Package io.grafeas.v1 (2.46.0)

GitHub Repository

Client Classes

Client classes are the main entry point to using a package. They contain several variations of Java methods for each of the API's methods.

Client Description
io.grafeas.v1.GrafeasClient Service Description: Grafeas API.

Retrieves analysis results of Cloud components such as Docker container images.

Settings Classes

Settings classes can be used to configure credentials, endpoints, and retry settings for a Client.

Settings Description
io.grafeas.v1.GrafeasSettings Settings class to configure an instance of GrafeasClient.

The default instance has everything set to sensible defaults:

Classes

Class Description
io.grafeas.v1.AliasContext An alias to a repo revision.
io.grafeas.v1.AliasContext.Builder An alias to a repo revision.
io.grafeas.v1.Artifact Artifact describes a build product.
io.grafeas.v1.Artifact.Builder Artifact describes a build product.
io.grafeas.v1.Attestation
io.grafeas.v1.AttestationNote Note kind that represents a logical attestation "role" or "authority". For example, an organization might have one Authority for "QA" and one for "build". This note is intended to act strictly as a grouping mechanism for
io.grafeas.v1.AttestationNote.Builder Note kind that represents a logical attestation "role" or "authority". For example, an organization might have one Authority for "QA" and one for "build". This note is intended to act strictly as a grouping mechanism for
io.grafeas.v1.AttestationNote.Hint This submessage provides human-readable hints about the purpose of the authority. Because the name of a note acts as its resource reference, it is important to disambiguate the canonical name of the Note (which might be a
io.grafeas.v1.AttestationNote.Hint.Builder This submessage provides human-readable hints about the purpose of the authority. Because the name of a note acts as its resource reference, it is important to disambiguate the canonical name of the Note (which might be a
io.grafeas.v1.AttestationOccurrence Occurrence that represents a single "attestation". The authenticity of an attestation can be verified using the attached signature. If the verifier trusts the public key of the signer, then verifying the signature is
io.grafeas.v1.AttestationOccurrence.Builder Occurrence that represents a single "attestation". The authenticity of an attestation can be verified using the attached signature. If the verifier trusts the public key of the signer, then verifying the signature is
io.grafeas.v1.BatchCreateNotesRequest Request to create notes in batch.
io.grafeas.v1.BatchCreateNotesRequest.Builder Request to create notes in batch.
io.grafeas.v1.BatchCreateNotesResponse Response for creating notes in batch.
io.grafeas.v1.BatchCreateNotesResponse.Builder Response for creating notes in batch.
io.grafeas.v1.BatchCreateOccurrencesRequest Request to create occurrences in batch.
io.grafeas.v1.BatchCreateOccurrencesRequest.Builder Request to create occurrences in batch.
io.grafeas.v1.BatchCreateOccurrencesResponse Response for creating occurrences in batch.
io.grafeas.v1.BatchCreateOccurrencesResponse.Builder Response for creating occurrences in batch.
io.grafeas.v1.Build
io.grafeas.v1.BuildNote Note holding the version of the provider's builder and the signature of the provenance message in the build details occurrence.
io.grafeas.v1.BuildNote.Builder Note holding the version of the provider's builder and the signature of the provenance message in the build details occurrence.
io.grafeas.v1.BuildOccurrence Details of a build occurrence.
io.grafeas.v1.BuildOccurrence.Builder Details of a build occurrence.
io.grafeas.v1.BuildProvenance Provenance of a build. Contains all information needed to verify the full details about the build from source to completion.
io.grafeas.v1.BuildProvenance.Builder Provenance of a build. Contains all information needed to verify the full details about the build from source to completion.
io.grafeas.v1.BuilderConfig Protobuf type grafeas.v1.BuilderConfig
io.grafeas.v1.BuilderConfig.Builder Protobuf type grafeas.v1.BuilderConfig
io.grafeas.v1.CVSS Common Vulnerability Scoring System. For details, see https://www.first.org/cvss/specification-document This is a message we will try to use for storing various versions of CVSS
io.grafeas.v1.CVSS.Builder Common Vulnerability Scoring System. For details, see https://www.first.org/cvss/specification-document This is a message we will try to use for storing various versions of CVSS
io.grafeas.v1.CVSSProto
io.grafeas.v1.CVSSv3 Common Vulnerability Scoring System version 3. For details, see https://www.first.org/cvss/specification-document
io.grafeas.v1.CVSSv3.Builder Common Vulnerability Scoring System version 3. For details, see https://www.first.org/cvss/specification-document
io.grafeas.v1.CloudRepoSourceContext A CloudRepoSourceContext denotes a particular revision in a Google Cloud Source Repo.
io.grafeas.v1.CloudRepoSourceContext.Builder A CloudRepoSourceContext denotes a particular revision in a Google Cloud Source Repo.
io.grafeas.v1.Command Command describes a step performed as part of the build pipeline.
io.grafeas.v1.Command.Builder Command describes a step performed as part of the build pipeline.
io.grafeas.v1.Common
io.grafeas.v1.Completeness Indicates that the builder claims certain fields in this message to be complete.
