbuildV1GitConfig: GitConfig is a configuration for git operations.

ContaineranalysisGoogleDevtoolsCloudbuildV1GitConfigHttpConfig: HttpConfig is a configuration for HTTP related git operations.

ContaineranalysisGoogleDevtoolsCloudbuildV1GitSource: Location of the source in any accessible Git repository.

ContaineranalysisGoogleDevtoolsCloudbuildV1Hash: Container message for hash values.

ContaineranalysisGoogleDevtoolsCloudbuildV1InlineSecret: Pairs a set of secret environment variables mapped to encrypted values with the Cloud KMS key to use to decrypt the value.

ContaineranalysisGoogleDevtoolsCloudbuildV1RepoSource: Location of the source in a Google Cloud Source Repository.

ContaineranalysisGoogleDevtoolsCloudbuildV1Results: Artifacts created by the build pipeline.

ContaineranalysisGoogleDevtoolsCloudbuildV1Secret: Pairs a set of secret environment variables containing encrypted values with the Cloud KMS key to use to decrypt the value.

ContaineranalysisGoogleDevtoolsCloudbuildV1SecretManagerSecret: Pairs a secret environment variable with a SecretVersion in Secret Manager.

ContaineranalysisGoogleDevtoolsCloudbuildV1Secrets: Secrets and secret environment variables.

ContaineranalysisGoogleDevtoolsCloudbuildV1Source: Location of the source in a supported storage service.

ContaineranalysisGoogleDevtoolsCloudbuildV1SourceProvenance: Provenance of the source.

ContaineranalysisGoogleDevtoolsCloudbuildV1StorageSource: Location of the source in an archive file in Cloud Storage.

ContaineranalysisGoogleDevtoolsCloudbuildV1StorageSourceManifest: Location of the source manifest in Cloud Storage.

ContaineranalysisGoogleDevtoolsCloudbuildV1TimeSpan: Start and end times for a build execution phase.

ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedGoModule: A Go module artifact uploaded to Artifact Registry using the GoModule directive.

ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedMavenArtifact: A Maven artifact uploaded using the MavenArtifact directive.

ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedNpmPackage: An npm package uploaded to Artifact Registry using the NpmPackage directive.

ContaineranalysisGoogleDevtoolsCloudbuildV1UploadedPythonPackage: Artifact uploaded using the PythonPackage directive.

ContaineranalysisGoogleDevtoolsCloudbuildV1Volume: Volume describes a Docker container volume which is mounted into build steps in order to persist files across build step execution.

CreateOperationRequest: Request for creating an operation.

CVSS: Common Vulnerability Scoring System.

Deployable: An artifact that can be deployed in some runtime.

Deployment: The period during which some deployable was active in a runtime.

Derived: Derived describes the derived image portion (Occurrence) of the DockerImage relationship.

Detail: Identifies all occurrences of this vulnerability in the package for a specific distro/location For example: glibc in cpe:/o:debian:debian_linux:8 for versions 2.1 - 2.2.

Digest: Digest information.

Discovered: Provides information about the scan status of a discovered resource.

Discovery: A note that indicates a type of analysis a provider would perform.

Distribution: This represents a particular channel of distribution for a given package.

DocumentNote: DocumentNote represents an SPDX Document Creation Infromation section: https://spdx.github.io/spdx-spec/2-document-creation-information/.

DocumentOccurrence: DocumentOccurrence represents an SPDX Document Creation Information section: https://spdx.github.io/spdx-spec/2-document-creation-information/.

DSSEAttestationNote: A note describing an attestation.

DSSEAttestationOccurrence: An occurrence describing an attestation on a resource.

DSSEHint: This submessage provides human-readable hints about the purpose of the authority.

Empty: A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs.

Envelope: MUST match https://github.com/secure-systems-lab/dsse/blob/master/envelope.proto.

EnvelopeSignature: A DSSE signature.

Expr: Represents a textual expression in the Common Expression Language (CEL) syntax.

