Cloud Security Command Center V1 API - Class Google::Cloud::SecurityCenter::V1::SecurityCenter::Rest::Client (v0.27.0)

Reference documentation and code samples for the Cloud Security Command Center V1 API class Google::Cloud::SecurityCenter::V1::SecurityCenter::Rest::Client.

REST client for the SecurityCenter service.

V1 APIs for Security Center service.

Inherits

  • Object

Methods

.configure

def self.configure() { |config| ... } -> Client::Configuration

Configure the SecurityCenter Client class.

See Configuration for a description of the configuration fields.

Yields
  • (config) — Configure the Client client.
Yield Parameter
Example
# Modify the configuration for all SecurityCenter clients
::Google::Cloud::SecurityCenter::V1::SecurityCenter::Rest::Client.configure do |config|
  config.timeout = 10.0
end

#bulk_mute_findings

def bulk_mute_findings(request, options = nil) -> ::Gapic::Operation
def bulk_mute_findings(parent: nil, filter: nil, mute_annotation: nil) -> ::Gapic::Operation

Kicks off an LRO to bulk mute findings for a parent based on a filter. The parent can be either an organization, folder or project. The findings matched by the filter will be muted after the LRO is done.

Overloads
def bulk_mute_findings(request, options = nil) -> ::Gapic::Operation
Pass arguments to bulk_mute_findings via a request object, either of type BulkMuteFindingsRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::BulkMuteFindingsRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def bulk_mute_findings(parent: nil, filter: nil, mute_annotation: nil) -> ::Gapic::Operation
Pass arguments to bulk_mute_findings via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. The parent, at which bulk action needs to be applied. Its format is "organizations/[organization_id]", "folders/[folder_id]", "projects/[project_id]".
  • filter (::String) —

    Expression that identifies findings that should be updated. The expression is a list of zero or more restrictions combined via logical operators AND and OR. Parentheses are supported, and OR has higher precedence than AND.

    Restrictions have the form <field> <operator> <value> and may have a - character in front of them to indicate negation. The fields map to those defined in the corresponding resource.

    The supported operators are:

    • = for all value types.
    • >, <, >=, <= for integer values.
    • :, meaning substring matching, for strings.

    The supported value types are:

    • string literals in quotes.
    • integer literals without quotes.
    • boolean literals true and false without quotes.
  • mute_annotation (::String) — This can be a mute configuration name or any identifier for mute/unmute of findings based on the filter.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
  • result (::Gapic::Operation)
  • operation (::Gapic::Rest::TransportOperation)
Returns
  • (::Gapic::Operation)
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#configure

def configure() { |config| ... } -> Client::Configuration

Configure the SecurityCenter Client instance.

The configuration is set to the derived mode, meaning that values can be changed, but structural changes (adding new fields, etc.) are not allowed. Structural changes should be made on Client.configure.

See Configuration for a description of the configuration fields.

Yields
  • (config) — Configure the Client client.
Yield Parameter

#create_big_query_export

def create_big_query_export(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::BigQueryExport
def create_big_query_export(parent: nil, big_query_export: nil, big_query_export_id: nil) -> ::Google::Cloud::SecurityCenter::V1::BigQueryExport

Creates a BigQuery export.

Overloads
def create_big_query_export(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::BigQueryExport
Pass arguments to create_big_query_export via a request object, either of type CreateBigQueryExportRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::CreateBigQueryExportRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def create_big_query_export(parent: nil, big_query_export: nil, big_query_export_id: nil) -> ::Google::Cloud::SecurityCenter::V1::BigQueryExport
Pass arguments to create_big_query_export via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. The name of the parent resource of the new BigQuery export. Its format is "organizations/[organization_id]", "folders/[folder_id]", or "projects/[project_id]".
  • big_query_export (::Google::Cloud::SecurityCenter::V1::BigQueryExport, ::Hash) — Required. The BigQuery export being created.
  • big_query_export_id (::String) — Required. Unique identifier provided by the client within the parent scope. It must consist of lower case letters, numbers, and hyphen, with the first character a letter, the last a letter or a number, and a 63 character maximum.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#create_finding

def create_finding(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::Finding
def create_finding(parent: nil, finding_id: nil, finding: nil) -> ::Google::Cloud::SecurityCenter::V1::Finding

Creates a finding. The corresponding source must exist for finding creation to succeed.

Overloads
def create_finding(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::Finding
Pass arguments to create_finding via a request object, either of type CreateFindingRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::CreateFindingRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def create_finding(parent: nil, finding_id: nil, finding: nil) -> ::Google::Cloud::SecurityCenter::V1::Finding
Pass arguments to create_finding via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. Resource name of the new finding's parent. Its format should be "organizations/[organization_id]/sources/[source_id]".
  • finding_id (::String) — Required. Unique identifier provided by the client within the parent scope. It must be alphanumeric and less than or equal to 32 characters and greater than 0 characters in length.
  • finding (::Google::Cloud::SecurityCenter::V1::Finding, ::Hash) — Required. The Finding being created. The name and security_marks will be ignored as they are both output only fields on this resource.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#create_mute_config

def create_mute_config(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::MuteConfig
def create_mute_config(parent: nil, mute_config: nil, mute_config_id: nil) -> ::Google::Cloud::SecurityCenter::V1::MuteConfig

Creates a mute config.

Overloads
def create_mute_config(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::MuteConfig
Pass arguments to create_mute_config via a request object, either of type CreateMuteConfigRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::CreateMuteConfigRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def create_mute_config(parent: nil, mute_config: nil, mute_config_id: nil) -> ::Google::Cloud::SecurityCenter::V1::MuteConfig
Pass arguments to create_mute_config via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. Resource name of the new mute configs's parent. Its format is "organizations/[organization_id]", "folders/[folder_id]", or "projects/[project_id]".
  • mute_config (::Google::Cloud::SecurityCenter::V1::MuteConfig, ::Hash) — Required. The mute config being created.
  • mute_config_id (::String) — Required. Unique identifier provided by the client within the parent scope. It must consist of lower case letters, numbers, and hyphen, with the first character a letter, the last a letter or a number, and a 63 character maximum.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#create_notification_config

def create_notification_config(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::NotificationConfig
def create_notification_config(parent: nil, config_id: nil, notification_config: nil) -> ::Google::Cloud::SecurityCenter::V1::NotificationConfig

Creates a notification config.

Overloads
def create_notification_config(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::NotificationConfig
Pass arguments to create_notification_config via a request object, either of type CreateNotificationConfigRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::CreateNotificationConfigRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def create_notification_config(parent: nil, config_id: nil, notification_config: nil) -> ::Google::Cloud::SecurityCenter::V1::NotificationConfig
Pass arguments to create_notification_config via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. Resource name of the new notification config's parent. Its format is "organizations/[organization_id]", "folders/[folder_id]", or "projects/[project_id]".
  • config_id (::String) — Required. Unique identifier provided by the client within the parent scope. It must be between 1 and 128 characters and contain alphanumeric characters, underscores, or hyphens only.
  • notification_config (::Google::Cloud::SecurityCenter::V1::NotificationConfig, ::Hash) — Required. The notification config being created. The name and the service account will be ignored as they are both output only fields on this resource.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#create_security_health_analytics_custom_module

def create_security_health_analytics_custom_module(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule
def create_security_health_analytics_custom_module(parent: nil, security_health_analytics_custom_module: nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule

Creates a resident SecurityHealthAnalyticsCustomModule at the scope of the given CRM parent, and also creates inherited SecurityHealthAnalyticsCustomModules for all CRM descendants of the given parent. These modules are enabled by default.