io.grafeas.v1.Completeness.Builder Indicates that the builder claims certain fields in this message to be complete.
io.grafeas.v1.Compliance
io.grafeas.v1.ComplianceNote Protobuf type grafeas.v1.ComplianceNote
io.grafeas.v1.ComplianceNote.Builder Protobuf type grafeas.v1.ComplianceNote
io.grafeas.v1.ComplianceNote.CisBenchmark A compliance check that is a CIS benchmark.
io.grafeas.v1.ComplianceNote.CisBenchmark.Builder A compliance check that is a CIS benchmark.
io.grafeas.v1.ComplianceOccurrence An indication that the compliance checks in the associated ComplianceNote were not satisfied for particular resources or a specified reason.
io.grafeas.v1.ComplianceOccurrence.Builder An indication that the compliance checks in the associated ComplianceNote were not satisfied for particular resources or a specified reason.
io.grafeas.v1.ComplianceVersion Describes the CIS benchmark version that is applicable to a given OS and os version.
io.grafeas.v1.ComplianceVersion.Builder Describes the CIS benchmark version that is applicable to a given OS and os version.
io.grafeas.v1.CreateNoteRequest Request to create a new note.
io.grafeas.v1.CreateNoteRequest.Builder Request to create a new note.
io.grafeas.v1.CreateOccurrenceRequest Request to create a new occurrence.
io.grafeas.v1.CreateOccurrenceRequest.Builder Request to create a new occurrence.
io.grafeas.v1.DSSEAttestationNote Protobuf type grafeas.v1.DSSEAttestationNote
io.grafeas.v1.DSSEAttestationNote.Builder Protobuf type grafeas.v1.DSSEAttestationNote
io.grafeas.v1.DSSEAttestationNote.DSSEHint This submessage provides human-readable hints about the purpose of the authority. Because the name of a note acts as its resource reference, it is important to disambiguate the canonical name of the Note (which might be a
io.grafeas.v1.DSSEAttestationNote.DSSEHint.Builder This submessage provides human-readable hints about the purpose of the authority. Because the name of a note acts as its resource reference, it is important to disambiguate the canonical name of the Note (which might be a
io.grafeas.v1.DSSEAttestationOccurrence Deprecated. Prefer to use a regular Occurrence, and populate the Envelope at the top level of the Occurrence.
io.grafeas.v1.DSSEAttestationOccurrence.Builder Deprecated. Prefer to use a regular Occurrence, and populate the Envelope at the top level of the Occurrence.
io.grafeas.v1.DeleteNoteRequest Request to delete a note.
io.grafeas.v1.DeleteNoteRequest.Builder Request to delete a note.
io.grafeas.v1.DeleteOccurrenceRequest Request to delete an occurrence.
io.grafeas.v1.DeleteOccurrenceRequest.Builder Request to delete an occurrence.
io.grafeas.v1.Deployment
io.grafeas.v1.DeploymentNote An artifact that can be deployed in some runtime.
io.grafeas.v1.DeploymentNote.Builder An artifact that can be deployed in some runtime.
io.grafeas.v1.DeploymentOccurrence The period during which some deployable was active in a runtime.
io.grafeas.v1.DeploymentOccurrence.Builder The period during which some deployable was active in a runtime.
io.grafeas.v1.Digest Digest information.
io.grafeas.v1.Digest.Builder Digest information.
io.grafeas.v1.Discovery
io.grafeas.v1.DiscoveryNote A note that indicates a type of analysis a provider would perform. This note exists in a provider's project. A Discovery occurrence is created in a consumer's project at the start of analysis.
io.grafeas.v1.DiscoveryNote.Builder A note that indicates a type of analysis a provider would perform. This note exists in a provider's project. A Discovery occurrence is created in a consumer's project at the start of analysis.
io.grafeas.v1.DiscoveryOccurrence Provides information about the analysis status of a discovered resource.
io.grafeas.v1.DiscoveryOccurrence.AnalysisCompleted Indicates which analysis completed successfully. Multiple types of analysis can be performed on a single resource.
io.grafeas.v1.DiscoveryOccurrence.AnalysisCompleted.Builder Indicates which analysis completed successfully. Multiple types of analysis can be performed on a single resource.
io.grafeas.v1.DiscoveryOccurrence.Builder Provides information about the analysis status of a discovered resource.
io.grafeas.v1.DiscoveryOccurrence.SBOMStatus The status of an SBOM generation.
io.grafeas.v1.DiscoveryOccurrence.SBOMStatus.Builder The status of an SBOM generation.
io.grafeas.v1.Distribution This represents a particular channel of distribution for a given package. E.g., Debian's jessie-backports dpkg mirror.
io.grafeas.v1.Distribution.Builder This represents a particular channel of distribution for a given package. E.g., Debian's jessie-backports dpkg mirror.
io.grafeas.v1.DsseAttestation
io.grafeas.v1.Envelope MUST match https://github.com/secure-systems-lab/dsse/blob/master/envelope.proto. An authenticated message of arbitrary type.
io.grafeas.v1.Envelope.Builder MUST match https://github.com/secure-systems-lab/dsse/blob/master/envelope.proto. An authenticated message of arbitrary type.
io.grafeas.v1.EnvelopeSignature Protobuf type grafeas.v1.EnvelopeSignature
io.grafeas.v1.EnvelopeSignature.Builder Protobuf type grafeas.v1.EnvelopeSignature
io.grafeas.v1.FileHashes Container message for hashes of byte content of files, used in source messages to verify integrity of source input to the build.
