Docs Home
Packages
Google Cloud Native is in preview. Google Cloud Classic is fully supported.
Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi
google-native.containeranalysis/v1beta1.Occurrence
Explore with Pulumi AI
Google Cloud Native is in preview. Google Cloud Classic is fully supported.
Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi
Creates a new occurrence. Auto-naming is currently not supported for this resource.
Create Occurrence Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Occurrence(name: string, args: OccurrenceArgs, opts?: CustomResourceOptions);@overload
def Occurrence(resource_name: str,
args: OccurrenceArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Occurrence(resource_name: str,
opts: Optional[ResourceOptions] = None,
note_name: Optional[str] = None,
resource: Optional[ResourceArgs] = None,
discovered: Optional[GrafeasV1beta1DiscoveryDetailsArgs] = None,
project: Optional[str] = None,
attestation: Optional[DetailsArgs] = None,
envelope: Optional[EnvelopeArgs] = None,
installation: Optional[GrafeasV1beta1PackageDetailsArgs] = None,
intoto: Optional[GrafeasV1beta1IntotoDetailsArgs] = None,
deployment: Optional[GrafeasV1beta1DeploymentDetailsArgs] = None,
derived_image: Optional[GrafeasV1beta1ImageDetailsArgs] = None,
remediation: Optional[str] = None,
build: Optional[GrafeasV1beta1BuildDetailsArgs] = None,
sbom: Optional[DocumentOccurrenceArgs] = None,
sbom_reference: Optional[SBOMReferenceOccurrenceArgs] = None,
spdx_file: Optional[FileOccurrenceArgs] = None,
spdx_package: Optional[PackageInfoOccurrenceArgs] = None,
spdx_relationship: Optional[RelationshipOccurrenceArgs] = None,
vulnerability: Optional[GrafeasV1beta1VulnerabilityDetailsArgs] = None)func NewOccurrence(ctx *Context, name string, args OccurrenceArgs, opts ...ResourceOption) (*Occurrence, error)public Occurrence(string name, OccurrenceArgs args, CustomResourceOptions? opts = null)
public Occurrence(String name, OccurrenceArgs args)
public Occurrence(String name, OccurrenceArgs args, CustomResourceOptions options)
type: google-native:containeranalysis/v1beta1:Occurrence
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args OccurrenceArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args OccurrenceArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args OccurrenceArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args OccurrenceArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args OccurrenceArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var exampleoccurrenceResourceResourceFromContaineranalysisv1beta1 = new GoogleNative.ContainerAnalysis.V1Beta1.Occurrence("exampleoccurrenceResourceResourceFromContaineranalysisv1beta1", new()
{
NoteName = "string",
Resource = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ResourceArgs
{
Uri = "string",
},
Discovered = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GrafeasV1beta1DiscoveryDetailsArgs
{
Discovered = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DiscoveredArgs
{
AnalysisCompleted = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.AnalysisCompletedArgs
{
AnalysisType = new[]
{
"string",
},
},
AnalysisError = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.StatusArgs
{
Code = 0,
Details = new[]
{
{
{ "string", "string" },
},
},
Message = "string",
},
},
AnalysisStatus = GoogleNative.ContainerAnalysis.V1Beta1.DiscoveredAnalysisStatus.AnalysisStatusUnspecified,
AnalysisStatusError = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.StatusArgs
{
Code = 0,
Details = new[]
{
{
{ "string", "string" },
},
},
Message = "string",
},
ContinuousAnalysis = GoogleNative.ContainerAnalysis.V1Beta1.DiscoveredContinuousAnalysis.ContinuousAnalysisUnspecified,
LastScanTime = "string",
SbomStatus = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SBOMStatusArgs
{
Error = "string",
SbomState = GoogleNative.ContainerAnalysis.V1Beta1.SBOMStatusSbomState.SbomStateUnspecified,
},
},
},
Project = "string",
Attestation = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DetailsArgs
{
Attestation = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.AttestationArgs
{
GenericSignedAttestation = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GenericSignedAttestationArgs
{
ContentType = GoogleNative.ContainerAnalysis.V1Beta1.GenericSignedAttestationContentType.ContentTypeUnspecified,
SerializedPayload = "string",
Signatures = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SignatureArgs
{
PublicKeyId = "string",
Signature = "string",
},
},
},
PgpSignedAttestation = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.PgpSignedAttestationArgs
{
Signature = "string",
ContentType = GoogleNative.ContainerAnalysis.V1Beta1.PgpSignedAttestationContentType.ContentTypeUnspecified,
PgpKeyId = "string",
},
},
},
Envelope = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.EnvelopeArgs
{
Payload = "string",
PayloadType = "string",
Signatures = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.EnvelopeSignatureArgs
{
Keyid = "string",
Sig = "string",
},
},
},
Installation = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GrafeasV1beta1PackageDetailsArgs
{
Installation = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.InstallationArgs
{
License = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.LicenseArgs
{
Comments = "string",
Expression = "string",
},
Location = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.LocationArgs
{
Path = "string",
},
},
},
},
Intoto = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GrafeasV1beta1IntotoDetailsArgs
{
Signatures = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GrafeasV1beta1IntotoSignatureArgs
{
Keyid = "string",
Sig = "string",
},
},
Signed = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.LinkArgs
{
Byproducts = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ByProductsArgs
{
CustomValues =
{
{ "string", "string" },
},
},
Command = new[]
{
"string",
},
Environment = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.EnvironmentArgs
{
CustomValues =
{
{ "string", "string" },
},
},
Materials = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GrafeasV1beta1IntotoArtifactArgs
{
Hashes = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ArtifactHashesArgs
{
Sha256 = "string",
},
ResourceUri = "string",
},
},
Products = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GrafeasV1beta1IntotoArtifactArgs
{
Hashes = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ArtifactHashesArgs
{
Sha256 = "string",
},
ResourceUri = "string",
},
},
},
},
Deployment = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GrafeasV1beta1DeploymentDetailsArgs
{
Deployment = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DeploymentArgs
{
DeployTime = "string",
Address = "string",
Config = "string",
Platform = GoogleNative.ContainerAnalysis.V1Beta1.DeploymentPlatform.PlatformUnspecified,
UndeployTime = "string",
UserEmail = "string",
},
},
DerivedImage = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GrafeasV1beta1ImageDetailsArgs
{
DerivedImage = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DerivedArgs
{
Fingerprint = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.FingerprintArgs
{
V1Name = "string",
V2Blob = new[]
{
"string",
},
},
LayerInfo = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.LayerArgs
{
Directive = GoogleNative.ContainerAnalysis.V1Beta1.LayerDirective.DirectiveUnspecified,
Arguments = "string",
},
},
},
},
Remediation = "string",
Build = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GrafeasV1beta1BuildDetailsArgs
{
Provenance = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.BuildProvenanceArgs
{
Id = "string",
EndTime = "string",
BuiltArtifacts = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ArtifactArgs
{
Checksum = "string",
Id = "string",
Names = new[]
{
"string",
},
},
},
Commands = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.CommandArgs
{
Name = "string",
Args = new[]
{
"string",
},
Dir = "string",
Env = new[]
{
"string",
},
Id = "string",
WaitFor = new[]
{
"string",
},
},
},
CreateTime = "string",
Creator = "string",
BuildOptions =
{
{ "string", "string" },
},
BuilderVersion = "string",
LogsUri = "string",
Project = "string",
SourceProvenance = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SourceArgs
{
AdditionalContexts = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SourceContextArgs
{
CloudRepo = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.CloudRepoSourceContextArgs
{
AliasContext = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.AliasContextArgs
{
Kind = GoogleNative.ContainerAnalysis.V1Beta1.AliasContextKind.KindUnspecified,
Name = "string",
},
RepoId = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RepoIdArgs
{
ProjectRepoId = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ProjectRepoIdArgs
{
Project = "string",
RepoName = "string",
},
Uid = "string",
},
RevisionId = "string",
},
Gerrit = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GerritSourceContextArgs
{
AliasContext = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.AliasContextArgs
{
Kind = GoogleNative.ContainerAnalysis.V1Beta1.AliasContextKind.KindUnspecified,
Name = "string",
},
GerritProject = "string",
HostUri = "string",
RevisionId = "string",
},
Git = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GitSourceContextArgs
{
RevisionId = "string",
Url = "string",
},
Labels =
{
{ "string", "string" },
},
},
},
ArtifactStorageSourceUri = "string",
Context = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SourceContextArgs
{
CloudRepo = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.CloudRepoSourceContextArgs
{
AliasContext = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.AliasContextArgs
{
Kind = GoogleNative.ContainerAnalysis.V1Beta1.AliasContextKind.KindUnspecified,
Name = "string",
},
RepoId = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RepoIdArgs
{
ProjectRepoId = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ProjectRepoIdArgs
{
Project = "string",
RepoName = "string",
},
Uid = "string",
},
RevisionId = "string",
},
Gerrit = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GerritSourceContextArgs
{
AliasContext = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.AliasContextArgs
{
Kind = GoogleNative.ContainerAnalysis.V1Beta1.AliasContextKind.KindUnspecified,
Name = "string",
},
GerritProject = "string",
HostUri = "string",
RevisionId = "string",
},
Git = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GitSourceContextArgs
{
RevisionId = "string",
Url = "string",
},
Labels =
{
{ "string", "string" },
},
},
FileHashes =
{
{ "string", "string" },
},
},
StartTime = "string",
TriggerId = "string",
},
InTotoSlsaProvenanceV1 = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.InTotoSlsaProvenanceV1Args
{
Predicate = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SlsaProvenanceV1Args
{
BuildDefinition = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.BuildDefinitionArgs
{
BuildType = "string",
ExternalParameters =
{
{ "string", "string" },
},
InternalParameters =
{
{ "string", "string" },
},
ResolvedDependencies = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ResourceDescriptorArgs
{
Annotations =
{
{ "string", "string" },
},
Content = "string",
Digest =
{
{ "string", "string" },
},
DownloadLocation = "string",
MediaType = "string",
Name = "string",
Uri = "string",
},
},
},
RunDetails = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RunDetailsArgs
{
Builder = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ProvenanceBuilderArgs
{
BuilderDependencies = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ResourceDescriptorArgs
{
Annotations =
{
{ "string", "string" },
},
Content = "string",
Digest =
{
{ "string", "string" },
},
DownloadLocation = "string",
MediaType = "string",
Name = "string",
Uri = "string",
},
},
Id = "string",
Version =
{
{ "string", "string" },
},
},
Byproducts = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.ResourceDescriptorArgs
{
Annotations =
{
{ "string", "string" },
},
Content = "string",
Digest =
{
{ "string", "string" },
},
DownloadLocation = "string",
MediaType = "string",
Name = "string",
Uri = "string",
},
},
Metadata = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.BuildMetadataArgs
{
FinishedOn = "string",
InvocationId = "string",
StartedOn = "string",
},
},
},
PredicateType = "string",
Subject = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SubjectArgs
{
Digest =
{
{ "string", "string" },
},
Name = "string",
},
},
Type = "string",
},
ProvenanceBytes = "string",
},
Sbom = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.DocumentOccurrenceArgs
{
CreateTime = "string",
CreatorComment = "string",
Creators = new[]
{
"string",
},
DocumentComment = "string",
ExternalDocumentRefs = new[]
{
"string",
},
Id = "string",
LicenseListVersion = "string",
Namespace = "string",
Title = "string",
},
SbomReference = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SBOMReferenceOccurrenceArgs
{
Payload = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SbomReferenceIntotoPayloadArgs
{
Predicate = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SbomReferenceIntotoPredicateArgs
{
Digest =
{
{ "string", "string" },
},
Location = "string",
MimeType = "string",
ReferrerId = "string",
},
PredicateType = "string",
Subject = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.SubjectArgs
{
Digest =
{
{ "string", "string" },
},
Name = "string",
},
},
Type = "string",
},
PayloadType = "string",
Signatures = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.EnvelopeSignatureArgs
{
Keyid = "string",
Sig = "string",
},
},
},
SpdxFile = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.FileOccurrenceArgs
{
Attributions = new[]
{
"string",
},
Comment = "string",
Contributors = new[]
{
"string",
},
Copyright = "string",
FilesLicenseInfo = new[]
{
"string",
},
Id = "string",
LicenseConcluded = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.LicenseArgs
{
Comments = "string",
Expression = "string",
},
Notice = "string",
},
SpdxPackage = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.PackageInfoOccurrenceArgs
{
Comment = "string",
Filename = "string",
Id = "string",
LicenseConcluded = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.LicenseArgs
{
Comments = "string",
Expression = "string",
},
SourceInfo = "string",
},
SpdxRelationship = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RelationshipOccurrenceArgs
{
Comment = "string",
Source = "string",
Target = "string",
},
Vulnerability = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.GrafeasV1beta1VulnerabilityDetailsArgs
{
PackageIssue = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.PackageIssueArgs
{
AffectedLocation = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VulnerabilityLocationArgs
{
CpeUri = "string",
Package = "string",
Version = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VersionArgs
{
Kind = GoogleNative.ContainerAnalysis.V1Beta1.VersionKind.VersionKindUnspecified,
Epoch = 0,
Inclusive = false,
Name = "string",
Revision = "string",
},
},
FixedLocation = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VulnerabilityLocationArgs
{
CpeUri = "string",
Package = "string",
Version = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VersionArgs
{
Kind = GoogleNative.ContainerAnalysis.V1Beta1.VersionKind.VersionKindUnspecified,
Epoch = 0,
Inclusive = false,
Name = "string",
Revision = "string",
},
},
PackageType = "string",
},
},
CvssV2 = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.CVSSArgs
{
AttackComplexity = GoogleNative.ContainerAnalysis.V1Beta1.CVSSAttackComplexity.AttackComplexityUnspecified,
AttackVector = GoogleNative.ContainerAnalysis.V1Beta1.CVSSAttackVector.AttackVectorUnspecified,
Authentication = GoogleNative.ContainerAnalysis.V1Beta1.CVSSAuthentication.AuthenticationUnspecified,
AvailabilityImpact = GoogleNative.ContainerAnalysis.V1Beta1.CVSSAvailabilityImpact.ImpactUnspecified,
BaseScore = 0,
ConfidentialityImpact = GoogleNative.ContainerAnalysis.V1Beta1.CVSSConfidentialityImpact.ImpactUnspecified,
ExploitabilityScore = 0,
ImpactScore = 0,
IntegrityImpact = GoogleNative.ContainerAnalysis.V1Beta1.CVSSIntegrityImpact.ImpactUnspecified,
PrivilegesRequired = GoogleNative.ContainerAnalysis.V1Beta1.CVSSPrivilegesRequired.PrivilegesRequiredUnspecified,
Scope = GoogleNative.ContainerAnalysis.V1Beta1.CVSSScope.ScopeUnspecified,
UserInteraction = GoogleNative.ContainerAnalysis.V1Beta1.CVSSUserInteraction.UserInteractionUnspecified,
},
CvssV3 = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.CVSSArgs
{
AttackComplexity = GoogleNative.ContainerAnalysis.V1Beta1.CVSSAttackComplexity.AttackComplexityUnspecified,
AttackVector = GoogleNative.ContainerAnalysis.V1Beta1.CVSSAttackVector.AttackVectorUnspecified,
Authentication = GoogleNative.ContainerAnalysis.V1Beta1.CVSSAuthentication.AuthenticationUnspecified,
AvailabilityImpact = GoogleNative.ContainerAnalysis.V1Beta1.CVSSAvailabilityImpact.ImpactUnspecified,
BaseScore = 0,
ConfidentialityImpact = GoogleNative.ContainerAnalysis.V1Beta1.CVSSConfidentialityImpact.ImpactUnspecified,
ExploitabilityScore = 0,
ImpactScore = 0,
IntegrityImpact = GoogleNative.ContainerAnalysis.V1Beta1.CVSSIntegrityImpact.ImpactUnspecified,
PrivilegesRequired = GoogleNative.ContainerAnalysis.V1Beta1.CVSSPrivilegesRequired.PrivilegesRequiredUnspecified,
Scope = GoogleNative.ContainerAnalysis.V1Beta1.CVSSScope.ScopeUnspecified,
UserInteraction = GoogleNative.ContainerAnalysis.V1Beta1.CVSSUserInteraction.UserInteractionUnspecified,
},
EffectiveSeverity = GoogleNative.ContainerAnalysis.V1Beta1.GrafeasV1beta1VulnerabilityDetailsEffectiveSeverity.SeverityUnspecified,
ExtraDetails = "string",
Type = "string",
VexAssessment = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.VexAssessmentArgs
{
Impacts = new[]
{
"string",
},
Justification = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.JustificationArgs
{
Details = "string",
JustificationType = GoogleNative.ContainerAnalysis.V1Beta1.JustificationJustificationType.JustificationTypeUnspecified,
},
NoteName = "string",
RelatedUris = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RelatedUrlArgs
{
Label = "string",
Url = "string",
},
},
Remediations = new[]
{
new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RemediationArgs
{
Details = "string",
RemediationType = GoogleNative.ContainerAnalysis.V1Beta1.RemediationRemediationType.RemediationTypeUnspecified,
RemediationUri = new GoogleNative.ContainerAnalysis.V1Beta1.Inputs.RelatedUrlArgs
{
Label = "string",
Url = "string",
},
},
},
State = GoogleNative.ContainerAnalysis.V1Beta1.VexAssessmentState.StateUnspecified,
VulnerabilityId = "string",
},
},
});
example, err := containeranalysisv1beta1.NewOccurrence(ctx, "exampleoccurrenceResourceResourceFromContaineranalysisv1beta1", &containeranalysisv1beta1.OccurrenceArgs{
