- 2.63.0 (latest)
- 2.62.0
- 2.61.0
- 2.60.0
- 2.59.0
- 2.57.0
- 2.56.0
- 2.55.0
- 2.54.0
- 2.53.0
- 2.52.0
- 2.51.0
- 2.50.0
- 2.49.0
- 2.48.0
- 2.47.0
- 2.45.0
- 2.44.0
- 2.43.0
- 2.42.0
- 2.41.0
- 2.40.0
- 2.39.0
- 2.38.0
- 2.37.0
- 2.36.0
- 2.35.0
- 2.32.0
- 2.31.0
- 2.30.0
- 2.29.0
- 2.28.0
- 2.27.0
- 2.26.0
- 2.25.0
- 2.24.0
- 2.23.0
- 2.22.0
- 2.21.0
- 2.20.0
- 2.19.0
- 2.17.0
- 2.16.0
- 2.15.0
- 2.14.0
- 2.13.0
- 2.12.0
- 2.11.1
- 2.10.0
- 2.9.0
- 2.8.0
- 2.7.1
- 2.6.0
- 2.5.6
- 2.3.2
public final class Finding extends GeneratedMessageV3 implements FindingOrBuilder
Security Command Center finding. A finding is a record of assessment data like security, risk, health, or privacy, that is ingested into Security Command Center for presentation, notification, analysis, policy testing, and enforcement. For example, a cross-site scripting (XSS) vulnerability in an App Engine application is a finding.
Protobuf type google.cloud.securitycenter.v1.Finding
Inheritance
Object > AbstractMessageLite<MessageType,BuilderType> > AbstractMessage > GeneratedMessageV3 > FindingImplements
FindingOrBuilderStatic Fields
ACCESS_FIELD_NUMBER
public static final int ACCESS_FIELD_NUMBER
Type | Description |
int |
CANONICAL_NAME_FIELD_NUMBER
public static final int CANONICAL_NAME_FIELD_NUMBER
Type | Description |
int |
CATEGORY_FIELD_NUMBER
public static final int CATEGORY_FIELD_NUMBER
Type | Description |
int |
COMPLIANCES_FIELD_NUMBER
public static final int COMPLIANCES_FIELD_NUMBER
Type | Description |
int |
CONNECTIONS_FIELD_NUMBER
public static final int CONNECTIONS_FIELD_NUMBER
Type | Description |
int |
CONTACTS_FIELD_NUMBER
public static final int CONTACTS_FIELD_NUMBER
Type | Description |
int |
CREATE_TIME_FIELD_NUMBER
public static final int CREATE_TIME_FIELD_NUMBER
Type | Description |
int |
DESCRIPTION_FIELD_NUMBER
public static final int DESCRIPTION_FIELD_NUMBER
Type | Description |
int |
EVENT_TIME_FIELD_NUMBER
public static final int EVENT_TIME_FIELD_NUMBER
Type | Description |
int |
EXFILTRATION_FIELD_NUMBER
public static final int EXFILTRATION_FIELD_NUMBER
Type | Description |
int |
EXTERNAL_SYSTEMS_FIELD_NUMBER
public static final int EXTERNAL_SYSTEMS_FIELD_NUMBER
Type | Description |
int |
EXTERNAL_URI_FIELD_NUMBER
public static final int EXTERNAL_URI_FIELD_NUMBER
Type | Description |
int |
FINDING_CLASS_FIELD_NUMBER
public static final int FINDING_CLASS_FIELD_NUMBER
Type | Description |
int |
IAM_BINDINGS_FIELD_NUMBER
public static final int IAM_BINDINGS_FIELD_NUMBER
Type | Description |
int |
INDICATOR_FIELD_NUMBER
public static final int INDICATOR_FIELD_NUMBER
Type | Description |
int |
MITRE_ATTACK_FIELD_NUMBER
public static final int MITRE_ATTACK_FIELD_NUMBER
Type | Description |
int |
MUTE_FIELD_NUMBER
public static final int MUTE_FIELD_NUMBER
Type | Description |
int |
MUTE_INITIATOR_FIELD_NUMBER
public static final int MUTE_INITIATOR_FIELD_NUMBER
Type | Description |
int |
MUTE_UPDATE_TIME_FIELD_NUMBER
public static final int MUTE_UPDATE_TIME_FIELD_NUMBER
Type | Description |
int |
NAME_FIELD_NUMBER
public static final int NAME_FIELD_NUMBER
Type | Description |
int |
NEXT_STEPS_FIELD_NUMBER
public static final int NEXT_STEPS_FIELD_NUMBER
Type | Description |
int |
PARENT_FIELD_NUMBER
public static final int PARENT_FIELD_NUMBER
Type | Description |
int |
PROCESSES_FIELD_NUMBER
public static final int PROCESSES_FIELD_NUMBER
Type | Description |
int |
RESOURCE_NAME_FIELD_NUMBER
public static final int RESOURCE_NAME_FIELD_NUMBER
Type | Description |
int |
SECURITY_MARKS_FIELD_NUMBER
public static final int SECURITY_MARKS_FIELD_NUMBER
Type | Description |
int |
SEVERITY_FIELD_NUMBER
public static final int SEVERITY_FIELD_NUMBER
Type | Description |
int |
SOURCE_PROPERTIES_FIELD_NUMBER
public static final int SOURCE_PROPERTIES_FIELD_NUMBER
Type | Description |
int |
STATE_FIELD_NUMBER
public static final int STATE_FIELD_NUMBER
Type | Description |
int |
VULNERABILITY_FIELD_NUMBER
public static final int VULNERABILITY_FIELD_NUMBER
Type | Description |
int |
Static Methods
getDefaultInstance()
public static Finding getDefaultInstance()
Type | Description |
Finding |
getDescriptor()
public static final Descriptors.Descriptor getDescriptor()
Type | Description |
Descriptor |
newBuilder()
public static Finding.Builder newBuilder()
