- 2.52.0 (latest)
- 2.50.0
- 2.49.0
- 2.48.0
- 2.47.0
- 2.46.0
- 2.45.0
- 2.44.0
- 2.43.0
- 2.42.0
- 2.41.0
- 2.40.0
- 2.38.0
- 2.37.0
- 2.36.0
- 2.35.0
- 2.34.0
- 2.33.0
- 2.32.0
- 2.31.0
- 2.30.0
- 2.29.0
- 2.28.0
- 2.25.0
- 2.24.0
- 2.23.0
- 2.22.0
- 2.21.0
- 2.20.0
- 2.19.0
- 2.18.0
- 2.17.0
- 2.16.0
- 2.15.0
- 2.14.0
- 2.13.0
- 2.12.0
- 2.10.0
- 2.9.0
- 2.8.0
- 2.7.0
- 2.6.0
- 2.5.0
- 2.4.5
- 2.3.1
- 2.2.3
- 2.1.3
Package io.grafeas.v1 (2.52.0)
GitHub Repository |
Client Classes
Client classes are the main entry point to using a package. They contain several variations of Java methods for each of the API's methods.
Client | Description |
---|---|
io.grafeas.v1.GrafeasClient |
Service Description: Grafeas API.
Retrieves analysis results of Cloud components such as Docker container images. |
Settings Classes
Settings classes can be used to configure credentials, endpoints, and retry settings for a Client.
Settings | Description |
---|---|
io.grafeas.v1.GrafeasSettings |
Settings class to configure an instance of GrafeasClient.
The default instance has everything set to sensible defaults: |
Classes
Class | Description |
---|---|
io.grafeas.v1.AliasContext | An alias to a repo revision. |
io.grafeas.v1.AliasContext.Builder | An alias to a repo revision. |
io.grafeas.v1.Artifact | Artifact describes a build product. |
io.grafeas.v1.Artifact.Builder | Artifact describes a build product. |
io.grafeas.v1.Attestation | |
io.grafeas.v1.AttestationNote |
Note kind that represents a logical attestation "role" or "authority". For
example, an organization might have one Authority for "QA" and one for
"build". This note is intended to act strictly as a grouping mechanism for |
io.grafeas.v1.AttestationNote.Builder |
Note kind that represents a logical attestation "role" or "authority". For
example, an organization might have one Authority for "QA" and one for
"build". This note is intended to act strictly as a grouping mechanism for |
io.grafeas.v1.AttestationNote.Hint | This submessage provides human-readable hints about the purpose of the authority. Because the name of a note acts as its resource reference, it is important to disambiguate the canonical name of the Note (which might be a |
io.grafeas.v1.AttestationNote.Hint.Builder | This submessage provides human-readable hints about the purpose of the authority. Because the name of a note acts as its resource reference, it is important to disambiguate the canonical name of the Note (which might be a |
io.grafeas.v1.AttestationOccurrence | Occurrence that represents a single "attestation". The authenticity of an attestation can be verified using the attached signature. If the verifier trusts the public key of the signer, then verifying the signature is |
io.grafeas.v1.AttestationOccurrence.Builder | Occurrence that represents a single "attestation". The authenticity of an attestation can be verified using the attached signature. If the verifier trusts the public key of the signer, then verifying the signature is |
io.grafeas.v1.BatchCreateNotesRequest | Request to create notes in batch. |
io.grafeas.v1.BatchCreateNotesRequest.Builder | Request to create notes in batch. |
io.grafeas.v1.BatchCreateNotesResponse | Response for creating notes in batch. |
io.grafeas.v1.BatchCreateNotesResponse.Builder | Response for creating notes in batch. |
io.grafeas.v1.BatchCreateOccurrencesRequest | Request to create occurrences in batch. |
io.grafeas.v1.BatchCreateOccurrencesRequest.Builder | Request to create occurrences in batch. |
io.grafeas.v1.BatchCreateOccurrencesResponse | Response for creating occurrences in batch. |
io.grafeas.v1.BatchCreateOccurrencesResponse.Builder | Response for creating occurrences in batch. |
io.grafeas.v1.Build | |