Overloads
def create_security_health_analytics_custom_module(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule
Pass arguments to create_security_health_analytics_custom_module via a request object, either of type CreateSecurityHealthAnalyticsCustomModuleRequest or an equivalent Hash.
Parameters
def create_security_health_analytics_custom_module(parent: nil, security_health_analytics_custom_module: nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule
Pass arguments to create_security_health_analytics_custom_module via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. Resource name of the new custom module's parent. Its format is "organizations/{organization}/securityHealthAnalyticsSettings", "folders/{folder}/securityHealthAnalyticsSettings", or "projects/{project}/securityHealthAnalyticsSettings"
  • security_health_analytics_custom_module (::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule, ::Hash) — Required. SecurityHealthAnalytics custom module to create. The provided name is ignored and reset with provided parent information and server-generated ID.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#create_source

def create_source(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::Source
def create_source(parent: nil, source: nil) -> ::Google::Cloud::SecurityCenter::V1::Source

Creates a source.

Overloads
def create_source(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::Source
Pass arguments to create_source via a request object, either of type CreateSourceRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::CreateSourceRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def create_source(parent: nil, source: nil) -> ::Google::Cloud::SecurityCenter::V1::Source
Pass arguments to create_source via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. Resource name of the new source's parent. Its format should be "organizations/[organization_id]".
  • source (::Google::Cloud::SecurityCenter::V1::Source, ::Hash) — Required. The Source being created, only the display_name and description will be used. All other fields will be ignored.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#delete_big_query_export

def delete_big_query_export(request, options = nil) -> ::Google::Protobuf::Empty
def delete_big_query_export(name: nil) -> ::Google::Protobuf::Empty

Deletes an existing BigQuery export.

Overloads
def delete_big_query_export(request, options = nil) -> ::Google::Protobuf::Empty
Pass arguments to delete_big_query_export via a request object, either of type DeleteBigQueryExportRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::DeleteBigQueryExportRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def delete_big_query_export(name: nil) -> ::Google::Protobuf::Empty
Pass arguments to delete_big_query_export via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameter
  • name (::String) — Required. The name of the BigQuery export to delete. Its format is organizations/{organization}/bigQueryExports/{export_id}, folders/{folder}/bigQueryExports/{export_id}, or projects/{project}/bigQueryExports/{export_id}
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#delete_mute_config

def delete_mute_config(request, options = nil) -> ::Google::Protobuf::Empty
def delete_mute_config(name: nil) -> ::Google::Protobuf::Empty

Deletes an existing mute config.

Overloads
def delete_mute_config(request, options = nil) -> ::Google::Protobuf::Empty
Pass arguments to delete_mute_config via a request object, either of type DeleteMuteConfigRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::DeleteMuteConfigRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def delete_mute_config(name: nil) -> ::Google::Protobuf::Empty
Pass arguments to delete_mute_config via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameter
  • name (::String) — Required. Name of the mute config to delete. Its format is organizations/{organization}/muteConfigs/{config_id}, folders/{folder}/muteConfigs/{config_id}, or projects/{project}/muteConfigs/{config_id}
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#delete_notification_config

def delete_notification_config(request, options = nil) -> ::Google::Protobuf::Empty
def delete_notification_config(name: nil) -> ::Google::Protobuf::Empty

Deletes a notification config.

Overloads
def delete_notification_config(request, options = nil) -> ::Google::Protobuf::Empty
Pass arguments to delete_notification_config via a request object, either of type DeleteNotificationConfigRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::DeleteNotificationConfigRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def delete_notification_config(name: nil) -> ::Google::Protobuf::Empty
Pass arguments to delete_notification_config via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameter
  • name (::String) — Required. Name of the notification config to delete. Its format is "organizations/[organization_id]/notificationConfigs/[config_id]", "folders/[folder_id]/notificationConfigs/[config_id]", or "projects/[project_id]/notificationConfigs/[config_id]".
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#delete_security_health_analytics_custom_module

def delete_security_health_analytics_custom_module(request, options = nil) -> ::Google::Protobuf::Empty
def delete_security_health_analytics_custom_module(name: nil) -> ::Google::Protobuf::Empty

Deletes the specified SecurityHealthAnalyticsCustomModule and all of its descendants in the CRM hierarchy. This method is only supported for resident custom modules.

Overloads
def delete_security_health_analytics_custom_module(request, options = nil) -> ::Google::Protobuf::Empty
Pass arguments to delete_security_health_analytics_custom_module via a request object, either of type DeleteSecurityHealthAnalyticsCustomModuleRequest or an equivalent Hash.
Parameters
def delete_security_health_analytics_custom_module(name: nil) -> ::Google::Protobuf::Empty
Pass arguments to delete_security_health_analytics_custom_module via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameter
  • name (::String) — Required. Name of the custom module to delete. Its format is "organizations/{organization}/securityHealthAnalyticsSettings/customModules/{customModule}", "folders/{folder}/securityHealthAnalyticsSettings/customModules/{customModule}", or "projects/{project}/securityHealthAnalyticsSettings/customModules/{customModule}"
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#get_big_query_export

def get_big_query_export(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::BigQueryExport
def get_big_query_export(name: nil) -> ::Google::Cloud::SecurityCenter::V1::BigQueryExport

Gets a BigQuery export.

Overloads
def get_big_query_export(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::BigQueryExport
Pass arguments to get_big_query_export via a request object, either of type GetBigQueryExportRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::GetBigQueryExportRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def get_big_query_export(name: nil) -> ::Google::Cloud::SecurityCenter::V1::BigQueryExport
Pass arguments to get_big_query_export via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameter
  • name (::String) — Required. Name of the BigQuery export to retrieve. Its format is organizations/{organization}/bigQueryExports/{export_id}, folders/{folder}/bigQueryExports/{export_id}, or projects/{project}/bigQueryExports/{export_id}
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#get_effective_security_health_analytics_custom_module

def get_effective_security_health_analytics_custom_module(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::EffectiveSecurityHealthAnalyticsCustomModule
def get_effective_security_health_analytics_custom_module(name: nil) -> ::Google::Cloud::SecurityCenter::V1::EffectiveSecurityHealthAnalyticsCustomModule

Retrieves an EffectiveSecurityHealthAnalyticsCustomModule.

Overloads
def get_effective_security_health_analytics_custom_module(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::EffectiveSecurityHealthAnalyticsCustomModule
Pass arguments to get_effective_security_health_analytics_custom_module via a request object, either of type GetEffectiveSecurityHealthAnalyticsCustomModuleRequest or an equivalent Hash.
Parameters
def get_effective_security_health_analytics_custom_module(name: nil) -> ::Google::Cloud::SecurityCenter::V1::EffectiveSecurityHealthAnalyticsCustomModule
Pass arguments to get_effective_security_health_analytics_custom_module via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameter
  • name (::String) — Required. Name of the effective custom module to get. Its format is "organizations/{organization}/securityHealthAnalyticsSettings/effectiveCustomModules/{customModule}", "folders/{folder}/securityHealthAnalyticsSettings/effectiveCustomModules/{customModule}", or "projects/{project}/securityHealthAnalyticsSettings/effectiveCustomModules/{customModule}"
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#get_iam_policy

def get_iam_policy(request, options = nil) -> ::Google::Iam::V1::Policy
def get_iam_policy(resource: nil, options: nil) -> ::Google::Iam::V1::Policy

Gets the access control policy on the specified Source.

