- 2.61.0 (latest)
- 2.60.0
- 2.59.0
- 2.57.0
- 2.56.0
- 2.55.0
- 2.54.0
- 2.53.0
- 2.52.0
- 2.51.0
- 2.50.0
- 2.49.0
- 2.48.0
- 2.47.0
- 2.45.0
- 2.44.0
- 2.43.0
- 2.42.0
- 2.41.0
- 2.40.0
- 2.39.0
- 2.38.0
- 2.37.0
- 2.36.0
- 2.35.0
- 2.32.0
- 2.31.0
- 2.30.0
- 2.29.0
- 2.28.0
- 2.27.0
- 2.26.0
- 2.25.0
- 2.24.0
- 2.23.0
- 2.22.0
- 2.21.0
- 2.20.0
- 2.19.0
- 2.17.0
- 2.16.0
- 2.15.0
- 2.14.0
- 2.13.0
- 2.12.0
- 2.11.1
- 2.10.0
- 2.9.0
- 2.8.0
- 2.7.1
- 2.6.0
- 2.5.6
- 2.3.2
public interface FindingOrBuilder extends MessageOrBuilder
Implements
MessageOrBuilderMethods
containsExternalSystems(String key)
public abstract boolean containsExternalSystems(String key)
Output only. Third party SIEM/SOAR fields within SCC, contains external system information and external system finding fields.
map<string, .google.cloud.securitycenter.v1.ExternalSystem> external_systems = 22 [(.google.api.field_behavior) = OUTPUT_ONLY];
Name | Description |
key | String |
Type | Description |
boolean |
containsSourceProperties(String key)
public abstract boolean containsSourceProperties(String key)
Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only.
map<string, .google.protobuf.Value> source_properties = 7;
Name | Description |
key | String |
Type | Description |
boolean |
getAccess()
public abstract Access getAccess()
Access details associated to the Finding, such as more information on the caller, which method was accessed, from where, etc.
.google.cloud.securitycenter.v1.Access access = 26;
Type | Description |
Access | The access. |
getAccessOrBuilder()
public abstract AccessOrBuilder getAccessOrBuilder()
Access details associated to the Finding, such as more information on the caller, which method was accessed, from where, etc.
.google.cloud.securitycenter.v1.Access access = 26;
Type | Description |
AccessOrBuilder |
getCanonicalName()
public abstract String getCanonicalName()
The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
string canonical_name = 14;
Type | Description |
String | The canonicalName. |
getCanonicalNameBytes()
public abstract ByteString getCanonicalNameBytes()
The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
string canonical_name = 14;
Type | Description |
ByteString | The bytes for canonicalName. |
getCategory()
public abstract String getCategory()
The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
string category = 5;
Type | Description |
String | The category. |
getCategoryBytes()
public abstract ByteString getCategoryBytes()
The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
string category = 5;
Type | Description |
ByteString | The bytes for category. |
getCreateTime()
public abstract Timestamp getCreateTime()
The time at which the finding was created in Security Command Center.
.google.protobuf.Timestamp create_time = 10;
Type | Description |
Timestamp | The createTime. |
getCreateTimeOrBuilder()
public abstract TimestampOrBuilder getCreateTimeOrBuilder()
The time at which the finding was created in Security Command Center.
.google.protobuf.Timestamp create_time = 10;
Type | Description |
TimestampOrBuilder |
getEventTime()
public abstract Timestamp getEventTime()
The time the finding was first detected. If an existing finding is updated, then this is the time the update occurred. For example, if the finding represents an open firewall, this property captures the time the detector believes the firewall became open. The accuracy is determined by the detector. If the finding is later resolved, then this time reflects when the finding was resolved. This must not be set to a value greater than the current timestamp.
.google.protobuf.Timestamp event_time = 9;
Type | Description |
Timestamp | The eventTime. |
getEventTimeOrBuilder()
public abstract TimestampOrBuilder getEventTimeOrBuilder()
The time the finding was first detected. If an existing finding is updated, then this is the time the update occurred. For example, if the finding represents an open firewall, this property captures the time the detector believes the firewall became open. The accuracy is determined by the detector. If the finding is later resolved, then this time reflects when the finding was resolved. This must not be set to a value greater than the current timestamp.
.google.protobuf.Timestamp event_time = 9;
Type | Description |
TimestampOrBuilder |
getExternalSystems()
public abstract Map<String,ExternalSystem> getExternalSystems()
Use #getExternalSystemsMap() instead.