io.grafeas.v1.BuildNote | Note holding the version of the provider's builder and the signature of the provenance message in the build details occurrence. |
io.grafeas.v1.BuildNote.Builder | Note holding the version of the provider's builder and the signature of the provenance message in the build details occurrence. |
io.grafeas.v1.BuildOccurrence | Details of a build occurrence. |
io.grafeas.v1.BuildOccurrence.Builder | Details of a build occurrence. |
io.grafeas.v1.BuildProvenance | Provenance of a build. Contains all information needed to verify the full details about the build from source to completion. |
io.grafeas.v1.BuildProvenance.Builder | Provenance of a build. Contains all information needed to verify the full details about the build from source to completion. |
io.grafeas.v1.BuilderConfig |
Protobuf type grafeas.v1.BuilderConfig |
io.grafeas.v1.BuilderConfig.Builder |
Protobuf type grafeas.v1.BuilderConfig |
io.grafeas.v1.CVSS | Common Vulnerability Scoring System. For details, see https://www.first.org/cvss/specification-document This is a message we will try to use for storing various versions of CVSS |
io.grafeas.v1.CVSS.Builder | Common Vulnerability Scoring System. For details, see https://www.first.org/cvss/specification-document This is a message we will try to use for storing various versions of CVSS |
io.grafeas.v1.CVSSProto | |
io.grafeas.v1.CVSSv3 | Common Vulnerability Scoring System version 3. For details, see https://www.first.org/cvss/specification-document |
io.grafeas.v1.CVSSv3.Builder | Common Vulnerability Scoring System version 3. For details, see https://www.first.org/cvss/specification-document |
io.grafeas.v1.CloudRepoSourceContext | A CloudRepoSourceContext denotes a particular revision in a Google Cloud Source Repo. |
io.grafeas.v1.CloudRepoSourceContext.Builder | A CloudRepoSourceContext denotes a particular revision in a Google Cloud Source Repo. |
io.grafeas.v1.Command | Command describes a step performed as part of the build pipeline. |
io.grafeas.v1.Command.Builder | Command describes a step performed as part of the build pipeline. |
io.grafeas.v1.Common | |
io.grafeas.v1.Completeness | Indicates that the builder claims certain fields in this message to be complete. |
io.grafeas.v1.Completeness.Builder | Indicates that the builder claims certain fields in this message to be complete. |
io.grafeas.v1.Compliance | |
io.grafeas.v1.ComplianceNote |
Protobuf type grafeas.v1.ComplianceNote |
io.grafeas.v1.ComplianceNote.Builder |
Protobuf type grafeas.v1.ComplianceNote |
io.grafeas.v1.ComplianceNote.CisBenchmark | A compliance check that is a CIS benchmark. |
io.grafeas.v1.ComplianceNote.CisBenchmark.Builder | A compliance check that is a CIS benchmark. |
io.grafeas.v1.ComplianceOccurrence | An indication that the compliance checks in the associated ComplianceNote were not satisfied for particular resources or a specified reason. |
io.grafeas.v1.ComplianceOccurrence.Builder | An indication that the compliance checks in the associated ComplianceNote were not satisfied for particular resources or a specified reason. |
io.grafeas.v1.ComplianceVersion | Describes the CIS benchmark version that is applicable to a given OS and os version. |
io.grafeas.v1.ComplianceVersion.Builder | Describes the CIS benchmark version that is applicable to a given OS and os version. |
io.grafeas.v1.CreateNoteRequest | Request to create a new note. |
io.grafeas.v1.CreateNoteRequest.Builder | Request to create a new note. |
io.grafeas.v1.CreateOccurrenceRequest | Request to create a new occurrence. |
io.grafeas.v1.CreateOccurrenceRequest.Builder | Request to create a new occurrence. |
io.grafeas.v1.DSSEAttestationNote |
Protobuf type grafeas.v1.DSSEAttestationNote |
io.grafeas.v1.DSSEAttestationNote.Builder |
Protobuf type grafeas.v1.DSSEAttestationNote |
