- 2.53.0 (latest)
- 2.52.0
- 2.51.0
- 2.49.0
- 2.48.0
- 2.47.0
- 2.46.0
- 2.45.0
- 2.44.0
- 2.43.0
- 2.42.0
- 2.41.0
- 2.40.0
- 2.39.0
- 2.37.0
- 2.36.0
- 2.35.0
- 2.34.0
- 2.33.0
- 2.32.0
- 2.31.0
- 2.30.0
- 2.29.0
- 2.28.0
- 2.27.0
- 2.24.0
- 2.23.0
- 2.22.0
- 2.21.0
- 2.20.0
- 2.19.0
- 2.18.0
- 2.17.0
- 2.16.0
- 2.15.0
- 2.14.0
- 2.13.0
- 2.12.0
- 2.11.0
- 2.9.0
- 2.8.0
- 2.7.0
- 2.6.0
- 2.5.0
- 2.4.0
- 2.3.0
- 2.2.4
- 2.1.1
- 2.0.15
The interfaces provided are listed below, along with usage samples.
WebSecurityScannerClient
Service Description: Web Security Scanner Service identifies security vulnerabilities in web applications hosted on Google Cloud. It crawls your application, and attempts to exercise as many user inputs and event handlers as possible.
Sample for WebSecurityScannerClient:
try (WebSecurityScannerClient webSecurityScannerClient = WebSecurityScannerClient.create()) {
CreateScanConfigRequest request =
CreateScanConfigRequest.newBuilder()
.setParent("parent-995424086")
.setScanConfig(ScanConfig.newBuilder().build())
.build();
ScanConfig response = webSecurityScannerClient.createScanConfig(request);
}
Classes
CrawledUrl
A CrawledUrl resource represents a URL that was crawled during a ScanRun. Web Security Scanner Service crawls the web applications, following all links within the scope of sites, to find the URLs to test against.
Protobuf type google.cloud.websecurityscanner.v1.CrawledUrl
CrawledUrl.Builder
A CrawledUrl resource represents a URL that was crawled during a ScanRun. Web Security Scanner Service crawls the web applications, following all links within the scope of sites, to find the URLs to test against.
Protobuf type google.cloud.websecurityscanner.v1.CrawledUrl
CrawledUrlProto
CreateScanConfigRequest
Request for the CreateScanConfig
method.
Protobuf type google.cloud.websecurityscanner.v1.CreateScanConfigRequest
CreateScanConfigRequest.Builder
Request for the CreateScanConfig
method.
Protobuf type google.cloud.websecurityscanner.v1.CreateScanConfigRequest
DeleteScanConfigRequest
Request for the DeleteScanConfig
method.
Protobuf type google.cloud.websecurityscanner.v1.DeleteScanConfigRequest
DeleteScanConfigRequest.Builder
Request for the DeleteScanConfig
method.
Protobuf type google.cloud.websecurityscanner.v1.DeleteScanConfigRequest
Finding
A Finding resource represents a vulnerability instance identified during a ScanRun.
Protobuf type google.cloud.websecurityscanner.v1.Finding
Finding.Builder
A Finding resource represents a vulnerability instance identified during a ScanRun.
Protobuf type google.cloud.websecurityscanner.v1.Finding
FindingAddonProto
FindingProto
FindingTypeStats
A FindingTypeStats resource represents stats regarding a specific FindingType of Findings under a given ScanRun.
Protobuf type google.cloud.websecurityscanner.v1.FindingTypeStats
FindingTypeStats.Builder
A FindingTypeStats resource represents stats regarding a specific FindingType of Findings under a given ScanRun.
Protobuf type google.cloud.websecurityscanner.v1.FindingTypeStats
FindingTypeStatsProto
Form
! Information about a vulnerability with an HTML.
Protobuf type google.cloud.websecurityscanner.v1.Form
Form.Builder
! Information about a vulnerability with an HTML.
Protobuf type google.cloud.websecurityscanner.v1.Form
GetFindingRequest
Request for the GetFinding
method.
Protobuf type google.cloud.websecurityscanner.v1.GetFindingRequest
GetFindingRequest.Builder
Request for the GetFinding
method.