Type | Description |
Map<String,ExternalSystem> |
getExternalSystemsCount()
public abstract int getExternalSystemsCount()
Output only. Third party SIEM/SOAR fields within SCC, contains external system information and external system finding fields.
map<string, .google.cloud.securitycenter.v1.ExternalSystem> external_systems = 22 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
int |
getExternalSystemsMap()
public abstract Map<String,ExternalSystem> getExternalSystemsMap()
Output only. Third party SIEM/SOAR fields within SCC, contains external system information and external system finding fields.
map<string, .google.cloud.securitycenter.v1.ExternalSystem> external_systems = 22 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
Map<String,ExternalSystem> |
getExternalSystemsOrDefault(String key, ExternalSystem defaultValue)
public abstract ExternalSystem getExternalSystemsOrDefault(String key, ExternalSystem defaultValue)
Output only. Third party SIEM/SOAR fields within SCC, contains external system information and external system finding fields.
map<string, .google.cloud.securitycenter.v1.ExternalSystem> external_systems = 22 [(.google.api.field_behavior) = OUTPUT_ONLY];
Name | Description |
key | String |
defaultValue | ExternalSystem |
Type | Description |
ExternalSystem |
getExternalSystemsOrThrow(String key)
public abstract ExternalSystem getExternalSystemsOrThrow(String key)
Output only. Third party SIEM/SOAR fields within SCC, contains external system information and external system finding fields.
map<string, .google.cloud.securitycenter.v1.ExternalSystem> external_systems = 22 [(.google.api.field_behavior) = OUTPUT_ONLY];
Name | Description |
key | String |
Type | Description |
ExternalSystem |
getExternalUri()
public abstract String getExternalUri()
The URI that, if available, points to a web page outside of Security Command Center where additional information about the finding can be found. This field is guaranteed to be either empty or a well formed URL.
string external_uri = 6;
Type | Description |
String | The externalUri. |
getExternalUriBytes()
public abstract ByteString getExternalUriBytes()
The URI that, if available, points to a web page outside of Security Command Center where additional information about the finding can be found. This field is guaranteed to be either empty or a well formed URL.
string external_uri = 6;
Type | Description |
ByteString | The bytes for externalUri. |
getFindingClass()
public abstract Finding.FindingClass getFindingClass()
The class of the finding.
.google.cloud.securitycenter.v1.Finding.FindingClass finding_class = 17;
Type | Description |
Finding.FindingClass | The findingClass. |
getFindingClassValue()
public abstract int getFindingClassValue()
The class of the finding.
.google.cloud.securitycenter.v1.Finding.FindingClass finding_class = 17;
Type | Description |
int | The enum numeric value on the wire for findingClass. |
getIndicator()
public abstract Indicator getIndicator()
Represents what's commonly known as an Indicator of compromise (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise
.google.cloud.securitycenter.v1.Indicator indicator = 18;
Type | Description |
Indicator | The indicator. |
getIndicatorOrBuilder()
public abstract IndicatorOrBuilder getIndicatorOrBuilder()
Represents what's commonly known as an Indicator of compromise (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise
.google.cloud.securitycenter.v1.Indicator indicator = 18;
Type | Description |
IndicatorOrBuilder |
getMitreAttack()
public abstract MitreAttack getMitreAttack()
MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org
.google.cloud.securitycenter.v1.MitreAttack mitre_attack = 25;
Type | Description |
MitreAttack | The mitreAttack. |
getMitreAttackOrBuilder()
public abstract MitreAttackOrBuilder getMitreAttackOrBuilder()
MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org
.google.cloud.securitycenter.v1.MitreAttack mitre_attack = 25;
Type | Description |
MitreAttackOrBuilder |
getMute()
public abstract Finding.Mute getMute()
Indicates the mute state of a finding (either unspecified, muted, unmuted or undefined). Unlike other attributes of a finding, a finding provider shouldn't set the value of mute.