io.grafeas.v1.DSSEAttestationNote.DSSEHint | This submessage provides human-readable hints about the purpose of the authority. Because the name of a note acts as its resource reference, it is important to disambiguate the canonical name of the Note (which might be a |
io.grafeas.v1.DSSEAttestationNote.DSSEHint.Builder | This submessage provides human-readable hints about the purpose of the authority. Because the name of a note acts as its resource reference, it is important to disambiguate the canonical name of the Note (which might be a |
io.grafeas.v1.DSSEAttestationOccurrence | Deprecated. Prefer to use a regular Occurrence, and populate the Envelope at the top level of the Occurrence. |
io.grafeas.v1.DSSEAttestationOccurrence.Builder | Deprecated. Prefer to use a regular Occurrence, and populate the Envelope at the top level of the Occurrence. |
io.grafeas.v1.DeleteNoteRequest | Request to delete a note. |
io.grafeas.v1.DeleteNoteRequest.Builder | Request to delete a note. |
io.grafeas.v1.DeleteOccurrenceRequest | Request to delete an occurrence. |
io.grafeas.v1.DeleteOccurrenceRequest.Builder | Request to delete an occurrence. |
io.grafeas.v1.Deployment | |
io.grafeas.v1.DeploymentNote | An artifact that can be deployed in some runtime. |
io.grafeas.v1.DeploymentNote.Builder | An artifact that can be deployed in some runtime. |
io.grafeas.v1.DeploymentOccurrence | The period during which some deployable was active in a runtime. |
io.grafeas.v1.DeploymentOccurrence.Builder | The period during which some deployable was active in a runtime. |
io.grafeas.v1.Digest | Digest information. |
io.grafeas.v1.Digest.Builder | Digest information. |
io.grafeas.v1.Discovery | |
io.grafeas.v1.DiscoveryNote |
A note that indicates a type of analysis a provider would perform. This note
exists in a provider's project. A Discovery occurrence is created in a
consumer's project at the start of analysis. |
io.grafeas.v1.DiscoveryNote.Builder |
A note that indicates a type of analysis a provider would perform. This note
exists in a provider's project. A Discovery occurrence is created in a
consumer's project at the start of analysis. |
io.grafeas.v1.DiscoveryOccurrence | Provides information about the analysis status of a discovered resource. |
io.grafeas.v1.DiscoveryOccurrence.AnalysisCompleted | Indicates which analysis completed successfully. Multiple types of analysis can be performed on a single resource. |
io.grafeas.v1.DiscoveryOccurrence.AnalysisCompleted.Builder | Indicates which analysis completed successfully. Multiple types of analysis can be performed on a single resource. |
io.grafeas.v1.DiscoveryOccurrence.Builder | Provides information about the analysis status of a discovered resource. |
io.grafeas.v1.DiscoveryOccurrence.SBOMStatus | The status of an SBOM generation. |
io.grafeas.v1.DiscoveryOccurrence.SBOMStatus.Builder | The status of an SBOM generation. |
io.grafeas.v1.DiscoveryOccurrence.VulnerabilityAttestation | The status of an vulnerability attestation generation. |
io.grafeas.v1.DiscoveryOccurrence.VulnerabilityAttestation.Builder | The status of an vulnerability attestation generation. |
io.grafeas.v1.Distribution | This represents a particular channel of distribution for a given package. E.g., Debian's jessie-backports dpkg mirror. |
io.grafeas.v1.Distribution.Builder | This represents a particular channel of distribution for a given package. E.g., Debian's jessie-backports dpkg mirror. |
io.grafeas.v1.DsseAttestation | |
io.grafeas.v1.Envelope | MUST match https://github.com/secure-systems-lab/dsse/blob/master/envelope.proto. An authenticated message of arbitrary type. |
io.grafeas.v1.Envelope.Builder | MUST match https://github.com/secure-systems-lab/dsse/blob/master/envelope.proto. An authenticated message of arbitrary type. |
io.grafeas.v1.EnvelopeSignature |
Protobuf type grafeas.v1.EnvelopeSignature |