Overloads
def get_iam_policy(request, options = nil) -> ::Google::Iam::V1::Policy
Pass arguments to get_iam_policy via a request object, either of type Iam::V1::GetIamPolicyRequest or an equivalent Hash.
Parameters
  • request (::Google::Iam::V1::GetIamPolicyRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def get_iam_policy(resource: nil, options: nil) -> ::Google::Iam::V1::Policy
Pass arguments to get_iam_policy via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • resource (::String) — REQUIRED: The resource for which the policy is being requested. See the operation documentation for the appropriate value for this field.
  • options (::Google::Iam::V1::GetPolicyOptions, ::Hash) — OPTIONAL: A GetPolicyOptions object for specifying options to GetIamPolicy.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#get_mute_config

def get_mute_config(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::MuteConfig
def get_mute_config(name: nil) -> ::Google::Cloud::SecurityCenter::V1::MuteConfig

Gets a mute config.

Overloads
def get_mute_config(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::MuteConfig
Pass arguments to get_mute_config via a request object, either of type GetMuteConfigRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::GetMuteConfigRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def get_mute_config(name: nil) -> ::Google::Cloud::SecurityCenter::V1::MuteConfig
Pass arguments to get_mute_config via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameter
  • name (::String) — Required. Name of the mute config to retrieve. Its format is organizations/{organization}/muteConfigs/{config_id}, folders/{folder}/muteConfigs/{config_id}, or projects/{project}/muteConfigs/{config_id}
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#get_notification_config

def get_notification_config(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::NotificationConfig
def get_notification_config(name: nil) -> ::Google::Cloud::SecurityCenter::V1::NotificationConfig

Gets a notification config.

Overloads
def get_notification_config(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::NotificationConfig
Pass arguments to get_notification_config via a request object, either of type GetNotificationConfigRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::GetNotificationConfigRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def get_notification_config(name: nil) -> ::Google::Cloud::SecurityCenter::V1::NotificationConfig
Pass arguments to get_notification_config via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameter
  • name (::String) — Required. Name of the notification config to get. Its format is "organizations/[organization_id]/notificationConfigs/[config_id]", "folders/[folder_id]/notificationConfigs/[config_id]", or "projects/[project_id]/notificationConfigs/[config_id]".
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#get_organization_settings

def get_organization_settings(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::OrganizationSettings
def get_organization_settings(name: nil) -> ::Google::Cloud::SecurityCenter::V1::OrganizationSettings

Gets the settings for an organization.

Overloads
def get_organization_settings(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::OrganizationSettings
Pass arguments to get_organization_settings via a request object, either of type GetOrganizationSettingsRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::GetOrganizationSettingsRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def get_organization_settings(name: nil) -> ::Google::Cloud::SecurityCenter::V1::OrganizationSettings
Pass arguments to get_organization_settings via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameter
  • name (::String) — Required. Name of the organization to get organization settings for. Its format is "organizations/[organization_id]/organizationSettings".
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#get_security_health_analytics_custom_module

def get_security_health_analytics_custom_module(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule
def get_security_health_analytics_custom_module(name: nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule

Retrieves a SecurityHealthAnalyticsCustomModule.

Overloads
def get_security_health_analytics_custom_module(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule
Pass arguments to get_security_health_analytics_custom_module via a request object, either of type GetSecurityHealthAnalyticsCustomModuleRequest or an equivalent Hash.
Parameters
def get_security_health_analytics_custom_module(name: nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule
Pass arguments to get_security_health_analytics_custom_module via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameter
  • name (::String) — Required. Name of the custom module to get. Its format is "organizations/{organization}/securityHealthAnalyticsSettings/customModules/{customModule}", "folders/{folder}/securityHealthAnalyticsSettings/customModules/{customModule}", or "projects/{project}/securityHealthAnalyticsSettings/customModules/{customModule}"
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#get_source

def get_source(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::Source
def get_source(name: nil) -> ::Google::Cloud::SecurityCenter::V1::Source

Gets a source.

Overloads
def get_source(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::Source
Pass arguments to get_source via a request object, either of type GetSourceRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::GetSourceRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def get_source(name: nil) -> ::Google::Cloud::SecurityCenter::V1::Source
Pass arguments to get_source via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameter
  • name (::String) — Required. Relative resource name of the source. Its format is "organizations/[organization_id]/source/[source_id]".
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#group_assets

def group_assets(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::GroupResult>
def group_assets(parent: nil, filter: nil, group_by: nil, compare_duration: nil, read_time: nil, page_token: nil, page_size: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::GroupResult>

Filters an organization's assets and groups them by their specified properties.

Overloads
def group_assets(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::GroupResult>
Pass arguments to group_assets via a request object, either of type GroupAssetsRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::GroupAssetsRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def group_assets(parent: nil, filter: nil, group_by: nil, compare_duration: nil, read_time: nil, page_token: nil, page_size: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::GroupResult>
Pass arguments to group_assets via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. The name of the parent to group the assets by. Its format is "organizations/[organization_id]", "folders/[folder_id]", or "projects/[project_id]".
  • filter (::String) — Expression that defines the filter to apply across assets. The expression is a list of zero or more restrictions combined via logical operators AND and OR. Parentheses are supported, and OR has higher precedence than AND.

    Restrictions have the form <field> <operator> <value> and may have a - character in front of them to indicate negation. The fields map to those defined in the Asset resource. Examples include:

    • name
    • security_center_properties.resource_name
    • resource_properties.a_property
    • security_marks.marks.marka

    The supported operators are:

    • = for all value types.
    • >, <, >=, <= for integer values.
    • :, meaning substring matching, for strings.

    The supported value types are:

    • string literals in quotes.
    • integer literals without quotes.
    • boolean literals true and false without quotes.

    The following field and operator combinations are supported:

    • name: =
    • update_time: =, >, <, >=, <=

    Usage: This should be milliseconds since epoch or an RFC3339 string. Examples: update_time = "2019-06-10T16:07:18-07:00" update_time = 1560208038000

    • create_time: =, >, <, >=, <=

    Usage: This should be milliseconds since epoch or an RFC3339 string. Examples: create_time = "2019-06-10T16:07:18-07:00" create_time = 1560208038000

    • iam_policy.policy_blob: =, :
    • resource_properties: =, :, >, <, >=, <=
    • security_marks.marks: =, :
    • security_center_properties.resource_name: =, :
    • security_center_properties.resource_display_name: =, :
    • security_center_properties.resource_type: =, :
    • security_center_properties.resource_parent: =, :
    • security_center_properties.resource_parent_display_name: =, :
    • security_center_properties.resource_project: =, :
    • security_center_properties.resource_project_display_name: =, :
    • security_center_properties.resource_owners: =, :

    For example, resource_properties.size = 100 is a valid filter string.

    Use a partial match on the empty string to filter based on a property existing: resource_properties.my_property : ""

    Use a negated partial match on the empty string to filter based on a property not existing: -resource_properties.my_property : ""

  • group_by (::String) —

    Required. Expression that defines what assets fields to use for grouping. The string value should follow SQL syntax: comma separated list of fields. For example: "security_center_properties.resource_project,security_center_properties.project".