NoteName: pulumi.String("string"),
Resource: &containeranalysis.ResourceArgs{
Uri: pulumi.String("string"),
},
Discovered: &containeranalysis.GrafeasV1beta1DiscoveryDetailsArgs{
Discovered: &containeranalysis.DiscoveredArgs{
AnalysisCompleted: &containeranalysis.AnalysisCompletedArgs{
AnalysisType: pulumi.StringArray{
pulumi.String("string"),
},
},
AnalysisError: containeranalysis.StatusArray{
&containeranalysis.StatusArgs{
Code: pulumi.Int(0),
Details: pulumi.StringMapArray{
pulumi.StringMap{
"string": pulumi.String("string"),
},
},
Message: pulumi.String("string"),
},
},
AnalysisStatus: containeranalysisv1beta1.DiscoveredAnalysisStatusAnalysisStatusUnspecified,
AnalysisStatusError: &containeranalysis.StatusArgs{
Code: pulumi.Int(0),
Details: pulumi.StringMapArray{
pulumi.StringMap{
"string": pulumi.String("string"),
},
},
Message: pulumi.String("string"),
},
ContinuousAnalysis: containeranalysisv1beta1.DiscoveredContinuousAnalysisContinuousAnalysisUnspecified,
LastScanTime: pulumi.String("string"),
SbomStatus: &containeranalysis.SBOMStatusArgs{
Error: pulumi.String("string"),
SbomState: containeranalysisv1beta1.SBOMStatusSbomStateSbomStateUnspecified,
},
},
},
Project: pulumi.String("string"),
Attestation: &containeranalysis.DetailsArgs{
Attestation: &containeranalysis.AttestationArgs{
GenericSignedAttestation: &containeranalysis.GenericSignedAttestationArgs{
ContentType: containeranalysisv1beta1.GenericSignedAttestationContentTypeContentTypeUnspecified,
SerializedPayload: pulumi.String("string"),
Signatures: containeranalysis.SignatureArray{
&containeranalysis.SignatureArgs{
PublicKeyId: pulumi.String("string"),
Signature: pulumi.String("string"),
},
},
},
PgpSignedAttestation: &containeranalysis.PgpSignedAttestationArgs{
Signature: pulumi.String("string"),
ContentType: containeranalysisv1beta1.PgpSignedAttestationContentTypeContentTypeUnspecified,
PgpKeyId: pulumi.String("string"),
},
},
},
Envelope: &containeranalysis.EnvelopeArgs{
Payload: pulumi.String("string"),
PayloadType: pulumi.String("string"),
Signatures: containeranalysis.EnvelopeSignatureArray{
&containeranalysis.EnvelopeSignatureArgs{
Keyid: pulumi.String("string"),
Sig: pulumi.String("string"),
},
},
},
Installation: &containeranalysis.GrafeasV1beta1PackageDetailsArgs{
Installation: &containeranalysis.InstallationArgs{
License: &containeranalysis.LicenseArgs{
Comments: pulumi.String("string"),
Expression: pulumi.String("string"),
},
Location: containeranalysis.LocationArray{
&containeranalysis.LocationArgs{
Path: pulumi.String("string"),
},
},
},
},
Intoto: &containeranalysis.GrafeasV1beta1IntotoDetailsArgs{
Signatures: containeranalysis.GrafeasV1beta1IntotoSignatureArray{
&containeranalysis.GrafeasV1beta1IntotoSignatureArgs{
Keyid: pulumi.String("string"),
Sig: pulumi.String("string"),
},
},
Signed: &containeranalysis.LinkArgs{
Byproducts: &containeranalysis.ByProductsArgs{
CustomValues: pulumi.StringMap{
"string": pulumi.String("string"),
},
},
Command: pulumi.StringArray{
pulumi.String("string"),
},
Environment: &containeranalysis.EnvironmentArgs{
CustomValues: pulumi.StringMap{
"string": pulumi.String("string"),
},
},
Materials: containeranalysis.GrafeasV1beta1IntotoArtifactArray{
&containeranalysis.GrafeasV1beta1IntotoArtifactArgs{
Hashes: &containeranalysis.ArtifactHashesArgs{
Sha256: pulumi.String("string"),
},
ResourceUri: pulumi.String("string"),
},
},
Products: containeranalysis.GrafeasV1beta1IntotoArtifactArray{
&containeranalysis.GrafeasV1beta1IntotoArtifactArgs{
Hashes: &containeranalysis.ArtifactHashesArgs{
Sha256: pulumi.String("string"),
},
ResourceUri: pulumi.String("string"),
},
},
},
},
Deployment: &containeranalysis.GrafeasV1beta1DeploymentDetailsArgs{
Deployment: &containeranalysis.DeploymentArgs{
DeployTime: pulumi.String("string"),
Address: pulumi.String("string"),
Config: pulumi.String("string"),
Platform: containeranalysisv1beta1.DeploymentPlatformPlatformUnspecified,
UndeployTime: pulumi.String("string"),
UserEmail: pulumi.String("string"),
},
},
DerivedImage: &containeranalysis.GrafeasV1beta1ImageDetailsArgs{
DerivedImage: &containeranalysis.DerivedArgs{
Fingerprint: &containeranalysis.FingerprintArgs{
V1Name: pulumi.String("string"),
V2Blob: pulumi.StringArray{
pulumi.String("string"),
},
},
LayerInfo: containeranalysis.LayerArray{
&containeranalysis.LayerArgs{
Directive: containeranalysisv1beta1.LayerDirectiveDirectiveUnspecified,
Arguments: pulumi.String("string"),
},
},
},
},
Remediation: pulumi.String("string"),
Build: &containeranalysis.GrafeasV1beta1BuildDetailsArgs{
Provenance: &containeranalysis.BuildProvenanceArgs{
Id: pulumi.String("string"),
EndTime: pulumi.String("string"),
BuiltArtifacts: containeranalysis.ArtifactArray{
&containeranalysis.ArtifactArgs{
Checksum: pulumi.String("string"),
Id: pulumi.String("string"),
Names: pulumi.StringArray{
pulumi.String("string"),
},
},
},
Commands: containeranalysis.CommandArray{
&containeranalysis.CommandArgs{
Name: pulumi.String("string"),
Args: pulumi.StringArray{
pulumi.String("string"),
},
Dir: pulumi.String("string"),
Env: pulumi.StringArray{
pulumi.String("string"),
},
Id: pulumi.String("string"),
WaitFor: pulumi.StringArray{
pulumi.String("string"),
},
},
},
CreateTime: pulumi.String("string"),
Creator: pulumi.String("string"),
BuildOptions: pulumi.StringMap{
"string": pulumi.String("string"),
},
BuilderVersion: pulumi.String("string"),
LogsUri: pulumi.String("string"),
Project: pulumi.String("string"),
SourceProvenance: &containeranalysis.SourceArgs{
AdditionalContexts: containeranalysis.SourceContextArray{
&containeranalysis.SourceContextArgs{
CloudRepo: &containeranalysis.CloudRepoSourceContextArgs{
AliasContext: &containeranalysis.AliasContextArgs{
Kind: containeranalysisv1beta1.AliasContextKindKindUnspecified,
Name: pulumi.String("string"),
},
RepoId: &containeranalysis.RepoIdArgs{
ProjectRepoId: &containeranalysis.ProjectRepoIdArgs{
Project: pulumi.String("string"),
RepoName: pulumi.String("string"),
},
Uid: pulumi.String("string"),
},
RevisionId: pulumi.String("string"),
},
Gerrit: &containeranalysis.GerritSourceContextArgs{
AliasContext: &containeranalysis.AliasContextArgs{
Kind: containeranalysisv1beta1.AliasContextKindKindUnspecified,
Name: pulumi.String("string"),
},
GerritProject: pulumi.String("string"),
HostUri: pulumi.String("string"),
RevisionId: pulumi.String("string"),
},
Git: &containeranalysis.GitSourceContextArgs{
RevisionId: pulumi.String("string"),
Url: pulumi.String("string"),
},
Labels: pulumi.StringMap{
"string": pulumi.String("string"),
},
},
},
ArtifactStorageSourceUri: pulumi.String("string"),
Context: &containeranalysis.SourceContextArgs{
CloudRepo: &containeranalysis.CloudRepoSourceContextArgs{
AliasContext: &containeranalysis.AliasContextArgs{
Kind: containeranalysisv1beta1.AliasContextKindKindUnspecified,
Name: pulumi.String("string"),
},
RepoId: &containeranalysis.RepoIdArgs{
ProjectRepoId: &containeranalysis.ProjectRepoIdArgs{
Project: pulumi.String("string"),
RepoName: pulumi.String("string"),
},
Uid: pulumi.String("string"),
},
RevisionId: pulumi.String("string"),
},
Gerrit: &containeranalysis.GerritSourceContextArgs{
AliasContext: &containeranalysis.AliasContextArgs{
Kind: containeranalysisv1beta1.AliasContextKindKindUnspecified,
Name: pulumi.String("string"),
},
GerritProject: pulumi.String("string"),
HostUri: pulumi.String("string"),
RevisionId: pulumi.String("string"),
},
Git: &containeranalysis.GitSourceContextArgs{
RevisionId: pulumi.String("string"),
Url: pulumi.String("string"),
},
Labels: pulumi.StringMap{
"string": pulumi.String("string"),
},
},
FileHashes: pulumi.StringMap{
"string": pulumi.String("string"),
},
},
StartTime: pulumi.String("string"),
TriggerId: pulumi.String("string"),
},
InTotoSlsaProvenanceV1: &containeranalysis.InTotoSlsaProvenanceV1Args{
Predicate: &containeranalysis.SlsaProvenanceV1Args{
BuildDefinition: &containeranalysis.BuildDefinitionArgs{
BuildType: pulumi.String("string"),
ExternalParameters: pulumi.StringMap{
"string": pulumi.String("string"),
},
InternalParameters: pulumi.StringMap{
"string": pulumi.String("string"),
},
ResolvedDependencies: containeranalysis.ResourceDescriptorArray{
&containeranalysis.ResourceDescriptorArgs{
Annotations: pulumi.StringMap{
"string": pulumi.String("string"),
},
Content: pulumi.String("string"),
Digest: pulumi.StringMap{
"string": pulumi.String("string"),
},
DownloadLocation: pulumi.String("string"),
MediaType: pulumi.String("string"),
Name: pulumi.String("string"),
Uri: pulumi.String("string"),
},
},
},
RunDetails: &containeranalysis.RunDetailsArgs{
Builder: &containeranalysis.ProvenanceBuilderArgs{
BuilderDependencies: containeranalysis.ResourceDescriptorArray{
&containeranalysis.ResourceDescriptorArgs{
Annotations: pulumi.StringMap{
"string": pulumi.String("string"),
},
Content: pulumi.String("string"),
Digest: pulumi.StringMap{
"string": pulumi.String("string"),
},
DownloadLocation: pulumi.String("string"),
MediaType: pulumi.String("string"),
Name: pulumi.String("string"),
Uri: pulumi.String("string"),
},
},
Id: pulumi.String("string"),
Version: pulumi.StringMap{
"string": pulumi.String("string"),
},
},
Byproducts: containeranalysis.ResourceDescriptorArray{
&containeranalysis.ResourceDescriptorArgs{
Annotations: pulumi.StringMap{
"string": pulumi.String("string"),
},
Content: pulumi.String("string"),
Digest: pulumi.StringMap{
"string": pulumi.String("string"),
},
DownloadLocation: pulumi.String("string"),
MediaType: pulumi.String("string"),
Name: pulumi.String("string"),
Uri: pulumi.String("string"),
},
},
Metadata: &containeranalysis.BuildMetadataArgs{
FinishedOn: pulumi.String("string"),
InvocationId: pulumi.String("string"),
StartedOn: pulumi.String("string"),
},
},
},
PredicateType: pulumi.String("string"),
Subject: containeranalysis.SubjectArray{
&containeranalysis.SubjectArgs{
Digest: pulumi.StringMap{
"string": pulumi.String("string"),
},
Name: pulumi.String("string"),
},
},
Type: pulumi.String("string"),
},
ProvenanceBytes: pulumi.String("string"),
},
Sbom: &containeranalysis.DocumentOccurrenceArgs{
CreateTime: pulumi.String("string"),
CreatorComment: pulumi.String("string"),
Creators: pulumi.StringArray{
pulumi.String("string"),
},
DocumentComment: pulumi.String("string"),
ExternalDocumentRefs: pulumi.StringArray{
pulumi.String("string"),
},
Id: pulumi.String("string"),
LicenseListVersion: pulumi.String("string"),
Namespace: pulumi.String("string"),
Title: pulumi.String("string"),
},
SbomReference: &containeranalysis.SBOMReferenceOccurrenceArgs{
Payload: &containeranalysis.SbomReferenceIntotoPayloadArgs{
Predicate: &containeranalysis.SbomReferenceIntotoPredicateArgs{
Digest: pulumi.StringMap{
"string": pulumi.String("string"),
},
Location: pulumi.String("string"),
MimeType: pulumi.String("string"),
ReferrerId: pulumi.String("string"),
},
PredicateType: pulumi.String("string"),
Subject: containeranalysis.SubjectArray{
&containeranalysis.SubjectArgs{
Digest: pulumi.StringMap{
"string": pulumi.String("string"),
},
Name: pulumi.String("string"),
},
},
Type: pulumi.String("string"),
},
PayloadType: pulumi.String("string"),
Signatures: containeranalysis.EnvelopeSignatureArray{
&containeranalysis.EnvelopeSignatureArgs{
Keyid: pulumi.String("string"),
Sig: pulumi.String("string"),
},
},
},
SpdxFile: &containeranalysis.FileOccurrenceArgs{
Attributions: pulumi.StringArray{
pulumi.String("string"),
},
Comment: pulumi.String("string"),
Contributors: pulumi.StringArray{
pulumi.String("string"),
},
Copyright: pulumi.String("string"),
FilesLicenseInfo: pulumi.StringArray{
pulumi.String("string"),
},
Id: pulumi.String("string"),
LicenseConcluded: &containeranalysis.LicenseArgs{
Comments: pulumi.String("string"),
Expression: pulumi.String("string"),
},
Notice: pulumi.String("string"),
},
SpdxPackage: &containeranalysis.PackageInfoOccurrenceArgs{
Comment: pulumi.String("string"),
Filename: pulumi.String("string"),
Id: pulumi.String("string"),
LicenseConcluded: &containeranalysis.LicenseArgs{
Comments: pulumi.String("string"),
Expression: pulumi.String("string"),
},
SourceInfo: pulumi.String("string"),
},
SpdxRelationship: &containeranalysis.RelationshipOccurrenceArgs{
Comment: pulumi.String("string"),
Source: pulumi.String("string"),
Target: pulumi.String("string"),
},
Vulnerability: &containeranalysis.GrafeasV1beta1VulnerabilityDetailsArgs{
PackageIssue: containeranalysis.PackageIssueArray{
&containeranalysis.PackageIssueArgs{
AffectedLocation: &containeranalysis.VulnerabilityLocationArgs{
CpeUri: pulumi.String("string"),
Package: pulumi.String("string"),
Version: &containeranalysis.VersionArgs{
Kind: containeranalysisv1beta1.VersionKindVersionKindUnspecified,
Epoch: pulumi.Int(0),
Inclusive: pulumi.Bool(false),
Name: pulumi.String("string"),
Revision: pulumi.String("string"),
},
},
FixedLocation: &containeranalysis.VulnerabilityLocationArgs{
CpeUri: pulumi.String("string"),
Package: pulumi.String("string"),
Version: &containeranalysis.VersionArgs{
Kind: containeranalysisv1beta1.VersionKindVersionKindUnspecified,
Epoch: pulumi.Int(0),
Inclusive: pulumi.Bool(false),
Name: pulumi.String("string"),
Revision: pulumi.String("string"),
},
},
PackageType: pulumi.String("string"),
},
},
CvssV2: &containeranalysis.CVSSArgs{
AttackComplexity: containeranalysisv1beta1.CVSSAttackComplexityAttackComplexityUnspecified,
AttackVector: containeranalysisv1beta1.CVSSAttackVectorAttackVectorUnspecified,
Authentication: containeranalysisv1beta1.CVSSAuthenticationAuthenticationUnspecified,
AvailabilityImpact: containeranalysisv1beta1.CVSSAvailabilityImpactImpactUnspecified,
BaseScore: pulumi.Float64(0),
ConfidentialityImpact: containeranalysisv1beta1.CVSSConfidentialityImpactImpactUnspecified,
ExploitabilityScore: pulumi.Float64(0),
ImpactScore: pulumi.Float64(0),
IntegrityImpact: containeranalysisv1beta1.CVSSIntegrityImpactImpactUnspecified,
PrivilegesRequired: containeranalysisv1beta1.CVSSPrivilegesRequiredPrivilegesRequiredUnspecified,
Scope: containeranalysisv1beta1.CVSSScopeScopeUnspecified,
UserInteraction: containeranalysisv1beta1.CVSSUserInteractionUserInteractionUnspecified,
},
CvssV3: &containeranalysis.CVSSArgs{
AttackComplexity: containeranalysisv1beta1.CVSSAttackComplexityAttackComplexityUnspecified,
AttackVector: containeranalysisv1beta1.CVSSAttackVectorAttackVectorUnspecified,
Authentication: containeranalysisv1beta1.CVSSAuthenticationAuthenticationUnspecified,
AvailabilityImpact: containeranalysisv1beta1.CVSSAvailabilityImpactImpactUnspecified,
BaseScore: pulumi.Float64(0),
ConfidentialityImpact: containeranalysisv1beta1.CVSSConfidentialityImpactImpactUnspecified,
ExploitabilityScore: pulumi.Float64(0),
ImpactScore: pulumi.Float64(0),
IntegrityImpact: containeranalysisv1beta1.CVSSIntegrityImpactImpactUnspecified,
PrivilegesRequired: containeranalysisv1beta1.CVSSPrivilegesRequiredPrivilegesRequiredUnspecified,
Scope: containeranalysisv1beta1.CVSSScopeScopeUnspecified,
UserInteraction: containeranalysisv1beta1.CVSSUserInteractionUserInteractionUnspecified,
},
EffectiveSeverity: containeranalysisv1beta1.GrafeasV1beta1VulnerabilityDetailsEffectiveSeveritySeverityUnspecified,
ExtraDetails: pulumi.String("string"),
Type: pulumi.String("string"),
VexAssessment: &containeranalysis.VexAssessmentArgs{
Impacts: pulumi.StringArray{
pulumi.String("string"),
},
Justification: &containeranalysis.JustificationArgs{
Details: pulumi.String("string"),
JustificationType: containeranalysisv1beta1.JustificationJustificationTypeJustificationTypeUnspecified,
},
NoteName: pulumi.String("string"),
RelatedUris: containeranalysis.RelatedUrlArray{
&containeranalysis.RelatedUrlArgs{
Label: pulumi.String("string"),
Url: pulumi.String("string"),
},
},
Remediations: containeranalysis.RemediationArray{
&containeranalysis.RemediationArgs{
Details: pulumi.String("string"),
RemediationType: containeranalysisv1beta1.RemediationRemediationTypeRemediationTypeUnspecified,
RemediationUri: &containeranalysis.RelatedUrlArgs{
Label: pulumi.String("string"),
Url: pulumi.String("string"),
},
},
},
State: containeranalysisv1beta1.VexAssessmentStateStateUnspecified,
VulnerabilityId: pulumi.String("string"),
},
},
})
var exampleoccurrenceResourceResourceFromContaineranalysisv1beta1 = new Occurrence("exampleoccurrenceResourceResourceFromContaineranalysisv1beta1", OccurrenceArgs.builder()
.noteName("string")
.resource(ResourceArgs.builder()
.uri("string")
.build())
.discovered(GrafeasV1beta1DiscoveryDetailsArgs.builder()
.discovered(DiscoveredArgs.builder()
.analysisCompleted(AnalysisCompletedArgs.builder()
.analysisType("string")
.build())
.analysisError(StatusArgs.builder()
.code(0)
.details(Map.of("string", "string"))
.message("string")
.build())
.analysisStatus("ANALYSIS_STATUS_UNSPECIFIED")
.analysisStatusError(StatusArgs.builder()
.code(0)
.details(Map.of("string", "string"))
.message("string")
.build())
.continuousAnalysis("CONTINUOUS_ANALYSIS_UNSPECIFIED")
.lastScanTime("string")
.sbomStatus(SBOMStatusArgs.builder()
.error("string")
.sbomState("SBOM_STATE_UNSPECIFIED")
.build())
.build())
.build())
.project("string")
.attestation(DetailsArgs.builder()
.attestation(AttestationArgs.builder()
.genericSignedAttestation(GenericSignedAttestationArgs.builder()
.contentType("CONTENT_TYPE_UNSPECIFIED")
.serializedPayload("string")
.signatures(SignatureArgs.builder()
.publicKeyId("string")
.signature("string")
.build())
.build())
.pgpSignedAttestation(PgpSignedAttestationArgs.builder()
.signature("string")
.contentType("CONTENT_TYPE_UNSPECIFIED")
.pgpKeyId("string")
.build())
.build())
.build())
.envelope(EnvelopeArgs.builder()
.payload("string")
.payloadType("string")
.signatures(EnvelopeSignatureArgs.builder()
.keyid("string")
.sig("string")
.build())
.build())
.installation(GrafeasV1beta1PackageDetailsArgs.builder()
.installation(InstallationArgs.builder()
.license(LicenseArgs.builder()
.comments("string")
.expression("string")
.build())
.location(LocationArgs.builder()
.path("string")
.build())
.build())
.build())
.intoto(GrafeasV1beta1IntotoDetailsArgs.builder()
.signatures(GrafeasV1beta1IntotoSignatureArgs.builder()
.keyid("string")
.sig("string")
.build())
.signed(LinkArgs.builder()
.byproducts(ByProductsArgs.builder()
.customValues(Map.of("string", "string"))
.build())
.command("string")
.environment(EnvironmentArgs.builder()
.customValues(Map.of("string", "string"))
.build())
.materials(GrafeasV1beta1IntotoArtifactArgs.builder()
.hashes(ArtifactHashesArgs.builder()
.sha256("string")
.build())
.resourceUri("string")
.build())
.products(GrafeasV1beta1IntotoArtifactArgs.builder()
.hashes(ArtifactHashesArgs.builder()
.sha256("string")
.build())
.resourceUri("string")
.build())
.build())
.build())
.deployment(GrafeasV1beta1DeploymentDetailsArgs.builder()
.deployment(DeploymentArgs.builder()
.deployTime("string")