.google.cloud.securitycenter.v1.Finding.Mute mute = 15;
Type | Description |
Finding.Mute | The mute. |
getMuteInitiator()
public abstract String getMuteInitiator()
First known as mute_annotation. Records additional information about the mute operation e.g. mute config that muted the finding, user who muted the finding, etc. Unlike other attributes of a finding, a finding provider shouldn't set the value of mute.
string mute_initiator = 28;
Type | Description |
String | The muteInitiator. |
getMuteInitiatorBytes()
public abstract ByteString getMuteInitiatorBytes()
First known as mute_annotation. Records additional information about the mute operation e.g. mute config that muted the finding, user who muted the finding, etc. Unlike other attributes of a finding, a finding provider shouldn't set the value of mute.
string mute_initiator = 28;
Type | Description |
ByteString | The bytes for muteInitiator. |
getMuteUpdateTime()
public abstract Timestamp getMuteUpdateTime()
Output only. The most recent time this finding was muted or unmuted.
.google.protobuf.Timestamp mute_update_time = 21 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
Timestamp | The muteUpdateTime. |
getMuteUpdateTimeOrBuilder()
public abstract TimestampOrBuilder getMuteUpdateTimeOrBuilder()
Output only. The most recent time this finding was muted or unmuted.
.google.protobuf.Timestamp mute_update_time = 21 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
TimestampOrBuilder |
getMuteValue()
public abstract int getMuteValue()
Indicates the mute state of a finding (either unspecified, muted, unmuted or undefined). Unlike other attributes of a finding, a finding provider shouldn't set the value of mute.
.google.cloud.securitycenter.v1.Finding.Mute mute = 15;
Type | Description |
int | The enum numeric value on the wire for mute. |
getName()
public abstract String getName()
The relative resource name of this finding. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}"
string name = 1;
Type | Description |
String | The name. |
getNameBytes()
public abstract ByteString getNameBytes()
The relative resource name of this finding. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}"
string name = 1;
Type | Description |
ByteString | The bytes for name. |
getParent()
public abstract String getParent()
The relative resource name of the source the finding belongs to. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name This field is immutable after creation time. For example: "organizations/{organization_id}/sources/{source_id}"
string parent = 2;
Type | Description |
String | The parent. |
getParentBytes()
public abstract ByteString getParentBytes()
The relative resource name of the source the finding belongs to. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name This field is immutable after creation time. For example: "organizations/{organization_id}/sources/{source_id}"
string parent = 2;
Type | Description |
ByteString | The bytes for parent. |
getResourceName()
public abstract String getResourceName()
For findings on Google Cloud resources, the full resource name of the Google Cloud resource this finding is for. See: https://cloud.google.com/apis/design/resource_names#full_resource_name When the finding is for a non-Google Cloud resource, the resourceName can be a customer or partner defined string. This field is immutable after creation time.
string resource_name = 3;
Type | Description |
String | The resourceName. |
getResourceNameBytes()
public abstract ByteString getResourceNameBytes()
For findings on Google Cloud resources, the full resource name of the Google Cloud resource this finding is for. See: https://cloud.google.com/apis/design/resource_names#full_resource_name When the finding is for a non-Google Cloud resource, the resourceName can be a customer or partner defined string. This field is immutable after creation time.
string resource_name = 3;
Type | Description |
ByteString | The bytes for resourceName. |
getSecurityMarks()
public abstract SecurityMarks getSecurityMarks()
Output only. User specified security marks. These marks are entirely managed by the user and come from the SecurityMarks resource that belongs to the finding.
.google.cloud.securitycenter.v1.SecurityMarks security_marks = 8 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
SecurityMarks | The securityMarks. |
getSecurityMarksOrBuilder()
public abstract SecurityMarksOrBuilder getSecurityMarksOrBuilder()
Output only. User specified security marks. These marks are entirely managed by the user and come from the SecurityMarks resource that belongs to the finding.
.google.cloud.securitycenter.v1.SecurityMarks security_marks = 8 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
SecurityMarksOrBuilder |
getSeverity()
public abstract Finding.Severity getSeverity()
The severity of the finding. This field is managed by the source that writes the finding.
.google.cloud.securitycenter.v1.Finding.Severity severity = 12;
Type | Description |
Finding.Severity | The severity. |
getSeverityValue()
public abstract int getSeverityValue()
The severity of the finding. This field is managed by the source that writes the finding.
.google.cloud.securitycenter.v1.Finding.Severity severity = 12;
Type | Description |
int | The enum numeric value on the wire for severity. |
getSourceProperties()
public abstract Map<String,Value> getSourceProperties()
Use #getSourcePropertiesMap() instead.