    The following fields are supported when compare_duration is not set:

    • security_center_properties.resource_project
    • security_center_properties.resource_project_display_name
    • security_center_properties.resource_type
    • security_center_properties.resource_parent
    • security_center_properties.resource_parent_display_name

    The following fields are supported when compare_duration is set:

    • security_center_properties.resource_type
    • security_center_properties.resource_project_display_name
    • security_center_properties.resource_parent_display_name
  • compare_duration (::Google::Protobuf::Duration, ::Hash) — When compare_duration is set, the GroupResult's "state_change" property is updated to indicate whether the asset was added, removed, or remained present during the compare_duration period of time that precedes the read_time. This is the time between (read_time - compare_duration) and read_time.

    The state change value is derived based on the presence of the asset at the two points in time. Intermediate state changes between the two times don't affect the result. For example, the results aren't affected if the asset is removed and re-created again.

    Possible "state_change" values when compare_duration is specified:

    • "ADDED": indicates that the asset was not present at the start of compare_duration, but present at reference_time.
    • "REMOVED": indicates that the asset was present at the start of compare_duration, but not present at reference_time.
    • "ACTIVE": indicates that the asset was present at both the start and the end of the time period defined by compare_duration and reference_time.

    If compare_duration is not specified, then the only possible state_change is "UNUSED", which will be the state_change set for all assets present at read_time.

    If this field is set then state_change must be a specified field in group_by.

  • read_time (::Google::Protobuf::Timestamp, ::Hash) — Time used as a reference point when filtering assets. The filter is limited to assets existing at the supplied time and their values are those at that specific time. Absence of this field will default to the API's version of NOW.
  • page_token (::String) — The value returned by the last GroupAssetsResponse; indicates that this is a continuation of a prior GroupAssets call, and that the system should return the next page of data.
  • page_size (::Integer) — The maximum number of results to return in a single response. Default is 10, minimum is 1, maximum is 1000.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Returns
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#group_findings

def group_findings(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::GroupResult>
def group_findings(parent: nil, filter: nil, group_by: nil, read_time: nil, compare_duration: nil, page_token: nil, page_size: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::GroupResult>

Filters an organization or source's findings and groups them by their specified properties.

To group across all sources provide a - as the source id. Example: /v1/organizations/{organization_id}/sources/-/findings, /v1/folders/{folder_id}/sources/-/findings, /v1/projects/{project_id}/sources/-/findings

Overloads
def group_findings(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::GroupResult>
Pass arguments to group_findings via a request object, either of type GroupFindingsRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::GroupFindingsRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def group_findings(parent: nil, filter: nil, group_by: nil, read_time: nil, compare_duration: nil, page_token: nil, page_size: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::GroupResult>
Pass arguments to group_findings via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. Name of the source to groupBy. Its format is "organizations/[organization_id]/sources/[source_id]", folders/[folder_id]/sources/[source_id], or projects/[project_id]/sources/[source_id]. To groupBy across all sources provide a source_id of -. For example: organizations/{organization_id}/sources/-, folders/{folder_id}/sources/-, or projects/{project_id}/sources/-
  • filter (::String) —

    Expression that defines the filter to apply across findings. The expression is a list of one or more restrictions combined via logical operators AND and OR. Parentheses are supported, and OR has higher precedence than AND.

    Restrictions have the form <field> <operator> <value> and may have a - character in front of them to indicate negation. Examples include:

    • name
    • source_properties.a_property
    • security_marks.marks.marka

    The supported operators are:

    • = for all value types.
    • >, <, >=, <= for integer values.
    • :, meaning substring matching, for strings.

    The supported value types are:

    • string literals in quotes.
    • integer literals without quotes.
    • boolean literals true and false without quotes.

    The following field and operator combinations are supported:

    • name: =
    • parent: =, :
    • resource_name: =, :
    • state: =, :
    • category: =, :
    • external_uri: =, :
    • event_time: =, >, <, >=, <=

    Usage: This should be milliseconds since epoch or an RFC3339 string. Examples: event_time = "2019-06-10T16:07:18-07:00" event_time = 1560208038000

    • severity: =, :
    • workflow_state: =, :
    • security_marks.marks: =, :
    • source_properties: =, :, >, <, >=, <=

    For example, source_properties.size = 100 is a valid filter string.

    Use a partial match on the empty string to filter based on a property existing: source_properties.my_property : ""

    Use a negated partial match on the empty string to filter based on a property not existing: -source_properties.my_property : ""

    • resource:
      • resource.name: =, :
      • resource.parent_name: =, :
      • resource.parent_display_name: =, :
      • resource.project_name: =, :
      • resource.project_display_name: =, :
      • resource.type: =, :
  • group_by (::String) —

    Required. Expression that defines what assets fields to use for grouping (including state_change). The string value should follow SQL syntax: comma separated list of fields. For example: "parent,resource_name".

    The following fields are supported:

    • resource_name
    • category
    • state
    • parent
    • severity

    The following fields are supported when compare_duration is set:

    • state_change
  • read_time (::Google::Protobuf::Timestamp, ::Hash) — Time used as a reference point when filtering findings. The filter is limited to findings existing at the supplied time and their values are those at that specific time. Absence of this field will default to the API's version of NOW.
  • compare_duration (::Google::Protobuf::Duration, ::Hash) — When compare_duration is set, the GroupResult's "state_change" attribute is updated to indicate whether the finding had its state changed, the finding's state remained unchanged, or if the finding was added during the compare_duration period of time that precedes the read_time. This is the time between (read_time - compare_duration) and read_time.

    The state_change value is derived based on the presence and state of the finding at the two points in time. Intermediate state changes between the two times don't affect the result. For example, the results aren't affected if the finding is made inactive and then active again.

    Possible "state_change" values when compare_duration is specified:

    • "CHANGED": indicates that the finding was present and matched the given filter at the start of compare_duration, but changed its state at read_time.
    • "UNCHANGED": indicates that the finding was present and matched the given filter at the start of compare_duration and did not change state at read_time.
    • "ADDED": indicates that the finding did not match the given filter or was not present at the start of compare_duration, but was present at read_time.
    • "REMOVED": indicates that the finding was present and matched the filter at the start of compare_duration, but did not match the filter at read_time.

    If compare_duration is not specified, then the only possible state_change is "UNUSED", which will be the state_change set for all findings present at read_time.

    If this field is set then state_change must be a specified field in group_by.

  • page_token (::String) — The value returned by the last GroupFindingsResponse; indicates that this is a continuation of a prior GroupFindings call, and that the system should return the next page of data.
  • page_size (::Integer) — The maximum number of results to return in a single response. Default is 10, minimum is 1, maximum is 1000.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Returns
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#initialize

def initialize() { |config| ... } -> Client

Create a new SecurityCenter REST client object.

Yields
  • (config) — Configure the SecurityCenter client.
Yield Parameter
Returns
  • (Client) — a new instance of Client
Example
# Create a client using the default configuration
client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Rest::Client.new

# Create a client using a custom configuration
client = ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Rest::Client.new do |config|
  config.timeout = 10.0
end

#list_assets

def list_assets(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::ListAssetsResponse::ListAssetsResult>
def list_assets(parent: nil, filter: nil, order_by: nil, read_time: nil, compare_duration: nil, field_mask: nil, page_token: nil, page_size: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::ListAssetsResponse::ListAssetsResult>

Lists an organization's assets.