.address("string")
.config("string")
.platform("PLATFORM_UNSPECIFIED")
.undeployTime("string")
.userEmail("string")
.build())
.build())
.derivedImage(GrafeasV1beta1ImageDetailsArgs.builder()
.derivedImage(DerivedArgs.builder()
.fingerprint(FingerprintArgs.builder()
.v1Name("string")
.v2Blob("string")
.build())
.layerInfo(LayerArgs.builder()
.directive("DIRECTIVE_UNSPECIFIED")
.arguments("string")
.build())
.build())
.build())
.remediation("string")
.build(GrafeasV1beta1BuildDetailsArgs.builder()
.provenance(BuildProvenanceArgs.builder()
.id("string")
.endTime("string")
.builtArtifacts(ArtifactArgs.builder()
.checksum("string")
.id("string")
.names("string")
.build())
.commands(CommandArgs.builder()
.name("string")
.args("string")
.dir("string")
.env("string")
.id("string")
.waitFor("string")
.build())
.createTime("string")
.creator("string")
.buildOptions(Map.of("string", "string"))
.builderVersion("string")
.logsUri("string")
.project("string")
.sourceProvenance(SourceArgs.builder()
.additionalContexts(SourceContextArgs.builder()
.cloudRepo(CloudRepoSourceContextArgs.builder()
.aliasContext(AliasContextArgs.builder()
.kind("KIND_UNSPECIFIED")
.name("string")
.build())
.repoId(RepoIdArgs.builder()
.projectRepoId(ProjectRepoIdArgs.builder()
.project("string")
.repoName("string")
.build())
.uid("string")
.build())
.revisionId("string")
.build())
.gerrit(GerritSourceContextArgs.builder()
.aliasContext(AliasContextArgs.builder()
.kind("KIND_UNSPECIFIED")
.name("string")
.build())
.gerritProject("string")
.hostUri("string")
.revisionId("string")
.build())
.git(GitSourceContextArgs.builder()
.revisionId("string")
.url("string")
.build())
.labels(Map.of("string", "string"))
.build())
.artifactStorageSourceUri("string")
.context(SourceContextArgs.builder()
.cloudRepo(CloudRepoSourceContextArgs.builder()
.aliasContext(AliasContextArgs.builder()
.kind("KIND_UNSPECIFIED")
.name("string")
.build())
.repoId(RepoIdArgs.builder()
.projectRepoId(ProjectRepoIdArgs.builder()
.project("string")
.repoName("string")
.build())
.uid("string")
.build())
.revisionId("string")
.build())
.gerrit(GerritSourceContextArgs.builder()
.aliasContext(AliasContextArgs.builder()
.kind("KIND_UNSPECIFIED")
.name("string")
.build())
.gerritProject("string")
.hostUri("string")
.revisionId("string")
.build())
.git(GitSourceContextArgs.builder()
.revisionId("string")
.url("string")
.build())
.labels(Map.of("string", "string"))
.build())
.fileHashes(Map.of("string", "string"))
.build())
.startTime("string")
.triggerId("string")
.build())
.inTotoSlsaProvenanceV1(InTotoSlsaProvenanceV1Args.builder()
.predicate(SlsaProvenanceV1Args.builder()
.buildDefinition(BuildDefinitionArgs.builder()
.buildType("string")
.externalParameters(Map.of("string", "string"))
.internalParameters(Map.of("string", "string"))
.resolvedDependencies(ResourceDescriptorArgs.builder()
.annotations(Map.of("string", "string"))
.content("string")
.digest(Map.of("string", "string"))
.downloadLocation("string")
.mediaType("string")
.name("string")
.uri("string")
.build())
.build())
.runDetails(RunDetailsArgs.builder()
.builder(ProvenanceBuilderArgs.builder()
.builderDependencies(ResourceDescriptorArgs.builder()
.annotations(Map.of("string", "string"))
.content("string")
.digest(Map.of("string", "string"))
.downloadLocation("string")
.mediaType("string")
.name("string")
.uri("string")
.build())
.id("string")
.version(Map.of("string", "string"))
.build())
.byproducts(ResourceDescriptorArgs.builder()
.annotations(Map.of("string", "string"))
.content("string")
.digest(Map.of("string", "string"))
.downloadLocation("string")
.mediaType("string")
.name("string")
.uri("string")
.build())
.metadata(BuildMetadataArgs.builder()
.finishedOn("string")
.invocationId("string")
.startedOn("string")
.build())
.build())
.build())
.predicateType("string")
.subject(SubjectArgs.builder()
.digest(Map.of("string", "string"))
.name("string")
.build())
.type("string")
.build())
.provenanceBytes("string")
.build())
.sbom(DocumentOccurrenceArgs.builder()
.createTime("string")
.creatorComment("string")
.creators("string")
.documentComment("string")
.externalDocumentRefs("string")
.id("string")
.licenseListVersion("string")
.namespace("string")
.title("string")
.build())
.sbomReference(SBOMReferenceOccurrenceArgs.builder()
.payload(SbomReferenceIntotoPayloadArgs.builder()
.predicate(SbomReferenceIntotoPredicateArgs.builder()
.digest(Map.of("string", "string"))
.location("string")
.mimeType("string")
.referrerId("string")
.build())
.predicateType("string")
.subject(SubjectArgs.builder()
.digest(Map.of("string", "string"))
.name("string")
.build())
.type("string")
.build())
.payloadType("string")
.signatures(EnvelopeSignatureArgs.builder()
.keyid("string")
.sig("string")
.build())
.build())
.spdxFile(FileOccurrenceArgs.builder()
.attributions("string")
.comment("string")
.contributors("string")
.copyright("string")
.filesLicenseInfo("string")
.id("string")
.licenseConcluded(LicenseArgs.builder()
.comments("string")
.expression("string")
.build())
.notice("string")
.build())
.spdxPackage(PackageInfoOccurrenceArgs.builder()
.comment("string")
.filename("string")
.id("string")
.licenseConcluded(LicenseArgs.builder()
.comments("string")
.expression("string")
.build())
.sourceInfo("string")
.build())
.spdxRelationship(RelationshipOccurrenceArgs.builder()
.comment("string")
.source("string")
.target("string")
.build())
.vulnerability(GrafeasV1beta1VulnerabilityDetailsArgs.builder()
.packageIssue(PackageIssueArgs.builder()
.affectedLocation(VulnerabilityLocationArgs.builder()
.cpeUri("string")
.package_("string")
.version(VersionArgs.builder()
.kind("VERSION_KIND_UNSPECIFIED")
.epoch(0)
.inclusive(false)
.name("string")
.revision("string")
.build())
.build())
.fixedLocation(VulnerabilityLocationArgs.builder()
.cpeUri("string")
.package_("string")
.version(VersionArgs.builder()
.kind("VERSION_KIND_UNSPECIFIED")
.epoch(0)
.inclusive(false)
.name("string")
.revision("string")
.build())
.build())
.packageType("string")
.build())
.cvssV2(CVSSArgs.builder()
.attackComplexity("ATTACK_COMPLEXITY_UNSPECIFIED")
.attackVector("ATTACK_VECTOR_UNSPECIFIED")
.authentication("AUTHENTICATION_UNSPECIFIED")
.availabilityImpact("IMPACT_UNSPECIFIED")
.baseScore(0)
.confidentialityImpact("IMPACT_UNSPECIFIED")
.exploitabilityScore(0)
.impactScore(0)
.integrityImpact("IMPACT_UNSPECIFIED")
.privilegesRequired("PRIVILEGES_REQUIRED_UNSPECIFIED")
.scope("SCOPE_UNSPECIFIED")
.userInteraction("USER_INTERACTION_UNSPECIFIED")
.build())
.cvssV3(CVSSArgs.builder()
.attackComplexity("ATTACK_COMPLEXITY_UNSPECIFIED")
.attackVector("ATTACK_VECTOR_UNSPECIFIED")
.authentication("AUTHENTICATION_UNSPECIFIED")
.availabilityImpact("IMPACT_UNSPECIFIED")
.baseScore(0)
.confidentialityImpact("IMPACT_UNSPECIFIED")
.exploitabilityScore(0)
.impactScore(0)
.integrityImpact("IMPACT_UNSPECIFIED")
.privilegesRequired("PRIVILEGES_REQUIRED_UNSPECIFIED")
.scope("SCOPE_UNSPECIFIED")
.userInteraction("USER_INTERACTION_UNSPECIFIED")
.build())
.effectiveSeverity("SEVERITY_UNSPECIFIED")
.extraDetails("string")
.type("string")
.vexAssessment(VexAssessmentArgs.builder()
.impacts("string")
.justification(JustificationArgs.builder()
.details("string")
.justificationType("JUSTIFICATION_TYPE_UNSPECIFIED")
.build())
.noteName("string")
.relatedUris(RelatedUrlArgs.builder()
.label("string")
.url("string")
.build())
.remediations(RemediationArgs.builder()
.details("string")
.remediationType("REMEDIATION_TYPE_UNSPECIFIED")
.remediationUri(RelatedUrlArgs.builder()
.label("string")
.url("string")
.build())
.build())
.state("STATE_UNSPECIFIED")
.vulnerabilityId("string")
.build())
.build())
.build());
exampleoccurrence_resource_resource_from_containeranalysisv1beta1 = google_native.containeranalysis.v1beta1.Occurrence("exampleoccurrenceResourceResourceFromContaineranalysisv1beta1",
note_name="string",
resource=google_native.containeranalysis.v1beta1.ResourceArgs(
uri="string",
),
discovered=google_native.containeranalysis.v1beta1.GrafeasV1beta1DiscoveryDetailsArgs(
discovered=google_native.containeranalysis.v1beta1.DiscoveredArgs(
analysis_completed=google_native.containeranalysis.v1beta1.AnalysisCompletedArgs(
analysis_type=["string"],
),
analysis_error=[google_native.containeranalysis.v1beta1.StatusArgs(
code=0,
details=[{
"string": "string",
}],
message="string",
)],
analysis_status=google_native.containeranalysis.v1beta1.DiscoveredAnalysisStatus.ANALYSIS_STATUS_UNSPECIFIED,
analysis_status_error=google_native.containeranalysis.v1beta1.StatusArgs(
code=0,
details=[{
"string": "string",
}],
message="string",
),
continuous_analysis=google_native.containeranalysis.v1beta1.DiscoveredContinuousAnalysis.CONTINUOUS_ANALYSIS_UNSPECIFIED,
last_scan_time="string",
sbom_status=google_native.containeranalysis.v1beta1.SBOMStatusArgs(
error="string",
sbom_state=google_native.containeranalysis.v1beta1.SBOMStatusSbomState.SBOM_STATE_UNSPECIFIED,
),
),
),
project="string",
attestation=google_native.containeranalysis.v1beta1.DetailsArgs(
attestation=google_native.containeranalysis.v1beta1.AttestationArgs(
generic_signed_attestation=google_native.containeranalysis.v1beta1.GenericSignedAttestationArgs(
content_type=google_native.containeranalysis.v1beta1.GenericSignedAttestationContentType.CONTENT_TYPE_UNSPECIFIED,
serialized_payload="string",
signatures=[google_native.containeranalysis.v1beta1.SignatureArgs(
public_key_id="string",
signature="string",
)],
),
pgp_signed_attestation=google_native.containeranalysis.v1beta1.PgpSignedAttestationArgs(
signature="string",
content_type=google_native.containeranalysis.v1beta1.PgpSignedAttestationContentType.CONTENT_TYPE_UNSPECIFIED,
pgp_key_id="string",
),
),
),
envelope=google_native.containeranalysis.v1beta1.EnvelopeArgs(
payload="string",
payload_type="string",
signatures=[google_native.containeranalysis.v1beta1.EnvelopeSignatureArgs(
keyid="string",
sig="string",
)],
),
installation=google_native.containeranalysis.v1beta1.GrafeasV1beta1PackageDetailsArgs(
installation=google_native.containeranalysis.v1beta1.InstallationArgs(
license=google_native.containeranalysis.v1beta1.LicenseArgs(
comments="string",
expression="string",
),
location=[google_native.containeranalysis.v1beta1.LocationArgs(
path="string",
)],
),
),
intoto=google_native.containeranalysis.v1beta1.GrafeasV1beta1IntotoDetailsArgs(
signatures=[google_native.containeranalysis.v1beta1.GrafeasV1beta1IntotoSignatureArgs(
keyid="string",
sig="string",
)],
signed=google_native.containeranalysis.v1beta1.LinkArgs(
byproducts=google_native.containeranalysis.v1beta1.ByProductsArgs(
custom_values={
"string": "string",
},
),
command=["string"],
environment=google_native.containeranalysis.v1beta1.EnvironmentArgs(
custom_values={
"string": "string",
},
),
materials=[google_native.containeranalysis.v1beta1.GrafeasV1beta1IntotoArtifactArgs(
hashes=google_native.containeranalysis.v1beta1.ArtifactHashesArgs(
sha256="string",
),
resource_uri="string",
)],
products=[google_native.containeranalysis.v1beta1.GrafeasV1beta1IntotoArtifactArgs(
hashes=google_native.containeranalysis.v1beta1.ArtifactHashesArgs(
sha256="string",
),
resource_uri="string",
)],
),
),
deployment=google_native.containeranalysis.v1beta1.GrafeasV1beta1DeploymentDetailsArgs(
deployment=google_native.containeranalysis.v1beta1.DeploymentArgs(
deploy_time="string",
address="string",
config="string",
platform=google_native.containeranalysis.v1beta1.DeploymentPlatform.PLATFORM_UNSPECIFIED,
undeploy_time="string",
user_email="string",
),
),
derived_image=google_native.containeranalysis.v1beta1.GrafeasV1beta1ImageDetailsArgs(
derived_image=google_native.containeranalysis.v1beta1.DerivedArgs(
fingerprint=google_native.containeranalysis.v1beta1.FingerprintArgs(
v1_name="string",
v2_blob=["string"],
),
layer_info=[google_native.containeranalysis.v1beta1.LayerArgs(
directive=google_native.containeranalysis.v1beta1.LayerDirective.DIRECTIVE_UNSPECIFIED,
arguments="string",
)],
),
),
remediation="string",
build=google_native.containeranalysis.v1beta1.GrafeasV1beta1BuildDetailsArgs(
provenance=google_native.containeranalysis.v1beta1.BuildProvenanceArgs(
id="string",
end_time="string",
built_artifacts=[google_native.containeranalysis.v1beta1.ArtifactArgs(
checksum="string",
id="string",
names=["string"],
)],
commands=[google_native.containeranalysis.v1beta1.CommandArgs(
name="string",
args=["string"],
dir="string",
env=["string"],
id="string",
wait_for=["string"],
)],
create_time="string",
creator="string",
build_options={
"string": "string",
},
builder_version="string",
logs_uri="string",
project="string",
source_provenance=google_native.containeranalysis.v1beta1.SourceArgs(
additional_contexts=[google_native.containeranalysis.v1beta1.SourceContextArgs(
cloud_repo=google_native.containeranalysis.v1beta1.CloudRepoSourceContextArgs(
alias_context=google_native.containeranalysis.v1beta1.AliasContextArgs(
kind=google_native.containeranalysis.v1beta1.AliasContextKind.KIND_UNSPECIFIED,
name="string",
),
repo_id=google_native.containeranalysis.v1beta1.RepoIdArgs(
project_repo_id=google_native.containeranalysis.v1beta1.ProjectRepoIdArgs(
project="string",
repo_name="string",
),
uid="string",
),
revision_id="string",
),
gerrit=google_native.containeranalysis.v1beta1.GerritSourceContextArgs(
alias_context=google_native.containeranalysis.v1beta1.AliasContextArgs(
kind=google_native.containeranalysis.v1beta1.AliasContextKind.KIND_UNSPECIFIED,
name="string",
),
gerrit_project="string",
host_uri="string",
revision_id="string",
),
git=google_native.containeranalysis.v1beta1.GitSourceContextArgs(
revision_id="string",
url="string",
),
labels={
"string": "string",
},
)],
artifact_storage_source_uri="string",
context=google_native.containeranalysis.v1beta1.SourceContextArgs(
cloud_repo=google_native.containeranalysis.v1beta1.CloudRepoSourceContextArgs(
alias_context=google_native.containeranalysis.v1beta1.AliasContextArgs(
kind=google_native.containeranalysis.v1beta1.AliasContextKind.KIND_UNSPECIFIED,
name="string",
),
repo_id=google_native.containeranalysis.v1beta1.RepoIdArgs(
project_repo_id=google_native.containeranalysis.v1beta1.ProjectRepoIdArgs(
project="string",
repo_name="string",
),
uid="string",
),
revision_id="string",
),
gerrit=google_native.containeranalysis.v1beta1.GerritSourceContextArgs(
alias_context=google_native.containeranalysis.v1beta1.AliasContextArgs(
kind=google_native.containeranalysis.v1beta1.AliasContextKind.KIND_UNSPECIFIED,
name="string",
),
gerrit_project="string",
host_uri="string",
revision_id="string",
),
git=google_native.containeranalysis.v1beta1.GitSourceContextArgs(
revision_id="string",
url="string",
),
labels={
"string": "string",
},
),
file_hashes={
"string": "string",
},
),
start_time="string",
trigger_id="string",
),
in_toto_slsa_provenance_v1=google_native.containeranalysis.v1beta1.InTotoSlsaProvenanceV1Args(
predicate=google_native.containeranalysis.v1beta1.SlsaProvenanceV1Args(
build_definition=google_native.containeranalysis.v1beta1.BuildDefinitionArgs(
build_type="string",
external_parameters={
"string": "string",
},
internal_parameters={
"string": "string",
},
resolved_dependencies=[google_native.containeranalysis.v1beta1.ResourceDescriptorArgs(
annotations={
"string": "string",
},
content="string",
digest={
"string": "string",
},
download_location="string",
media_type="string",
name="string",
uri="string",
)],
),
run_details=google_native.containeranalysis.v1beta1.RunDetailsArgs(
builder=google_native.containeranalysis.v1beta1.ProvenanceBuilderArgs(
builder_dependencies=[google_native.containeranalysis.v1beta1.ResourceDescriptorArgs(
annotations={
"string": "string",
},
content="string",
digest={
"string": "string",
},
download_location="string",
media_type="string",
name="string",
uri="string",
)],
id="string",
version={
"string": "string",
},
),
byproducts=[google_native.containeranalysis.v1beta1.ResourceDescriptorArgs(
annotations={
"string": "string",
},
content="string",
digest={
"string": "string",
},
download_location="string",
media_type="string",
name="string",
uri="string",
)],
metadata=google_native.containeranalysis.v1beta1.BuildMetadataArgs(
finished_on="string",
invocation_id="string",
started_on="string",
),
),
),
predicate_type="string",
subject=[google_native.containeranalysis.v1beta1.SubjectArgs(
digest={
"string": "string",
},
name="string",
)],
type="string",
),
provenance_bytes="string",
),
sbom=google_native.containeranalysis.v1beta1.DocumentOccurrenceArgs(
create_time="string",
creator_comment="string",
creators=["string"],
document_comment="string",
external_document_refs=["string"],
id="string",
license_list_version="string",
namespace="string",
title="string",
),
sbom_reference=google_native.containeranalysis.v1beta1.SBOMReferenceOccurrenceArgs(
payload=google_native.containeranalysis.v1beta1.SbomReferenceIntotoPayloadArgs(
predicate=google_native.containeranalysis.v1beta1.SbomReferenceIntotoPredicateArgs(
digest={
"string": "string",
},
location="string",
mime_type="string",
referrer_id="string",
),
predicate_type="string",
subject=[google_native.containeranalysis.v1beta1.SubjectArgs(
digest={
"string": "string",
},
name="string",
)],
type="string",
),
payload_type="string",
signatures=[google_native.containeranalysis.v1beta1.EnvelopeSignatureArgs(
keyid="string",
sig="string",
)],
),
spdx_file=google_native.containeranalysis.v1beta1.FileOccurrenceArgs(
attributions=["string"],
comment="string",
contributors=["string"],
copyright="string",
files_license_info=["string"],
id="string",
license_concluded=google_native.containeranalysis.v1beta1.LicenseArgs(
comments="string",
expression="string",
),
notice="string",
),
spdx_package=google_native.containeranalysis.v1beta1.PackageInfoOccurrenceArgs(
comment="string",
filename="string",
id="string",
license_concluded=google_native.containeranalysis.v1beta1.LicenseArgs(
comments="string",
expression="string",
),
source_info="string",
),
spdx_relationship=google_native.containeranalysis.v1beta1.RelationshipOccurrenceArgs(
comment="string",
source="string",
target="string",
),
vulnerability=google_native.containeranalysis.v1beta1.GrafeasV1beta1VulnerabilityDetailsArgs(
package_issue=[google_native.containeranalysis.v1beta1.PackageIssueArgs(
affected_location=google_native.containeranalysis.v1beta1.VulnerabilityLocationArgs(
cpe_uri="string",
package="string",
version=google_native.containeranalysis.v1beta1.VersionArgs(
kind=google_native.containeranalysis.v1beta1.VersionKind.VERSION_KIND_UNSPECIFIED,
epoch=0,
inclusive=False,
name="string",
revision="string",
),
),
fixed_location=google_native.containeranalysis.v1beta1.VulnerabilityLocationArgs(
cpe_uri="string",
package="string",
version=google_native.containeranalysis.v1beta1.VersionArgs(
kind=google_native.containeranalysis.v1beta1.VersionKind.VERSION_KIND_UNSPECIFIED,
epoch=0,