io.grafeas.v1.EnvelopeSignature.Builder |
Protobuf type grafeas.v1.EnvelopeSignature |
io.grafeas.v1.FileHashes | Container message for hashes of byte content of files, used in source messages to verify integrity of source input to the build. |
io.grafeas.v1.FileHashes.Builder | Container message for hashes of byte content of files, used in source messages to verify integrity of source input to the build. |
io.grafeas.v1.FileLocation | Indicates the location at which a package was found. |
io.grafeas.v1.FileLocation.Builder | Indicates the location at which a package was found. |
io.grafeas.v1.Fingerprint | A set of properties that uniquely identify a given Docker image. |
io.grafeas.v1.Fingerprint.Builder | A set of properties that uniquely identify a given Docker image. |
io.grafeas.v1.GerritSourceContext | A SourceContext referring to a Gerrit project. |
io.grafeas.v1.GerritSourceContext.Builder | A SourceContext referring to a Gerrit project. |
io.grafeas.v1.GetNoteRequest | Request to get a note. |
io.grafeas.v1.GetNoteRequest.Builder | Request to get a note. |
io.grafeas.v1.GetOccurrenceNoteRequest | Request to get the note to which the specified occurrence is attached. |
io.grafeas.v1.GetOccurrenceNoteRequest.Builder | Request to get the note to which the specified occurrence is attached. |
io.grafeas.v1.GetOccurrenceRequest | Request to get an occurrence. |
io.grafeas.v1.GetOccurrenceRequest.Builder | Request to get an occurrence. |
io.grafeas.v1.GitSourceContext | A GitSourceContext denotes a particular revision in a third party Git repository (e.g., GitHub). |
io.grafeas.v1.GitSourceContext.Builder | A GitSourceContext denotes a particular revision in a third party Git repository (e.g., GitHub). |
io.grafeas.v1.GrafeasClient.ListNoteOccurrencesFixedSizeCollection | |
io.grafeas.v1.GrafeasClient.ListNoteOccurrencesPage | |
io.grafeas.v1.GrafeasClient.ListNoteOccurrencesPagedResponse | |
io.grafeas.v1.GrafeasClient.ListNotesFixedSizeCollection | |
io.grafeas.v1.GrafeasClient.ListNotesPage | |
io.grafeas.v1.GrafeasClient.ListNotesPagedResponse | |
io.grafeas.v1.GrafeasClient.ListOccurrencesFixedSizeCollection | |
io.grafeas.v1.GrafeasClient.ListOccurrencesPage | |
io.grafeas.v1.GrafeasClient.ListOccurrencesPagedResponse | |
io.grafeas.v1.GrafeasGrpc | Grafeas API. Retrieves analysis results of Cloud components such as Docker container images. |
io.grafeas.v1.GrafeasGrpc.GrafeasImplBase | Base class for the server implementation of the service Grafeas. Grafeas API. |
io.grafeas.v1.GrafeasOuterClass | |
io.grafeas.v1.GrafeasSettings.Builder | Builder for GrafeasSettings. |
io.grafeas.v1.Hash | Container message for hash values. |
io.grafeas.v1.Hash.Builder | Container message for hash values. |
io.grafeas.v1.Image | |
io.grafeas.v1.ImageNote | Basis describes the base image portion (Note) of the DockerImage relationship. Linked occurrences are derived from this or an equivalent image via: |
io.grafeas.v1.ImageNote.Builder | Basis describes the base image portion (Note) of the DockerImage relationship. Linked occurrences are derived from this or an equivalent image via: |
io.grafeas.v1.ImageOccurrence | Details of the derived image portion of the DockerImage relationship. This image would be produced from a Dockerfile with FROM <DockerImage.Basis in attached Note>. |
io.grafeas.v1.ImageOccurrence.Builder | Details of the derived image portion of the DockerImage relationship. This image would be produced from a Dockerfile with FROM <DockerImage.Basis in attached Note>. |
io.grafeas.v1.InTotoProvenance |
Protobuf type grafeas.v1.InTotoProvenance |
io.grafeas.v1.InTotoProvenance.Builder |
Protobuf type grafeas.v1.InTotoProvenance |
io.grafeas.v1.InTotoProvenanceProto | |
io.grafeas.v1.InTotoSlsaProvenanceV1 |
Protobuf type grafeas.v1.InTotoSlsaProvenanceV1 |