Protobuf type google.cloud.websecurityscanner.v1.GetFindingRequest
GetScanConfigRequest
Request for the GetScanConfig
method.
Protobuf type google.cloud.websecurityscanner.v1.GetScanConfigRequest
GetScanConfigRequest.Builder
Request for the GetScanConfig
method.
Protobuf type google.cloud.websecurityscanner.v1.GetScanConfigRequest
GetScanRunRequest
Request for the GetScanRun
method.
Protobuf type google.cloud.websecurityscanner.v1.GetScanRunRequest
GetScanRunRequest.Builder
Request for the GetScanRun
method.
Protobuf type google.cloud.websecurityscanner.v1.GetScanRunRequest
ListCrawledUrlsRequest
Request for the ListCrawledUrls
method.
Protobuf type google.cloud.websecurityscanner.v1.ListCrawledUrlsRequest
ListCrawledUrlsRequest.Builder
Request for the ListCrawledUrls
method.
Protobuf type google.cloud.websecurityscanner.v1.ListCrawledUrlsRequest
ListCrawledUrlsResponse
Response for the ListCrawledUrls
method.
Protobuf type google.cloud.websecurityscanner.v1.ListCrawledUrlsResponse
ListCrawledUrlsResponse.Builder
Response for the ListCrawledUrls
method.
Protobuf type google.cloud.websecurityscanner.v1.ListCrawledUrlsResponse
ListFindingTypeStatsRequest
Request for the ListFindingTypeStats
method.
Protobuf type google.cloud.websecurityscanner.v1.ListFindingTypeStatsRequest
ListFindingTypeStatsRequest.Builder
Request for the ListFindingTypeStats
method.
Protobuf type google.cloud.websecurityscanner.v1.ListFindingTypeStatsRequest
ListFindingTypeStatsResponse
Response for the ListFindingTypeStats
method.
Protobuf type google.cloud.websecurityscanner.v1.ListFindingTypeStatsResponse
ListFindingTypeStatsResponse.Builder
Response for the ListFindingTypeStats
method.
Protobuf type google.cloud.websecurityscanner.v1.ListFindingTypeStatsResponse
ListFindingsRequest
Request for the ListFindings
method.
Protobuf type google.cloud.websecurityscanner.v1.ListFindingsRequest
ListFindingsRequest.Builder
Request for the ListFindings
method.
Protobuf type google.cloud.websecurityscanner.v1.ListFindingsRequest
ListFindingsResponse
Response for the ListFindings
method.
Protobuf type google.cloud.websecurityscanner.v1.ListFindingsResponse
ListFindingsResponse.Builder
Response for the ListFindings
method.
Protobuf type google.cloud.websecurityscanner.v1.ListFindingsResponse
ListScanConfigsRequest
Request for the ListScanConfigs
method.
Protobuf type google.cloud.websecurityscanner.v1.ListScanConfigsRequest
ListScanConfigsRequest.Builder
Request for the ListScanConfigs
method.
Protobuf type google.cloud.websecurityscanner.v1.ListScanConfigsRequest
ListScanConfigsResponse
Response for the ListScanConfigs
method.
Protobuf type google.cloud.websecurityscanner.v1.ListScanConfigsResponse
ListScanConfigsResponse.Builder
Response for the ListScanConfigs
method.
Protobuf type google.cloud.websecurityscanner.v1.ListScanConfigsResponse
ListScanRunsRequest
Request for the ListScanRuns
method.
Protobuf type google.cloud.websecurityscanner.v1.ListScanRunsRequest
ListScanRunsRequest.Builder
Request for the ListScanRuns
method.
Protobuf type google.cloud.websecurityscanner.v1.ListScanRunsRequest
ListScanRunsResponse
Response for the ListScanRuns
method.
Protobuf type google.cloud.websecurityscanner.v1.ListScanRunsResponse
ListScanRunsResponse.Builder
Response for the ListScanRuns
method.
Protobuf type google.cloud.websecurityscanner.v1.ListScanRunsResponse
OutdatedLibrary
Information reported for an outdated library.