ExternalRef: An External Reference allows a Package to reference an external source of additional information, metadata, enumerations, asset identifiers, or downloadable content believed to be relevant to the Package.

FileHashes: Container message for hashes of byte content of files, used in Source messages to verify integrity of source input to the build.

FileLocation: Indicates the location at which a package was found.

FileNote: FileNote represents an SPDX File Information section: https://spdx.github.io/spdx-spec/4-file-information/.

FileOccurrence: FileOccurrence represents an SPDX File Information section: https://spdx.github.io/spdx-spec/4-file-information/.

Fingerprint: A set of properties that uniquely identify a given Docker image.

GetIamPolicyRequest: Request message for `GetIamPolicy` method.

GetPolicyOptions: Encapsulates settings provided to GetIamPolicy.

GetVulnzOccurrencesSummaryResponse: A summary of how many vulnz occurrences there are per severity type.

GoogleDevtoolsContaineranalysisV1alpha1AliasContext: An alias to a repo revision.

GoogleDevtoolsContaineranalysisV1alpha1CloudRepoSourceContext: A CloudRepoSourceContext denotes a particular revision in a Google Cloud Source Repo.

GoogleDevtoolsContaineranalysisV1alpha1GerritSourceContext: A SourceContext referring to a Gerrit project.

GoogleDevtoolsContaineranalysisV1alpha1GitSourceContext: A GitSourceContext denotes a particular revision in a third party Git repository (e.g., GitHub).

GoogleDevtoolsContaineranalysisV1alpha1OperationMetadata: Metadata for all operations used and required for all operations that created by Container Analysis Providers.

GoogleDevtoolsContaineranalysisV1alpha1ProjectRepoId: Selects a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within that project.

GoogleDevtoolsContaineranalysisV1alpha1RepoId: A unique identifier for a Cloud Repo.

GoogleDevtoolsContaineranalysisV1alpha1SlsaProvenanceZeroTwoSlsaBuilder: Identifies the entity that executed the recipe, which is trusted to have correctly performed the operation and populated this provenance.

GoogleDevtoolsContaineranalysisV1alpha1SlsaProvenanceZeroTwoSlsaCompleteness: Indicates that the builder claims certain fields in this message to be complete.

GoogleDevtoolsContaineranalysisV1alpha1SlsaProvenanceZeroTwoSlsaConfigSource: Describes where the config file that kicked off the build came from.

GoogleDevtoolsContaineranalysisV1alpha1SlsaProvenanceZeroTwoSlsaInvocation: Identifies the event that kicked off the build.

GoogleDevtoolsContaineranalysisV1alpha1SlsaProvenanceZeroTwoSlsaMaterial: The collection of artifacts that influenced the build including sources, dependencies, build tools, base images, and so on.

GoogleDevtoolsContaineranalysisV1alpha1SlsaProvenanceZeroTwoSlsaMetadata: Other properties of the build.

GoogleDevtoolsContaineranalysisV1alpha1SourceContext: A SourceContext is a reference to a tree of files.

Hash: Container message for hash values.

IdentifierHelper: Helps in identifying the underlying product.

Installation: This represents how a particular software package may be installed on a system.

InTotoStatement: Spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelope.payload.

Justification: Justification provides the justification when the state of the assessment if NOT_AFFECTED.

Layer: Layer holds metadata specific to a layer of a Docker image.

License: License information.

ListNoteOccurrencesResponse: Response including listed occurrences for a note.

ListNotesResponse: Response including listed notes.

ListOccurrencesResponse: Response including listed active occurrences.

ListScanConfigsResponse: A list of scan configs for the project.

Location: An occurrence of a particular package installation found within a system's filesystem.

Material: Material is a material used in the generation of the provenance.

Metadata: Other properties of the build.

NonCompliantFile: Details about files that caused a compliance check to fail.

Note: Provides a detailed description of a `Note`.

Occurrence: `Occurrence` includes information about analysis occurrences for an image.

Operation: This resource represents a long-running operation that is the result of a network API call.

Package: This represents a particular package that is distributed over various channels.