io.grafeas.v1.InTotoSlsaProvenanceV1.BuildDefinition |
Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.BuildDefinition |
io.grafeas.v1.InTotoSlsaProvenanceV1.BuildDefinition.Builder |
Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.BuildDefinition |
io.grafeas.v1.InTotoSlsaProvenanceV1.BuildMetadata |
Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.BuildMetadata |
io.grafeas.v1.InTotoSlsaProvenanceV1.BuildMetadata.Builder |
Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.BuildMetadata |
io.grafeas.v1.InTotoSlsaProvenanceV1.Builder |
Protobuf type grafeas.v1.InTotoSlsaProvenanceV1 |
io.grafeas.v1.InTotoSlsaProvenanceV1.ProvenanceBuilder |
Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.ProvenanceBuilder |
io.grafeas.v1.InTotoSlsaProvenanceV1.ProvenanceBuilder.Builder |
Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.ProvenanceBuilder |
io.grafeas.v1.InTotoSlsaProvenanceV1.ResourceDescriptor |
Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.ResourceDescriptor |
io.grafeas.v1.InTotoSlsaProvenanceV1.ResourceDescriptor.Builder |
Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.ResourceDescriptor |
io.grafeas.v1.InTotoSlsaProvenanceV1.RunDetails |
Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.RunDetails |
io.grafeas.v1.InTotoSlsaProvenanceV1.RunDetails.Builder |
Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.RunDetails |
io.grafeas.v1.InTotoSlsaProvenanceV1.SlsaProvenanceV1 | Keep in sync with schema at https://github.com/slsa-framework/slsa/blob/main/docs/provenance/schema/v1/provenance.proto Builder renamed to ProvenanceBuilder because of Java conflicts. |
io.grafeas.v1.InTotoSlsaProvenanceV1.SlsaProvenanceV1.Builder | Keep in sync with schema at https://github.com/slsa-framework/slsa/blob/main/docs/provenance/schema/v1/provenance.proto Builder renamed to ProvenanceBuilder because of Java conflicts. |
io.grafeas.v1.InTotoStatement | Spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelope.payload. |
io.grafeas.v1.InTotoStatement.Builder | Spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelope.payload. |
io.grafeas.v1.InTotoStatementProto | |
io.grafeas.v1.Jwt |
Protobuf type grafeas.v1.Jwt |
io.grafeas.v1.Jwt.Builder |
Protobuf type grafeas.v1.Jwt |
io.grafeas.v1.Layer | Layer holds metadata specific to a layer of a Docker image. |
io.grafeas.v1.Layer.Builder | Layer holds metadata specific to a layer of a Docker image. |
io.grafeas.v1.License | License information. |
io.grafeas.v1.License.Builder | License information. |
io.grafeas.v1.ListNoteOccurrencesRequest | Request to list occurrences for a note. |
io.grafeas.v1.ListNoteOccurrencesRequest.Builder | Request to list occurrences for a note. |
io.grafeas.v1.ListNoteOccurrencesResponse | Response for listing occurrences for a note. |
io.grafeas.v1.ListNoteOccurrencesResponse.Builder | Response for listing occurrences for a note. |
io.grafeas.v1.ListNotesRequest | Request to list notes. |
io.grafeas.v1.ListNotesRequest.Builder | Request to list notes. |
io.grafeas.v1.ListNotesResponse | Response for listing notes. |
io.grafeas.v1.ListNotesResponse.Builder | Response for listing notes. |
io.grafeas.v1.ListOccurrencesRequest | Request to list occurrences. |
io.grafeas.v1.ListOccurrencesRequest.Builder | Request to list occurrences. |
io.grafeas.v1.ListOccurrencesResponse | Response for listing occurrences. |
io.grafeas.v1.ListOccurrencesResponse.Builder | Response for listing occurrences. |
io.grafeas.v1.Location |
An occurrence of a particular package installation found within a system's
filesystem. E.g., glibc was found in /var/lib/dpkg/status .
|
io.grafeas.v1.Location.Builder |
An occurrence of a particular package installation found within a system's
filesystem. E.g., glibc was found in /var/lib/dpkg/status .