io.grafeas.v1.FileHashes.Builder Container message for hashes of byte content of files, used in source messages to verify integrity of source input to the build.
io.grafeas.v1.FileLocation Indicates the location at which a package was found.
io.grafeas.v1.FileLocation.Builder Indicates the location at which a package was found.
io.grafeas.v1.Fingerprint A set of properties that uniquely identify a given Docker image.
io.grafeas.v1.Fingerprint.Builder A set of properties that uniquely identify a given Docker image.
io.grafeas.v1.GerritSourceContext A SourceContext referring to a Gerrit project.
io.grafeas.v1.GerritSourceContext.Builder A SourceContext referring to a Gerrit project.
io.grafeas.v1.GetNoteRequest Request to get a note.
io.grafeas.v1.GetNoteRequest.Builder Request to get a note.
io.grafeas.v1.GetOccurrenceNoteRequest Request to get the note to which the specified occurrence is attached.
io.grafeas.v1.GetOccurrenceNoteRequest.Builder Request to get the note to which the specified occurrence is attached.
io.grafeas.v1.GetOccurrenceRequest Request to get an occurrence.
io.grafeas.v1.GetOccurrenceRequest.Builder Request to get an occurrence.
io.grafeas.v1.GitSourceContext A GitSourceContext denotes a particular revision in a third party Git repository (e.g., GitHub).
io.grafeas.v1.GitSourceContext.Builder A GitSourceContext denotes a particular revision in a third party Git repository (e.g., GitHub).
io.grafeas.v1.GrafeasClient.ListNoteOccurrencesFixedSizeCollection
io.grafeas.v1.GrafeasClient.ListNoteOccurrencesPage
io.grafeas.v1.GrafeasClient.ListNoteOccurrencesPagedResponse
io.grafeas.v1.GrafeasClient.ListNotesFixedSizeCollection
io.grafeas.v1.GrafeasClient.ListNotesPage
io.grafeas.v1.GrafeasClient.ListNotesPagedResponse
io.grafeas.v1.GrafeasClient.ListOccurrencesFixedSizeCollection
io.grafeas.v1.GrafeasClient.ListOccurrencesPage
io.grafeas.v1.GrafeasClient.ListOccurrencesPagedResponse
io.grafeas.v1.GrafeasGrpc Grafeas API. Retrieves analysis results of Cloud components such as Docker container images.
io.grafeas.v1.GrafeasGrpc.GrafeasImplBase Base class for the server implementation of the service Grafeas. Grafeas API.
io.grafeas.v1.GrafeasOuterClass
io.grafeas.v1.GrafeasSettings.Builder Builder for GrafeasSettings.
io.grafeas.v1.Hash Container message for hash values.
io.grafeas.v1.Hash.Builder Container message for hash values.
io.grafeas.v1.Image
io.grafeas.v1.ImageNote Basis describes the base image portion (Note) of the DockerImage relationship. Linked occurrences are derived from this or an equivalent image via:
io.grafeas.v1.ImageNote.Builder Basis describes the base image portion (Note) of the DockerImage relationship. Linked occurrences are derived from this or an equivalent image via:
io.grafeas.v1.ImageOccurrence Details of the derived image portion of the DockerImage relationship. This image would be produced from a Dockerfile with FROM <DockerImage.Basis in attached Note>.
io.grafeas.v1.ImageOccurrence.Builder Details of the derived image portion of the DockerImage relationship. This image would be produced from a Dockerfile with FROM <DockerImage.Basis in attached Note>.
io.grafeas.v1.InTotoProvenance Protobuf type grafeas.v1.InTotoProvenance
io.grafeas.v1.InTotoProvenance.Builder Protobuf type grafeas.v1.InTotoProvenance
io.grafeas.v1.InTotoProvenanceProto
io.grafeas.v1.InTotoSlsaProvenanceV1 Protobuf type grafeas.v1.InTotoSlsaProvenanceV1
io.grafeas.v1.InTotoSlsaProvenanceV1.BuildDefinition Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.BuildDefinition
io.grafeas.v1.InTotoSlsaProvenanceV1.BuildDefinition.Builder Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.BuildDefinition
io.grafeas.v1.InTotoSlsaProvenanceV1.BuildMetadata Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.BuildMetadata
io.grafeas.v1.InTotoSlsaProvenanceV1.BuildMetadata.Builder Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.BuildMetadata
io.grafeas.v1.InTotoSlsaProvenanceV1.Builder Protobuf type grafeas.v1.InTotoSlsaProvenanceV1
io.grafeas.v1.InTotoSlsaProvenanceV1.ProvenanceBuilder Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.ProvenanceBuilder
io.grafeas.v1.InTotoSlsaProvenanceV1.ProvenanceBuilder.Builder Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.ProvenanceBuilder
io.grafeas.v1.InTotoSlsaProvenanceV1.ResourceDescriptor Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.ResourceDescriptor
io.grafeas.v1.InTotoSlsaProvenanceV1.ResourceDescriptor.Builder Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.ResourceDescriptor
io.grafeas.v1.InTotoSlsaProvenanceV1.RunDetails Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.RunDetails
io.grafeas.v1.InTotoSlsaProvenanceV1.RunDetails.Builder Protobuf type grafeas.v1.InTotoSlsaProvenanceV1.RunDetails
io.grafeas.v1.InTotoSlsaProvenanceV1.SlsaProvenanceV1 Keep in sync with schema at https://github.com/slsa-framework/slsa/blob/main/docs/provenance/schema/v1/provenance.proto Builder renamed to ProvenanceBuilder because of Java conflicts.
io.grafeas.v1.InTotoSlsaProvenanceV1.SlsaProvenanceV1.Builder Keep in sync with schema at https://github.com/slsa-framework/slsa/blob/main/docs/provenance/schema/v1/provenance.proto Builder renamed to ProvenanceBuilder because of Java conflicts.
io.grafeas.v1.InTotoStatement Spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelope.payload.