Type | Description |
Map<String,Value> |
getSourcePropertiesCount()
public abstract int getSourcePropertiesCount()
Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only.
map<string, .google.protobuf.Value> source_properties = 7;
Type | Description |
int |
getSourcePropertiesMap()
public abstract Map<String,Value> getSourcePropertiesMap()
Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only.
map<string, .google.protobuf.Value> source_properties = 7;
Type | Description |
Map<String,Value> |
getSourcePropertiesOrDefault(String key, Value defaultValue)
public abstract Value getSourcePropertiesOrDefault(String key, Value defaultValue)
Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only.
map<string, .google.protobuf.Value> source_properties = 7;
Name | Description |
key | String |
defaultValue | Value |
Type | Description |
Value |
getSourcePropertiesOrThrow(String key)
public abstract Value getSourcePropertiesOrThrow(String key)
Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only.
map<string, .google.protobuf.Value> source_properties = 7;
Name | Description |
key | String |
Type | Description |
Value |
getState()
public abstract Finding.State getState()
The state of the finding.
.google.cloud.securitycenter.v1.Finding.State state = 4;
Type | Description |
Finding.State | The state. |
getStateValue()
public abstract int getStateValue()
The state of the finding.
.google.cloud.securitycenter.v1.Finding.State state = 4;
Type | Description |
int | The enum numeric value on the wire for state. |
getVulnerability()
public abstract Vulnerability getVulnerability()
Represents vulnerability specific fields like cve, cvss scores etc. CVE stands for Common Vulnerabilities and Exposures (https://cve.mitre.org/about/)
.google.cloud.securitycenter.v1.Vulnerability vulnerability = 20;
Type | Description |
Vulnerability | The vulnerability. |
getVulnerabilityOrBuilder()
public abstract VulnerabilityOrBuilder getVulnerabilityOrBuilder()
Represents vulnerability specific fields like cve, cvss scores etc. CVE stands for Common Vulnerabilities and Exposures (https://cve.mitre.org/about/)
.google.cloud.securitycenter.v1.Vulnerability vulnerability = 20;
Type | Description |
VulnerabilityOrBuilder |
hasAccess()
public abstract boolean hasAccess()
Access details associated to the Finding, such as more information on the caller, which method was accessed, from where, etc.
.google.cloud.securitycenter.v1.Access access = 26;
Type | Description |
boolean | Whether the access field is set. |
hasCreateTime()
public abstract boolean hasCreateTime()
The time at which the finding was created in Security Command Center.
.google.protobuf.Timestamp create_time = 10;
Type | Description |
boolean | Whether the createTime field is set. |
hasEventTime()
public abstract boolean hasEventTime()
The time the finding was first detected. If an existing finding is updated, then this is the time the update occurred. For example, if the finding represents an open firewall, this property captures the time the detector believes the firewall became open. The accuracy is determined by the detector. If the finding is later resolved, then this time reflects when the finding was resolved. This must not be set to a value greater than the current timestamp.
.google.protobuf.Timestamp event_time = 9;
Type | Description |
boolean | Whether the eventTime field is set. |
hasIndicator()
public abstract boolean hasIndicator()
Represents what's commonly known as an Indicator of compromise (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise
.google.cloud.securitycenter.v1.Indicator indicator = 18;
Type | Description |
boolean | Whether the indicator field is set. |
hasMitreAttack()
public abstract boolean hasMitreAttack()
MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org
.google.cloud.securitycenter.v1.MitreAttack mitre_attack = 25;
Type | Description |
boolean | Whether the mitreAttack field is set. |
hasMuteUpdateTime()
public abstract boolean hasMuteUpdateTime()
Output only. The most recent time this finding was muted or unmuted.
.google.protobuf.Timestamp mute_update_time = 21 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
boolean | Whether the muteUpdateTime field is set. |
hasSecurityMarks()
public abstract boolean hasSecurityMarks()
Output only. User specified security marks. These marks are entirely managed by the user and come from the SecurityMarks resource that belongs to the finding.
.google.cloud.securitycenter.v1.SecurityMarks security_marks = 8 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
boolean | Whether the securityMarks field is set. |
hasVulnerability()
public abstract boolean hasVulnerability()
Represents vulnerability specific fields like cve, cvss scores etc. CVE stands for Common Vulnerabilities and Exposures (https://cve.mitre.org/about/)
.google.cloud.securitycenter.v1.Vulnerability vulnerability = 20;
Type | Description |
boolean | Whether the vulnerability field is set. |