Overloads
def list_assets(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::ListAssetsResponse::ListAssetsResult>
Pass arguments to list_assets via a request object, either of type ListAssetsRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::ListAssetsRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def list_assets(parent: nil, filter: nil, order_by: nil, read_time: nil, compare_duration: nil, field_mask: nil, page_token: nil, page_size: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::ListAssetsResponse::ListAssetsResult>
Pass arguments to list_assets via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. The name of the parent resource that contains the assets. The value that you can specify on parent depends on the method in which you specify parent. You can specify one of the following values: "organizations/[organization_id]", "folders/[folder_id]", or "projects/[project_id]".
  • filter (::String) — Expression that defines the filter to apply across assets. The expression is a list of zero or more restrictions combined via logical operators AND and OR. Parentheses are supported, and OR has higher precedence than AND.

    Restrictions have the form <field> <operator> <value> and may have a - character in front of them to indicate negation. The fields map to those defined in the Asset resource. Examples include:

    • name
    • security_center_properties.resource_name
    • resource_properties.a_property
    • security_marks.marks.marka

    The supported operators are:

    • = for all value types.
    • >, <, >=, <= for integer values.
    • :, meaning substring matching, for strings.

    The supported value types are:

    • string literals in quotes.
    • integer literals without quotes.
    • boolean literals true and false without quotes.

    The following are the allowed field and operator combinations:

    • name: =
    • update_time: =, >, <, >=, <=

    Usage: This should be milliseconds since epoch or an RFC3339 string. Examples: update_time = "2019-06-10T16:07:18-07:00" update_time = 1560208038000

    • create_time: =, >, <, >=, <=

    Usage: This should be milliseconds since epoch or an RFC3339 string. Examples: create_time = "2019-06-10T16:07:18-07:00" create_time = 1560208038000

    • iam_policy.policy_blob: =, :
    • resource_properties: =, :, >, <, >=, <=
    • security_marks.marks: =, :
    • security_center_properties.resource_name: =, :
    • security_center_properties.resource_display_name: =, :
    • security_center_properties.resource_type: =, :
    • security_center_properties.resource_parent: =, :
    • security_center_properties.resource_parent_display_name: =, :
    • security_center_properties.resource_project: =, :
    • security_center_properties.resource_project_display_name: =, :
    • security_center_properties.resource_owners: =, :

    For example, resource_properties.size = 100 is a valid filter string.

    Use a partial match on the empty string to filter based on a property existing: resource_properties.my_property : ""

    Use a negated partial match on the empty string to filter based on a property not existing: -resource_properties.my_property : ""

  • order_by (::String) — Expression that defines what fields and order to use for sorting. The string value should follow SQL syntax: comma separated list of fields. For example: "name,resource_properties.a_property". The default sorting order is ascending. To specify descending order for a field, a suffix " desc" should be appended to the field name. For example: "name desc,resource_properties.a_property". Redundant space characters in the syntax are insignificant. "name desc,resource_properties.a_property" and " name desc , resource_properties.a_property " are equivalent.

    The following fields are supported: name update_time resource_properties security_marks.marks security_center_properties.resource_name security_center_properties.resource_display_name security_center_properties.resource_parent security_center_properties.resource_parent_display_name security_center_properties.resource_project security_center_properties.resource_project_display_name security_center_properties.resource_type

  • read_time (::Google::Protobuf::Timestamp, ::Hash) — Time used as a reference point when filtering assets. The filter is limited to assets existing at the supplied time and their values are those at that specific time. Absence of this field will default to the API's version of NOW.
  • compare_duration (::Google::Protobuf::Duration, ::Hash) — When compare_duration is set, the ListAssetsResult's "state_change" attribute is updated to indicate whether the asset was added, removed, or remained present during the compare_duration period of time that precedes the read_time. This is the time between (read_time - compare_duration) and read_time.

    The state_change value is derived based on the presence of the asset at the two points in time. Intermediate state changes between the two times don't affect the result. For example, the results aren't affected if the asset is removed and re-created again.

    Possible "state_change" values when compare_duration is specified:

    • "ADDED": indicates that the asset was not present at the start of compare_duration, but present at read_time.
    • "REMOVED": indicates that the asset was present at the start of compare_duration, but not present at read_time.
    • "ACTIVE": indicates that the asset was present at both the start and the end of the time period defined by compare_duration and read_time.

    If compare_duration is not specified, then the only possible state_change is "UNUSED", which will be the state_change set for all assets present at read_time.

  • field_mask (::Google::Protobuf::FieldMask, ::Hash) — A field mask to specify the ListAssetsResult fields to be listed in the response. An empty field mask will list all fields.
  • page_token (::String) — The value returned by the last ListAssetsResponse; indicates that this is a continuation of a prior ListAssets call, and that the system should return the next page of data.
  • page_size (::Integer) — The maximum number of results to return in a single response. Default is 10, minimum is 1, maximum is 1000.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#list_big_query_exports

def list_big_query_exports(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::BigQueryExport>
def list_big_query_exports(parent: nil, page_size: nil, page_token: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::BigQueryExport>

Lists BigQuery exports. Note that when requesting BigQuery exports at a given level all exports under that level are also returned e.g. if requesting BigQuery exports under a folder, then all BigQuery exports immediately under the folder plus the ones created under the projects within the folder are returned.

Overloads
def list_big_query_exports(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::BigQueryExport>
Pass arguments to list_big_query_exports via a request object, either of type ListBigQueryExportsRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::ListBigQueryExportsRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def list_big_query_exports(parent: nil, page_size: nil, page_token: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::BigQueryExport>
Pass arguments to list_big_query_exports via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. The parent, which owns the collection of BigQuery exports. Its format is "organizations/[organization_id]", "folders/[folder_id]", "projects/[project_id]".
  • page_size (::Integer) — The maximum number of configs to return. The service may return fewer than this value. If unspecified, at most 10 configs will be returned. The maximum value is 1000; values above 1000 will be coerced to 1000.
  • page_token (::String) — A page token, received from a previous ListBigQueryExports call. Provide this to retrieve the subsequent page. When paginating, all other parameters provided to ListBigQueryExports must match the call that provided the page token.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Returns
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#list_descendant_security_health_analytics_custom_modules

def list_descendant_security_health_analytics_custom_modules(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule>
def list_descendant_security_health_analytics_custom_modules(parent: nil, page_size: nil, page_token: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule>

Returns a list of all resident SecurityHealthAnalyticsCustomModules under the given CRM parent and all of the parent’s CRM descendants.

Overloads
def list_descendant_security_health_analytics_custom_modules(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule>
Pass arguments to list_descendant_security_health_analytics_custom_modules via a request object, either of type ListDescendantSecurityHealthAnalyticsCustomModulesRequest or an equivalent Hash.
Parameters
def list_descendant_security_health_analytics_custom_modules(parent: nil, page_size: nil, page_token: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule>
Pass arguments to list_descendant_security_health_analytics_custom_modules via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. Name of parent to list descendant custom modules. Its format is "organizations/{organization}/securityHealthAnalyticsSettings", "folders/{folder}/securityHealthAnalyticsSettings", or "projects/{project}/securityHealthAnalyticsSettings"
  • page_size (::Integer) — The maximum number of results to return in a single response. Default is 10, minimum is 1, maximum is 1000.
  • page_token (::String) — The value returned by the last call indicating a continuation
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#list_effective_security_health_analytics_custom_modules

def list_effective_security_health_analytics_custom_modules(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::EffectiveSecurityHealthAnalyticsCustomModule>
def list_effective_security_health_analytics_custom_modules(parent: nil, page_size: nil, page_token: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::EffectiveSecurityHealthAnalyticsCustomModule>

Returns a list of all EffectiveSecurityHealthAnalyticsCustomModules for the given parent. This includes resident modules defined at the scope of the parent, and inherited modules, inherited from CRM ancestors.