Type | Description |
Finding.Builder |
newBuilder(Finding prototype)
public static Finding.Builder newBuilder(Finding prototype)
Name | Description |
prototype | Finding |
Type | Description |
Finding.Builder |
parseDelimitedFrom(InputStream input)
public static Finding parseDelimitedFrom(InputStream input)
Name | Description |
input | InputStream |
Type | Description |
Finding |
Type | Description |
IOException |
parseDelimitedFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
public static Finding parseDelimitedFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
Name | Description |
input | InputStream |
extensionRegistry | ExtensionRegistryLite |
Type | Description |
Finding |
Type | Description |
IOException |
parseFrom(byte[] data)
public static Finding parseFrom(byte[] data)
Name | Description |
data | byte[] |
Type | Description |
Finding |
Type | Description |
InvalidProtocolBufferException |
parseFrom(byte[] data, ExtensionRegistryLite extensionRegistry)
public static Finding parseFrom(byte[] data, ExtensionRegistryLite extensionRegistry)
Name | Description |
data | byte[] |
extensionRegistry | ExtensionRegistryLite |
Type | Description |
Finding |
Type | Description |
InvalidProtocolBufferException |
parseFrom(ByteString data)
public static Finding parseFrom(ByteString data)
Name | Description |
data | ByteString |
Type | Description |
Finding |
Type | Description |
InvalidProtocolBufferException |
parseFrom(ByteString data, ExtensionRegistryLite extensionRegistry)
public static Finding parseFrom(ByteString data, ExtensionRegistryLite extensionRegistry)
Name | Description |
data | ByteString |
extensionRegistry | ExtensionRegistryLite |
Type | Description |
Finding |
Type | Description |
InvalidProtocolBufferException |
parseFrom(CodedInputStream input)
public static Finding parseFrom(CodedInputStream input)
Name | Description |
input | CodedInputStream |
Type | Description |
Finding |
Type | Description |
IOException |
parseFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
public static Finding parseFrom(CodedInputStream input, ExtensionRegistryLite extensionRegistry)
Name | Description |
input | CodedInputStream |
extensionRegistry | ExtensionRegistryLite |
Type | Description |
Finding |
Type | Description |
IOException |
parseFrom(InputStream input)
public static Finding parseFrom(InputStream input)
Name | Description |
input | InputStream |
Type | Description |
Finding |
Type | Description |
IOException |
parseFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
public static Finding parseFrom(InputStream input, ExtensionRegistryLite extensionRegistry)
Name | Description |
input | InputStream |
extensionRegistry | ExtensionRegistryLite |
Type | Description |
Finding |
Type | Description |
IOException |
parseFrom(ByteBuffer data)
public static Finding parseFrom(ByteBuffer data)
Name | Description |
data | ByteBuffer |
Type | Description |
Finding |
Type | Description |
InvalidProtocolBufferException |
parseFrom(ByteBuffer data, ExtensionRegistryLite extensionRegistry)
public static Finding parseFrom(ByteBuffer data, ExtensionRegistryLite extensionRegistry)
Name | Description |
data | ByteBuffer |
extensionRegistry | ExtensionRegistryLite |
Type | Description |
Finding |
Type | Description |
InvalidProtocolBufferException |
parser()
public static Parser<Finding> parser()
Type | Description |
Parser<Finding> |
Methods
containsContacts(String key)
public boolean containsContacts(String key)
Output only. Map containing the point of contacts for the given finding. The key represents the type of contact, while the value contains a list of all the contacts that pertain. Please refer to: https://cloud.google.com/resource-manager/docs/managing-notification-contacts#notification-categories { "security": { "contacts": [ { "email": "person1@company.com" }, { "email": "person2@company.com" } ] } }
map<string, .google.cloud.securitycenter.v1.ContactDetails> contacts = 33 [(.google.api.field_behavior) = OUTPUT_ONLY];
Name | Description |
key | String |
Type | Description |
boolean |
containsExternalSystems(String key)
public boolean containsExternalSystems(String key)
Output only. Third party SIEM/SOAR fields within SCC, contains external system information and external system finding fields.