io.grafeas.v1.InTotoStatement.Builder Spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelope.payload.
io.grafeas.v1.InTotoStatementProto
io.grafeas.v1.Jwt Protobuf type grafeas.v1.Jwt
io.grafeas.v1.Jwt.Builder Protobuf type grafeas.v1.Jwt
io.grafeas.v1.Layer Layer holds metadata specific to a layer of a Docker image.
io.grafeas.v1.Layer.Builder Layer holds metadata specific to a layer of a Docker image.
io.grafeas.v1.License License information.
io.grafeas.v1.License.Builder License information.
io.grafeas.v1.ListNoteOccurrencesRequest Request to list occurrences for a note.
io.grafeas.v1.ListNoteOccurrencesRequest.Builder Request to list occurrences for a note.
io.grafeas.v1.ListNoteOccurrencesResponse Response for listing occurrences for a note.
io.grafeas.v1.ListNoteOccurrencesResponse.Builder Response for listing occurrences for a note.
io.grafeas.v1.ListNotesRequest Request to list notes.
io.grafeas.v1.ListNotesRequest.Builder Request to list notes.
io.grafeas.v1.ListNotesResponse Response for listing notes.
io.grafeas.v1.ListNotesResponse.Builder Response for listing notes.
io.grafeas.v1.ListOccurrencesRequest Request to list occurrences.
io.grafeas.v1.ListOccurrencesRequest.Builder Request to list occurrences.
io.grafeas.v1.ListOccurrencesResponse Response for listing occurrences.
io.grafeas.v1.ListOccurrencesResponse.Builder Response for listing occurrences.
io.grafeas.v1.Location An occurrence of a particular package installation found within a system's filesystem. E.g., glibc was found in /var/lib/dpkg/status.
io.grafeas.v1.Location.Builder An occurrence of a particular package installation found within a system's filesystem. E.g., glibc was found in /var/lib/dpkg/status.
io.grafeas.v1.Metadata Other properties of the build.
io.grafeas.v1.Metadata.Builder Other properties of the build.
io.grafeas.v1.NonCompliantFile Details about files that caused a compliance check to fail.
io.grafeas.v1.NonCompliantFile.Builder Details about files that caused a compliance check to fail.
io.grafeas.v1.Note A type of analysis that can be done for a resource.
io.grafeas.v1.Note.Builder A type of analysis that can be done for a resource.
io.grafeas.v1.NoteName
io.grafeas.v1.NoteName.Builder Builder for projects/{project}/notes/{note}.
io.grafeas.v1.Occurrence An instance of an analysis type that has been found on a resource.
io.grafeas.v1.Occurrence.Builder An instance of an analysis type that has been found on a resource.
io.grafeas.v1.OccurrenceName
io.grafeas.v1.OccurrenceName.Builder Builder for projects/{project}/occurrences/{occurrence}.
io.grafeas.v1.Package
io.grafeas.v1.PackageNote PackageNote represents a particular package version.
io.grafeas.v1.PackageNote.Builder PackageNote represents a particular package version.
io.grafeas.v1.PackageOccurrence Details on how a particular software package was installed on a system.
io.grafeas.v1.PackageOccurrence.Builder Details on how a particular software package was installed on a system.
io.grafeas.v1.ProjectName
io.grafeas.v1.ProjectName.Builder Builder for projects/{project}.
io.grafeas.v1.ProjectRepoId Selects a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within that project.
io.grafeas.v1.ProjectRepoId.Builder Selects a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within that project.
io.grafeas.v1.Provenance
io.grafeas.v1.Recipe Steps taken to build the artifact. For a TaskRun, typically each container corresponds to one step in the recipe.
io.grafeas.v1.Recipe.Builder Steps taken to build the artifact. For a TaskRun, typically each container corresponds to one step in the recipe.
io.grafeas.v1.RelatedUrl Metadata for any related URL information.
io.grafeas.v1.RelatedUrl.Builder Metadata for any related URL information.
io.grafeas.v1.RepoId A unique identifier for a Cloud Repo.
io.grafeas.v1.RepoId.Builder A unique identifier for a Cloud Repo.
io.grafeas.v1.SBOMReferenceNote The note representing an SBOM reference.
io.grafeas.v1.SBOMReferenceNote.Builder The note representing an SBOM reference.
io.grafeas.v1.SBOMReferenceOccurrence The occurrence representing an SBOM reference as applied to a specific resource. The occurrence follows the DSSE specification. See https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more
io.grafeas.v1.SBOMReferenceOccurrence.Builder The occurrence representing an SBOM reference as applied to a specific resource. The occurrence follows the DSSE specification. See https://github.com/secure-systems-lab/dsse/blob/master/envelope.md for more
io.grafeas.v1.Sbom
io.grafeas.v1.SbomReferenceIntotoPayload The actual payload that contains the SBOM Reference data. The payload follows the intoto statement specification. See https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md
io.grafeas.v1.SbomReferenceIntotoPayload.Builder The actual payload that contains the SBOM Reference data. The payload follows the intoto statement specification. See https://github.com/in-toto/attestation/blob/main/spec/v1.0/statement.md
io.grafeas.v1.SbomReferenceIntotoPredicate A predicate which describes the SBOM being referenced.
io.grafeas.v1.SbomReferenceIntotoPredicate.Builder A predicate which describes the SBOM being referenced.
io.grafeas.v1.SeverityOuterClass
io.grafeas.v1.Signature Verifiers (e.g. Kritis implementations) MUST verify signatures with respect to the trust anchors defined in policy (e.g. a Kritis policy). Typically this means that the verifier has been configured with a map from
