New creates a new Service.

NewService creates a new Service.

See, edit, configure, and delete your Google Cloud data and see the email address for your Google Account.

AliasContext: An alias to a repo revision.

AnalysisCompleted: Indicates which analysis completed successfully.

AnalyzePackagesMetadata: AnalyzePackagesMetadata contains metadata for an active scan of a container image.

AnalyzePackagesMetadataV1: AnalyzePackagesMetadata contains metadata for an active scan of a container image.

AnalyzePackagesRequestV1: AnalyzePackagesRequest is the request to analyze a list of packages and create Vulnerability Occurrences for it.

AnalyzePackagesResponse: AnalyzePackagesResponse contains the information necessary to find results for the given scan.

AnalyzePackagesResponseV1: AnalyzePackagesResponse contains the information necessary to find results for the given scan.

Artifact: Artifact describes a build product.

AttestationOccurrence: Occurrence that represents a single "attestation".

BaseImage: BaseImage describes a base image of a container image.

BuildOccurrence: Details of a build occurrence.

BuildProvenance: Provenance of a build.

Category: The category to which the update belongs.

CloudRepoSourceContext: A CloudRepoSourceContext denotes a particular revision in a Google Cloud Source Repo.

Command: Command describes a step performed as part of the build pipeline.

Completeness: Indicates that the builder claims certain fields in this message to be complete.

ComplianceOccurrence: An indication that the compliance checks in the associated ComplianceNote were not satisfied for particular resources or a specified reason.

ComplianceVersion: Describes the CIS benchmark version that is applicable to a given OS and os version.

CVSS: Common Vulnerability Scoring System.

DeploymentOccurrence: The period during which some deployable was active in a runtime.

DiscoveryOccurrence: Provides information about the analysis status of a discovered resource.

DSSEAttestationOccurrence: Deprecated.

Empty: A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs.

Envelope: MUST match https://github.com/secure-systems-lab/dsse/blob/master/envelope.proto.

FileHashes: Container message for hashes of byte content of files, used in source messages to verify integrity of source input to the build.

FileLocation: Indicates the location at which a package was found.

Fingerprint: A set of properties that uniquely identify a given Docker image.

GerritSourceContext: A SourceContext referring to a Gerrit project.

GitSourceContext: A GitSourceContext denotes a particular revision in a third party Git repository (e.g., GitHub).

GrafeasV1BaseImage: BaseImage describes a base image of a container image.

GrafeasV1FileLocation: Indicates the location at which a package was found.

GrafeasV1LayerDetails: Details about the layer a package was found in.

GrafeasV1SlsaProvenanceZeroTwoSlsaBuilder: Identifies the entity that executed the recipe, which is trusted to have correctly performed the operation and populated this provenance.

GrafeasV1SlsaProvenanceZeroTwoSlsaCompleteness: Indicates that the builder claims certain fields in this message to be complete.

GrafeasV1SlsaProvenanceZeroTwoSlsaConfigSource: Describes where the config file that kicked off the build came from.

GrafeasV1SlsaProvenanceZeroTwoSlsaInvocation: Identifies the event that kicked off the build.

GrafeasV1SlsaProvenanceZeroTwoSlsaMaterial: The collection of artifacts that influenced the build including sources, dependencies, build tools, base images, and so on.

GrafeasV1SlsaProvenanceZeroTwoSlsaMetadata: Other properties of the build.

Hash: Container message for hash values.

Identity: The unique identifier of the update.

ImageOccurrence: Details of the derived image portion of the DockerImage relationship.

InTotoStatement: Spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelope.payload.

Justification: Justification provides the justification when the state of the assessment if NOT_AFFECTED.

LanguagePackageDependency: Indicates a language package available between this package and the customer's resource artifact.

Layer: Layer holds metadata specific to a layer of a Docker image.

LayerDetails: Details about the layer a package was found in.

License: License information.

ListOperationsResponse: The response message for Operations.ListOperations.

ListVulnerabilitiesResponseV1: ListVulnerabilitiesResponse contains a single page of vulnerabilities resulting from a scan.

Location: An occurrence of a particular package installation found within a system's filesystem.

Metadata: Other properties of the build.

NonCompliantFile: Details about files that caused a compliance check to fail.

Occurrence: An instance of an analysis type that has been found on a resource.

Operation: This resource represents a long-running operation that is the result of a network API call.

PackageIssue: A detail for a distro and package this vulnerability occurrence was found in and its associated fix (if one is available).

PackageOccurrence: Details on how a particular software package was installed on a system.

ProjectRepoId: Selects a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within that project.

Recipe: Steps taken to build the artifact.

RelatedUrl: Metadata for any related URL information.

Remediation: Specifies details on how to handle (and presumably, fix) a vulnerability.

RepoId: A unique identifier for a Cloud Repo.

SbomReferenceIntotoPayload: The actual payload that contains the SBOM Reference data.

SbomReferenceIntotoPredicate: A predicate which describes the SBOM being referenced.

SBOMReferenceOccurrence: The occurrence representing an SBOM reference as applied to a specific resource.

SBOMStatus: The status of an SBOM generation.

Signature: Verifiers (e.g.

SlsaCompleteness: Indicates that the builder claims certain fields in this message to be complete.

SlsaMetadata: Other properties of the build.

SlsaProvenanceV1: Keep in sync with schema at https://github.com/slsa-framework/slsa/blob/main/docs/provenance/schema/v1/provenance.proto Builder renamed to ProvenanceBuilder because of Java conflicts.

SlsaProvenanceZeroTwo: See full explanation of fields at slsa.dev/provenance/v0.2.

SlsaRecipe: Steps taken to build the artifact.

Source: Source describes the location of the source used for the build.

SourceContext: A SourceContext is a reference to a tree of files.

Status: The `Status` type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs.

UpgradeDistribution: The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE).

UpgradeOccurrence: An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade.

Version: Version contains structured information about the version of a package.

VexAssessment: VexAssessment provides all publisher provided Vex information that is related to this vulnerability.

VulnerabilityOccurrence: An occurrence of a severity vulnerability on a resource.

WindowsUpdate: Windows Update represents the metadata about the update for the Windows operating system.