map<string, .google.cloud.securitycenter.v1.ExternalSystem> external_systems = 22 [(.google.api.field_behavior) = OUTPUT_ONLY];
Name | Description |
key | String |
Type | Description |
boolean |
containsSourceProperties(String key)
public boolean containsSourceProperties(String key)
Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only.
map<string, .google.protobuf.Value> source_properties = 7;
Name | Description |
key | String |
Type | Description |
boolean |
equals(Object obj)
public boolean equals(Object obj)
Name | Description |
obj | Object |
Type | Description |
boolean |
getAccess()
public Access getAccess()
Access details associated to the Finding, such as more information on the caller, which method was accessed, from where, etc.
.google.cloud.securitycenter.v1.Access access = 26;
Type | Description |
Access | The access. |
getAccessOrBuilder()
public AccessOrBuilder getAccessOrBuilder()
Access details associated to the Finding, such as more information on the caller, which method was accessed, from where, etc.
.google.cloud.securitycenter.v1.Access access = 26;
Type | Description |
AccessOrBuilder |
getCanonicalName()
public String getCanonicalName()
The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
string canonical_name = 14;
Type | Description |
String | The canonicalName. |
getCanonicalNameBytes()
public ByteString getCanonicalNameBytes()
The canonical name of the finding. It's either "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}" or "projects/{project_number}/sources/{source_id}/findings/{finding_id}", depending on the closest CRM ancestor of the resource associated with the finding.
string canonical_name = 14;
Type | Description |
ByteString | The bytes for canonicalName. |
getCategory()
public String getCategory()
The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
string category = 5;
Type | Description |
String | The category. |
getCategoryBytes()
public ByteString getCategoryBytes()
The additional taxonomy group within findings from a given source. This field is immutable after creation time. Example: "XSS_FLASH_INJECTION"
string category = 5;
Type | Description |
ByteString | The bytes for category. |
getCompliances(int index)
public Compliance getCompliances(int index)
Contains compliance information for security standards associated to the finding.
repeated .google.cloud.securitycenter.v1.Compliance compliances = 34;
Name | Description |
index | int |
Type | Description |
Compliance |
getCompliancesCount()
public int getCompliancesCount()
Contains compliance information for security standards associated to the finding.
repeated .google.cloud.securitycenter.v1.Compliance compliances = 34;
Type | Description |
int |
getCompliancesList()
public List<Compliance> getCompliancesList()
Contains compliance information for security standards associated to the finding.
repeated .google.cloud.securitycenter.v1.Compliance compliances = 34;
Type | Description |
List<Compliance> |
getCompliancesOrBuilder(int index)
public ComplianceOrBuilder getCompliancesOrBuilder(int index)
Contains compliance information for security standards associated to the finding.
repeated .google.cloud.securitycenter.v1.Compliance compliances = 34;
Name | Description |
index | int |
Type | Description |
ComplianceOrBuilder |
getCompliancesOrBuilderList()
public List<? extends ComplianceOrBuilder> getCompliancesOrBuilderList()
Contains compliance information for security standards associated to the finding.
repeated .google.cloud.securitycenter.v1.Compliance compliances = 34;
Type | Description |
List<? extends com.google.cloud.securitycenter.v1.ComplianceOrBuilder> |
getConnections(int index)
public Connection getConnections(int index)
Contains information about the IP connection associated with the finding.
repeated .google.cloud.securitycenter.v1.Connection connections = 31;
Name | Description |
index | int |
Type | Description |
Connection |
getConnectionsCount()
public int getConnectionsCount()
Contains information about the IP connection associated with the finding.
repeated .google.cloud.securitycenter.v1.Connection connections = 31;
Type | Description |
int |
getConnectionsList()
public List<Connection> getConnectionsList()
Contains information about the IP connection associated with the finding.
repeated .google.cloud.securitycenter.v1.Connection connections = 31;
Type | Description |
List<Connection> |
getConnectionsOrBuilder(int index)
public ConnectionOrBuilder getConnectionsOrBuilder(int index)
Contains information about the IP connection associated with the finding.
repeated .google.cloud.securitycenter.v1.Connection connections = 31;
Name | Description |
index | int |
Type | Description |
ConnectionOrBuilder |
getConnectionsOrBuilderList()
public List<? extends ConnectionOrBuilder> getConnectionsOrBuilderList()
Contains information about the IP connection associated with the finding.
repeated .google.cloud.securitycenter.v1.Connection connections = 31;
Type | Description |
List<? extends com.google.cloud.securitycenter.v1.ConnectionOrBuilder> |
getContacts()
public Map<String,ContactDetails> getContacts()
Use #getContactsMap() instead.