Protobuf type google.cloud.websecurityscanner.v1.OutdatedLibrary
OutdatedLibrary.Builder
Information reported for an outdated library.
Protobuf type google.cloud.websecurityscanner.v1.OutdatedLibrary
ScanConfig
A ScanConfig resource contains the configurations to launch a scan.
Protobuf type google.cloud.websecurityscanner.v1.ScanConfig
ScanConfig.Authentication
Scan authentication configuration.
Protobuf type google.cloud.websecurityscanner.v1.ScanConfig.Authentication
ScanConfig.Authentication.Builder
Scan authentication configuration.
Protobuf type google.cloud.websecurityscanner.v1.ScanConfig.Authentication
ScanConfig.Authentication.CustomAccount
Describes authentication configuration that uses a custom account.
Protobuf type
google.cloud.websecurityscanner.v1.ScanConfig.Authentication.CustomAccount
ScanConfig.Authentication.CustomAccount.Builder
Describes authentication configuration that uses a custom account.
Protobuf type
google.cloud.websecurityscanner.v1.ScanConfig.Authentication.CustomAccount
ScanConfig.Authentication.GoogleAccount
Describes authentication configuration that uses a Google account.
Protobuf type
google.cloud.websecurityscanner.v1.ScanConfig.Authentication.GoogleAccount
ScanConfig.Authentication.GoogleAccount.Builder
Describes authentication configuration that uses a Google account.
Protobuf type
google.cloud.websecurityscanner.v1.ScanConfig.Authentication.GoogleAccount
ScanConfig.Authentication.IapCredential
Describes authentication configuration for Identity-Aware-Proxy (IAP).
Protobuf type
google.cloud.websecurityscanner.v1.ScanConfig.Authentication.IapCredential
ScanConfig.Authentication.IapCredential.Builder
Describes authentication configuration for Identity-Aware-Proxy (IAP).
Protobuf type
google.cloud.websecurityscanner.v1.ScanConfig.Authentication.IapCredential
ScanConfig.Authentication.IapCredential.IapTestServiceAccountInfo
Describes authentication configuration when Web-Security-Scanner service account is added in Identity-Aware-Proxy (IAP) access policies.
Protobuf type
google.cloud.websecurityscanner.v1.ScanConfig.Authentication.IapCredential.IapTestServiceAccountInfo
ScanConfig.Authentication.IapCredential.IapTestServiceAccountInfo.Builder
Describes authentication configuration when Web-Security-Scanner service account is added in Identity-Aware-Proxy (IAP) access policies.
Protobuf type
google.cloud.websecurityscanner.v1.ScanConfig.Authentication.IapCredential.IapTestServiceAccountInfo
ScanConfig.Builder
A ScanConfig resource contains the configurations to launch a scan.
Protobuf type google.cloud.websecurityscanner.v1.ScanConfig
ScanConfig.Schedule
Scan schedule configuration.
Protobuf type google.cloud.websecurityscanner.v1.ScanConfig.Schedule
ScanConfig.Schedule.Builder
Scan schedule configuration.
Protobuf type google.cloud.websecurityscanner.v1.ScanConfig.Schedule
ScanConfigError
Defines a custom error message used by CreateScanConfig and UpdateScanConfig APIs when scan configuration validation fails. It is also reported as part of a ScanRunErrorTrace message if scan validation fails due to a scan configuration error.
Protobuf type google.cloud.websecurityscanner.v1.ScanConfigError
ScanConfigError.Builder
Defines a custom error message used by CreateScanConfig and UpdateScanConfig APIs when scan configuration validation fails. It is also reported as part of a ScanRunErrorTrace message if scan validation fails due to a scan configuration error.
Protobuf type google.cloud.websecurityscanner.v1.ScanConfigError
ScanConfigErrorProto
ScanConfigProto
ScanRun
A ScanRun is a output-only resource representing an actual run of the scan. Next id: 12
Protobuf type google.cloud.websecurityscanner.v1.ScanRun
ScanRun.Builder
A ScanRun is a output-only resource representing an actual run of the scan. Next id: 12
Protobuf type google.cloud.websecurityscanner.v1.ScanRun
ScanRunErrorTrace
Output only. Defines an error trace message for a ScanRun.