io.grafeas.v1.Signature.Builder Verifiers (e.g. Kritis implementations) MUST verify signatures with respect to the trust anchors defined in policy (e.g. a Kritis policy). Typically this means that the verifier has been configured with a map from
io.grafeas.v1.SlsaProvenance Protobuf type grafeas.v1.SlsaProvenance
io.grafeas.v1.SlsaProvenance.Builder Protobuf type grafeas.v1.SlsaProvenance
io.grafeas.v1.SlsaProvenance.Material Protobuf type grafeas.v1.SlsaProvenance.Material
io.grafeas.v1.SlsaProvenance.Material.Builder Protobuf type grafeas.v1.SlsaProvenance.Material
io.grafeas.v1.SlsaProvenance.SlsaBuilder Protobuf type grafeas.v1.SlsaProvenance.SlsaBuilder
io.grafeas.v1.SlsaProvenance.SlsaBuilder.Builder Protobuf type grafeas.v1.SlsaProvenance.SlsaBuilder
io.grafeas.v1.SlsaProvenance.SlsaCompleteness Indicates that the builder claims certain fields in this message to be complete.
io.grafeas.v1.SlsaProvenance.SlsaCompleteness.Builder Indicates that the builder claims certain fields in this message to be complete.
io.grafeas.v1.SlsaProvenance.SlsaMetadata Other properties of the build.
io.grafeas.v1.SlsaProvenance.SlsaMetadata.Builder Other properties of the build.
io.grafeas.v1.SlsaProvenance.SlsaRecipe Steps taken to build the artifact. For a TaskRun, typically each container corresponds to one step in the recipe.
io.grafeas.v1.SlsaProvenance.SlsaRecipe.Builder Steps taken to build the artifact. For a TaskRun, typically each container corresponds to one step in the recipe.
io.grafeas.v1.SlsaProvenanceProto
io.grafeas.v1.SlsaProvenanceZeroTwo See full explanation of fields at slsa.dev/provenance/v0.2.
io.grafeas.v1.SlsaProvenanceZeroTwo.Builder See full explanation of fields at slsa.dev/provenance/v0.2.
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaBuilder Identifies the entity that executed the recipe, which is trusted to have correctly performed the operation and populated this provenance.
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaBuilder.Builder Identifies the entity that executed the recipe, which is trusted to have correctly performed the operation and populated this provenance.
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaCompleteness Indicates that the builder claims certain fields in this message to be complete.
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaCompleteness.Builder Indicates that the builder claims certain fields in this message to be complete.
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaConfigSource Describes where the config file that kicked off the build came from. This is effectively a pointer to the source where buildConfig came from.
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaConfigSource.Builder Describes where the config file that kicked off the build came from. This is effectively a pointer to the source where buildConfig came from.
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaInvocation Identifies the event that kicked off the build.
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaInvocation.Builder Identifies the event that kicked off the build.
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaMaterial The collection of artifacts that influenced the build including sources, dependencies, build tools, base images, and so on.
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaMaterial.Builder The collection of artifacts that influenced the build including sources, dependencies, build tools, base images, and so on.
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaMetadata Other properties of the build.
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaMetadata.Builder Other properties of the build.
io.grafeas.v1.SlsaProvenanceZeroTwoProto
io.grafeas.v1.Source Source describes the location of the source used for the build.
io.grafeas.v1.Source.Builder Source describes the location of the source used for the build.
io.grafeas.v1.SourceContext A SourceContext is a reference to a tree of files. A SourceContext together with a path point to a unique revision of a single file or directory.
io.grafeas.v1.SourceContext.Builder A SourceContext is a reference to a tree of files. A SourceContext together with a path point to a unique revision of a single file or directory.
io.grafeas.v1.Subject Protobuf type grafeas.v1.Subject
io.grafeas.v1.Subject.Builder Protobuf type grafeas.v1.Subject
io.grafeas.v1.UpdateNoteRequest Request to update a note.
io.grafeas.v1.UpdateNoteRequest.Builder Request to update a note.
io.grafeas.v1.UpdateOccurrenceRequest Request to update an occurrence.
io.grafeas.v1.UpdateOccurrenceRequest.Builder Request to update an occurrence.
io.grafeas.v1.Upgrade
io.grafeas.v1.UpgradeDistribution The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE). Some distributions have additional metadata around updates, classifying them into various categories and severities.
io.grafeas.v1.UpgradeDistribution.Builder The Upgrade Distribution represents metadata about the Upgrade for each operating system (CPE). Some distributions have additional metadata around updates, classifying them into various categories and severities.
io.grafeas.v1.UpgradeNote An Upgrade Note represents a potential upgrade of a package to a given version. For each package version combination (i.e. bash 4.0, bash 4.1, bash 4.1.2), there will be an Upgrade Note. For Windows, windows_update field