Type | Description |
Map<String,ContactDetails> |
getContactsCount()
public int getContactsCount()
Output only. Map containing the point of contacts for the given finding. The key represents the type of contact, while the value contains a list of all the contacts that pertain. Please refer to: https://cloud.google.com/resource-manager/docs/managing-notification-contacts#notification-categories { "security": { "contacts": [ { "email": "person1@company.com" }, { "email": "person2@company.com" } ] } }
map<string, .google.cloud.securitycenter.v1.ContactDetails> contacts = 33 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
int |
getContactsMap()
public Map<String,ContactDetails> getContactsMap()
Output only. Map containing the point of contacts for the given finding. The key represents the type of contact, while the value contains a list of all the contacts that pertain. Please refer to: https://cloud.google.com/resource-manager/docs/managing-notification-contacts#notification-categories { "security": { "contacts": [ { "email": "person1@company.com" }, { "email": "person2@company.com" } ] } }
map<string, .google.cloud.securitycenter.v1.ContactDetails> contacts = 33 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
Map<String,ContactDetails> |
getContactsOrDefault(String key, ContactDetails defaultValue)
public ContactDetails getContactsOrDefault(String key, ContactDetails defaultValue)
Output only. Map containing the point of contacts for the given finding. The key represents the type of contact, while the value contains a list of all the contacts that pertain. Please refer to: https://cloud.google.com/resource-manager/docs/managing-notification-contacts#notification-categories { "security": { "contacts": [ { "email": "person1@company.com" }, { "email": "person2@company.com" } ] } }
map<string, .google.cloud.securitycenter.v1.ContactDetails> contacts = 33 [(.google.api.field_behavior) = OUTPUT_ONLY];
Name | Description |
key | String |
defaultValue | ContactDetails |
Type | Description |
ContactDetails |
getContactsOrThrow(String key)
public ContactDetails getContactsOrThrow(String key)
Output only. Map containing the point of contacts for the given finding. The key represents the type of contact, while the value contains a list of all the contacts that pertain. Please refer to: https://cloud.google.com/resource-manager/docs/managing-notification-contacts#notification-categories { "security": { "contacts": [ { "email": "person1@company.com" }, { "email": "person2@company.com" } ] } }
map<string, .google.cloud.securitycenter.v1.ContactDetails> contacts = 33 [(.google.api.field_behavior) = OUTPUT_ONLY];
Name | Description |
key | String |
Type | Description |
ContactDetails |
getCreateTime()
public Timestamp getCreateTime()
The time at which the finding was created in Security Command Center.
.google.protobuf.Timestamp create_time = 10;
Type | Description |
Timestamp | The createTime. |
getCreateTimeOrBuilder()
public TimestampOrBuilder getCreateTimeOrBuilder()
The time at which the finding was created in Security Command Center.
.google.protobuf.Timestamp create_time = 10;
Type | Description |
TimestampOrBuilder |
getDefaultInstanceForType()
public Finding getDefaultInstanceForType()
Type | Description |
Finding |
getDescription()
public String getDescription()
Contains more detail about the finding.
string description = 37;
Type | Description |
String | The description. |
getDescriptionBytes()
public ByteString getDescriptionBytes()
Contains more detail about the finding.
string description = 37;
Type | Description |
ByteString | The bytes for description. |
getEventTime()
public Timestamp getEventTime()
The time the finding was first detected. If an existing finding is updated, then this is the time the update occurred. For example, if the finding represents an open firewall, this property captures the time the detector believes the firewall became open. The accuracy is determined by the detector. If the finding is later resolved, then this time reflects when the finding was resolved. This must not be set to a value greater than the current timestamp.
.google.protobuf.Timestamp event_time = 9;
Type | Description |
Timestamp | The eventTime. |
getEventTimeOrBuilder()
public TimestampOrBuilder getEventTimeOrBuilder()
The time the finding was first detected. If an existing finding is updated, then this is the time the update occurred. For example, if the finding represents an open firewall, this property captures the time the detector believes the firewall became open. The accuracy is determined by the detector. If the finding is later resolved, then this time reflects when the finding was resolved. This must not be set to a value greater than the current timestamp.