Protobuf type google.cloud.websecurityscanner.v1.ScanRunErrorTrace
ScanRunErrorTrace.Builder
Output only. Defines an error trace message for a ScanRun.
Protobuf type google.cloud.websecurityscanner.v1.ScanRunErrorTrace
ScanRunErrorTraceProto
ScanRunProto
ScanRunWarningTrace
Output only. Defines a warning trace message for ScanRun. Warning traces provide customers with useful information that helps make the scanning process more effective.
Protobuf type google.cloud.websecurityscanner.v1.ScanRunWarningTrace
ScanRunWarningTrace.Builder
Output only. Defines a warning trace message for ScanRun. Warning traces provide customers with useful information that helps make the scanning process more effective.
Protobuf type google.cloud.websecurityscanner.v1.ScanRunWarningTrace
ScanRunWarningTraceProto
StartScanRunRequest
Request for the StartScanRun
method.
Protobuf type google.cloud.websecurityscanner.v1.StartScanRunRequest
StartScanRunRequest.Builder
Request for the StartScanRun
method.
Protobuf type google.cloud.websecurityscanner.v1.StartScanRunRequest
StopScanRunRequest
Request for the StopScanRun
method.
Protobuf type google.cloud.websecurityscanner.v1.StopScanRunRequest
StopScanRunRequest.Builder
Request for the StopScanRun
method.
Protobuf type google.cloud.websecurityscanner.v1.StopScanRunRequest
UpdateScanConfigRequest
Request for the UpdateScanConfigRequest
method.
Protobuf type google.cloud.websecurityscanner.v1.UpdateScanConfigRequest
UpdateScanConfigRequest.Builder
Request for the UpdateScanConfigRequest
method.
Protobuf type google.cloud.websecurityscanner.v1.UpdateScanConfigRequest
ViolatingResource
Information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc.
Protobuf type google.cloud.websecurityscanner.v1.ViolatingResource
ViolatingResource.Builder
Information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc.
Protobuf type google.cloud.websecurityscanner.v1.ViolatingResource
VulnerableHeaders
Information about vulnerable or missing HTTP Headers.
Protobuf type google.cloud.websecurityscanner.v1.VulnerableHeaders
VulnerableHeaders.Builder
Information about vulnerable or missing HTTP Headers.
Protobuf type google.cloud.websecurityscanner.v1.VulnerableHeaders
VulnerableHeaders.Header
Describes a HTTP Header.
Protobuf type google.cloud.websecurityscanner.v1.VulnerableHeaders.Header
VulnerableHeaders.Header.Builder
Describes a HTTP Header.
Protobuf type google.cloud.websecurityscanner.v1.VulnerableHeaders.Header
VulnerableParameters
Information about vulnerable request parameters.
Protobuf type google.cloud.websecurityscanner.v1.VulnerableParameters
VulnerableParameters.Builder
Information about vulnerable request parameters.
Protobuf type google.cloud.websecurityscanner.v1.VulnerableParameters
WebSecurityScannerClient
Service Description: Web Security Scanner Service identifies security vulnerabilities in web applications hosted on Google Cloud. It crawls your application, and attempts to exercise as many user inputs and event handlers as possible.
This class provides the ability to make remote calls to the backing service through method calls that map to API methods. Sample code to get started:
try (WebSecurityScannerClient webSecurityScannerClient = WebSecurityScannerClient.create()) {
CreateScanConfigRequest request =
CreateScanConfigRequest.newBuilder()
.setParent("parent-995424086")
.setScanConfig(ScanConfig.newBuilder().build())
.build();
ScanConfig response = webSecurityScannerClient.createScanConfig(request);
}
Note: close() needs to be called on the WebSecurityScannerClient object to clean up resources such as threads. In the example above, try-with-resources is used, which automatically calls close().
The surface of this class includes several types of Java methods for each of the API's methods:
- A "flattened" method. With this type of method, the fields of the request type have been converted into function parameters. It may be the case that not all fields are available as parameters, and not every API method will have a flattened method entry point.