io.grafeas.v1.UpgradeNote.Builder An Upgrade Note represents a potential upgrade of a package to a given version. For each package version combination (i.e. bash 4.0, bash 4.1, bash 4.1.2), there will be an Upgrade Note. For Windows, windows_update field
io.grafeas.v1.UpgradeOccurrence An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability).
io.grafeas.v1.UpgradeOccurrence.Builder An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability).
io.grafeas.v1.Version Version contains structured information about the version of a package.
io.grafeas.v1.Version.Builder Version contains structured information about the version of a package.
io.grafeas.v1.Vex
io.grafeas.v1.Vulnerability
io.grafeas.v1.VulnerabilityAssessmentNote A single VulnerabilityAssessmentNote represents one particular product's vulnerability assessment for one CVE.
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment Assessment provides all information that is related to a single vulnerability for this product.
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.Builder Assessment provides all information that is related to a single vulnerability for this product.
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.Justification Justification provides the justification when the state of the assessment if NOT_AFFECTED.
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.Justification.Builder Justification provides the justification when the state of the assessment if NOT_AFFECTED.
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.Remediation Specifies details on how to handle (and presumably, fix) a vulnerability.
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.Remediation.Builder Specifies details on how to handle (and presumably, fix) a vulnerability.
io.grafeas.v1.VulnerabilityAssessmentNote.Builder A single VulnerabilityAssessmentNote represents one particular product's vulnerability assessment for one CVE.
io.grafeas.v1.VulnerabilityAssessmentNote.Product Product contains information about a product and how to uniquely identify it. (-- api-linter: core::0123::resource-annotation=disabled
io.grafeas.v1.VulnerabilityAssessmentNote.Product.Builder Product contains information about a product and how to uniquely identify it. (-- api-linter: core::0123::resource-annotation=disabled
io.grafeas.v1.VulnerabilityAssessmentNote.Publisher Publisher contains information about the publisher of this Note. (-- api-linter: core::0123::resource-annotation=disabled
io.grafeas.v1.VulnerabilityAssessmentNote.Publisher.Builder Publisher contains information about the publisher of this Note. (-- api-linter: core::0123::resource-annotation=disabled
io.grafeas.v1.VulnerabilityNote A security vulnerability that can be found in resources.
io.grafeas.v1.VulnerabilityNote.Builder A security vulnerability that can be found in resources.
io.grafeas.v1.VulnerabilityNote.Detail A detail for a distro and package affected by this vulnerability and its associated fix (if one is available).
io.grafeas.v1.VulnerabilityNote.Detail.Builder A detail for a distro and package affected by this vulnerability and its associated fix (if one is available).
io.grafeas.v1.VulnerabilityNote.WindowsDetail Protobuf type grafeas.v1.VulnerabilityNote.WindowsDetail
io.grafeas.v1.VulnerabilityNote.WindowsDetail.Builder Protobuf type grafeas.v1.VulnerabilityNote.WindowsDetail
io.grafeas.v1.VulnerabilityNote.WindowsDetail.KnowledgeBase Protobuf type grafeas.v1.VulnerabilityNote.WindowsDetail.KnowledgeBase
io.grafeas.v1.VulnerabilityNote.WindowsDetail.KnowledgeBase.Builder Protobuf type grafeas.v1.VulnerabilityNote.WindowsDetail.KnowledgeBase
io.grafeas.v1.VulnerabilityOccurrence An occurrence of a severity vulnerability on a resource.
io.grafeas.v1.VulnerabilityOccurrence.Builder An occurrence of a severity vulnerability on a resource.
io.grafeas.v1.VulnerabilityOccurrence.PackageIssue A detail for a distro and package this vulnerability occurrence was found in and its associated fix (if one is available).
io.grafeas.v1.VulnerabilityOccurrence.PackageIssue.Builder A detail for a distro and package this vulnerability occurrence was found in and its associated fix (if one is available).
io.grafeas.v1.VulnerabilityOccurrence.VexAssessment VexAssessment provides all publisher provided Vex information that is related to this vulnerability.
io.grafeas.v1.VulnerabilityOccurrence.VexAssessment.Builder VexAssessment provides all publisher provided Vex information that is related to this vulnerability.
io.grafeas.v1.WindowsUpdate Windows Update represents the metadata about the update for the Windows operating system. The fields in this message come from the Windows Update API documented at
io.grafeas.v1.WindowsUpdate.Builder Windows Update represents the metadata about the update for the Windows operating system. The fields in this message come from the Windows Update API documented at
io.grafeas.v1.WindowsUpdate.Category The category to which the update belongs.
io.grafeas.v1.WindowsUpdate.Category.Builder The category to which the update belongs.
io.grafeas.v1.WindowsUpdate.Identity The unique identifier of the update.
io.grafeas.v1.WindowsUpdate.Identity.Builder The unique identifier of the update.