.google.protobuf.Timestamp event_time = 9;
Type | Description |
TimestampOrBuilder |
getExfiltration()
public Exfiltration getExfiltration()
Represents exfiltration associated with the Finding.
.google.cloud.securitycenter.v1.Exfiltration exfiltration = 38;
Type | Description |
Exfiltration | The exfiltration. |
getExfiltrationOrBuilder()
public ExfiltrationOrBuilder getExfiltrationOrBuilder()
Represents exfiltration associated with the Finding.
.google.cloud.securitycenter.v1.Exfiltration exfiltration = 38;
Type | Description |
ExfiltrationOrBuilder |
getExternalSystems()
public Map<String,ExternalSystem> getExternalSystems()
Use #getExternalSystemsMap() instead.
Type | Description |
Map<String,ExternalSystem> |
getExternalSystemsCount()
public int getExternalSystemsCount()
Output only. Third party SIEM/SOAR fields within SCC, contains external system information and external system finding fields.
map<string, .google.cloud.securitycenter.v1.ExternalSystem> external_systems = 22 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
int |
getExternalSystemsMap()
public Map<String,ExternalSystem> getExternalSystemsMap()
Output only. Third party SIEM/SOAR fields within SCC, contains external system information and external system finding fields.
map<string, .google.cloud.securitycenter.v1.ExternalSystem> external_systems = 22 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
Map<String,ExternalSystem> |
getExternalSystemsOrDefault(String key, ExternalSystem defaultValue)
public ExternalSystem getExternalSystemsOrDefault(String key, ExternalSystem defaultValue)
Output only. Third party SIEM/SOAR fields within SCC, contains external system information and external system finding fields.
map<string, .google.cloud.securitycenter.v1.ExternalSystem> external_systems = 22 [(.google.api.field_behavior) = OUTPUT_ONLY];
Name | Description |
key | String |
defaultValue | ExternalSystem |
Type | Description |
ExternalSystem |
getExternalSystemsOrThrow(String key)
public ExternalSystem getExternalSystemsOrThrow(String key)
Output only. Third party SIEM/SOAR fields within SCC, contains external system information and external system finding fields.
map<string, .google.cloud.securitycenter.v1.ExternalSystem> external_systems = 22 [(.google.api.field_behavior) = OUTPUT_ONLY];
Name | Description |
key | String |
Type | Description |
ExternalSystem |
getExternalUri()
public String getExternalUri()
The URI that, if available, points to a web page outside of Security Command Center where additional information about the finding can be found. This field is guaranteed to be either empty or a well formed URL.
string external_uri = 6;
Type | Description |
String | The externalUri. |
getExternalUriBytes()
public ByteString getExternalUriBytes()
The URI that, if available, points to a web page outside of Security Command Center where additional information about the finding can be found. This field is guaranteed to be either empty or a well formed URL.
string external_uri = 6;
Type | Description |
ByteString | The bytes for externalUri. |
getFindingClass()
public Finding.FindingClass getFindingClass()
The class of the finding.
.google.cloud.securitycenter.v1.Finding.FindingClass finding_class = 17;
Type | Description |
Finding.FindingClass | The findingClass. |
getFindingClassValue()
public int getFindingClassValue()
The class of the finding.
.google.cloud.securitycenter.v1.Finding.FindingClass finding_class = 17;
Type | Description |
int | The enum numeric value on the wire for findingClass. |
getIamBindings(int index)
public IamBinding getIamBindings(int index)
Represents IAM bindings associated with the Finding.
repeated .google.cloud.securitycenter.v1.IamBinding iam_bindings = 39;
Name | Description |
index | int |
Type | Description |
IamBinding |
getIamBindingsCount()
public int getIamBindingsCount()
Represents IAM bindings associated with the Finding.
repeated .google.cloud.securitycenter.v1.IamBinding iam_bindings = 39;
Type | Description |
int |
getIamBindingsList()
public List<IamBinding> getIamBindingsList()
Represents IAM bindings associated with the Finding.
repeated .google.cloud.securitycenter.v1.IamBinding iam_bindings = 39;
Type | Description |
List<IamBinding> |
getIamBindingsOrBuilder(int index)
public IamBindingOrBuilder getIamBindingsOrBuilder(int index)
Represents IAM bindings associated with the Finding.
repeated .google.cloud.securitycenter.v1.IamBinding iam_bindings = 39;
Name | Description |
index | int |
Type | Description |
IamBindingOrBuilder |
getIamBindingsOrBuilderList()
public List<? extends IamBindingOrBuilder> getIamBindingsOrBuilderList()
Represents IAM bindings associated with the Finding.