- A "request object" method. This type of method only takes one parameter, a request object, which must be constructed before the call. Not every API method will have a request object method.
- A "callable" method. This type of method takes no parameters and returns an immutable API callable object, which can be used to initiate calls to the service.
See the individual methods for example code.
Many parameters require resource names to be formatted in a particular way. To assist with these names, this class includes a format method for each type of name, and additionally a parse method to extract the individual identifiers contained within names that are returned.
This class can be customized by passing in a custom instance of WebSecurityScannerSettings to create(). For example:
To customize credentials:
WebSecurityScannerSettings webSecurityScannerSettings =
WebSecurityScannerSettings.newBuilder()
.setCredentialsProvider(FixedCredentialsProvider.create(myCredentials))
.build();
WebSecurityScannerClient webSecurityScannerClient =
WebSecurityScannerClient.create(webSecurityScannerSettings);
To customize the endpoint:
WebSecurityScannerSettings webSecurityScannerSettings =
WebSecurityScannerSettings.newBuilder().setEndpoint(myEndpoint).build();
WebSecurityScannerClient webSecurityScannerClient =
WebSecurityScannerClient.create(webSecurityScannerSettings);
Please refer to the GitHub repository's samples for more quickstart code snippets.
WebSecurityScannerClient.ListCrawledUrlsFixedSizeCollection
WebSecurityScannerClient.ListCrawledUrlsPage
WebSecurityScannerClient.ListCrawledUrlsPagedResponse
WebSecurityScannerClient.ListFindingsFixedSizeCollection
WebSecurityScannerClient.ListFindingsPage
WebSecurityScannerClient.ListFindingsPagedResponse
WebSecurityScannerClient.ListScanConfigsFixedSizeCollection
WebSecurityScannerClient.ListScanConfigsPage
WebSecurityScannerClient.ListScanConfigsPagedResponse
WebSecurityScannerClient.ListScanRunsFixedSizeCollection
WebSecurityScannerClient.ListScanRunsPage
WebSecurityScannerClient.ListScanRunsPagedResponse
WebSecurityScannerGrpc
Web Security Scanner Service identifies security vulnerabilities in web applications hosted on Google Cloud. It crawls your application, and attempts to exercise as many user inputs and event handlers as possible.
WebSecurityScannerGrpc.WebSecurityScannerBlockingStub
Web Security Scanner Service identifies security vulnerabilities in web applications hosted on Google Cloud. It crawls your application, and attempts to exercise as many user inputs and event handlers as possible.
WebSecurityScannerGrpc.WebSecurityScannerFutureStub
Web Security Scanner Service identifies security vulnerabilities in web applications hosted on Google Cloud. It crawls your application, and attempts to exercise as many user inputs and event handlers as possible.
WebSecurityScannerGrpc.WebSecurityScannerImplBase
Web Security Scanner Service identifies security vulnerabilities in web applications hosted on Google Cloud. It crawls your application, and attempts to exercise as many user inputs and event handlers as possible.
WebSecurityScannerGrpc.WebSecurityScannerStub
Web Security Scanner Service identifies security vulnerabilities in web applications hosted on Google Cloud. It crawls your application, and attempts to exercise as many user inputs and event handlers as possible.
WebSecurityScannerProto
WebSecurityScannerSettings
Settings class to configure an instance of WebSecurityScannerClient.
The default instance has everything set to sensible defaults:
- The default service address (websecurityscanner.googleapis.com) and default port (443) are used.
- Credentials are acquired automatically through Application Default Credentials.
- Retries are configured for idempotent methods but not for non-idempotent methods.
The builder of this class is recursive, so contained classes are themselves builders. When build() is called, the tree of builders is called to create the complete settings object.
For example, to set the total timeout of createScanConfig to 30 seconds:
WebSecurityScannerSettings.Builder webSecurityScannerSettingsBuilder =
WebSecurityScannerSettings.newBuilder();
webSecurityScannerSettingsBuilder
.createScanConfigSettings()
.setRetrySettings(
webSecurityScannerSettingsBuilder
.createScanConfigSettings()
.getRetrySettings()
.toBuilder()
.setTotalTimeout(Duration.ofSeconds(30))
.build());
WebSecurityScannerSettings webSecurityScannerSettings =
webSecurityScannerSettingsBuilder.build();
WebSecurityScannerSettings.Builder
Builder for WebSecurityScannerSettings.
