Class Kubernetes (1.30.0)

Kubernetes(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Kubernetes-related attributes.

Attributes

NameDescription
pods MutableSequence[google.cloud.securitycenter_v2.types.Kubernetes.Pod]
Kubernetes Pods __ associated with the finding. This field contains Pod records for each container that is owned by a Pod.
nodes MutableSequence[google.cloud.securitycenter_v2.types.Kubernetes.Node]
Provides Kubernetes node __ information.
node_pools MutableSequence[google.cloud.securitycenter_v2.types.Kubernetes.NodePool]
GKE `node pools
roles MutableSequence[google.cloud.securitycenter_v2.types.Kubernetes.Role]
Provides Kubernetes role information for findings that involve `Roles or ClusterRoles
bindings MutableSequence[google.cloud.securitycenter_v2.types.Kubernetes.Binding]
Provides Kubernetes role binding information for findings that involve `RoleBindings or ClusterRoleBindings
access_reviews MutableSequence[google.cloud.securitycenter_v2.types.Kubernetes.AccessReview]
Provides information on any Kubernetes access reviews (privilege checks) relevant to the finding.
objects MutableSequence[google.cloud.securitycenter_v2.types.Kubernetes.Object]
Kubernetes objects related to the finding.

Classes

AccessReview

AccessReview(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Conveys information about a Kubernetes access review (such as one returned by a `kubectl auth can-i https://kubernetes.io/docs/reference/access-authn-authz/authorization/#checking-api-access`__ command) that was involved in a finding.

Binding

Binding(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Represents a Kubernetes RoleBinding or ClusterRoleBinding.

Node

Node(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Kubernetes nodes associated with the finding.

NodePool

NodePool(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Provides GKE node pool information.

Object

Object(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Kubernetes object related to the finding, uniquely identified by GKNN. Used if the object Kind is not one of Pod, Node, NodePool, Binding, or AccessReview.

Pod

Pod(mapping=None, *, ignore_unknown_fields=False, **kwargs)

A Kubernetes Pod.

Role

Role(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Kubernetes Role or ClusterRole.

Subject

Subject(mapping=None, *, ignore_unknown_fields=False, **kwargs)

Represents a Kubernetes subject.