|
io.grafeas.v1.Metadata | Other properties of the build. |
io.grafeas.v1.Metadata.Builder | Other properties of the build. |
io.grafeas.v1.NonCompliantFile | Details about files that caused a compliance check to fail. |
io.grafeas.v1.NonCompliantFile.Builder | Details about files that caused a compliance check to fail. |
io.grafeas.v1.Note | A type of analysis that can be done for a resource. |
io.grafeas.v1.Note.Builder | A type of analysis that can be done for a resource. |
io.grafeas.v1.NoteName | |
io.grafeas.v1.NoteName.Builder | Builder for projects/{project}/notes/{note}. |
io.grafeas.v1.Occurrence | An instance of an analysis type that has been found on a resource. |
io.grafeas.v1.Occurrence.Builder | An instance of an analysis type that has been found on a resource. |
io.grafeas.v1.OccurrenceName | |
io.grafeas.v1.OccurrenceName.Builder | Builder for projects/{project}/occurrences/{occurrence}. |
io.grafeas.v1.Package | |
io.grafeas.v1.PackageNote | PackageNote represents a particular package version. |
io.grafeas.v1.PackageNote.Builder | PackageNote represents a particular package version. |
io.grafeas.v1.PackageOccurrence | Details on how a particular software package was installed on a system. |
io.grafeas.v1.PackageOccurrence.Builder | Details on how a particular software package was installed on a system. |
io.grafeas.v1.ProjectName | |
io.grafeas.v1.ProjectName.Builder | Builder for projects/{project}. |
io.grafeas.v1.ProjectRepoId | Selects a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within that project. |
io.grafeas.v1.ProjectRepoId.Builder | Selects a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within that project. |
io.grafeas.v1.Provenance | |
io.grafeas.v1.Recipe | Steps taken to build the artifact. For a TaskRun, typically each container corresponds to one step in the recipe. |
io.grafeas.v1.Recipe.Builder | Steps taken to build the artifact. For a TaskRun, typically each container corresponds to one step in the recipe. |
io.grafeas.v1.RelatedUrl | Metadata for any related URL information. |
io.grafeas.v1.RelatedUrl.Builder | Metadata for any related URL information. |
io.grafeas.v1.RepoId | A unique identifier for a Cloud Repo. |
io.grafeas.v1.RepoId.Builder | A unique identifier for a Cloud Repo. |
io.grafeas.v1.SBOMReferenceNote | The note representing an SBOM reference. |
io.grafeas.v1.SBOMReferenceNote.Builder | The note representing an SBOM reference. |
io.grafeas.v1.SBOMReferenceOccurrence | The occurrence representing an SBOM reference as applied to a specific resource. The occurrence follows the DSSE specification. See https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more |
io.grafeas.v1.SBOMReferenceOccurrence.Builder | The occurrence representing an SBOM reference as applied to a specific resource. The occurrence follows the DSSE specification. See https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more |
io.grafeas.v1.Sbom | |
io.grafeas.v1.SbomReferenceIntotoPayload | The actual payload that contains the SBOM Reference data. The payload follows the intoto statement specification. See https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md |
io.grafeas.v1.SbomReferenceIntotoPayload.Builder | The actual payload that contains the SBOM Reference data. The payload follows the intoto statement specification. See https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md |
io.grafeas.v1.SbomReferenceIntotoPredicate | A predicate which describes the SBOM being referenced. |
io.grafeas.v1.SbomReferenceIntotoPredicate.Builder | A predicate which describes the SBOM being referenced. |
io.grafeas.v1.SeverityOuterClass | |
io.grafeas.v1.Signature | Verifiers (e.g. Kritis implementations) MUST verify signatures with respect to the trust anchors defined in policy (e.g. a Kritis policy). Typically this means that the verifier has been configured with a map from |
io.grafeas.v1.Signature.Builder | Verifiers (e.g. Kritis implementations) MUST verify signatures with respect to the trust anchors defined in policy (e.g. a Kritis policy). Typically this means that the verifier has been configured with a map from |
io.grafeas.v1.SlsaProvenance |
Protobuf type grafeas.v1.SlsaProvenance |
io.grafeas.v1.SlsaProvenance.Builder |
Protobuf type grafeas.v1.SlsaProvenance |
io.grafeas.v1.SlsaProvenance.Material |
Protobuf type grafeas.v1.SlsaProvenance.Material |
io.grafeas.v1.SlsaProvenance.Material.Builder |
Protobuf type grafeas.v1.SlsaProvenance.Material |
io.grafeas.v1.SlsaProvenance.SlsaBuilder |
Protobuf type grafeas.v1.SlsaProvenance.SlsaBuilder |
io.grafeas.v1.SlsaProvenance.SlsaBuilder.Builder |
Protobuf type grafeas.v1.SlsaProvenance.SlsaBuilder |
io.grafeas.v1.SlsaProvenance.SlsaCompleteness | Indicates that the builder claims certain fields in this message to be complete. |
io.grafeas.v1.SlsaProvenance.SlsaCompleteness.Builder | Indicates that the builder claims certain fields in this message to be complete. |