inclusive=False,
name="string",
revision="string",
),
),
package_type="string",
)],
cvss_v2=google_native.containeranalysis.v1beta1.CVSSArgs(
attack_complexity=google_native.containeranalysis.v1beta1.CVSSAttackComplexity.ATTACK_COMPLEXITY_UNSPECIFIED,
attack_vector=google_native.containeranalysis.v1beta1.CVSSAttackVector.ATTACK_VECTOR_UNSPECIFIED,
authentication=google_native.containeranalysis.v1beta1.CVSSAuthentication.AUTHENTICATION_UNSPECIFIED,
availability_impact=google_native.containeranalysis.v1beta1.CVSSAvailabilityImpact.IMPACT_UNSPECIFIED,
base_score=0,
confidentiality_impact=google_native.containeranalysis.v1beta1.CVSSConfidentialityImpact.IMPACT_UNSPECIFIED,
exploitability_score=0,
impact_score=0,
integrity_impact=google_native.containeranalysis.v1beta1.CVSSIntegrityImpact.IMPACT_UNSPECIFIED,
privileges_required=google_native.containeranalysis.v1beta1.CVSSPrivilegesRequired.PRIVILEGES_REQUIRED_UNSPECIFIED,
scope=google_native.containeranalysis.v1beta1.CVSSScope.SCOPE_UNSPECIFIED,
user_interaction=google_native.containeranalysis.v1beta1.CVSSUserInteraction.USER_INTERACTION_UNSPECIFIED,
),
cvss_v3=google_native.containeranalysis.v1beta1.CVSSArgs(
attack_complexity=google_native.containeranalysis.v1beta1.CVSSAttackComplexity.ATTACK_COMPLEXITY_UNSPECIFIED,
attack_vector=google_native.containeranalysis.v1beta1.CVSSAttackVector.ATTACK_VECTOR_UNSPECIFIED,
authentication=google_native.containeranalysis.v1beta1.CVSSAuthentication.AUTHENTICATION_UNSPECIFIED,
availability_impact=google_native.containeranalysis.v1beta1.CVSSAvailabilityImpact.IMPACT_UNSPECIFIED,
base_score=0,
confidentiality_impact=google_native.containeranalysis.v1beta1.CVSSConfidentialityImpact.IMPACT_UNSPECIFIED,
exploitability_score=0,
impact_score=0,
integrity_impact=google_native.containeranalysis.v1beta1.CVSSIntegrityImpact.IMPACT_UNSPECIFIED,
privileges_required=google_native.containeranalysis.v1beta1.CVSSPrivilegesRequired.PRIVILEGES_REQUIRED_UNSPECIFIED,
scope=google_native.containeranalysis.v1beta1.CVSSScope.SCOPE_UNSPECIFIED,
user_interaction=google_native.containeranalysis.v1beta1.CVSSUserInteraction.USER_INTERACTION_UNSPECIFIED,
),
effective_severity=google_native.containeranalysis.v1beta1.GrafeasV1beta1VulnerabilityDetailsEffectiveSeverity.SEVERITY_UNSPECIFIED,
extra_details="string",
type="string",
vex_assessment=google_native.containeranalysis.v1beta1.VexAssessmentArgs(
impacts=["string"],
justification=google_native.containeranalysis.v1beta1.JustificationArgs(
details="string",
justification_type=google_native.containeranalysis.v1beta1.JustificationJustificationType.JUSTIFICATION_TYPE_UNSPECIFIED,
),
note_name="string",
related_uris=[google_native.containeranalysis.v1beta1.RelatedUrlArgs(
label="string",
url="string",
)],
remediations=[google_native.containeranalysis.v1beta1.RemediationArgs(
details="string",
remediation_type=google_native.containeranalysis.v1beta1.RemediationRemediationType.REMEDIATION_TYPE_UNSPECIFIED,
remediation_uri=google_native.containeranalysis.v1beta1.RelatedUrlArgs(
label="string",
url="string",
),
)],
state=google_native.containeranalysis.v1beta1.VexAssessmentState.STATE_UNSPECIFIED,
vulnerability_id="string",
),
))
const exampleoccurrenceResourceResourceFromContaineranalysisv1beta1 = new google_native.containeranalysis.v1beta1.Occurrence("exampleoccurrenceResourceResourceFromContaineranalysisv1beta1", {
noteName: "string",
resource: {
uri: "string",
},
discovered: {
discovered: {
analysisCompleted: {
analysisType: ["string"],
},
analysisError: [{
code: 0,
details: [{
string: "string",
}],
message: "string",
}],
analysisStatus: google_native.containeranalysis.v1beta1.DiscoveredAnalysisStatus.AnalysisStatusUnspecified,
analysisStatusError: {
code: 0,
details: [{
string: "string",
}],
message: "string",
},
continuousAnalysis: google_native.containeranalysis.v1beta1.DiscoveredContinuousAnalysis.ContinuousAnalysisUnspecified,
lastScanTime: "string",
sbomStatus: {
error: "string",
sbomState: google_native.containeranalysis.v1beta1.SBOMStatusSbomState.SbomStateUnspecified,
},
},
},
project: "string",
attestation: {
attestation: {
genericSignedAttestation: {
contentType: google_native.containeranalysis.v1beta1.GenericSignedAttestationContentType.ContentTypeUnspecified,
serializedPayload: "string",
signatures: [{
publicKeyId: "string",
signature: "string",
}],
},
pgpSignedAttestation: {
signature: "string",
contentType: google_native.containeranalysis.v1beta1.PgpSignedAttestationContentType.ContentTypeUnspecified,
pgpKeyId: "string",
},
},
},
envelope: {
payload: "string",
payloadType: "string",
signatures: [{
keyid: "string",
sig: "string",
}],
},
installation: {
installation: {
license: {
comments: "string",
expression: "string",
},
location: [{
path: "string",
}],
},
},
intoto: {
signatures: [{
keyid: "string",
sig: "string",
}],
signed: {
byproducts: {
customValues: {
string: "string",
},
},
command: ["string"],
environment: {
customValues: {
string: "string",
},
},
materials: [{
hashes: {
sha256: "string",
},
resourceUri: "string",
}],
products: [{
hashes: {
sha256: "string",
},
resourceUri: "string",
}],
},
},
deployment: {
deployment: {
deployTime: "string",
address: "string",
config: "string",
platform: google_native.containeranalysis.v1beta1.DeploymentPlatform.PlatformUnspecified,
undeployTime: "string",
userEmail: "string",
},
},
derivedImage: {
derivedImage: {
fingerprint: {
v1Name: "string",
v2Blob: ["string"],
},
layerInfo: [{
directive: google_native.containeranalysis.v1beta1.LayerDirective.DirectiveUnspecified,
arguments: "string",
}],
},
},
remediation: "string",
build: {
provenance: {
id: "string",
endTime: "string",
builtArtifacts: [{
checksum: "string",
id: "string",
names: ["string"],
}],
commands: [{
name: "string",
args: ["string"],
dir: "string",
env: ["string"],
id: "string",
waitFor: ["string"],
}],
createTime: "string",
creator: "string",
buildOptions: {
string: "string",
},
builderVersion: "string",
logsUri: "string",
project: "string",
sourceProvenance: {
additionalContexts: [{
cloudRepo: {
aliasContext: {
kind: google_native.containeranalysis.v1beta1.AliasContextKind.KindUnspecified,
name: "string",
},
repoId: {
projectRepoId: {
project: "string",
repoName: "string",
},
uid: "string",
},
revisionId: "string",
},
gerrit: {
aliasContext: {
kind: google_native.containeranalysis.v1beta1.AliasContextKind.KindUnspecified,
name: "string",
},
gerritProject: "string",
hostUri: "string",
revisionId: "string",
},
git: {
revisionId: "string",
url: "string",
},
labels: {
string: "string",
},
}],
artifactStorageSourceUri: "string",
context: {
cloudRepo: {
aliasContext: {
kind: google_native.containeranalysis.v1beta1.AliasContextKind.KindUnspecified,
name: "string",
},
repoId: {
projectRepoId: {
project: "string",
repoName: "string",
},
uid: "string",
},
revisionId: "string",
},
gerrit: {
aliasContext: {
kind: google_native.containeranalysis.v1beta1.AliasContextKind.KindUnspecified,
name: "string",
},
gerritProject: "string",
hostUri: "string",
revisionId: "string",
},
git: {
revisionId: "string",
url: "string",
},
labels: {
string: "string",
},
},
fileHashes: {
string: "string",
},
},
startTime: "string",
triggerId: "string",
},
inTotoSlsaProvenanceV1: {
predicate: {
buildDefinition: {
buildType: "string",
externalParameters: {
string: "string",
},
internalParameters: {
string: "string",
},
resolvedDependencies: [{
annotations: {
string: "string",
},
content: "string",
digest: {
string: "string",
},
downloadLocation: "string",
mediaType: "string",
name: "string",
uri: "string",
}],
},
runDetails: {
builder: {
builderDependencies: [{
annotations: {
string: "string",
},
content: "string",
digest: {
string: "string",
},
downloadLocation: "string",
mediaType: "string",
name: "string",
uri: "string",
}],
id: "string",
version: {
string: "string",
},
},
byproducts: [{
annotations: {
string: "string",
},
content: "string",
digest: {
string: "string",
},
downloadLocation: "string",
mediaType: "string",
name: "string",
uri: "string",
}],
metadata: {
finishedOn: "string",
invocationId: "string",
startedOn: "string",
},
},
},
predicateType: "string",
subject: [{
digest: {
string: "string",
},
name: "string",
}],
type: "string",
},
provenanceBytes: "string",
},
sbom: {
createTime: "string",
creatorComment: "string",
creators: ["string"],
documentComment: "string",
externalDocumentRefs: ["string"],
id: "string",
licenseListVersion: "string",
namespace: "string",
title: "string",
},
sbomReference: {
payload: {
predicate: {
digest: {
string: "string",
},
location: "string",
mimeType: "string",
referrerId: "string",
},
predicateType: "string",
subject: [{
digest: {
string: "string",
},
name: "string",
}],
type: "string",
},
payloadType: "string",
signatures: [{
keyid: "string",
sig: "string",
}],
},
spdxFile: {
attributions: ["string"],
comment: "string",
contributors: ["string"],
copyright: "string",
filesLicenseInfo: ["string"],
id: "string",
licenseConcluded: {
comments: "string",
expression: "string",
},
notice: "string",
},
spdxPackage: {
comment: "string",
filename: "string",
id: "string",
licenseConcluded: {
comments: "string",
expression: "string",
},
sourceInfo: "string",
},
spdxRelationship: {
comment: "string",
source: "string",
target: "string",
},
vulnerability: {
packageIssue: [{
affectedLocation: {
cpeUri: "string",
"package": "string",
version: {
kind: google_native.containeranalysis.v1beta1.VersionKind.VersionKindUnspecified,
epoch: 0,
inclusive: false,
name: "string",
revision: "string",
},
},
fixedLocation: {
cpeUri: "string",
"package": "string",
version: {
kind: google_native.containeranalysis.v1beta1.VersionKind.VersionKindUnspecified,
epoch: 0,
inclusive: false,
name: "string",
revision: "string",
},
},
packageType: "string",
}],
cvssV2: {
attackComplexity: google_native.containeranalysis.v1beta1.CVSSAttackComplexity.AttackComplexityUnspecified,
attackVector: google_native.containeranalysis.v1beta1.CVSSAttackVector.AttackVectorUnspecified,
authentication: google_native.containeranalysis.v1beta1.CVSSAuthentication.AuthenticationUnspecified,
availabilityImpact: google_native.containeranalysis.v1beta1.CVSSAvailabilityImpact.ImpactUnspecified,
baseScore: 0,
confidentialityImpact: google_native.containeranalysis.v1beta1.CVSSConfidentialityImpact.ImpactUnspecified,
exploitabilityScore: 0,
impactScore: 0,
integrityImpact: google_native.containeranalysis.v1beta1.CVSSIntegrityImpact.ImpactUnspecified,
privilegesRequired: google_native.containeranalysis.v1beta1.CVSSPrivilegesRequired.PrivilegesRequiredUnspecified,
scope: google_native.containeranalysis.v1beta1.CVSSScope.ScopeUnspecified,
userInteraction: google_native.containeranalysis.v1beta1.CVSSUserInteraction.UserInteractionUnspecified,
},
cvssV3: {
attackComplexity: google_native.containeranalysis.v1beta1.CVSSAttackComplexity.AttackComplexityUnspecified,
attackVector: google_native.containeranalysis.v1beta1.CVSSAttackVector.AttackVectorUnspecified,
authentication: google_native.containeranalysis.v1beta1.CVSSAuthentication.AuthenticationUnspecified,
availabilityImpact: google_native.containeranalysis.v1beta1.CVSSAvailabilityImpact.ImpactUnspecified,
baseScore: 0,
confidentialityImpact: google_native.containeranalysis.v1beta1.CVSSConfidentialityImpact.ImpactUnspecified,
exploitabilityScore: 0,
impactScore: 0,
integrityImpact: google_native.containeranalysis.v1beta1.CVSSIntegrityImpact.ImpactUnspecified,
privilegesRequired: google_native.containeranalysis.v1beta1.CVSSPrivilegesRequired.PrivilegesRequiredUnspecified,
scope: google_native.containeranalysis.v1beta1.CVSSScope.ScopeUnspecified,
userInteraction: google_native.containeranalysis.v1beta1.CVSSUserInteraction.UserInteractionUnspecified,
},
effectiveSeverity: google_native.containeranalysis.v1beta1.GrafeasV1beta1VulnerabilityDetailsEffectiveSeverity.SeverityUnspecified,
extraDetails: "string",
type: "string",
vexAssessment: {
impacts: ["string"],
justification: {
details: "string",
justificationType: google_native.containeranalysis.v1beta1.JustificationJustificationType.JustificationTypeUnspecified,
},
noteName: "string",
relatedUris: [{
label: "string",
url: "string",
}],
remediations: [{
details: "string",
remediationType: google_native.containeranalysis.v1beta1.RemediationRemediationType.RemediationTypeUnspecified,
remediationUri: {
label: "string",
url: "string",
},
}],
state: google_native.containeranalysis.v1beta1.VexAssessmentState.StateUnspecified,
vulnerabilityId: "string",
},
},
});
type: google-native:containeranalysis/v1beta1:Occurrence
properties:
attestation:
attestation:
genericSignedAttestation:
contentType: CONTENT_TYPE_UNSPECIFIED
serializedPayload: string
signatures:
- publicKeyId: string
signature: string
pgpSignedAttestation:
contentType: CONTENT_TYPE_UNSPECIFIED
pgpKeyId: string
signature: string
build:
inTotoSlsaProvenanceV1:
predicate:
buildDefinition:
buildType: string
externalParameters:
string: string
internalParameters:
string: string
resolvedDependencies:
- annotations:
string: string
content: string
digest:
string: string
downloadLocation: string
mediaType: string
name: string
uri: string
runDetails:
builder:
builderDependencies:
- annotations:
string: string
content: string
digest:
string: string
downloadLocation: string
mediaType: string
name: string
uri: string
id: string
version:
string: string
byproducts:
- annotations:
string: string
content: string
digest:
string: string
downloadLocation: string
mediaType: string
name: string
uri: string
metadata:
finishedOn: string
invocationId: string
startedOn: string
predicateType: string
subject:
- digest:
string: string
name: string
type: string
provenance:
buildOptions:
string: string
builderVersion: string
builtArtifacts:
- checksum: string
id: string
names:
- string
commands:
- args:
- string
dir: string
env:
- string
id: string
name: string
waitFor:
- string
createTime: string
creator: string
endTime: string
id: string
logsUri: string
project: string
sourceProvenance:
additionalContexts:
- cloudRepo:
aliasContext:
kind: KIND_UNSPECIFIED
name: string
repoId:
projectRepoId:
project: string
repoName: string
uid: string
revisionId: string
gerrit:
aliasContext:
kind: KIND_UNSPECIFIED
name: string
gerritProject: string
hostUri: string
revisionId: string
git:
revisionId: string
url: string
labels:
string: string
artifactStorageSourceUri: string
context:
cloudRepo:
aliasContext:
kind: KIND_UNSPECIFIED
name: string
repoId:
projectRepoId:
project: string
repoName: string
uid: string
revisionId: string
gerrit:
aliasContext:
kind: KIND_UNSPECIFIED
name: string
gerritProject: string
hostUri: string
revisionId: string
git:
revisionId: string
url: string
labels:
string: string
fileHashes:
string: string
startTime: string
triggerId: string
provenanceBytes: string
deployment:
deployment:
address: string
config: string
deployTime: string
platform: PLATFORM_UNSPECIFIED
undeployTime: string
userEmail: string
derivedImage:
derivedImage:
fingerprint:
v1Name: string
v2Blob:
- string
layerInfo:
- arguments: string
directive: DIRECTIVE_UNSPECIFIED
discovered:
discovered:
analysisCompleted:
analysisType:
- string
analysisError:
- code: 0
details:
- string: string
message: string
analysisStatus: ANALYSIS_STATUS_UNSPECIFIED
analysisStatusError:
code: 0
details:
- string: string
message: string
continuousAnalysis: CONTINUOUS_ANALYSIS_UNSPECIFIED
lastScanTime: string
sbomStatus:
error: string
sbomState: SBOM_STATE_UNSPECIFIED
envelope:
payload: string
payloadType: string
signatures:
- keyid: string
sig: string
installation:
installation:
license:
comments: string
expression: string
location:
- path: string
intoto:
signatures:
- keyid: string
sig: string
signed:
byproducts:
customValues:
string: string
command:
- string
environment:
customValues:
string: string
materials:
- hashes:
sha256: string
resourceUri: string
products:
- hashes:
sha256: string
resourceUri: string
noteName: string
project: string
remediation: string
resource:
uri: string
sbom:
createTime: string
creatorComment: string
creators:
- string
documentComment: string
externalDocumentRefs:
- string
id: string
licenseListVersion: string
namespace: string
title: string
sbomReference:
payload:
predicate:
digest:
string: string
location: string
mimeType: string
referrerId: string
predicateType: string
subject:
- digest:
string: string
name: string
type: string
payloadType: string
signatures:
- keyid: string
sig: string
spdxFile:
attributions:
- string
comment: string
contributors:
- string
copyright: string
filesLicenseInfo:
- string
id: string
licenseConcluded:
comments: string
expression: string
notice: string
spdxPackage:
comment: string
filename: string
id: string
licenseConcluded:
comments: string
expression: string
sourceInfo: string
spdxRelationship:
comment: string
source: string
target: string
vulnerability:
cvssV2:
attackComplexity: ATTACK_COMPLEXITY_UNSPECIFIED
attackVector: ATTACK_VECTOR_UNSPECIFIED
authentication: AUTHENTICATION_UNSPECIFIED
availabilityImpact: IMPACT_UNSPECIFIED
baseScore: 0
confidentialityImpact: IMPACT_UNSPECIFIED
exploitabilityScore: 0
impactScore: 0
integrityImpact: IMPACT_UNSPECIFIED
privilegesRequired: PRIVILEGES_REQUIRED_UNSPECIFIED
scope: SCOPE_UNSPECIFIED
userInteraction: USER_INTERACTION_UNSPECIFIED
cvssV3:
attackComplexity: ATTACK_COMPLEXITY_UNSPECIFIED
attackVector: ATTACK_VECTOR_UNSPECIFIED
authentication: AUTHENTICATION_UNSPECIFIED
availabilityImpact: IMPACT_UNSPECIFIED
baseScore: 0
confidentialityImpact: IMPACT_UNSPECIFIED
exploitabilityScore: 0
impactScore: 0
integrityImpact: IMPACT_UNSPECIFIED
privilegesRequired: PRIVILEGES_REQUIRED_UNSPECIFIED
scope: SCOPE_UNSPECIFIED
userInteraction: USER_INTERACTION_UNSPECIFIED
effectiveSeverity: SEVERITY_UNSPECIFIED
extraDetails: string
packageIssue:
- affectedLocation:
cpeUri: string
package: string
version:
epoch: 0
inclusive: false
kind: VERSION_KIND_UNSPECIFIED
name: string
revision: string
fixedLocation:
cpeUri: string
package: string
version:
epoch: 0
inclusive: false
kind: VERSION_KIND_UNSPECIFIED
name: string
revision: string
packageType: string
type: string
vexAssessment:
impacts:
- string
justification:
details: string
justificationType: JUSTIFICATION_TYPE_UNSPECIFIED
noteName: string
relatedUris:
- label: string
url: string
remediations:
- details: string
remediationType: REMEDIATION_TYPE_UNSPECIFIED
remediationUri:
label: string
url: string
state: STATE_UNSPECIFIED
vulnerabilityId: string
Occurrence Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The Occurrence resource accepts the following input properties:
- Note
Name string - Immutable. The analysis note associated with this occurrence, in the form of
projects/[PROVIDER_ID]/notes/[NOTE_ID]. This field can be used as a filter in list requests. - Resource
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Resource - Immutable. The resource for which the occurrence applies.