Interfaces

Interface Description
io.grafeas.v1.AliasContextOrBuilder
io.grafeas.v1.ArtifactOrBuilder
io.grafeas.v1.AttestationNote.HintOrBuilder
io.grafeas.v1.AttestationNoteOrBuilder
io.grafeas.v1.AttestationOccurrenceOrBuilder
io.grafeas.v1.BatchCreateNotesRequestOrBuilder
io.grafeas.v1.BatchCreateNotesResponseOrBuilder
io.grafeas.v1.BatchCreateOccurrencesRequestOrBuilder
io.grafeas.v1.BatchCreateOccurrencesResponseOrBuilder
io.grafeas.v1.BuildNoteOrBuilder
io.grafeas.v1.BuildOccurrenceOrBuilder
io.grafeas.v1.BuildProvenanceOrBuilder
io.grafeas.v1.BuilderConfigOrBuilder
io.grafeas.v1.CVSSOrBuilder
io.grafeas.v1.CVSSv3OrBuilder
io.grafeas.v1.CloudRepoSourceContextOrBuilder
io.grafeas.v1.CommandOrBuilder
io.grafeas.v1.CompletenessOrBuilder
io.grafeas.v1.ComplianceNote.CisBenchmarkOrBuilder
io.grafeas.v1.ComplianceNoteOrBuilder
io.grafeas.v1.ComplianceOccurrenceOrBuilder
io.grafeas.v1.ComplianceVersionOrBuilder
io.grafeas.v1.CreateNoteRequestOrBuilder
io.grafeas.v1.CreateOccurrenceRequestOrBuilder
io.grafeas.v1.DSSEAttestationNote.DSSEHintOrBuilder
io.grafeas.v1.DSSEAttestationNoteOrBuilder
io.grafeas.v1.DSSEAttestationOccurrenceOrBuilder
io.grafeas.v1.DeleteNoteRequestOrBuilder
io.grafeas.v1.DeleteOccurrenceRequestOrBuilder
io.grafeas.v1.DeploymentNoteOrBuilder
io.grafeas.v1.DeploymentOccurrenceOrBuilder
io.grafeas.v1.DigestOrBuilder
io.grafeas.v1.DiscoveryNoteOrBuilder
io.grafeas.v1.DiscoveryOccurrence.AnalysisCompletedOrBuilder
io.grafeas.v1.DiscoveryOccurrence.SBOMStatusOrBuilder
io.grafeas.v1.DiscoveryOccurrenceOrBuilder
io.grafeas.v1.DistributionOrBuilder
io.grafeas.v1.EnvelopeOrBuilder
io.grafeas.v1.EnvelopeSignatureOrBuilder
io.grafeas.v1.FileHashesOrBuilder
io.grafeas.v1.FileLocationOrBuilder
io.grafeas.v1.FingerprintOrBuilder
io.grafeas.v1.GerritSourceContextOrBuilder
io.grafeas.v1.GetNoteRequestOrBuilder
io.grafeas.v1.GetOccurrenceNoteRequestOrBuilder
io.grafeas.v1.GetOccurrenceRequestOrBuilder
io.grafeas.v1.GitSourceContextOrBuilder
io.grafeas.v1.GrafeasGrpc.AsyncService Grafeas API. Retrieves analysis results of Cloud components such as Docker container images.
io.grafeas.v1.HashOrBuilder
io.grafeas.v1.ImageNoteOrBuilder
io.grafeas.v1.ImageOccurrenceOrBuilder
io.grafeas.v1.InTotoProvenanceOrBuilder
io.grafeas.v1.InTotoSlsaProvenanceV1.BuildDefinitionOrBuilder
io.grafeas.v1.InTotoSlsaProvenanceV1.BuildMetadataOrBuilder
io.grafeas.v1.InTotoSlsaProvenanceV1.ProvenanceBuilderOrBuilder
io.grafeas.v1.InTotoSlsaProvenanceV1.ResourceDescriptorOrBuilder
io.grafeas.v1.InTotoSlsaProvenanceV1.RunDetailsOrBuilder
io.grafeas.v1.InTotoSlsaProvenanceV1.SlsaProvenanceV1OrBuilder
io.grafeas.v1.InTotoSlsaProvenanceV1OrBuilder
io.grafeas.v1.InTotoStatementOrBuilder
io.grafeas.v1.JwtOrBuilder
io.grafeas.v1.LayerOrBuilder
io.grafeas.v1.LicenseOrBuilder
io.grafeas.v1.ListNoteOccurrencesRequestOrBuilder
io.grafeas.v1.ListNoteOccurrencesResponseOrBuilder
io.grafeas.v1.ListNotesRequestOrBuilder
io.grafeas.v1.ListNotesResponseOrBuilder
io.grafeas.v1.ListOccurrencesRequestOrBuilder
io.grafeas.v1.ListOccurrencesResponseOrBuilder
io.grafeas.v1.LocationOrBuilder
io.grafeas.v1.MetadataOrBuilder
io.grafeas.v1.NonCompliantFileOrBuilder
io.grafeas.v1.NoteOrBuilder
io.grafeas.v1.OccurrenceOrBuilder
io.grafeas.v1.PackageNoteOrBuilder
io.grafeas.v1.PackageOccurrenceOrBuilder
io.grafeas.v1.ProjectRepoIdOrBuilder
io.grafeas.v1.RecipeOrBuilder
io.grafeas.v1.RelatedUrlOrBuilder
io.grafeas.v1.RepoIdOrBuilder
io.grafeas.v1.SBOMReferenceNoteOrBuilder
io.grafeas.v1.SBOMReferenceOccurrenceOrBuilder
io.grafeas.v1.SbomReferenceIntotoPayloadOrBuilder
io.grafeas.v1.SbomReferenceIntotoPredicateOrBuilder
io.grafeas.v1.SignatureOrBuilder
io.grafeas.v1.SlsaProvenance.MaterialOrBuilder
io.grafeas.v1.SlsaProvenance.SlsaBuilderOrBuilder
io.grafeas.v1.SlsaProvenance.SlsaCompletenessOrBuilder
io.grafeas.v1.SlsaProvenance.SlsaMetadataOrBuilder
io.grafeas.v1.SlsaProvenance.SlsaRecipeOrBuilder
io.grafeas.v1.SlsaProvenanceOrBuilder
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaBuilderOrBuilder
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaCompletenessOrBuilder
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaConfigSourceOrBuilder
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaInvocationOrBuilder
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaMaterialOrBuilder
io.grafeas.v1.SlsaProvenanceZeroTwo.SlsaMetadataOrBuilder
io.grafeas.v1.SlsaProvenanceZeroTwoOrBuilder
io.grafeas.v1.SourceContextOrBuilder
io.grafeas.v1.SourceOrBuilder
io.grafeas.v1.SubjectOrBuilder
io.grafeas.v1.UpdateNoteRequestOrBuilder
io.grafeas.v1.UpdateOccurrenceRequestOrBuilder
io.grafeas.v1.UpgradeDistributionOrBuilder
io.grafeas.v1.UpgradeNoteOrBuilder
io.grafeas.v1.UpgradeOccurrenceOrBuilder
io.grafeas.v1.VersionOrBuilder
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.JustificationOrBuilder
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.RemediationOrBuilder
io.grafeas.v1.VulnerabilityAssessmentNote.AssessmentOrBuilder
io.grafeas.v1.VulnerabilityAssessmentNote.ProductOrBuilder
io.grafeas.v1.VulnerabilityAssessmentNote.PublisherOrBuilder
io.grafeas.v1.VulnerabilityAssessmentNoteOrBuilder
io.grafeas.v1.VulnerabilityNote.DetailOrBuilder
io.grafeas.v1.VulnerabilityNote.WindowsDetail.KnowledgeBaseOrBuilder
io.grafeas.v1.VulnerabilityNote.WindowsDetailOrBuilder
io.grafeas.v1.VulnerabilityNoteOrBuilder
io.grafeas.v1.VulnerabilityOccurrence.PackageIssueOrBuilder
io.grafeas.v1.VulnerabilityOccurrence.VexAssessmentOrBuilder
io.grafeas.v1.VulnerabilityOccurrenceOrBuilder
io.grafeas.v1.WindowsUpdate.CategoryOrBuilder
io.grafeas.v1.WindowsUpdate.IdentityOrBuilder
io.grafeas.v1.WindowsUpdateOrBuilder