repeated .google.cloud.securitycenter.v1.IamBinding iam_bindings = 39;
Type | Description |
List<? extends com.google.cloud.securitycenter.v1.IamBindingOrBuilder> |
getIndicator()
public Indicator getIndicator()
Represents what's commonly known as an Indicator of compromise (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise
.google.cloud.securitycenter.v1.Indicator indicator = 18;
Type | Description |
Indicator | The indicator. |
getIndicatorOrBuilder()
public IndicatorOrBuilder getIndicatorOrBuilder()
Represents what's commonly known as an Indicator of compromise (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise
.google.cloud.securitycenter.v1.Indicator indicator = 18;
Type | Description |
IndicatorOrBuilder |
getMitreAttack()
public MitreAttack getMitreAttack()
MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org
.google.cloud.securitycenter.v1.MitreAttack mitre_attack = 25;
Type | Description |
MitreAttack | The mitreAttack. |
getMitreAttackOrBuilder()
public MitreAttackOrBuilder getMitreAttackOrBuilder()
MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org
.google.cloud.securitycenter.v1.MitreAttack mitre_attack = 25;
Type | Description |
MitreAttackOrBuilder |
getMute()
public Finding.Mute getMute()
Indicates the mute state of a finding (either muted, unmuted or undefined). Unlike other attributes of a finding, a finding provider shouldn't set the value of mute.
.google.cloud.securitycenter.v1.Finding.Mute mute = 15;
Type | Description |
Finding.Mute | The mute. |
getMuteInitiator()
public String getMuteInitiator()
First known as mute_annotation. Records additional information about the mute operation e.g. mute config that muted the finding, user who muted the finding, etc. Unlike other attributes of a finding, a finding provider shouldn't set the value of mute.
string mute_initiator = 28;
Type | Description |
String | The muteInitiator. |
getMuteInitiatorBytes()
public ByteString getMuteInitiatorBytes()
First known as mute_annotation. Records additional information about the mute operation e.g. mute config that muted the finding, user who muted the finding, etc. Unlike other attributes of a finding, a finding provider shouldn't set the value of mute.
string mute_initiator = 28;
Type | Description |
ByteString | The bytes for muteInitiator. |
getMuteUpdateTime()
public Timestamp getMuteUpdateTime()
Output only. The most recent time this finding was muted or unmuted.
.google.protobuf.Timestamp mute_update_time = 21 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
Timestamp | The muteUpdateTime. |
getMuteUpdateTimeOrBuilder()
public TimestampOrBuilder getMuteUpdateTimeOrBuilder()
Output only. The most recent time this finding was muted or unmuted.
.google.protobuf.Timestamp mute_update_time = 21 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
TimestampOrBuilder |
getMuteValue()
public int getMuteValue()
Indicates the mute state of a finding (either muted, unmuted or undefined). Unlike other attributes of a finding, a finding provider shouldn't set the value of mute.
.google.cloud.securitycenter.v1.Finding.Mute mute = 15;
Type | Description |
int | The enum numeric value on the wire for mute. |
getName()
public String getName()
The relative resource name of this finding. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}"
string name = 1;
Type | Description |
String | The name. |
getNameBytes()
public ByteString getNameBytes()
The relative resource name of this finding. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name Example: "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}"
string name = 1;
Type | Description |
ByteString | The bytes for name. |
getNextSteps()
public String getNextSteps()
Next steps associate to the finding.
string next_steps = 40;
Type | Description |
String | The nextSteps. |
getNextStepsBytes()
public ByteString getNextStepsBytes()
Next steps associate to the finding.
string next_steps = 40;
Type | Description |
ByteString | The bytes for nextSteps. |
getParent()
public String getParent()
The relative resource name of the source the finding belongs to. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name This field is immutable after creation time. For example: "organizations/{organization_id}/sources/{source_id}"
string parent = 2;
Type | Description |
String | The parent. |
getParentBytes()
public ByteString getParentBytes()
The relative resource name of the source the finding belongs to. See: https://cloud.google.com/apis/design/resource_names#relative_resource_name This field is immutable after creation time. For example: "organizations/{organization_id}/sources/{source_id}"
string parent = 2;
Type | Description |
ByteString | The bytes for parent. |
getParserForType()
public Parser<Finding> getParserForType()
Type | Description |
Parser<Finding> |
getProcesses(int index)
public Process getProcesses(int index)
Represents operating system processes associated with the Finding.
repeated .google.cloud.securitycenter.v1.Process processes = 30;
Name | Description |
index | int |
Type | Description |
Process |
getProcessesCount()
public int getProcessesCount()
Represents operating system processes associated with the Finding.
repeated .google.cloud.securitycenter.v1.Process processes = 30;
Type | Description |
int |
getProcessesList()
public List<Process> getProcessesList()
Represents operating system processes associated with the Finding.