Overloads
def list_effective_security_health_analytics_custom_modules(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::EffectiveSecurityHealthAnalyticsCustomModule>
Pass arguments to list_effective_security_health_analytics_custom_modules via a request object, either of type ListEffectiveSecurityHealthAnalyticsCustomModulesRequest or an equivalent Hash.
Parameters
def list_effective_security_health_analytics_custom_modules(parent: nil, page_size: nil, page_token: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::EffectiveSecurityHealthAnalyticsCustomModule>
Pass arguments to list_effective_security_health_analytics_custom_modules via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. Name of parent to list effective custom modules. Its format is "organizations/{organization}/securityHealthAnalyticsSettings", "folders/{folder}/securityHealthAnalyticsSettings", or "projects/{project}/securityHealthAnalyticsSettings"
  • page_size (::Integer) — The maximum number of results to return in a single response. Default is 10, minimum is 1, maximum is 1000.
  • page_token (::String) — The value returned by the last call indicating a continuation
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#list_findings

def list_findings(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::ListFindingsResponse::ListFindingsResult>
def list_findings(parent: nil, filter: nil, order_by: nil, read_time: nil, compare_duration: nil, field_mask: nil, page_token: nil, page_size: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::ListFindingsResponse::ListFindingsResult>

Lists an organization or source's findings.

To list across all sources provide a - as the source id. Example: /v1/organizations/{organization_id}/sources/-/findings

Overloads
def list_findings(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::ListFindingsResponse::ListFindingsResult>
Pass arguments to list_findings via a request object, either of type ListFindingsRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::ListFindingsRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def list_findings(parent: nil, filter: nil, order_by: nil, read_time: nil, compare_duration: nil, field_mask: nil, page_token: nil, page_size: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::ListFindingsResponse::ListFindingsResult>
Pass arguments to list_findings via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. Name of the source the findings belong to. Its format is "organizations/[organization_id]/sources/[source_id], folders/[folder_id]/sources/[source_id], or projects/[project_id]/sources/[source_id]". To list across all sources provide a source_id of -. For example: organizations/{organization_id}/sources/-, folders/{folder_id}/sources/- or projects/{projects_id}/sources/-
  • filter (::String) —

    Expression that defines the filter to apply across findings. The expression is a list of one or more restrictions combined via logical operators AND and OR. Parentheses are supported, and OR has higher precedence than AND.

    Restrictions have the form <field> <operator> <value> and may have a - character in front of them to indicate negation. Examples include:

    • name
    • source_properties.a_property
    • security_marks.marks.marka

    The supported operators are:

    • = for all value types.
    • >, <, >=, <= for integer values.
    • :, meaning substring matching, for strings.

    The supported value types are:

    • string literals in quotes.
    • integer literals without quotes.
    • boolean literals true and false without quotes.

    The following field and operator combinations are supported:

    • name: =
    • parent: =, :
    • resource_name: =, :
    • state: =, :
    • category: =, :
    • external_uri: =, :
    • event_time: =, >, <, >=, <=

    Usage: This should be milliseconds since epoch or an RFC3339 string. Examples: event_time = "2019-06-10T16:07:18-07:00" event_time = 1560208038000

    • severity: =, :
    • workflow_state: =, :
    • security_marks.marks: =, :
    • source_properties: =, :, >, <, >=, <=

    For example, source_properties.size = 100 is a valid filter string.

    Use a partial match on the empty string to filter based on a property existing: source_properties.my_property : ""

    Use a negated partial match on the empty string to filter based on a property not existing: -source_properties.my_property : ""

    • resource:
      • resource.name: =, :
      • resource.parent_name: =, :
      • resource.parent_display_name: =, :
      • resource.project_name: =, :
      • resource.project_display_name: =, :
      • resource.type: =, :
      • resource.folders.resource_folder: =, :
      • resource.display_name: =, :
  • order_by (::String) — Expression that defines what fields and order to use for sorting. The string value should follow SQL syntax: comma separated list of fields. For example: "name,resource_properties.a_property". The default sorting order is ascending. To specify descending order for a field, a suffix " desc" should be appended to the field name. For example: "name desc,source_properties.a_property". Redundant space characters in the syntax are insignificant. "name desc,source_properties.a_property" and " name desc , source_properties.a_property " are equivalent.

    The following fields are supported: name parent state category resource_name event_time source_properties security_marks.marks

  • read_time (::Google::Protobuf::Timestamp, ::Hash) — Time used as a reference point when filtering findings. The filter is limited to findings existing at the supplied time and their values are those at that specific time. Absence of this field will default to the API's version of NOW.
  • compare_duration (::Google::Protobuf::Duration, ::Hash) — When compare_duration is set, the ListFindingsResult's "state_change" attribute is updated to indicate whether the finding had its state changed, the finding's state remained unchanged, or if the finding was added in any state during the compare_duration period of time that precedes the read_time. This is the time between (read_time - compare_duration) and read_time.

    The state_change value is derived based on the presence and state of the finding at the two points in time. Intermediate state changes between the two times don't affect the result. For example, the results aren't affected if the finding is made inactive and then active again.

    Possible "state_change" values when compare_duration is specified:

    • "CHANGED": indicates that the finding was present and matched the given filter at the start of compare_duration, but changed its state at read_time.
    • "UNCHANGED": indicates that the finding was present and matched the given filter at the start of compare_duration and did not change state at read_time.
    • "ADDED": indicates that the finding did not match the given filter or was not present at the start of compare_duration, but was present at read_time.
    • "REMOVED": indicates that the finding was present and matched the filter at the start of compare_duration, but did not match the filter at read_time.

    If compare_duration is not specified, then the only possible state_change is "UNUSED", which will be the state_change set for all findings present at read_time.

  • field_mask (::Google::Protobuf::FieldMask, ::Hash) — A field mask to specify the Finding fields to be listed in the response. An empty field mask will list all fields.
  • page_token (::String) — The value returned by the last ListFindingsResponse; indicates that this is a continuation of a prior ListFindings call, and that the system should return the next page of data.
  • page_size (::Integer) — The maximum number of results to return in a single response. Default is 10, minimum is 1, maximum is 1000.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#list_mute_configs

def list_mute_configs(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::MuteConfig>
def list_mute_configs(parent: nil, page_size: nil, page_token: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::MuteConfig>

Lists mute configs.

Overloads
def list_mute_configs(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::MuteConfig>
Pass arguments to list_mute_configs via a request object, either of type ListMuteConfigsRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::ListMuteConfigsRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def list_mute_configs(parent: nil, page_size: nil, page_token: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::MuteConfig>
Pass arguments to list_mute_configs via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. The parent, which owns the collection of mute configs. Its format is "organizations/[organization_id]", "folders/[folder_id]", "projects/[project_id]".
  • page_size (::Integer) — The maximum number of configs to return. The service may return fewer than this value. If unspecified, at most 10 configs will be returned. The maximum value is 1000; values above 1000 will be coerced to 1000.
  • page_token (::String) — A page token, received from a previous ListMuteConfigs call. Provide this to retrieve the subsequent page.