PackageInfoNote: PackageInfoNote represents an SPDX Package Information section: https://spdx.github.io/spdx-spec/3-package-information/.

PackageInfoOccurrence: PackageInfoOccurrence represents an SPDX Package Information section: https://spdx.github.io/spdx-spec/3-package-information/.

PackageIssue: This message wraps a location affected by a vulnerability and its associated fix (if one is available).

PgpSignedAttestation: An attestation wrapper with a PGP-compatible signature.

Policy: An Identity and Access Management (IAM) policy, which specifies access controls for Google Cloud resources.

Product: Product contains information about a product and how to uniquely identify it.

Publisher: Publisher contains information about the publisher of this Note.

Recipe: Steps taken to build the artifact.

RelatedUrl: Metadata for any related URL information.

RelationshipNote: RelationshipNote represents an SPDX Relationship section: https://spdx.github.io/spdx-spec/7-relationships-between-SPDX-elements/.

RelationshipOccurrence: RelationshipOccurrence represents an SPDX Relationship section: https://spdx.github.io/spdx-spec/7-relationships-between-SPDX-elements/.

Remediation: Specifies details on how to handle (and presumably, fix) a vulnerability.

RepoSource: RepoSource describes the location of the source in a Google Cloud Source Repository.

Resource: Resource is an entity that can have metadata.

SbomReferenceIntotoPayload: The actual payload that contains the SBOM Reference data.

SbomReferenceIntotoPredicate: A predicate which describes the SBOM being referenced.

SBOMReferenceNote: The note representing an SBOM reference.

SBOMReferenceOccurrence: The occurrence representing an SBOM reference as applied to a specific resource.

SBOMStatus: The status of an SBOM generation.

ScanConfig: Indicates various scans and whether they are turned on or off.

SetIamPolicyRequest: Request message for `SetIamPolicy` method.

SeverityCount: The number of occurrences created for a specific severity.

SlsaBuilder: SlsaBuilder encapsulates the identity of the builder of this provenance.

SlsaCompleteness: Indicates that the builder claims certain fields in this message to be complete.

SlsaMetadata: Other properties of the build.

SlsaProvenance: SlsaProvenance is the slsa provenance as defined by the slsa spec.

SlsaProvenanceV1: Keep in sync with schema at https://github.com/slsa-framework/slsa/blob/main/docs/provenance/schema/v1/provenance.proto Builder renamed to ProvenanceBuilder because of Java conflicts.

SlsaProvenanceZeroTwo: SlsaProvenanceZeroTwo is the slsa provenance as defined by the slsa spec.

SlsaRecipe: Steps taken to build the artifact.

Source: Source describes the location of the source used for the build.

Status: The `Status` type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs.

StorageSource: StorageSource describes the location of the source in an archive file in Google Cloud Storage.

Subject: Subject refers to the subject of the intoto statement.

TestIamPermissionsRequest: Request message for `TestIamPermissions` method.

TestIamPermissionsResponse: Response message for `TestIamPermissions` method.

TimeSpan: Start and end times for a build execution phase.

UpdateOperationRequest: Request for updating an existing operation.

UpgradeDistribution: The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE).

UpgradeNote: An Upgrade Note represents a potential upgrade of a package to a given version.

UpgradeOccurrence: An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade.

URI: An URI message.

Version: Version contains structured information about the version of the package.

VexAssessment: VexAssessment provides all publisher provided Vex information that is related to this vulnerability.

Volume: Volume describes a Docker container volume which is mounted into build steps in order to persist files across build step execution.

VulnerabilityAssessmentNote: A single VulnerabilityAssessmentNote represents one particular product's vulnerability assessment for one CVE.

VulnerabilityAttestation: The status of a vulnerability attestation generation.

VulnerabilityDetails: Used by Occurrence to point to where the vulnerability exists and how to fix it.

VulnerabilityLocation: The location of the vulnerability.

VulnerabilityType: VulnerabilityType provides metadata about a security vulnerability.