Xss
Information reported for an XSS.
Protobuf type google.cloud.websecurityscanner.v1.Xss
Xss.Builder
Information reported for an XSS.
Protobuf type google.cloud.websecurityscanner.v1.Xss
Interfaces
CrawledUrlOrBuilder
CreateScanConfigRequestOrBuilder
DeleteScanConfigRequestOrBuilder
FindingOrBuilder
FindingTypeStatsOrBuilder
FormOrBuilder
GetFindingRequestOrBuilder
GetScanConfigRequestOrBuilder
GetScanRunRequestOrBuilder
ListCrawledUrlsRequestOrBuilder
ListCrawledUrlsResponseOrBuilder
ListFindingTypeStatsRequestOrBuilder
ListFindingTypeStatsResponseOrBuilder
ListFindingsRequestOrBuilder
ListFindingsResponseOrBuilder
ListScanConfigsRequestOrBuilder
ListScanConfigsResponseOrBuilder
ListScanRunsRequestOrBuilder
ListScanRunsResponseOrBuilder
OutdatedLibraryOrBuilder
ScanConfig.Authentication.CustomAccountOrBuilder
ScanConfig.Authentication.GoogleAccountOrBuilder
ScanConfig.Authentication.IapCredential.IapTestServiceAccountInfoOrBuilder
ScanConfig.Authentication.IapCredentialOrBuilder
ScanConfig.AuthenticationOrBuilder
ScanConfig.ScheduleOrBuilder
ScanConfigErrorOrBuilder
ScanConfigOrBuilder
ScanRunErrorTraceOrBuilder
ScanRunOrBuilder
ScanRunWarningTraceOrBuilder
StartScanRunRequestOrBuilder
StopScanRunRequestOrBuilder
UpdateScanConfigRequestOrBuilder
ViolatingResourceOrBuilder
VulnerableHeaders.HeaderOrBuilder
VulnerableHeadersOrBuilder
VulnerableParametersOrBuilder
XssOrBuilder
Enums
Finding.Severity
The severity level of a vulnerability.
Protobuf enum google.cloud.websecurityscanner.v1.Finding.Severity
ScanConfig.Authentication.AuthenticationCase
ScanConfig.Authentication.IapCredential.IapCredentialsCase
ScanConfig.ExportToSecurityCommandCenter
Controls export of scan configurations and results to Security Command Center.
Protobuf enum
google.cloud.websecurityscanner.v1.ScanConfig.ExportToSecurityCommandCenter
ScanConfig.RiskLevel
Scan risk levels supported by Web Security Scanner. LOW impact scanning will minimize requests with the potential to modify data. To achieve the maximum scan coverage, NORMAL risk level is recommended.
Protobuf enum google.cloud.websecurityscanner.v1.ScanConfig.RiskLevel
ScanConfig.UserAgent
Type of user agents used for scanning.
Protobuf enum google.cloud.websecurityscanner.v1.ScanConfig.UserAgent
ScanConfigError.Code
Output only. Defines an error reason code. Next id: 44
Protobuf enum google.cloud.websecurityscanner.v1.ScanConfigError.Code
ScanRun.ExecutionState
Types of ScanRun execution state.
Protobuf enum google.cloud.websecurityscanner.v1.ScanRun.ExecutionState
ScanRun.ResultState
Types of ScanRun result state.
Protobuf enum google.cloud.websecurityscanner.v1.ScanRun.ResultState
ScanRunErrorTrace.Code
Output only. Defines an error reason code. Next id: 7
Protobuf enum google.cloud.websecurityscanner.v1.ScanRunErrorTrace.Code
ScanRunWarningTrace.Code
Output only. Defines a warning message code. Next id: 6
Protobuf enum google.cloud.websecurityscanner.v1.ScanRunWarningTrace.Code
Xss.AttackVector
Types of XSS attack vector.
Protobuf enum google.cloud.websecurityscanner.v1.Xss.AttackVector