Enums

Enum Description
io.grafeas.v1.AliasContext.Kind The type of an alias.
io.grafeas.v1.Architecture Instruction set architectures supported by various package managers.
io.grafeas.v1.CVSS.AttackComplexity Protobuf enum grafeas.v1.CVSS.AttackComplexity
io.grafeas.v1.CVSS.AttackVector Protobuf enum grafeas.v1.CVSS.AttackVector
io.grafeas.v1.CVSS.Authentication Protobuf enum grafeas.v1.CVSS.Authentication
io.grafeas.v1.CVSS.Impact Protobuf enum grafeas.v1.CVSS.Impact
io.grafeas.v1.CVSS.PrivilegesRequired Protobuf enum grafeas.v1.CVSS.PrivilegesRequired
io.grafeas.v1.CVSS.Scope Protobuf enum grafeas.v1.CVSS.Scope
io.grafeas.v1.CVSS.UserInteraction Protobuf enum grafeas.v1.CVSS.UserInteraction
io.grafeas.v1.CVSSVersion CVSS Version.
io.grafeas.v1.CVSSv3.AttackComplexity Protobuf enum grafeas.v1.CVSSv3.AttackComplexity
io.grafeas.v1.CVSSv3.AttackVector Protobuf enum grafeas.v1.CVSSv3.AttackVector
io.grafeas.v1.CVSSv3.Impact Protobuf enum grafeas.v1.CVSSv3.Impact
io.grafeas.v1.CVSSv3.PrivilegesRequired Protobuf enum grafeas.v1.CVSSv3.PrivilegesRequired
io.grafeas.v1.CVSSv3.Scope Protobuf enum grafeas.v1.CVSSv3.Scope
io.grafeas.v1.CVSSv3.UserInteraction Protobuf enum grafeas.v1.CVSSv3.UserInteraction
io.grafeas.v1.CloudRepoSourceContext.RevisionCase
io.grafeas.v1.ComplianceNote.ComplianceTypeCase
io.grafeas.v1.ComplianceNote.PotentialImpactCase
io.grafeas.v1.DSSEAttestationOccurrence.DecodedPayloadCase
io.grafeas.v1.DeploymentOccurrence.Platform Types of platforms.
io.grafeas.v1.DiscoveryOccurrence.AnalysisStatus Analysis status for a resource. Currently for initial analysis only (not updated in continuous analysis).
io.grafeas.v1.DiscoveryOccurrence.ContinuousAnalysis Whether the resource is continuously analyzed.
io.grafeas.v1.DiscoveryOccurrence.SBOMStatus.SBOMState An enum indicating the progress of the SBOM generation.
io.grafeas.v1.GerritSourceContext.RevisionCase
io.grafeas.v1.InTotoStatement.PredicateCase
io.grafeas.v1.Note.TypeCase
io.grafeas.v1.NoteKind Kind represents the kinds of notes supported.
io.grafeas.v1.Occurrence.DetailsCase
io.grafeas.v1.RepoId.IdCase
io.grafeas.v1.Severity Note provider assigned severity/impact ranking.
io.grafeas.v1.SourceContext.ContextCase
io.grafeas.v1.Version.VersionKind Whether this is an ordinary package version or a sentinel MIN/MAX version.
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.Justification.JustificationType Provides the type of justification.
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.Remediation.RemediationType The type of remediation that can be applied.
io.grafeas.v1.VulnerabilityAssessmentNote.Assessment.State Provides the state of this Vulnerability assessment.
io.grafeas.v1.VulnerabilityAssessmentNote.Product.IdentifierCase