io.grafeas.v1.SlsaProvenance.SlsaMetadata | Other properties of the build. |
io.grafeas.v1.SlsaProvenance.SlsaMetadata.Builder | Other properties of the build. |
io.grafeas.v1.SlsaProvenance.SlsaRecipe | Steps taken to build the artifact. For a TaskRun, typically each container corresponds to one step in the recipe. |
io.grafeas.v1.SlsaProvenance.SlsaRecipe.Builder | Steps taken to build the artifact. For a TaskRun, typically each container corresponds to one step in the recipe. |
io.grafeas.v1.SlsaProvenanceProto | |
io.grafeas.v1.SlsaProvenanceZeroTwo | See full explanation of fields at slsa.dev/provenance/v0.2. |
io.grafeas.v1.SlsaProvenanceZeroTwo.Builder | See full explanation of fields at slsa.dev/provenance/v0.2. |
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaBuilder | Identifies the entity that executed the recipe, which is trusted to have correctly performed the operation and populated this provenance. |
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaBuilder.Builder | Identifies the entity that executed the recipe, which is trusted to have correctly performed the operation and populated this provenance. |
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaCompleteness | Indicates that the builder claims certain fields in this message to be complete. |
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaCompleteness.Builder | Indicates that the builder claims certain fields in this message to be complete. |
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaConfigSource | Describes where the config file that kicked off the build came from. This is effectively a pointer to the source where buildConfig came from. |
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaConfigSource.Builder | Describes where the config file that kicked off the build came from. This is effectively a pointer to the source where buildConfig came from. |
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaInvocation | Identifies the event that kicked off the build. |
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaInvocation.Builder | Identifies the event that kicked off the build. |
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaMaterial | The collection of artifacts that influenced the build including sources, dependencies, build tools, base images, and so on. |
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaMaterial.Builder | The collection of artifacts that influenced the build including sources, dependencies, build tools, base images, and so on. |
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaMetadata | Other properties of the build. |
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaMetadata.Builder | Other properties of the build. |
io.grafeas.v1.SlsaProvenanceZeroTwoProto | |
io.grafeas.v1.Source | Source describes the location of the source used for the build. |
io.grafeas.v1.Source.Builder | Source describes the location of the source used for the build. |
io.grafeas.v1.SourceContext | A SourceContext is a reference to a tree of files. A SourceContext together with a path point to a unique revision of a single file or directory. |
io.grafeas.v1.SourceContext.Builder | A SourceContext is a reference to a tree of files. A SourceContext together with a path point to a unique revision of a single file or directory. |
io.grafeas.v1.Subject |
Protobuf type grafeas.v1.Subject |
io.grafeas.v1.Subject.Builder |
Protobuf type grafeas.v1.Subject |
io.grafeas.v1.UpdateNoteRequest | Request to update a note. |
io.grafeas.v1.UpdateNoteRequest.Builder | Request to update a note. |
io.grafeas.v1.UpdateOccurrenceRequest | Request to update an occurrence. |
io.grafeas.v1.UpdateOccurrenceRequest.Builder | Request to update an occurrence. |
io.grafeas.v1.Upgrade | |
io.grafeas.v1.UpgradeDistribution | The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE). Some distributions have additional metadata around updates, classifying them into various categories and severities. |
io.grafeas.v1.UpgradeDistribution.Builder | The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE). Some distributions have additional metadata around updates, classifying them into various categories and severities. |
io.grafeas.v1.UpgradeNote | An Upgrade Note represents a potential upgrade of a package to a given version. For each package version combination (i.e. bash 4.0, bash 4.1, bash 4.1.2), there will be an Upgrade Note. For Windows, windows_update field |
io.grafeas.v1.UpgradeNote.Builder | An Upgrade Note represents a potential upgrade of a package to a given version. For each package version combination (i.e. bash 4.0, bash 4.1, bash 4.1.2), there will be an Upgrade Note. For Windows, windows_update field |
io.grafeas.v1.UpgradeOccurrence | An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability). |
io.grafeas.v1.UpgradeOccurrence.Builder | An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability). |