repeated .google.cloud.securitycenter.v1.Process processes = 30;
Type | Description |
List<Process> |
getProcessesOrBuilder(int index)
public ProcessOrBuilder getProcessesOrBuilder(int index)
Represents operating system processes associated with the Finding.
repeated .google.cloud.securitycenter.v1.Process processes = 30;
Name | Description |
index | int |
Type | Description |
ProcessOrBuilder |
getProcessesOrBuilderList()
public List<? extends ProcessOrBuilder> getProcessesOrBuilderList()
Represents operating system processes associated with the Finding.
repeated .google.cloud.securitycenter.v1.Process processes = 30;
Type | Description |
List<? extends com.google.cloud.securitycenter.v1.ProcessOrBuilder> |
getResourceName()
public String getResourceName()
For findings on Google Cloud resources, the full resource name of the Google Cloud resource this finding is for. See: https://cloud.google.com/apis/design/resource_names#full_resource_name When the finding is for a non-Google Cloud resource, the resourceName can be a customer or partner defined string. This field is immutable after creation time.
string resource_name = 3;
Type | Description |
String | The resourceName. |
getResourceNameBytes()
public ByteString getResourceNameBytes()
For findings on Google Cloud resources, the full resource name of the Google Cloud resource this finding is for. See: https://cloud.google.com/apis/design/resource_names#full_resource_name When the finding is for a non-Google Cloud resource, the resourceName can be a customer or partner defined string. This field is immutable after creation time.
string resource_name = 3;
Type | Description |
ByteString | The bytes for resourceName. |
getSecurityMarks()
public SecurityMarks getSecurityMarks()
Output only. User specified security marks. These marks are entirely managed by the user and come from the SecurityMarks resource that belongs to the finding.
.google.cloud.securitycenter.v1.SecurityMarks security_marks = 8 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
SecurityMarks | The securityMarks. |
getSecurityMarksOrBuilder()
public SecurityMarksOrBuilder getSecurityMarksOrBuilder()
Output only. User specified security marks. These marks are entirely managed by the user and come from the SecurityMarks resource that belongs to the finding.
.google.cloud.securitycenter.v1.SecurityMarks security_marks = 8 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
SecurityMarksOrBuilder |
getSerializedSize()
public int getSerializedSize()
Type | Description |
int |
getSeverity()
public Finding.Severity getSeverity()
The severity of the finding. This field is managed by the source that writes the finding.
.google.cloud.securitycenter.v1.Finding.Severity severity = 12;
Type | Description |
Finding.Severity | The severity. |
getSeverityValue()
public int getSeverityValue()
The severity of the finding. This field is managed by the source that writes the finding.
.google.cloud.securitycenter.v1.Finding.Severity severity = 12;
Type | Description |
int | The enum numeric value on the wire for severity. |
getSourceProperties()
public Map<String,Value> getSourceProperties()
Use #getSourcePropertiesMap() instead.
Type | Description |
Map<String,Value> |
getSourcePropertiesCount()
public int getSourcePropertiesCount()
Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only.
map<string, .google.protobuf.Value> source_properties = 7;
Type | Description |
int |
getSourcePropertiesMap()
public Map<String,Value> getSourcePropertiesMap()
Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only.
map<string, .google.protobuf.Value> source_properties = 7;
Type | Description |
Map<String,Value> |
getSourcePropertiesOrDefault(String key, Value defaultValue)
public Value getSourcePropertiesOrDefault(String key, Value defaultValue)
Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only.
map<string, .google.protobuf.Value> source_properties = 7;
Name | Description |
key | String |
defaultValue | Value |
Type | Description |
Value |
getSourcePropertiesOrThrow(String key)
public Value getSourcePropertiesOrThrow(String key)
Source specific properties. These properties are managed by the source that writes the finding. The key names in the source_properties map must be between 1 and 255 characters, and must start with a letter and contain alphanumeric characters or underscores only.
map<string, .google.protobuf.Value> source_properties = 7;
Name | Description |
key | String |
Type | Description |
Value |
getState()
public Finding.State getState()
The state of the finding.
.google.cloud.securitycenter.v1.Finding.State state = 4;
Type | Description |
Finding.State | The state. |
getStateValue()
public int getStateValue()
The state of the finding.