- Attestation
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Details - Describes an attestation of an artifact.
- Build
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Grafeas V1beta1Build Details - Describes a verifiable build.
- Deployment
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Grafeas V1beta1Deployment Details - Describes the deployment of an artifact on a runtime.
- Derived
Image Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Grafeas V1beta1Image Details - Describes how this resource derives from the basis in the associated note.
- Discovered
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Grafeas V1beta1Discovery Details - Describes when a resource was discovered.
- Envelope
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Envelope - https://github.com/secure-systems-lab/dsse
- Installation
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Grafeas V1beta1Package Details - Describes the installation of a package on the linked resource.
- Intoto
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Grafeas V1beta1Intoto Details - Describes a specific in-toto link.
- Project string
- Remediation string
- A description of actions that can be taken to remedy the note.
- Sbom
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Document Occurrence - Describes a specific software bill of materials document.
- Sbom
Reference Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. SBOMReference Occurrence - Describes a specific SBOM reference occurrences.
- Spdx
File Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. File Occurrence - Describes a specific SPDX File.
- Spdx
Package Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Package Info Occurrence - Describes a specific SPDX Package.
- Spdx
Relationship Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Relationship Occurrence - Describes a specific SPDX Relationship.
- Vulnerability
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Grafeas V1beta1Vulnerability Details - Describes a security vulnerability.
- Note
Name string - Immutable. The analysis note associated with this occurrence, in the form of
projects/[PROVIDER_ID]/notes/[NOTE_ID]. This field can be used as a filter in list requests. - Resource
Resource
Args - Immutable. The resource for which the occurrence applies.
- Attestation
Details
Args - Describes an attestation of an artifact.
- Build
Grafeas
V1beta1Build Details Args - Describes a verifiable build.
- Deployment
Grafeas
V1beta1Deployment Details Args - Describes the deployment of an artifact on a runtime.
- Derived
Image GrafeasV1beta1Image Details Args - Describes how this resource derives from the basis in the associated note.
- Discovered
Grafeas
V1beta1Discovery Details Args - Describes when a resource was discovered.
- Envelope
Envelope
Args - https://github.com/secure-systems-lab/dsse
- Installation
Grafeas
V1beta1Package Details Args - Describes the installation of a package on the linked resource.
- Intoto
Grafeas
V1beta1Intoto Details Args - Describes a specific in-toto link.
- Project string
- Remediation string
- A description of actions that can be taken to remedy the note.
- Sbom
Document
Occurrence Args - Describes a specific software bill of materials document.
- Sbom
Reference SBOMReferenceOccurrence Args - Describes a specific SBOM reference occurrences.
- Spdx
File FileOccurrence Args - Describes a specific SPDX File.
- Spdx
Package PackageInfo Occurrence Args - Describes a specific SPDX Package.
- Spdx
Relationship RelationshipOccurrence Args - Describes a specific SPDX Relationship.
- Vulnerability
Grafeas
V1beta1Vulnerability Details Args - Describes a security vulnerability.
- note
Name String - Immutable. The analysis note associated with this occurrence, in the form of
projects/[PROVIDER_ID]/notes/[NOTE_ID]. This field can be used as a filter in list requests. - resource Resource
- Immutable. The resource for which the occurrence applies.
- attestation Details
- Describes an attestation of an artifact.
- build
Grafeas
V1beta1Build Details - Describes a verifiable build.
- deployment
Grafeas
V1beta1Deployment Details - Describes the deployment of an artifact on a runtime.
- derived
Image GrafeasV1beta1Image Details - Describes how this resource derives from the basis in the associated note.
- discovered
Grafeas
V1beta1Discovery Details - Describes when a resource was discovered.
- envelope Envelope
- https://github.com/secure-systems-lab/dsse
- installation
Grafeas
V1beta1Package Details - Describes the installation of a package on the linked resource.
- intoto
Grafeas
V1beta1Intoto Details - Describes a specific in-toto link.
- project String
- remediation String
- A description of actions that can be taken to remedy the note.
- sbom
Document
Occurrence - Describes a specific software bill of materials document.
- sbom
Reference SBOMReferenceOccurrence - Describes a specific SBOM reference occurrences.
- spdx
File FileOccurrence - Describes a specific SPDX File.
- spdx
Package PackageInfo Occurrence - Describes a specific SPDX Package.
- spdx
Relationship RelationshipOccurrence - Describes a specific SPDX Relationship.
- vulnerability
Grafeas
V1beta1Vulnerability Details - Describes a security vulnerability.
- note
Name string - Immutable. The analysis note associated with this occurrence, in the form of
projects/[PROVIDER_ID]/notes/[NOTE_ID]. This field can be used as a filter in list requests. - resource Resource
- Immutable. The resource for which the occurrence applies.
- attestation Details
- Describes an attestation of an artifact.
- build
Grafeas
V1beta1Build Details - Describes a verifiable build.
- deployment
Grafeas
V1beta1Deployment Details - Describes the deployment of an artifact on a runtime.
- derived
Image GrafeasV1beta1Image Details - Describes how this resource derives from the basis in the associated note.
- discovered
Grafeas
V1beta1Discovery Details - Describes when a resource was discovered.
- envelope Envelope
- https://github.com/secure-systems-lab/dsse
- installation
Grafeas
V1beta1Package Details - Describes the installation of a package on the linked resource.
- intoto
Grafeas
V1beta1Intoto Details - Describes a specific in-toto link.
- project string
- remediation string
- A description of actions that can be taken to remedy the note.
- sbom
Document
Occurrence - Describes a specific software bill of materials document.
- sbom
Reference SBOMReferenceOccurrence - Describes a specific SBOM reference occurrences.
- spdx
File FileOccurrence - Describes a specific SPDX File.
- spdx
Package PackageInfo Occurrence - Describes a specific SPDX Package.
- spdx
Relationship RelationshipOccurrence - Describes a specific SPDX Relationship.
- vulnerability
Grafeas
V1beta1Vulnerability Details - Describes a security vulnerability.
- note_
name str - Immutable. The analysis note associated with this occurrence, in the form of
projects/[PROVIDER_ID]/notes/[NOTE_ID]. This field can be used as a filter in list requests. - resource
Resource
Args - Immutable. The resource for which the occurrence applies.
- attestation
Details
Args - Describes an attestation of an artifact.
- build
Grafeas
V1beta1Build Details Args - Describes a verifiable build.
- deployment
Grafeas
V1beta1Deployment Details Args - Describes the deployment of an artifact on a runtime.
- derived_
image GrafeasV1beta1Image Details Args - Describes how this resource derives from the basis in the associated note.
- discovered
Grafeas
V1beta1Discovery Details Args - Describes when a resource was discovered.
- envelope
Envelope
Args - https://github.com/secure-systems-lab/dsse
- installation
Grafeas
V1beta1Package Details Args - Describes the installation of a package on the linked resource.
- intoto
Grafeas
V1beta1Intoto Details Args - Describes a specific in-toto link.
- project str
- remediation str
- A description of actions that can be taken to remedy the note.
- sbom
Document
Occurrence Args - Describes a specific software bill of materials document.
- sbom_
reference SBOMReferenceOccurrence Args - Describes a specific SBOM reference occurrences.
- spdx_
file FileOccurrence Args - Describes a specific SPDX File.
- spdx_
package PackageInfo Occurrence Args - Describes a specific SPDX Package.
- spdx_
relationship RelationshipOccurrence Args - Describes a specific SPDX Relationship.
- vulnerability
Grafeas
V1beta1Vulnerability Details Args - Describes a security vulnerability.
- note
Name String - Immutable. The analysis note associated with this occurrence, in the form of
projects/[PROVIDER_ID]/notes/[NOTE_ID]. This field can be used as a filter in list requests. - resource Property Map
- Immutable. The resource for which the occurrence applies.
- attestation Property Map
- Describes an attestation of an artifact.
- build Property Map
- Describes a verifiable build.
- deployment Property Map
- Describes the deployment of an artifact on a runtime.
- derived
Image Property Map - Describes how this resource derives from the basis in the associated note.
- discovered Property Map
- Describes when a resource was discovered.
- envelope Property Map
- https://github.com/secure-systems-lab/dsse
- installation Property Map
- Describes the installation of a package on the linked resource.
- intoto Property Map
- Describes a specific in-toto link.
- project String
- remediation String
- A description of actions that can be taken to remedy the note.
- sbom Property Map
- Describes a specific software bill of materials document.
- sbom
Reference Property Map - Describes a specific SBOM reference occurrences.
- spdx
File Property Map - Describes a specific SPDX File.
- spdx
Package Property Map - Describes a specific SPDX Package.
- spdx
Relationship Property Map - Describes a specific SPDX Relationship.
- vulnerability Property Map
- Describes a security vulnerability.
Outputs
All input properties are implicitly available as output properties. Additionally, the Occurrence resource produces the following output properties:
- Create
Time string - The time this occurrence was created.
- Id string
- The provider-assigned unique ID for this managed resource.
- Kind string
- This explicitly denotes which of the occurrence details are specified. This field can be used as a filter in list requests.
- Name string
- The name of the occurrence in the form of
projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]. - Update
Time string - The time this occurrence was last updated.
- Create
Time string - The time this occurrence was created.
- Id string
- The provider-assigned unique ID for this managed resource.
- Kind string
- This explicitly denotes which of the occurrence details are specified. This field can be used as a filter in list requests.
- Name string
- The name of the occurrence in the form of
projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]. - Update
Time string - The time this occurrence was last updated.
- create
Time String - The time this occurrence was created.
- id String
- The provider-assigned unique ID for this managed resource.
- kind String
- This explicitly denotes which of the occurrence details are specified. This field can be used as a filter in list requests.
- name String
- The name of the occurrence in the form of
projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]. - update
Time String - The time this occurrence was last updated.
- create
Time string - The time this occurrence was created.
- id string
- The provider-assigned unique ID for this managed resource.
- kind string
- This explicitly denotes which of the occurrence details are specified. This field can be used as a filter in list requests.
- name string
- The name of the occurrence in the form of
projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]. - update
Time string - The time this occurrence was last updated.
- create_
time str - The time this occurrence was created.
- id str
- The provider-assigned unique ID for this managed resource.
- kind str
- This explicitly denotes which of the occurrence details are specified. This field can be used as a filter in list requests.
- name str
- The name of the occurrence in the form of
projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]. - update_
time str - The time this occurrence was last updated.
- create
Time String - The time this occurrence was created.
- id String
- The provider-assigned unique ID for this managed resource.
- kind String
- This explicitly denotes which of the occurrence details are specified. This field can be used as a filter in list requests.
- name String
- The name of the occurrence in the form of
projects/[PROJECT_ID]/occurrences/[OCCURRENCE_ID]. - update
Time String - The time this occurrence was last updated.
Supporting Types
AliasContext, AliasContextArgs
- Kind
Pulumi.
Google Native. Container Analysis. V1Beta1. Alias Context Kind - The alias kind.
- Name string
- The alias name.
- Kind
Alias
Context Kind - The alias kind.
- Name string
- The alias name.
- kind
Alias
Context Kind - The alias kind.
- name String
- The alias name.
- kind
Alias
Context Kind - The alias kind.
- name string
- The alias name.
- kind
Alias
Context Kind - The alias kind.
- name str
- The alias name.
- kind "KIND_UNSPECIFIED" | "FIXED" | "MOVABLE" | "OTHER"
- The alias kind.
- name String
- The alias name.
AliasContextKind, AliasContextKindArgs
- Kind
Unspecified - KIND_UNSPECIFIEDUnknown.
- Fixed
- FIXEDGit tag.
- Movable
- MOVABLEGit branch.
- Other
- OTHERUsed to specify non-standard aliases. For example, if a Git repo has a ref named "refs/foo/bar".
- Alias
Context Kind Kind Unspecified - KIND_UNSPECIFIEDUnknown.
- Alias
Context Kind Fixed - FIXEDGit tag.
- Alias
Context Kind Movable - MOVABLEGit branch.
- Alias
Context Kind Other - OTHERUsed to specify non-standard aliases. For example, if a Git repo has a ref named "refs/foo/bar".
- Kind
Unspecified - KIND_UNSPECIFIEDUnknown.
- Fixed
- FIXEDGit tag.
- Movable
- MOVABLEGit branch.
- Other
- OTHERUsed to specify non-standard aliases. For example, if a Git repo has a ref named "refs/foo/bar".
- Kind
Unspecified - KIND_UNSPECIFIEDUnknown.
- Fixed
- FIXEDGit tag.
- Movable
- MOVABLEGit branch.
- Other
- OTHERUsed to specify non-standard aliases. For example, if a Git repo has a ref named "refs/foo/bar".
- KIND_UNSPECIFIED
- KIND_UNSPECIFIEDUnknown.
- FIXED
- FIXEDGit tag.
- MOVABLE
- MOVABLEGit branch.
- OTHER
- OTHERUsed to specify non-standard aliases. For example, if a Git repo has a ref named "refs/foo/bar".
- "KIND_UNSPECIFIED"
- KIND_UNSPECIFIEDUnknown.
- "FIXED"
- FIXEDGit tag.
- "MOVABLE"
- MOVABLEGit branch.
- "OTHER"
- OTHERUsed to specify non-standard aliases. For example, if a Git repo has a ref named "refs/foo/bar".
AliasContextResponse, AliasContextResponseArgs
AnalysisCompleted, AnalysisCompletedArgs
- Analysis
Type List<string>
- Analysis
Type []string
- analysis
Type List<String>
- analysis
Type string[]
- analysis_
type Sequence[str]
- analysis
Type List<String>
AnalysisCompletedResponse, AnalysisCompletedResponseArgs
- Analysis
Type List<string>
- Analysis
Type []string
- analysis
Type List<String>
- analysis
Type string[]
- analysis_
type Sequence[str]
- analysis
Type List<String>
Artifact, ArtifactArgs
- Checksum string
- Hash or checksum value of a binary, or Docker Registry 2.0 digest of a container.
- Id string
- Artifact ID, if any; for container images, this will be a URL by digest like
gcr.io/projectID/imagename@sha256:123456. - Names List<string>
- Related artifact names. This may be the path to a binary or jar file, or in the case of a container build, the name used to push the container image to Google Container Registry, as presented to
docker push. Note that a single Artifact ID can have multiple names, for example if two tags are applied to one image.
- Checksum string
- Hash or checksum value of a binary, or Docker Registry 2.0 digest of a container.
- Id string
- Artifact ID, if any; for container images, this will be a URL by digest like
gcr.io/projectID/imagename@sha256:123456. - Names []string
- Related artifact names. This may be the path to a binary or jar file, or in the case of a container build, the name used to push the container image to Google Container Registry, as presented to
docker push. Note that a single Artifact ID can have multiple names, for example if two tags are applied to one image.
- checksum String
- Hash or checksum value of a binary, or Docker Registry 2.0 digest of a container.