    When paginating, all other parameters provided to ListMuteConfigs must match the call that provided the page token.

Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Returns
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#list_notification_configs

def list_notification_configs(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::NotificationConfig>
def list_notification_configs(parent: nil, page_token: nil, page_size: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::NotificationConfig>

Lists notification configs.

Overloads
def list_notification_configs(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::NotificationConfig>
Pass arguments to list_notification_configs via a request object, either of type ListNotificationConfigsRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::ListNotificationConfigsRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def list_notification_configs(parent: nil, page_token: nil, page_size: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::NotificationConfig>
Pass arguments to list_notification_configs via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. The name of the parent in which to list the notification configurations. Its format is "organizations/[organization_id]", "folders/[folder_id]", or "projects/[project_id]".
  • page_token (::String) — The value returned by the last ListNotificationConfigsResponse; indicates that this is a continuation of a prior ListNotificationConfigs call, and that the system should return the next page of data.
  • page_size (::Integer) — The maximum number of results to return in a single response. Default is 10, minimum is 1, maximum is 1000.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Returns
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#list_security_health_analytics_custom_modules

def list_security_health_analytics_custom_modules(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule>
def list_security_health_analytics_custom_modules(parent: nil, page_size: nil, page_token: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule>

Returns a list of all SecurityHealthAnalyticsCustomModules for the given parent. This includes resident modules defined at the scope of the parent, and inherited modules, inherited from CRM ancestors.

Overloads
def list_security_health_analytics_custom_modules(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule>
Pass arguments to list_security_health_analytics_custom_modules via a request object, either of type ListSecurityHealthAnalyticsCustomModulesRequest or an equivalent Hash.
Parameters
def list_security_health_analytics_custom_modules(parent: nil, page_size: nil, page_token: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule>
Pass arguments to list_security_health_analytics_custom_modules via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. Name of parent to list custom modules. Its format is "organizations/{organization}/securityHealthAnalyticsSettings", "folders/{folder}/securityHealthAnalyticsSettings", or "projects/{project}/securityHealthAnalyticsSettings"
  • page_size (::Integer) — The maximum number of results to return in a single response. Default is 10, minimum is 1, maximum is 1000.
  • page_token (::String) — The value returned by the last call indicating a continuation
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#list_sources

def list_sources(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::Source>
def list_sources(parent: nil, page_token: nil, page_size: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::Source>

Lists all sources belonging to an organization.

Overloads
def list_sources(request, options = nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::Source>
Pass arguments to list_sources via a request object, either of type ListSourcesRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::ListSourcesRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def list_sources(parent: nil, page_token: nil, page_size: nil) -> ::Gapic::Rest::PagedEnumerable<::Google::Cloud::SecurityCenter::V1::Source>
Pass arguments to list_sources via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • parent (::String) — Required. Resource name of the parent of sources to list. Its format should be "organizations/[organization_id]", "folders/[folder_id]", or "projects/[project_id]".
  • page_token (::String) — The value returned by the last ListSourcesResponse; indicates that this is a continuation of a prior ListSources call, and that the system should return the next page of data.
  • page_size (::Integer) — The maximum number of results to return in a single response. Default is 10, minimum is 1, maximum is 1000.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Returns
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#operations_client

def operations_client() -> ::Google::Cloud::SecurityCenter::V1::SecurityCenter::Rest::Operations

Get the associated client for long-running operations.

#run_asset_discovery

def run_asset_discovery(request, options = nil) -> ::Gapic::Operation
def run_asset_discovery(parent: nil) -> ::Gapic::Operation

Runs asset discovery. The discovery is tracked with a long-running operation.

This API can only be called with limited frequency for an organization. If it is called too frequently the caller will receive a TOO_MANY_REQUESTS error.

Overloads
def run_asset_discovery(request, options = nil) -> ::Gapic::Operation
Pass arguments to run_asset_discovery via a request object, either of type RunAssetDiscoveryRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::RunAssetDiscoveryRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def run_asset_discovery(parent: nil) -> ::Gapic::Operation
Pass arguments to run_asset_discovery via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameter
  • parent (::String) — Required. Name of the organization to run asset discovery for. Its format is "organizations/[organization_id]".
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
  • result (::Gapic::Operation)
  • operation (::Gapic::Rest::TransportOperation)
Returns
  • (::Gapic::Operation)
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#set_finding_state

def set_finding_state(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::Finding
def set_finding_state(name: nil, state: nil, start_time: nil) -> ::Google::Cloud::SecurityCenter::V1::Finding

Updates the state of a finding.

Overloads
def set_finding_state(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::Finding
Pass arguments to set_finding_state via a request object, either of type Google::Cloud::SecurityCenter::V1::SetFindingStateRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::SetFindingStateRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def set_finding_state(name: nil, state: nil, start_time: nil) -> ::Google::Cloud::SecurityCenter::V1::Finding
Pass arguments to set_finding_state via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • name (::String) — Required. The relative resource name of the finding. Example: "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}", "projects/{project_id}/sources/{source_id}/findings/{finding_id}".
  • state (::Google::Cloud::SecurityCenter::V1::Finding::State) — Required. The desired State of the finding.
  • start_time (::Google::Protobuf::Timestamp, ::Hash) — Required. The time at which the updated state takes effect.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#set_iam_policy

def set_iam_policy(request, options = nil) -> ::Google::Iam::V1::Policy
def set_iam_policy(resource: nil, policy: nil, update_mask: nil) -> ::Google::Iam::V1::Policy

Sets the access control policy on the specified Source.

Overloads
def set_iam_policy(request, options = nil) -> ::Google::Iam::V1::Policy
Pass arguments to set_iam_policy via a request object, either of type Iam::V1::SetIamPolicyRequest or an equivalent Hash.
Parameters
  • request (::Google::Iam::V1::SetIamPolicyRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def set_iam_policy(resource: nil, policy: nil, update_mask: nil) -> ::Google::Iam::V1::Policy
Pass arguments to set_iam_policy via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • resource (::String) — REQUIRED: The resource for which the policy is being specified. See the operation documentation for the appropriate value for this field.
  • policy (::Google::Iam::V1::Policy, ::Hash) — REQUIRED: The complete policy to be applied to the resource. The size of the policy is limited to a few 10s of KB. An empty policy is a valid policy but certain Cloud Platform services (such as Projects) might reject them.
  • update_mask (::Google::Protobuf::FieldMask, ::Hash) — OPTIONAL: A FieldMask specifying which fields of the policy to modify. Only the fields in the mask will be modified. If no mask is provided, the following default mask is used:

    paths: "bindings, etag"

Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#set_mute

def set_mute(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::Finding
def set_mute(name: nil, mute: nil) -> ::Google::Cloud::SecurityCenter::V1::Finding

Updates the mute state of a finding.

Overloads
def set_mute(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::Finding
Pass arguments to set_mute via a request object, either of type Google::Cloud::SecurityCenter::V1::SetMuteRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::SetMuteRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def set_mute(name: nil, mute: nil) -> ::Google::Cloud::SecurityCenter::V1::Finding
Pass arguments to set_mute via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • name (::String) — Required. The relative resource name of the finding. Example: "organizations/{organization_id}/sources/{source_id}/findings/{finding_id}", "folders/{folder_id}/sources/{source_id}/findings/{finding_id}", "projects/{project_id}/sources/{source_id}/findings/{finding_id}".
  • mute (::Google::Cloud::SecurityCenter::V1::Finding::Mute) — Required. The desired state of the Mute.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#test_iam_permissions

def test_iam_permissions(request, options = nil) -> ::Google::Iam::V1::TestIamPermissionsResponse
def test_iam_permissions(resource: nil, permissions: nil) -> ::Google::Iam::V1::TestIamPermissionsResponse

Returns the permissions that a caller has on the specified source.