io.grafeas.v1.Version | Version contains structured information about the version of a package. |
io.grafeas.v1.Version.Builder | Version contains structured information about the version of a package. |
io.grafeas.v1.Vex | |
io.grafeas.v1.Vulnerability | |
io.grafeas.v1.VulnerabilityAssessmentNote | A single VulnerabilityAssessmentNote represents one particular product's vulnerability assessment for one CVE. |
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment | Assessment provides all information that is related to a single vulnerability for this product. |
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.Builder | Assessment provides all information that is related to a single vulnerability for this product. |
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.Justification | Justification provides the justification when the state of the assessment if NOT_AFFECTED. |
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.Justification.Builder | Justification provides the justification when the state of the assessment if NOT_AFFECTED. |
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.Remediation | Specifies details on how to handle (and presumably, fix) a vulnerability. |
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.Remediation.Builder | Specifies details on how to handle (and presumably, fix) a vulnerability. |
io.grafeas.v1.VulnerabilityAssessmentNote.Builder | A single VulnerabilityAssessmentNote represents one particular product's vulnerability assessment for one CVE. |
io.grafeas.v1.VulnerabilityAssessmentNote.Product | Product contains information about a product and how to uniquely identify it. (-- api-linter: core::0123::resource-annotation=disabled |
io.grafeas.v1.VulnerabilityAssessmentNote.Product.Builder | Product contains information about a product and how to uniquely identify it. (-- api-linter: core::0123::resource-annotation=disabled |
io.grafeas.v1.VulnerabilityAssessmentNote.Publisher | Publisher contains information about the publisher of this Note. (-- api-linter: core::0123::resource-annotation=disabled |
io.grafeas.v1.VulnerabilityAssessmentNote.Publisher.Builder | Publisher contains information about the publisher of this Note. (-- api-linter: core::0123::resource-annotation=disabled |
io.grafeas.v1.VulnerabilityNote | A security vulnerability that can be found in resources. |
io.grafeas.v1.VulnerabilityNote.Builder | A security vulnerability that can be found in resources. |
io.grafeas.v1.VulnerabilityNote.Detail | A detail for a distro and package affected by this vulnerability and its associated fix (if one is available). |
io.grafeas.v1.VulnerabilityNote.Detail.Builder | A detail for a distro and package affected by this vulnerability and its associated fix (if one is available). |
io.grafeas.v1.VulnerabilityNote.WindowsDetail |
Protobuf type grafeas.v1.VulnerabilityNote.WindowsDetail |
io.grafeas.v1.VulnerabilityNote.WindowsDetail.Builder |
Protobuf type grafeas.v1.VulnerabilityNote.WindowsDetail |
io.grafeas.v1.VulnerabilityNote.WindowsDetail.KnowledgeBase |
Protobuf type grafeas.v1.VulnerabilityNote.WindowsDetail.KnowledgeBase |
io.grafeas.v1.VulnerabilityNote.WindowsDetail.KnowledgeBase.Builder |
Protobuf type grafeas.v1.VulnerabilityNote.WindowsDetail.KnowledgeBase |
io.grafeas.v1.VulnerabilityOccurrence | An occurrence of a severity vulnerability on a resource. |
io.grafeas.v1.VulnerabilityOccurrence.Builder | An occurrence of a severity vulnerability on a resource. |
io.grafeas.v1.VulnerabilityOccurrence.PackageIssue | A detail for a distro and package this vulnerability occurrence was found in and its associated fix (if one is available). |
io.grafeas.v1.VulnerabilityOccurrence.PackageIssue.Builder | A detail for a distro and package this vulnerability occurrence was found in and its associated fix (if one is available). |
io.grafeas.v1.VulnerabilityOccurrence.VexAssessment | VexAssessment provides all publisher provided Vex information that is related to this vulnerability. |
io.grafeas.v1.VulnerabilityOccurrence.VexAssessment.Builder | VexAssessment provides all publisher provided Vex information that is related to this vulnerability. |
io.grafeas.v1.WindowsUpdate | Windows Update represents the metadata about the update for the Windows operating system. The fields in this message come from the Windows Update API documented at |
io.grafeas.v1.WindowsUpdate.Builder | Windows Update represents the metadata about the update for the Windows operating system. The fields in this message come from the Windows Update API documented at |
io.grafeas.v1.WindowsUpdate.Category | The category to which the update belongs. |
io.grafeas.v1.WindowsUpdate.Category.Builder | The category to which the update belongs. |
io.grafeas.v1.WindowsUpdate.Identity | The unique identifier of the update. |
io.grafeas.v1.WindowsUpdate.Identity.Builder | The unique identifier of the update. |