- id String
- Artifact ID, if any; for container images, this will be a URL by digest like
gcr.io/projectID/imagename@sha256:123456. - names List<String>
- Related artifact names. This may be the path to a binary or jar file, or in the case of a container build, the name used to push the container image to Google Container Registry, as presented to
docker push. Note that a single Artifact ID can have multiple names, for example if two tags are applied to one image.
- checksum string
- Hash or checksum value of a binary, or Docker Registry 2.0 digest of a container.
- id string
- Artifact ID, if any; for container images, this will be a URL by digest like
gcr.io/projectID/imagename@sha256:123456. - names string[]
- Related artifact names. This may be the path to a binary or jar file, or in the case of a container build, the name used to push the container image to Google Container Registry, as presented to
docker push. Note that a single Artifact ID can have multiple names, for example if two tags are applied to one image.
- checksum str
- Hash or checksum value of a binary, or Docker Registry 2.0 digest of a container.
- id str
- Artifact ID, if any; for container images, this will be a URL by digest like
gcr.io/projectID/imagename@sha256:123456. - names Sequence[str]
- Related artifact names. This may be the path to a binary or jar file, or in the case of a container build, the name used to push the container image to Google Container Registry, as presented to
docker push. Note that a single Artifact ID can have multiple names, for example if two tags are applied to one image.
- checksum String
- Hash or checksum value of a binary, or Docker Registry 2.0 digest of a container.
- id String
- Artifact ID, if any; for container images, this will be a URL by digest like
gcr.io/projectID/imagename@sha256:123456. - names List<String>
- Related artifact names. This may be the path to a binary or jar file, or in the case of a container build, the name used to push the container image to Google Container Registry, as presented to
docker push. Note that a single Artifact ID can have multiple names, for example if two tags are applied to one image.
ArtifactHashes, ArtifactHashesArgs
- Sha256 string
- Sha256 string
- sha256 String
- sha256 string
- sha256 str
- sha256 String
ArtifactHashesResponse, ArtifactHashesResponseArgs
- Sha256 string
- Sha256 string
- sha256 String
- sha256 string
- sha256 str
- sha256 String
ArtifactResponse, ArtifactResponseArgs
- Checksum string
- Hash or checksum value of a binary, or Docker Registry 2.0 digest of a container.
- Names List<string>
- Related artifact names. This may be the path to a binary or jar file, or in the case of a container build, the name used to push the container image to Google Container Registry, as presented to
docker push. Note that a single Artifact ID can have multiple names, for example if two tags are applied to one image.
- Checksum string
- Hash or checksum value of a binary, or Docker Registry 2.0 digest of a container.
- Names []string
- Related artifact names. This may be the path to a binary or jar file, or in the case of a container build, the name used to push the container image to Google Container Registry, as presented to
docker push. Note that a single Artifact ID can have multiple names, for example if two tags are applied to one image.
- checksum String
- Hash or checksum value of a binary, or Docker Registry 2.0 digest of a container.
- names List<String>
- Related artifact names. This may be the path to a binary or jar file, or in the case of a container build, the name used to push the container image to Google Container Registry, as presented to
docker push. Note that a single Artifact ID can have multiple names, for example if two tags are applied to one image.
- checksum string
- Hash or checksum value of a binary, or Docker Registry 2.0 digest of a container.
- names string[]
- Related artifact names. This may be the path to a binary or jar file, or in the case of a container build, the name used to push the container image to Google Container Registry, as presented to
docker push. Note that a single Artifact ID can have multiple names, for example if two tags are applied to one image.
- checksum str
- Hash or checksum value of a binary, or Docker Registry 2.0 digest of a container.
- names Sequence[str]
- Related artifact names. This may be the path to a binary or jar file, or in the case of a container build, the name used to push the container image to Google Container Registry, as presented to
docker push. Note that a single Artifact ID can have multiple names, for example if two tags are applied to one image.
- checksum String
- Hash or checksum value of a binary, or Docker Registry 2.0 digest of a container.
- names List<String>
- Related artifact names. This may be the path to a binary or jar file, or in the case of a container build, the name used to push the container image to Google Container Registry, as presented to
docker push. Note that a single Artifact ID can have multiple names, for example if two tags are applied to one image.
Attestation, AttestationArgs
- Generic
Signed GenericAttestation Signed Attestation - Pgp
Signed PgpAttestation Signed Attestation - A PGP signed attestation.
- generic
Signed GenericAttestation Signed Attestation - pgp
Signed PgpAttestation Signed Attestation - A PGP signed attestation.
- generic
Signed GenericAttestation Signed Attestation - pgp
Signed PgpAttestation Signed Attestation - A PGP signed attestation.
- generic_
signed_ Genericattestation Signed Attestation - pgp_
signed_ Pgpattestation Signed Attestation - A PGP signed attestation.
- generic
Signed Property MapAttestation - pgp
Signed Property MapAttestation - A PGP signed attestation.
AttestationResponse, AttestationResponseArgs
- Generic
Signed GenericAttestation Signed Attestation Response - Pgp
Signed PgpAttestation Signed Attestation Response - A PGP signed attestation.
- generic
Signed GenericAttestation Signed Attestation Response - pgp
Signed PgpAttestation Signed Attestation Response - A PGP signed attestation.
- generic
Signed GenericAttestation Signed Attestation Response - pgp
Signed PgpAttestation Signed Attestation Response - A PGP signed attestation.
- generic_
signed_ Genericattestation Signed Attestation Response - pgp_
signed_ Pgpattestation Signed Attestation Response - A PGP signed attestation.
- generic
Signed Property MapAttestation - pgp
Signed Property MapAttestation - A PGP signed attestation.
BuildDefinition, BuildDefinitionArgs
- Build
Type string - External
Parameters Dictionary<string, string> - Internal
Parameters Dictionary<string, string> - Resolved
Dependencies List<Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Resource Descriptor>
- Build
Type string - External
Parameters map[string]string - Internal
Parameters map[string]string - Resolved
Dependencies []ResourceDescriptor
- build
Type String - external
Parameters Map<String,String> - internal
Parameters Map<String,String> - resolved
Dependencies List<ResourceDescriptor>
- build
Type string - external
Parameters {[key: string]: string} - internal
Parameters {[key: string]: string} - resolved
Dependencies ResourceDescriptor[]
- build_
type str - external_
parameters Mapping[str, str] - internal_
parameters Mapping[str, str] - resolved_
dependencies Sequence[ResourceDescriptor]
- build
Type String - external
Parameters Map<String> - internal
Parameters Map<String> - resolved
Dependencies List<Property Map>
BuildDefinitionResponse, BuildDefinitionResponseArgs
- Build
Type string - External
Parameters Dictionary<string, string> - Internal
Parameters Dictionary<string, string> - Resolved
Dependencies List<Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Resource Descriptor Response>
- Build
Type string - External
Parameters map[string]string - Internal
Parameters map[string]string - Resolved
Dependencies []ResourceDescriptor Response
- build
Type String - external
Parameters Map<String,String> - internal
Parameters Map<String,String> - resolved
Dependencies List<ResourceDescriptor Response>
- build
Type string - external
Parameters {[key: string]: string} - internal
Parameters {[key: string]: string} - resolved
Dependencies ResourceDescriptor Response[]
- build_
type str - external_
parameters Mapping[str, str] - internal_
parameters Mapping[str, str] - resolved_
dependencies Sequence[ResourceDescriptor Response]
- build
Type String - external
Parameters Map<String> - internal
Parameters Map<String> - resolved
Dependencies List<Property Map>
BuildMetadata, BuildMetadataArgs
- Finished
On string - Invocation
Id string - Started
On string
- Finished
On string - Invocation
Id string - Started
On string
- finished
On String - invocation
Id String - started
On String
- finished
On string - invocation
Id string - started
On string
- finished_
on str - invocation_
id str - started_
on str
- finished
On String - invocation
Id String - started
On String
BuildMetadataResponse, BuildMetadataResponseArgs
- Finished
On string - Invocation
Id string - Started
On string
- Finished
On string - Invocation
Id string - Started
On string
- finished
On String - invocation
Id String - started
On String
- finished
On string - invocation
Id string - started
On string
- finished_
on str - invocation_
id str - started_
on str
- finished
On String - invocation
Id String - started
On String
BuildProvenance, BuildProvenanceArgs
- Id string
- Unique identifier of the build.
- Build
Options Dictionary<string, string> - Special options applied to this build. This is a catch-all field where build providers can enter any desired additional details.
- Builder
Version string - Version string of the builder at the time this build was executed.
- Built
Artifacts List<Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Artifact> - Output of the build.
- Commands
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Command> - Commands requested by the build.
- Create
Time string - Time at which the build was created.
- Creator string
- E-mail address of the user who initiated this build. Note that this was the user's e-mail address at the time the build was initiated; this address may not represent the same end-user for all time.
- End
Time string - Time at which execution of the build was finished.
- Logs
Uri string - URI where any logs for this provenance were written.
- Project string
- ID of the project.
- Source
Provenance Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Source - Details of the Source input to the build.
- Start
Time string - Time at which execution of the build was started.
- Trigger
Id string - Trigger identifier if the build was triggered automatically; empty if not.
- Id string
- Unique identifier of the build.
- Build
Options map[string]string - Special options applied to this build. This is a catch-all field where build providers can enter any desired additional details.
- Builder
Version string - Version string of the builder at the time this build was executed.
- Built
Artifacts []Artifact - Output of the build.
- Commands []Command
- Commands requested by the build.
- Create
Time string - Time at which the build was created.
- Creator string
- E-mail address of the user who initiated this build. Note that this was the user's e-mail address at the time the build was initiated; this address may not represent the same end-user for all time.
- End
Time string - Time at which execution of the build was finished.
- Logs
Uri string - URI where any logs for this provenance were written.
- Project string
- ID of the project.
- Source
Provenance Source - Details of the Source input to the build.
- Start
Time string - Time at which execution of the build was started.
- Trigger
Id string - Trigger identifier if the build was triggered automatically; empty if not.
- id String
- Unique identifier of the build.
- build
Options Map<String,String> - Special options applied to this build. This is a catch-all field where build providers can enter any desired additional details.
- builder
Version String - Version string of the builder at the time this build was executed.
- built
Artifacts List<Artifact> - Output of the build.
- commands List<Command>
- Commands requested by the build.
- create
Time String - Time at which the build was created.
- creator String
- E-mail address of the user who initiated this build. Note that this was the user's e-mail address at the time the build was initiated; this address may not represent the same end-user for all time.
- end
Time String - Time at which execution of the build was finished.
- logs
Uri String - URI where any logs for this provenance were written.
- project String
- ID of the project.
- source
Provenance Source - Details of the Source input to the build.
- start
Time String - Time at which execution of the build was started.
- trigger
Id String - Trigger identifier if the build was triggered automatically; empty if not.
- id string
- Unique identifier of the build.
- build
Options {[key: string]: string} - Special options applied to this build. This is a catch-all field where build providers can enter any desired additional details.
- builder
Version string - Version string of the builder at the time this build was executed.
- built
Artifacts Artifact[] - Output of the build.
- commands Command[]
- Commands requested by the build.
- create
Time string - Time at which the build was created.
- creator string
- E-mail address of the user who initiated this build. Note that this was the user's e-mail address at the time the build was initiated; this address may not represent the same end-user for all time.
- end
Time string - Time at which execution of the build was finished.
- logs
Uri string - URI where any logs for this provenance were written.
- project string
- ID of the project.
- source
Provenance Source - Details of the Source input to the build.
- start
Time string - Time at which execution of the build was started.
- trigger
Id string - Trigger identifier if the build was triggered automatically; empty if not.
- id str
- Unique identifier of the build.
- build_
options Mapping[str, str] - Special options applied to this build. This is a catch-all field where build providers can enter any desired additional details.
- builder_
version str - Version string of the builder at the time this build was executed.
- built_
artifacts Sequence[Artifact] - Output of the build.
- commands Sequence[Command]
- Commands requested by the build.
- create_
time str - Time at which the build was created.
- creator str
- E-mail address of the user who initiated this build. Note that this was the user's e-mail address at the time the build was initiated; this address may not represent the same end-user for all time.
- end_
time str - Time at which execution of the build was finished.
- logs_
uri str - URI where any logs for this provenance were written.
- project str
- ID of the project.
- source_
provenance Source - Details of the Source input to the build.
- start_
time str - Time at which execution of the build was started.
- trigger_
id str - Trigger identifier if the build was triggered automatically; empty if not.
- id String
- Unique identifier of the build.
- build
Options Map<String> - Special options applied to this build. This is a catch-all field where build providers can enter any desired additional details.
- builder
Version String - Version string of the builder at the time this build was executed.
- built
Artifacts List<Property Map> - Output of the build.
- commands List<Property Map>
- Commands requested by the build.
- create
Time String - Time at which the build was created.
- creator String
- E-mail address of the user who initiated this build. Note that this was the user's e-mail address at the time the build was initiated; this address may not represent the same end-user for all time.
- end
Time String - Time at which execution of the build was finished.
- logs
Uri String - URI where any logs for this provenance were written.
- project String
- ID of the project.
- source
Provenance Property Map - Details of the Source input to the build.
- start
Time String - Time at which execution of the build was started.
- trigger
Id String - Trigger identifier if the build was triggered automatically; empty if not.
BuildProvenanceResponse, BuildProvenanceResponseArgs
- Build
Options Dictionary<string, string> - Special options applied to this build. This is a catch-all field where build providers can enter any desired additional details.
- Builder
Version string - Version string of the builder at the time this build was executed.
- Built
Artifacts List<Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Artifact Response> - Output of the build.
- Commands
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Command Response> - Commands requested by the build.
- Create
Time string - Time at which the build was created.
- Creator string
- E-mail address of the user who initiated this build. Note that this was the user's e-mail address at the time the build was initiated; this address may not represent the same end-user for all time.
- End
Time string - Time at which execution of the build was finished.
- Logs
Uri string - URI where any logs for this provenance were written.
- Project string
- ID of the project.
- Source
Provenance Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Source Response - Details of the Source input to the build.
- Start
Time string - Time at which execution of the build was started.
- Trigger
Id string - Trigger identifier if the build was triggered automatically; empty if not.
- Build
Options map[string]string - Special options applied to this build. This is a catch-all field where build providers can enter any desired additional details.
- Builder
Version string - Version string of the builder at the time this build was executed.
- Built
Artifacts []ArtifactResponse - Output of the build.
- Commands
[]Command
Response - Commands requested by the build.
- Create
Time string - Time at which the build was created.
- Creator string
- E-mail address of the user who initiated this build. Note that this was the user's e-mail address at the time the build was initiated; this address may not represent the same end-user for all time.
- End
Time string - Time at which execution of the build was finished.
- Logs
Uri string - URI where any logs for this provenance were written.
- Project string
- ID of the project.
- Source
Provenance SourceResponse - Details of the Source input to the build.
- Start
Time string - Time at which execution of the build was started.
- Trigger
Id string - Trigger identifier if the build was triggered automatically; empty if not.
- build
Options Map<String,String> - Special options applied to this build. This is a catch-all field where build providers can enter any desired additional details.
- builder
Version String - Version string of the builder at the time this build was executed.
- built
Artifacts List<ArtifactResponse> - Output of the build.
- commands
List<Command
Response> - Commands requested by the build.
- create
Time String - Time at which the build was created.
- creator String
- E-mail address of the user who initiated this build. Note that this was the user's e-mail address at the time the build was initiated; this address may not represent the same end-user for all time.
- end
Time String - Time at which execution of the build was finished.
- logs
Uri String - URI where any logs for this provenance were written.
- project String
- ID of the project.
- source
Provenance SourceResponse - Details of the Source input to the build.
- start
Time String - Time at which execution of the build was started.
- trigger
Id String - Trigger identifier if the build was triggered automatically; empty if not.
- build
Options {[key: string]: string} - Special options applied to this build. This is a catch-all field where build providers can enter any desired additional details.
- builder
Version string - Version string of the builder at the time this build was executed.
- built
Artifacts ArtifactResponse[] - Output of the build.
- commands
Command
Response[] - Commands requested by the build.
- create
Time string - Time at which the build was created.
- creator string
- E-mail address of the user who initiated this build. Note that this was the user's e-mail address at the time the build was initiated; this address may not represent the same end-user for all time.
- end
Time string - Time at which execution of the build was finished.
- logs
Uri string - URI where any logs for this provenance were written.
- project string
- ID of the project.
- source
Provenance SourceResponse - Details of the Source input to the build.
- start
Time string - Time at which execution of the build was started.
- trigger
Id string - Trigger identifier if the build was triggered automatically; empty if not.
- build_
options Mapping[str, str] - Special options applied to this build. This is a catch-all field where build providers can enter any desired additional details.
- builder_
version str - Version string of the builder at the time this build was executed.
- built_
artifacts Sequence[ArtifactResponse] - Output of the build.
- commands
Sequence[Command
Response] - Commands requested by the build.
- create_
time str - Time at which the build was created.
- creator str
- E-mail address of the user who initiated this build. Note that this was the user's e-mail address at the time the build was initiated; this address may not represent the same end-user for all time.
- end_
time str - Time at which execution of the build was finished.
- logs_
uri str - URI where any logs for this provenance were written.
- project str
- ID of the project.
- source_
provenance SourceResponse - Details of the Source input to the build.
- start_
time str - Time at which execution of the build was started.
- trigger_
id str - Trigger identifier if the build was triggered automatically; empty if not.
- build
Options Map<String> - Special options applied to this build. This is a catch-all field where build providers can enter any desired additional details.
- builder
Version String - Version string of the builder at the time this build was executed.
- built
Artifacts List<Property Map> - Output of the build.
- commands List<Property Map>
- Commands requested by the build.
- create
Time String - Time at which the build was created.
- creator String
- E-mail address of the user who initiated this build. Note that this was the user's e-mail address at the time the build was initiated; this address may not represent the same end-user for all time.
- end
Time String - Time at which execution of the build was finished.
- logs
Uri String - URI where any logs for this provenance were written.
- project String
- ID of the project.
- source
Provenance Property Map - Details of the Source input to the build.
- start
Time String - Time at which execution of the build was started.
- trigger
Id String - Trigger identifier if the build was triggered automatically; empty if not.
ByProducts, ByProductsArgs
- Custom
Values Dictionary<string, string>
- Custom
Values map[string]string
- custom
Values Map<String,String>
- custom
Values {[key: string]: string}
- custom_
values Mapping[str, str]
- custom
Values Map<String>
ByProductsResponse, ByProductsResponseArgs
- Custom
Values Dictionary<string, string>
- Custom
Values map[string]string
- custom
Values Map<String,String>
- custom
Values {[key: string]: string}
- custom_
values Mapping[str, str]
- custom
Values Map<String>
CVSS, CVSSArgs
- Attack
Complexity Pulumi.Google Native. Container Analysis. V1Beta1. CVSSAttack Complexity - Defined in CVSS v3, CVSS v2
- Attack
Vector Pulumi.Google Native. Container Analysis. V1Beta1. CVSSAttack Vector - Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
- Authentication
Pulumi.
Google Native. Container Analysis. V1Beta1. CVSSAuthentication - Defined in CVSS v2
- Availability
Impact Pulumi.Google Native. Container Analysis. V1Beta1. CVSSAvailability Impact - Defined in CVSS v3, CVSS v2
- Base
Score double - The base score is a function of the base metric scores.