Overloads
def test_iam_permissions(request, options = nil) -> ::Google::Iam::V1::TestIamPermissionsResponse
Pass arguments to test_iam_permissions via a request object, either of type Iam::V1::TestIamPermissionsRequest or an equivalent Hash.
Parameters
  • request (::Google::Iam::V1::TestIamPermissionsRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def test_iam_permissions(resource: nil, permissions: nil) -> ::Google::Iam::V1::TestIamPermissionsResponse
Pass arguments to test_iam_permissions via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • resource (::String) — REQUIRED: The resource for which the policy detail is being requested. See the operation documentation for the appropriate value for this field.
  • permissions (::Array<::String>) — The set of permissions to check for the resource. Permissions with wildcards (such as '' or 'storage.') are not allowed. For more information see IAM Overview.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#update_big_query_export

def update_big_query_export(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::BigQueryExport
def update_big_query_export(big_query_export: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::BigQueryExport

Updates a BigQuery export.

Overloads
def update_big_query_export(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::BigQueryExport
Pass arguments to update_big_query_export via a request object, either of type UpdateBigQueryExportRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::UpdateBigQueryExportRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def update_big_query_export(big_query_export: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::BigQueryExport
Pass arguments to update_big_query_export via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#update_external_system

def update_external_system(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::ExternalSystem
def update_external_system(external_system: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::ExternalSystem

Updates external system. This is for a given finding.

Overloads
def update_external_system(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::ExternalSystem
Pass arguments to update_external_system via a request object, either of type UpdateExternalSystemRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::UpdateExternalSystemRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def update_external_system(external_system: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::ExternalSystem
Pass arguments to update_external_system via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#update_finding

def update_finding(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::Finding
def update_finding(finding: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::Finding

Creates or updates a finding. The corresponding source must exist for a finding creation to succeed.

Overloads
def update_finding(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::Finding
Pass arguments to update_finding via a request object, either of type UpdateFindingRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::UpdateFindingRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def update_finding(finding: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::Finding
Pass arguments to update_finding via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • finding (::Google::Cloud::SecurityCenter::V1::Finding, ::Hash) — Required. The finding resource to update or create if it does not already exist. parent, security_marks, and update_time will be ignored.

    In the case of creation, the finding id portion of the name must be alphanumeric and less than or equal to 32 characters and greater than 0 characters in length.

  • update_mask (::Google::Protobuf::FieldMask, ::Hash) — The FieldMask to use when updating the finding resource. This field should not be specified when creating a finding.

    When updating a finding, an empty mask is treated as updating all mutable fields and replacing source_properties. Individual source_properties can be added/updated by using "source_properties.

Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#update_mute_config

def update_mute_config(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::MuteConfig
def update_mute_config(mute_config: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::MuteConfig

Updates a mute config.

Overloads
def update_mute_config(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::MuteConfig
Pass arguments to update_mute_config via a request object, either of type UpdateMuteConfigRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::UpdateMuteConfigRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def update_mute_config(mute_config: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::MuteConfig
Pass arguments to update_mute_config via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#update_notification_config

def update_notification_config(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::NotificationConfig
def update_notification_config(notification_config: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::NotificationConfig

Updates a notification config. The following update fields are allowed: description, pubsub_topic, streaming_config.filter

Overloads
def update_notification_config(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::NotificationConfig
Pass arguments to update_notification_config via a request object, either of type UpdateNotificationConfigRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::UpdateNotificationConfigRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def update_notification_config(notification_config: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::NotificationConfig
Pass arguments to update_notification_config via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#update_organization_settings

def update_organization_settings(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::OrganizationSettings
def update_organization_settings(organization_settings: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::OrganizationSettings

Updates an organization's settings.

Overloads
def update_organization_settings(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::OrganizationSettings
Pass arguments to update_organization_settings via a request object, either of type UpdateOrganizationSettingsRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::UpdateOrganizationSettingsRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def update_organization_settings(organization_settings: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::OrganizationSettings
Pass arguments to update_organization_settings via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#update_security_health_analytics_custom_module

def update_security_health_analytics_custom_module(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule
def update_security_health_analytics_custom_module(security_health_analytics_custom_module: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule

Updates the SecurityHealthAnalyticsCustomModule under the given name based on the given update mask. Updating the enablement state is supported on both resident and inherited modules (though resident modules cannot have an enablement state of “inherited”). Updating the display name and custom config of a module is supported on resident modules only.

Overloads
def update_security_health_analytics_custom_module(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule
Pass arguments to update_security_health_analytics_custom_module via a request object, either of type UpdateSecurityHealthAnalyticsCustomModuleRequest or an equivalent Hash.
Parameters
def update_security_health_analytics_custom_module(security_health_analytics_custom_module: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityHealthAnalyticsCustomModule
Pass arguments to update_security_health_analytics_custom_module via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#update_security_marks

def update_security_marks(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityMarks
def update_security_marks(security_marks: nil, update_mask: nil, start_time: nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityMarks

Updates security marks.

Overloads
def update_security_marks(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityMarks
Pass arguments to update_security_marks via a request object, either of type UpdateSecurityMarksRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::UpdateSecurityMarksRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def update_security_marks(security_marks: nil, update_mask: nil, start_time: nil) -> ::Google::Cloud::SecurityCenter::V1::SecurityMarks
Pass arguments to update_security_marks via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
  • security_marks (::Google::Cloud::SecurityCenter::V1::SecurityMarks, ::Hash) — Required. The security marks resource to update.
  • update_mask (::Google::Protobuf::FieldMask, ::Hash) — The FieldMask to use when updating the security marks resource.

    The field mask must not contain duplicate fields. If empty or set to "marks", all marks will be replaced. Individual marks can be updated using "marks.

  • start_time (::Google::Protobuf::Timestamp, ::Hash) — The time at which the updated SecurityMarks take effect. If not set uses current server time. Updates will be applied to the SecurityMarks that are active immediately preceding this time. Must be earlier or equal to the server time.
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.

#update_source

def update_source(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::Source
def update_source(source: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::Source

Updates a source.

Overloads
def update_source(request, options = nil) -> ::Google::Cloud::SecurityCenter::V1::Source
Pass arguments to update_source via a request object, either of type UpdateSourceRequest or an equivalent Hash.
Parameters
  • request (::Google::Cloud::SecurityCenter::V1::UpdateSourceRequest, ::Hash) — A request object representing the call parameters. Required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash.
  • options (::Gapic::CallOptions, ::Hash) — Overrides the default settings for this call, e.g, timeout, retries etc. Optional.
def update_source(source: nil, update_mask: nil) -> ::Google::Cloud::SecurityCenter::V1::Source
Pass arguments to update_source via keyword arguments. Note that at least one keyword argument is required. To specify no parameters, or to keep all the default parameter values, pass an empty Hash as a request object (see above).
Parameters
Yields
  • (result, operation) — Access the result along with the TransportOperation object
Yield Parameters
Raises
  • (::Google::Cloud::Error) — if the REST call is aborted.