.google.cloud.securitycenter.v1.Finding.State state = 4;
Type | Description |
int | The enum numeric value on the wire for state. |
getUnknownFields()
public final UnknownFieldSet getUnknownFields()
Type | Description |
UnknownFieldSet |
getVulnerability()
public Vulnerability getVulnerability()
Represents vulnerability specific fields like cve, cvss scores etc. CVE stands for Common Vulnerabilities and Exposures (https://cve.mitre.org/about/)
.google.cloud.securitycenter.v1.Vulnerability vulnerability = 20;
Type | Description |
Vulnerability | The vulnerability. |
getVulnerabilityOrBuilder()
public VulnerabilityOrBuilder getVulnerabilityOrBuilder()
Represents vulnerability specific fields like cve, cvss scores etc. CVE stands for Common Vulnerabilities and Exposures (https://cve.mitre.org/about/)
.google.cloud.securitycenter.v1.Vulnerability vulnerability = 20;
Type | Description |
VulnerabilityOrBuilder |
hasAccess()
public boolean hasAccess()
Access details associated to the Finding, such as more information on the caller, which method was accessed, from where, etc.
.google.cloud.securitycenter.v1.Access access = 26;
Type | Description |
boolean | Whether the access field is set. |
hasCreateTime()
public boolean hasCreateTime()
The time at which the finding was created in Security Command Center.
.google.protobuf.Timestamp create_time = 10;
Type | Description |
boolean | Whether the createTime field is set. |
hasEventTime()
public boolean hasEventTime()
The time the finding was first detected. If an existing finding is updated, then this is the time the update occurred. For example, if the finding represents an open firewall, this property captures the time the detector believes the firewall became open. The accuracy is determined by the detector. If the finding is later resolved, then this time reflects when the finding was resolved. This must not be set to a value greater than the current timestamp.
.google.protobuf.Timestamp event_time = 9;
Type | Description |
boolean | Whether the eventTime field is set. |
hasExfiltration()
public boolean hasExfiltration()
Represents exfiltration associated with the Finding.
.google.cloud.securitycenter.v1.Exfiltration exfiltration = 38;
Type | Description |
boolean | Whether the exfiltration field is set. |
hasIndicator()
public boolean hasIndicator()
Represents what's commonly known as an Indicator of compromise (IoC) in computer forensics. This is an artifact observed on a network or in an operating system that, with high confidence, indicates a computer intrusion. Reference: https://en.wikipedia.org/wiki/Indicator_of_compromise
.google.cloud.securitycenter.v1.Indicator indicator = 18;
Type | Description |
boolean | Whether the indicator field is set. |
hasMitreAttack()
public boolean hasMitreAttack()
MITRE ATT&CK tactics and techniques related to this finding. See: https://attack.mitre.org
.google.cloud.securitycenter.v1.MitreAttack mitre_attack = 25;
Type | Description |
boolean | Whether the mitreAttack field is set. |
hasMuteUpdateTime()
public boolean hasMuteUpdateTime()
Output only. The most recent time this finding was muted or unmuted.
.google.protobuf.Timestamp mute_update_time = 21 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
boolean | Whether the muteUpdateTime field is set. |
hasSecurityMarks()
public boolean hasSecurityMarks()
Output only. User specified security marks. These marks are entirely managed by the user and come from the SecurityMarks resource that belongs to the finding.
.google.cloud.securitycenter.v1.SecurityMarks security_marks = 8 [(.google.api.field_behavior) = OUTPUT_ONLY];
Type | Description |
boolean | Whether the securityMarks field is set. |
hasVulnerability()
public boolean hasVulnerability()
Represents vulnerability specific fields like cve, cvss scores etc. CVE stands for Common Vulnerabilities and Exposures (https://cve.mitre.org/about/)
.google.cloud.securitycenter.v1.Vulnerability vulnerability = 20;
Type | Description |
boolean | Whether the vulnerability field is set. |
hashCode()
public int hashCode()
Type | Description |
int |
internalGetFieldAccessorTable()
protected GeneratedMessageV3.FieldAccessorTable internalGetFieldAccessorTable()
Type | Description |
FieldAccessorTable |
internalGetMapField(int number)
protected MapField internalGetMapField(int number)
Name | Description |
number | int |
Type | Description |
MapField |
isInitialized()
public final boolean isInitialized()
Type | Description |
boolean |
newBuilderForType()
public Finding.Builder newBuilderForType()
Type | Description |
Finding.Builder |
newBuilderForType(GeneratedMessageV3.BuilderParent parent)
protected Finding.Builder newBuilderForType(GeneratedMessageV3.BuilderParent parent)
Name | Description |
parent | BuilderParent |
Type | Description |
Finding.Builder |
newInstance(GeneratedMessageV3.UnusedPrivateParameter unused)
protected Object newInstance(GeneratedMessageV3.UnusedPrivateParameter unused)
Name | Description |
unused | UnusedPrivateParameter |
Type | Description |
Object |
toBuilder()
public Finding.Builder toBuilder()
Type | Description |
Finding.Builder |
writeTo(CodedOutputStream output)
public void writeTo(CodedOutputStream output)
Name | Description |
output | CodedOutputStream |
Type | Description |
IOException |