- Confidentiality
Impact Pulumi.Google Native. Container Analysis. V1Beta1. CVSSConfidentiality Impact - Defined in CVSS v3, CVSS v2
- Exploitability
Score double - Impact
Score double - Integrity
Impact Pulumi.Google Native. Container Analysis. V1Beta1. CVSSIntegrity Impact - Defined in CVSS v3, CVSS v2
- Privileges
Required Pulumi.Google Native. Container Analysis. V1Beta1. CVSSPrivileges Required - Defined in CVSS v3
- Scope
Pulumi.
Google Native. Container Analysis. V1Beta1. CVSSScope - Defined in CVSS v3
- User
Interaction Pulumi.Google Native. Container Analysis. V1Beta1. CVSSUser Interaction - Defined in CVSS v3
- Attack
Complexity CVSSAttackComplexity - Defined in CVSS v3, CVSS v2
- Attack
Vector CVSSAttackVector - Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
- Authentication CVSSAuthentication
- Defined in CVSS v2
- Availability
Impact CVSSAvailabilityImpact - Defined in CVSS v3, CVSS v2
- Base
Score float64 - The base score is a function of the base metric scores.
- Confidentiality
Impact CVSSConfidentialityImpact - Defined in CVSS v3, CVSS v2
- Exploitability
Score float64 - Impact
Score float64 - Integrity
Impact CVSSIntegrityImpact - Defined in CVSS v3, CVSS v2
- Privileges
Required CVSSPrivilegesRequired - Defined in CVSS v3
- Scope CVSSScope
- Defined in CVSS v3
- User
Interaction CVSSUserInteraction - Defined in CVSS v3
- attack
Complexity CVSSAttackComplexity - Defined in CVSS v3, CVSS v2
- attack
Vector CVSSAttackVector - Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
- authentication CVSSAuthentication
- Defined in CVSS v2
- availability
Impact CVSSAvailabilityImpact - Defined in CVSS v3, CVSS v2
- base
Score Double - The base score is a function of the base metric scores.
- confidentiality
Impact CVSSConfidentialityImpact - Defined in CVSS v3, CVSS v2
- exploitability
Score Double - impact
Score Double - integrity
Impact CVSSIntegrityImpact - Defined in CVSS v3, CVSS v2
- privileges
Required CVSSPrivilegesRequired - Defined in CVSS v3
- scope CVSSScope
- Defined in CVSS v3
- user
Interaction CVSSUserInteraction - Defined in CVSS v3
- attack
Complexity CVSSAttackComplexity - Defined in CVSS v3, CVSS v2
- attack
Vector CVSSAttackVector - Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
- authentication CVSSAuthentication
- Defined in CVSS v2
- availability
Impact CVSSAvailabilityImpact - Defined in CVSS v3, CVSS v2
- base
Score number - The base score is a function of the base metric scores.
- confidentiality
Impact CVSSConfidentialityImpact - Defined in CVSS v3, CVSS v2
- exploitability
Score number - impact
Score number - integrity
Impact CVSSIntegrityImpact - Defined in CVSS v3, CVSS v2
- privileges
Required CVSSPrivilegesRequired - Defined in CVSS v3
- scope CVSSScope
- Defined in CVSS v3
- user
Interaction CVSSUserInteraction - Defined in CVSS v3
- attack_
complexity CVSSAttackComplexity - Defined in CVSS v3, CVSS v2
- attack_
vector CVSSAttackVector - Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
- authentication CVSSAuthentication
- Defined in CVSS v2
- availability_
impact CVSSAvailabilityImpact - Defined in CVSS v3, CVSS v2
- base_
score float - The base score is a function of the base metric scores.
- confidentiality_
impact CVSSConfidentialityImpact - Defined in CVSS v3, CVSS v2
- exploitability_
score float - impact_
score float - integrity_
impact CVSSIntegrityImpact - Defined in CVSS v3, CVSS v2
- privileges_
required CVSSPrivilegesRequired - Defined in CVSS v3
- scope CVSSScope
- Defined in CVSS v3
- user_
interaction CVSSUserInteraction - Defined in CVSS v3
- attack
Complexity "ATTACK_COMPLEXITY_UNSPECIFIED" | "ATTACK_COMPLEXITY_LOW" | "ATTACK_COMPLEXITY_HIGH" | "ATTACK_COMPLEXITY_MEDIUM" - Defined in CVSS v3, CVSS v2
- attack
Vector "ATTACK_VECTOR_UNSPECIFIED" | "ATTACK_VECTOR_NETWORK" | "ATTACK_VECTOR_ADJACENT" | "ATTACK_VECTOR_LOCAL" | "ATTACK_VECTOR_PHYSICAL" - Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
- authentication "AUTHENTICATION_UNSPECIFIED" | "AUTHENTICATION_MULTIPLE" | "AUTHENTICATION_SINGLE" | "AUTHENTICATION_NONE"
- Defined in CVSS v2
- availability
Impact "IMPACT_UNSPECIFIED" | "IMPACT_HIGH" | "IMPACT_LOW" | "IMPACT_NONE" | "IMPACT_PARTIAL" | "IMPACT_COMPLETE" - Defined in CVSS v3, CVSS v2
- base
Score Number - The base score is a function of the base metric scores.
- confidentiality
Impact "IMPACT_UNSPECIFIED" | "IMPACT_HIGH" | "IMPACT_LOW" | "IMPACT_NONE" | "IMPACT_PARTIAL" | "IMPACT_COMPLETE" - Defined in CVSS v3, CVSS v2
- exploitability
Score Number - impact
Score Number - integrity
Impact "IMPACT_UNSPECIFIED" | "IMPACT_HIGH" | "IMPACT_LOW" | "IMPACT_NONE" | "IMPACT_PARTIAL" | "IMPACT_COMPLETE" - Defined in CVSS v3, CVSS v2
- privileges
Required "PRIVILEGES_REQUIRED_UNSPECIFIED" | "PRIVILEGES_REQUIRED_NONE" | "PRIVILEGES_REQUIRED_LOW" | "PRIVILEGES_REQUIRED_HIGH" - Defined in CVSS v3
- scope "SCOPE_UNSPECIFIED" | "SCOPE_UNCHANGED" | "SCOPE_CHANGED"
- Defined in CVSS v3
- user
Interaction "USER_INTERACTION_UNSPECIFIED" | "USER_INTERACTION_NONE" | "USER_INTERACTION_REQUIRED" - Defined in CVSS v3
CVSSAttackComplexity, CVSSAttackComplexityArgs
- Attack
Complexity Unspecified - ATTACK_COMPLEXITY_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Attack
Complexity Low - ATTACK_COMPLEXITY_LOWDefined in CVSS v3, CVSS v2
- Attack
Complexity High - ATTACK_COMPLEXITY_HIGHDefined in CVSS v3, CVSS v2
- Attack
Complexity Medium - ATTACK_COMPLEXITY_MEDIUMDefined in CVSS v2
- CVSSAttack
Complexity Attack Complexity Unspecified - ATTACK_COMPLEXITY_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- CVSSAttack
Complexity Attack Complexity Low - ATTACK_COMPLEXITY_LOWDefined in CVSS v3, CVSS v2
- CVSSAttack
Complexity Attack Complexity High - ATTACK_COMPLEXITY_HIGHDefined in CVSS v3, CVSS v2
- CVSSAttack
Complexity Attack Complexity Medium - ATTACK_COMPLEXITY_MEDIUMDefined in CVSS v2
- Attack
Complexity Unspecified - ATTACK_COMPLEXITY_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Attack
Complexity Low - ATTACK_COMPLEXITY_LOWDefined in CVSS v3, CVSS v2
- Attack
Complexity High - ATTACK_COMPLEXITY_HIGHDefined in CVSS v3, CVSS v2
- Attack
Complexity Medium - ATTACK_COMPLEXITY_MEDIUMDefined in CVSS v2
- Attack
Complexity Unspecified - ATTACK_COMPLEXITY_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Attack
Complexity Low - ATTACK_COMPLEXITY_LOWDefined in CVSS v3, CVSS v2
- Attack
Complexity High - ATTACK_COMPLEXITY_HIGHDefined in CVSS v3, CVSS v2
- Attack
Complexity Medium - ATTACK_COMPLEXITY_MEDIUMDefined in CVSS v2
- ATTACK_COMPLEXITY_UNSPECIFIED
- ATTACK_COMPLEXITY_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- ATTACK_COMPLEXITY_LOW
- ATTACK_COMPLEXITY_LOWDefined in CVSS v3, CVSS v2
- ATTACK_COMPLEXITY_HIGH
- ATTACK_COMPLEXITY_HIGHDefined in CVSS v3, CVSS v2
- ATTACK_COMPLEXITY_MEDIUM
- ATTACK_COMPLEXITY_MEDIUMDefined in CVSS v2
- "ATTACK_COMPLEXITY_UNSPECIFIED"
- ATTACK_COMPLEXITY_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- "ATTACK_COMPLEXITY_LOW"
- ATTACK_COMPLEXITY_LOWDefined in CVSS v3, CVSS v2
- "ATTACK_COMPLEXITY_HIGH"
- ATTACK_COMPLEXITY_HIGHDefined in CVSS v3, CVSS v2
- "ATTACK_COMPLEXITY_MEDIUM"
- ATTACK_COMPLEXITY_MEDIUMDefined in CVSS v2
CVSSAttackVector, CVSSAttackVectorArgs
- Attack
Vector Unspecified - ATTACK_VECTOR_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Attack
Vector Network - ATTACK_VECTOR_NETWORKDefined in CVSS v3, CVSS v2
- Attack
Vector Adjacent - ATTACK_VECTOR_ADJACENTDefined in CVSS v3, CVSS v2
- Attack
Vector Local - ATTACK_VECTOR_LOCALDefined in CVSS v3, CVSS v2
- Attack
Vector Physical - ATTACK_VECTOR_PHYSICALDefined in CVSS v3
- CVSSAttack
Vector Attack Vector Unspecified - ATTACK_VECTOR_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- CVSSAttack
Vector Attack Vector Network - ATTACK_VECTOR_NETWORKDefined in CVSS v3, CVSS v2
- CVSSAttack
Vector Attack Vector Adjacent - ATTACK_VECTOR_ADJACENTDefined in CVSS v3, CVSS v2
- CVSSAttack
Vector Attack Vector Local - ATTACK_VECTOR_LOCALDefined in CVSS v3, CVSS v2
- CVSSAttack
Vector Attack Vector Physical - ATTACK_VECTOR_PHYSICALDefined in CVSS v3
- Attack
Vector Unspecified - ATTACK_VECTOR_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Attack
Vector Network - ATTACK_VECTOR_NETWORKDefined in CVSS v3, CVSS v2
- Attack
Vector Adjacent - ATTACK_VECTOR_ADJACENTDefined in CVSS v3, CVSS v2
- Attack
Vector Local - ATTACK_VECTOR_LOCALDefined in CVSS v3, CVSS v2
- Attack
Vector Physical - ATTACK_VECTOR_PHYSICALDefined in CVSS v3
- Attack
Vector Unspecified - ATTACK_VECTOR_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Attack
Vector Network - ATTACK_VECTOR_NETWORKDefined in CVSS v3, CVSS v2
- Attack
Vector Adjacent - ATTACK_VECTOR_ADJACENTDefined in CVSS v3, CVSS v2
- Attack
Vector Local - ATTACK_VECTOR_LOCALDefined in CVSS v3, CVSS v2
- Attack
Vector Physical - ATTACK_VECTOR_PHYSICALDefined in CVSS v3
- ATTACK_VECTOR_UNSPECIFIED
- ATTACK_VECTOR_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- ATTACK_VECTOR_NETWORK
- ATTACK_VECTOR_NETWORKDefined in CVSS v3, CVSS v2
- ATTACK_VECTOR_ADJACENT
- ATTACK_VECTOR_ADJACENTDefined in CVSS v3, CVSS v2
- ATTACK_VECTOR_LOCAL
- ATTACK_VECTOR_LOCALDefined in CVSS v3, CVSS v2
- ATTACK_VECTOR_PHYSICAL
- ATTACK_VECTOR_PHYSICALDefined in CVSS v3
- "ATTACK_VECTOR_UNSPECIFIED"
- ATTACK_VECTOR_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- "ATTACK_VECTOR_NETWORK"
- ATTACK_VECTOR_NETWORKDefined in CVSS v3, CVSS v2
- "ATTACK_VECTOR_ADJACENT"
- ATTACK_VECTOR_ADJACENTDefined in CVSS v3, CVSS v2
- "ATTACK_VECTOR_LOCAL"
- ATTACK_VECTOR_LOCALDefined in CVSS v3, CVSS v2
- "ATTACK_VECTOR_PHYSICAL"
- ATTACK_VECTOR_PHYSICALDefined in CVSS v3
CVSSAuthentication, CVSSAuthenticationArgs
- Authentication
Unspecified - AUTHENTICATION_UNSPECIFIEDDefined in CVSS v2
- Authentication
Multiple - AUTHENTICATION_MULTIPLEDefined in CVSS v2
- Authentication
Single - AUTHENTICATION_SINGLEDefined in CVSS v2
- Authentication
None - AUTHENTICATION_NONEDefined in CVSS v2
- CVSSAuthentication
Authentication Unspecified - AUTHENTICATION_UNSPECIFIEDDefined in CVSS v2
- CVSSAuthentication
Authentication Multiple - AUTHENTICATION_MULTIPLEDefined in CVSS v2
- CVSSAuthentication
Authentication Single - AUTHENTICATION_SINGLEDefined in CVSS v2
- CVSSAuthentication
Authentication None - AUTHENTICATION_NONEDefined in CVSS v2
- Authentication
Unspecified - AUTHENTICATION_UNSPECIFIEDDefined in CVSS v2
- Authentication
Multiple - AUTHENTICATION_MULTIPLEDefined in CVSS v2
- Authentication
Single - AUTHENTICATION_SINGLEDefined in CVSS v2
- Authentication
None - AUTHENTICATION_NONEDefined in CVSS v2
- Authentication
Unspecified - AUTHENTICATION_UNSPECIFIEDDefined in CVSS v2
- Authentication
Multiple - AUTHENTICATION_MULTIPLEDefined in CVSS v2
- Authentication
Single - AUTHENTICATION_SINGLEDefined in CVSS v2
- Authentication
None - AUTHENTICATION_NONEDefined in CVSS v2
- AUTHENTICATION_UNSPECIFIED
- AUTHENTICATION_UNSPECIFIEDDefined in CVSS v2
- AUTHENTICATION_MULTIPLE
- AUTHENTICATION_MULTIPLEDefined in CVSS v2
- AUTHENTICATION_SINGLE
- AUTHENTICATION_SINGLEDefined in CVSS v2
- AUTHENTICATION_NONE
- AUTHENTICATION_NONEDefined in CVSS v2
- "AUTHENTICATION_UNSPECIFIED"
- AUTHENTICATION_UNSPECIFIEDDefined in CVSS v2
- "AUTHENTICATION_MULTIPLE"
- AUTHENTICATION_MULTIPLEDefined in CVSS v2
- "AUTHENTICATION_SINGLE"
- AUTHENTICATION_SINGLEDefined in CVSS v2
- "AUTHENTICATION_NONE"
- AUTHENTICATION_NONEDefined in CVSS v2
CVSSAvailabilityImpact, CVSSAvailabilityImpactArgs
- Impact
Unspecified - IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Impact
High - IMPACT_HIGHDefined in CVSS v3
- Impact
Low - IMPACT_LOWDefined in CVSS v3
- Impact
None - IMPACT_NONEDefined in CVSS v3, CVSS v2
- Impact
Partial - IMPACT_PARTIALDefined in CVSS v2
- Impact
Complete - IMPACT_COMPLETEDefined in CVSS v2
- CVSSAvailability
Impact Impact Unspecified - IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- CVSSAvailability
Impact Impact High - IMPACT_HIGHDefined in CVSS v3
- CVSSAvailability
Impact Impact Low - IMPACT_LOWDefined in CVSS v3
- CVSSAvailability
Impact Impact None - IMPACT_NONEDefined in CVSS v3, CVSS v2
- CVSSAvailability
Impact Impact Partial - IMPACT_PARTIALDefined in CVSS v2
- CVSSAvailability
Impact Impact Complete - IMPACT_COMPLETEDefined in CVSS v2
- Impact
Unspecified - IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Impact
High - IMPACT_HIGHDefined in CVSS v3
- Impact
Low - IMPACT_LOWDefined in CVSS v3
- Impact
None - IMPACT_NONEDefined in CVSS v3, CVSS v2
- Impact
Partial - IMPACT_PARTIALDefined in CVSS v2
- Impact
Complete - IMPACT_COMPLETEDefined in CVSS v2
- Impact
Unspecified - IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Impact
High - IMPACT_HIGHDefined in CVSS v3
- Impact
Low - IMPACT_LOWDefined in CVSS v3
- Impact
None - IMPACT_NONEDefined in CVSS v3, CVSS v2
- Impact
Partial - IMPACT_PARTIALDefined in CVSS v2
- Impact
Complete - IMPACT_COMPLETEDefined in CVSS v2
- IMPACT_UNSPECIFIED
- IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- IMPACT_HIGH
- IMPACT_HIGHDefined in CVSS v3
- IMPACT_LOW
- IMPACT_LOWDefined in CVSS v3
- IMPACT_NONE
- IMPACT_NONEDefined in CVSS v3, CVSS v2
- IMPACT_PARTIAL
- IMPACT_PARTIALDefined in CVSS v2
- IMPACT_COMPLETE
- IMPACT_COMPLETEDefined in CVSS v2
- "IMPACT_UNSPECIFIED"
- IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- "IMPACT_HIGH"
- IMPACT_HIGHDefined in CVSS v3
- "IMPACT_LOW"
- IMPACT_LOWDefined in CVSS v3
- "IMPACT_NONE"
- IMPACT_NONEDefined in CVSS v3, CVSS v2
- "IMPACT_PARTIAL"
- IMPACT_PARTIALDefined in CVSS v2
- "IMPACT_COMPLETE"
- IMPACT_COMPLETEDefined in CVSS v2
CVSSConfidentialityImpact, CVSSConfidentialityImpactArgs
- Impact
Unspecified - IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Impact
High - IMPACT_HIGHDefined in CVSS v3
- Impact
Low - IMPACT_LOWDefined in CVSS v3
- Impact
None - IMPACT_NONEDefined in CVSS v3, CVSS v2
- Impact
Partial - IMPACT_PARTIALDefined in CVSS v2
- Impact
Complete - IMPACT_COMPLETEDefined in CVSS v2
- CVSSConfidentiality
Impact Impact Unspecified - IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- CVSSConfidentiality
Impact Impact High - IMPACT_HIGHDefined in CVSS v3
- CVSSConfidentiality
Impact Impact Low - IMPACT_LOWDefined in CVSS v3
- CVSSConfidentiality
Impact Impact None - IMPACT_NONEDefined in CVSS v3, CVSS v2
- CVSSConfidentiality
Impact Impact Partial - IMPACT_PARTIALDefined in CVSS v2
- CVSSConfidentiality
Impact Impact Complete - IMPACT_COMPLETEDefined in CVSS v2
- Impact
Unspecified - IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Impact
High - IMPACT_HIGHDefined in CVSS v3
- Impact
Low - IMPACT_LOWDefined in CVSS v3
- Impact
None - IMPACT_NONEDefined in CVSS v3, CVSS v2
- Impact
Partial - IMPACT_PARTIALDefined in CVSS v2
- Impact
Complete - IMPACT_COMPLETEDefined in CVSS v2
- Impact
Unspecified - IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Impact
High - IMPACT_HIGHDefined in CVSS v3
- Impact
Low - IMPACT_LOWDefined in CVSS v3
- Impact
None - IMPACT_NONEDefined in CVSS v3, CVSS v2
- Impact
Partial - IMPACT_PARTIALDefined in CVSS v2
- Impact
Complete - IMPACT_COMPLETEDefined in CVSS v2
- IMPACT_UNSPECIFIED
- IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- IMPACT_HIGH
- IMPACT_HIGHDefined in CVSS v3
- IMPACT_LOW
- IMPACT_LOWDefined in CVSS v3
- IMPACT_NONE
- IMPACT_NONEDefined in CVSS v3, CVSS v2
- IMPACT_PARTIAL
- IMPACT_PARTIALDefined in CVSS v2
- IMPACT_COMPLETE
- IMPACT_COMPLETEDefined in CVSS v2
- "IMPACT_UNSPECIFIED"
- IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- "IMPACT_HIGH"
- IMPACT_HIGHDefined in CVSS v3
- "IMPACT_LOW"
- IMPACT_LOWDefined in CVSS v3
- "IMPACT_NONE"
- IMPACT_NONEDefined in CVSS v3, CVSS v2
- "IMPACT_PARTIAL"
- IMPACT_PARTIALDefined in CVSS v2
- "IMPACT_COMPLETE"
- IMPACT_COMPLETEDefined in CVSS v2
CVSSIntegrityImpact, CVSSIntegrityImpactArgs
- Impact
Unspecified - IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Impact
High - IMPACT_HIGHDefined in CVSS v3
- Impact
Low - IMPACT_LOWDefined in CVSS v3
- Impact
None - IMPACT_NONEDefined in CVSS v3, CVSS v2
- Impact
Partial - IMPACT_PARTIALDefined in CVSS v2
- Impact
Complete - IMPACT_COMPLETEDefined in CVSS v2
- CVSSIntegrity
Impact Impact Unspecified - IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- CVSSIntegrity
Impact Impact High - IMPACT_HIGHDefined in CVSS v3
- CVSSIntegrity
Impact Impact Low - IMPACT_LOWDefined in CVSS v3
- CVSSIntegrity
Impact Impact None - IMPACT_NONEDefined in CVSS v3, CVSS v2
- CVSSIntegrity
Impact Impact Partial - IMPACT_PARTIALDefined in CVSS v2
- CVSSIntegrity
Impact Impact Complete - IMPACT_COMPLETEDefined in CVSS v2
- Impact
Unspecified - IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Impact
High - IMPACT_HIGHDefined in CVSS v3
- Impact
Low - IMPACT_LOWDefined in CVSS v3
- Impact
None - IMPACT_NONEDefined in CVSS v3, CVSS v2
- Impact
Partial - IMPACT_PARTIALDefined in CVSS v2
- Impact
Complete - IMPACT_COMPLETEDefined in CVSS v2
- Impact
Unspecified - IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- Impact
High - IMPACT_HIGHDefined in CVSS v3
- Impact
Low - IMPACT_LOWDefined in CVSS v3
- Impact
None - IMPACT_NONEDefined in CVSS v3, CVSS v2
- Impact
Partial - IMPACT_PARTIALDefined in CVSS v2
- Impact
Complete - IMPACT_COMPLETEDefined in CVSS v2
- IMPACT_UNSPECIFIED
- IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- IMPACT_HIGH
- IMPACT_HIGHDefined in CVSS v3
- IMPACT_LOW
- IMPACT_LOWDefined in CVSS v3
- IMPACT_NONE
- IMPACT_NONEDefined in CVSS v3, CVSS v2
- IMPACT_PARTIAL
- IMPACT_PARTIALDefined in CVSS v2
- IMPACT_COMPLETE
- IMPACT_COMPLETEDefined in CVSS v2
- "IMPACT_UNSPECIFIED"
- IMPACT_UNSPECIFIEDDefined in CVSS v3, CVSS v2
- "IMPACT_HIGH"
- IMPACT_HIGHDefined in CVSS v3
- "IMPACT_LOW"
- IMPACT_LOWDefined in CVSS v3
- "IMPACT_NONE"
- IMPACT_NONEDefined in CVSS v3, CVSS v2
- "IMPACT_PARTIAL"
- IMPACT_PARTIALDefined in CVSS v2
- "IMPACT_COMPLETE"
- IMPACT_COMPLETEDefined in CVSS v2
CVSSPrivilegesRequired, CVSSPrivilegesRequiredArgs
- Privileges
Required Unspecified - PRIVILEGES_REQUIRED_UNSPECIFIEDDefined in CVSS v3
- Privileges
Required None - PRIVILEGES_REQUIRED_NONEDefined in CVSS v3
- Privileges
Required Low - PRIVILEGES_REQUIRED_LOWDefined in CVSS v3
- Privileges
Required High - PRIVILEGES_REQUIRED_HIGHDefined in CVSS v3
- CVSSPrivileges
Required Privileges Required Unspecified - PRIVILEGES_REQUIRED_UNSPECIFIEDDefined in CVSS v3
- CVSSPrivileges
Required Privileges Required None - PRIVILEGES_REQUIRED_NONEDefined in CVSS v3
- CVSSPrivileges
Required Privileges Required Low - PRIVILEGES_REQUIRED_LOWDefined in CVSS v3
- CVSSPrivileges
Required Privileges Required High - PRIVILEGES_REQUIRED_HIGHDefined in CVSS v3
- Privileges
Required Unspecified - PRIVILEGES_REQUIRED_UNSPECIFIEDDefined in CVSS v3
- Privileges
Required None - PRIVILEGES_REQUIRED_NONEDefined in CVSS v3
- Privileges
Required Low - PRIVILEGES_REQUIRED_LOWDefined in CVSS v3
- Privileges
Required High - PRIVILEGES_REQUIRED_HIGHDefined in CVSS v3
- Privileges
Required Unspecified - PRIVILEGES_REQUIRED_UNSPECIFIEDDefined in CVSS v3
- Privileges
Required None - PRIVILEGES_REQUIRED_NONEDefined in CVSS v3
- Privileges
Required Low - PRIVILEGES_REQUIRED_LOWDefined in CVSS v3
- Privileges
Required High - PRIVILEGES_REQUIRED_HIGHDefined in CVSS v3
- PRIVILEGES_REQUIRED_UNSPECIFIED
- PRIVILEGES_REQUIRED_UNSPECIFIEDDefined in CVSS v3
- PRIVILEGES_REQUIRED_NONE
- PRIVILEGES_REQUIRED_NONEDefined in CVSS v3
- PRIVILEGES_REQUIRED_LOW
- PRIVILEGES_REQUIRED_LOWDefined in CVSS v3
- PRIVILEGES_REQUIRED_HIGH
- PRIVILEGES_REQUIRED_HIGHDefined in CVSS v3
- "PRIVILEGES_REQUIRED_UNSPECIFIED"
- PRIVILEGES_REQUIRED_UNSPECIFIEDDefined in CVSS v3
- "PRIVILEGES_REQUIRED_NONE"
- PRIVILEGES_REQUIRED_NONEDefined in CVSS v3
- "PRIVILEGES_REQUIRED_LOW"
- PRIVILEGES_REQUIRED_LOWDefined in CVSS v3
- "PRIVILEGES_REQUIRED_HIGH"
- PRIVILEGES_REQUIRED_HIGHDefined in CVSS v3
CVSSResponse, CVSSResponseArgs
- Attack
Complexity string - Defined in CVSS v3, CVSS v2
- Attack
Vector string - Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
- Authentication string
- Defined in CVSS v2
- Availability
Impact string - Defined in CVSS v3, CVSS v2
- Base
Score double - The base score is a function of the base metric scores.
- Confidentiality
Impact string - Defined in CVSS v3, CVSS v2
- Exploitability
Score double - Impact
Score double - Integrity
Impact string - Defined in CVSS v3, CVSS v2
- Privileges
Required string - Defined in CVSS v3
- Scope string
- Defined in CVSS v3
- User
Interaction string - Defined in CVSS v3
- Attack
Complexity string - Defined in CVSS v3, CVSS v2
- Attack
Vector string - Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
- Authentication string
- Defined in CVSS v2
- Availability
Impact string - Defined in CVSS v3, CVSS v2
- Base
Score float64 - The base score is a function of the base metric scores.
- Confidentiality
Impact string - Defined in CVSS v3, CVSS v2
- Exploitability
Score float64 - Impact
Score float64 - Integrity
Impact string - Defined in CVSS v3, CVSS v2
- Privileges
Required string - Defined in CVSS v3
- Scope string
- Defined in CVSS v3
- User
Interaction string - Defined in CVSS v3
- attack
Complexity String - Defined in CVSS v3, CVSS v2
- attack
Vector String - Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
- authentication String
- Defined in CVSS v2
- availability
Impact String - Defined in CVSS v3, CVSS v2
- base
Score Double - The base score is a function of the base metric scores.
- confidentiality
Impact String - Defined in CVSS v3, CVSS v2
- exploitability
Score Double - impact
Score Double - integrity
Impact String - Defined in CVSS v3, CVSS v2
- privileges
Required String - Defined in CVSS v3
- scope String
- Defined in CVSS v3
- user
Interaction String - Defined in CVSS v3
- attack
Complexity string - Defined in CVSS v3, CVSS v2
- attack
Vector string - Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
- authentication string
- Defined in CVSS v2
- availability
Impact string - Defined in CVSS v3, CVSS v2
- base
Score number - The base score is a function of the base metric scores.
- confidentiality
Impact string - Defined in CVSS v3, CVSS v2
- exploitability
Score number - impact
Score number - integrity
Impact string - Defined in CVSS v3, CVSS v2
- privileges
Required string - Defined in CVSS v3
- scope string
- Defined in CVSS v3
- user
Interaction string - Defined in CVSS v3
- attack_
complexity str - Defined in CVSS v3, CVSS v2
- attack_
vector str - Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
- authentication str
- Defined in CVSS v2
- availability_
impact str - Defined in CVSS v3, CVSS v2
- base_
score float - The base score is a function of the base metric scores.
- confidentiality_
impact str - Defined in CVSS v3, CVSS v2
- exploitability_
score float - impact_
score float - integrity_
impact str - Defined in CVSS v3, CVSS v2
- privileges_
required str - Defined in CVSS v3
- scope str
- Defined in CVSS v3
- user_
interaction str - Defined in CVSS v3
- attack
Complexity String - Defined in CVSS v3, CVSS v2
- attack
Vector String - Base Metrics Represents the intrinsic characteristics of a vulnerability that are constant over time and across user environments. Defined in CVSS v3, CVSS v2
- authentication String
- Defined in CVSS v2
- availability
Impact String - Defined in CVSS v3, CVSS v2
- base
Score Number - The base score is a function of the base metric scores.
- confidentiality
Impact String - Defined in CVSS v3, CVSS v2
- exploitability
Score Number - impact
Score Number - integrity
Impact String - Defined in CVSS v3, CVSS v2
- privileges
Required String - Defined in CVSS v3
- scope String
- Defined in CVSS v3
- user
Interaction String - Defined in CVSS v3
CVSSScope, CVSSScopeArgs
- Scope
Unspecified - SCOPE_UNSPECIFIEDDefined in CVSS v3
- Scope
Unchanged - SCOPE_UNCHANGEDDefined in CVSS v3
- Scope
Changed - SCOPE_CHANGEDDefined in CVSS v3
- CVSSScope
Scope Unspecified - SCOPE_UNSPECIFIEDDefined in CVSS v3
- CVSSScope
Scope Unchanged - SCOPE_UNCHANGEDDefined in CVSS v3
- CVSSScope
Scope Changed - SCOPE_CHANGEDDefined in CVSS v3
- Scope
Unspecified - SCOPE_UNSPECIFIEDDefined in CVSS v3
- Scope
Unchanged - SCOPE_UNCHANGEDDefined in CVSS v3
- Scope
Changed - SCOPE_CHANGEDDefined in CVSS v3
- Scope
Unspecified - SCOPE_UNSPECIFIEDDefined in CVSS v3
- Scope
Unchanged - SCOPE_UNCHANGEDDefined in CVSS v3
- Scope
Changed - SCOPE_CHANGEDDefined in CVSS v3
- SCOPE_UNSPECIFIED
- SCOPE_UNSPECIFIEDDefined in CVSS v3
- SCOPE_UNCHANGED
- SCOPE_UNCHANGEDDefined in CVSS v3
- SCOPE_CHANGED
- SCOPE_CHANGEDDefined in CVSS v3
- "SCOPE_UNSPECIFIED"
- SCOPE_UNSPECIFIEDDefined in CVSS v3
- "SCOPE_UNCHANGED"
- SCOPE_UNCHANGEDDefined in CVSS v3
- "SCOPE_CHANGED"
- SCOPE_CHANGEDDefined in CVSS v3
CVSSUserInteraction, CVSSUserInteractionArgs
- User
Interaction Unspecified - USER_INTERACTION_UNSPECIFIEDDefined in CVSS v3
- User
Interaction None - USER_INTERACTION_NONEDefined in CVSS v3
- User
Interaction Required - USER_INTERACTION_REQUIREDDefined in CVSS v3
- CVSSUser
Interaction User Interaction Unspecified - USER_INTERACTION_UNSPECIFIEDDefined in CVSS v3
- CVSSUser
Interaction User Interaction None - USER_INTERACTION_NONEDefined in CVSS v3
- CVSSUser
Interaction User Interaction Required - USER_INTERACTION_REQUIREDDefined in CVSS v3
- User
Interaction Unspecified - USER_INTERACTION_UNSPECIFIEDDefined in CVSS v3
- User
Interaction None - USER_INTERACTION_NONEDefined in CVSS v3
- User
Interaction Required - USER_INTERACTION_REQUIREDDefined in CVSS v3
- User
Interaction Unspecified - USER_INTERACTION_UNSPECIFIEDDefined in CVSS v3
- User
Interaction None - USER_INTERACTION_NONEDefined in CVSS v3
- User
Interaction Required - USER_INTERACTION_REQUIREDDefined in CVSS v3
- USER_INTERACTION_UNSPECIFIED
- USER_INTERACTION_UNSPECIFIEDDefined in CVSS v3
- USER_INTERACTION_NONE
- USER_INTERACTION_NONEDefined in CVSS v3
- USER_INTERACTION_REQUIRED
- USER_INTERACTION_REQUIREDDefined in CVSS v3
- "USER_INTERACTION_UNSPECIFIED"
- USER_INTERACTION_UNSPECIFIEDDefined in CVSS v3
- "USER_INTERACTION_NONE"
- USER_INTERACTION_NONEDefined in CVSS v3
- "USER_INTERACTION_REQUIRED"
- USER_INTERACTION_REQUIREDDefined in CVSS v3
CloudRepoSourceContext, CloudRepoSourceContextArgs
- Alias
Context Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Alias Context - An alias, which may be a branch or tag.
- Repo
Id Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Repo Id - The ID of the repo.
- Revision
Id string - A revision ID.
- Alias
Context AliasContext - An alias, which may be a branch or tag.
- Repo
Id RepoId - The ID of the repo.
- Revision
Id string - A revision ID.
- alias
Context AliasContext - An alias, which may be a branch or tag.
- repo
Id RepoId - The ID of the repo.
- revision
Id String - A revision ID.
- alias
Context AliasContext - An alias, which may be a branch or tag.
- repo
Id RepoId - The ID of the repo.
- revision
Id string - A revision ID.
- alias_
context AliasContext - An alias, which may be a branch or tag.
- repo_
id RepoId - The ID of the repo.
- revision_
id str - A revision ID.
- alias
Context Property Map - An alias, which may be a branch or tag.
- repo
Id Property Map - The ID of the repo.
- revision
Id String - A revision ID.
CloudRepoSourceContextResponse, CloudRepoSourceContextResponseArgs
- Alias
Context Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Alias Context Response - An alias, which may be a branch or tag.
- Repo
Id Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Repo Id Response - The ID of the repo.
- Revision
Id string - A revision ID.
- Alias
Context AliasContext Response - An alias, which may be a branch or tag.
- Repo
Id RepoId Response - The ID of the repo.
- Revision
Id string - A revision ID.
- alias
Context AliasContext Response - An alias, which may be a branch or tag.
- repo
Id RepoId Response - The ID of the repo.
- revision
Id String - A revision ID.
- alias
Context AliasContext Response - An alias, which may be a branch or tag.
- repo
Id RepoId Response - The ID of the repo.
- revision
Id string - A revision ID.
- alias_
context AliasContext Response - An alias, which may be a branch or tag.
- repo_
id RepoId Response - The ID of the repo.
- revision_
id str - A revision ID.
- alias
Context Property Map - An alias, which may be a branch or tag.
- repo
Id Property Map - The ID of the repo.
- revision
Id String - A revision ID.
Command, CommandArgs
- Name string
- Name of the command, as presented on the command line, or if the command is packaged as a Docker container, as presented to
docker pull. - Args List<string>
- Command-line arguments used when executing this command.
- Dir string
- Working directory (relative to project source root) used when running this command.
- Env List<string>
- Environment variables set before running this command.
- Id string
- Optional unique identifier for this command, used in wait_for to reference this command as a dependency.
- Wait
For List<string> - The ID(s) of the command(s) that this command depends on.
- Name string
- Name of the command, as presented on the command line, or if the command is packaged as a Docker container, as presented to
docker pull. - Args []string
- Command-line arguments used when executing this command.
- Dir string
- Working directory (relative to project source root) used when running this command.
- Env []string
- Environment variables set before running this command.
- Id string
- Optional unique identifier for this command, used in wait_for to reference this command as a dependency.
- Wait
For []string - The ID(s) of the command(s) that this command depends on.
- name String
- Name of the command, as presented on the command line, or if the command is packaged as a Docker container, as presented to
docker pull. - args List<String>
- Command-line arguments used when executing this command.
- dir String
- Working directory (relative to project source root) used when running this command.
- env List<String>
- Environment variables set before running this command.
- id String
- Optional unique identifier for this command, used in wait_for to reference this command as a dependency.
- wait
For List<String> - The ID(s) of the command(s) that this command depends on.
- name string
- Name of the command, as presented on the command line, or if the command is packaged as a Docker container, as presented to
docker pull. - args string[]
- Command-line arguments used when executing this command.
- dir string
- Working directory (relative to project source root) used when running this command.
- env string[]
- Environment variables set before running this command.
- id string
- Optional unique identifier for this command, used in wait_for to reference this command as a dependency.
- wait
For string[] - The ID(s) of the command(s) that this command depends on.
- name str
- Name of the command, as presented on the command line, or if the command is packaged as a Docker container, as presented to
docker pull. - args Sequence[str]
- Command-line arguments used when executing this command.
- dir str
- Working directory (relative to project source root) used when running this command.
- env Sequence[str]
- Environment variables set before running this command.
- id str
- Optional unique identifier for this command, used in wait_for to reference this command as a dependency.
- wait_
for Sequence[str] - The ID(s) of the command(s) that this command depends on.
- name String
- Name of the command, as presented on the command line, or if the command is packaged as a Docker container, as presented to
docker pull. - args List<String>
- Command-line arguments used when executing this command.
- dir String
- Working directory (relative to project source root) used when running this command.
- env List<String>
- Environment variables set before running this command.
- id String
- Optional unique identifier for this command, used in wait_for to reference this command as a dependency.
- wait
For List<String> - The ID(s) of the command(s) that this command depends on.
CommandResponse, CommandResponseArgs
- Args List<string>
- Command-line arguments used when executing this command.
- Dir string
- Working directory (relative to project source root) used when running this command.
- Env List<string>
- Environment variables set before running this command.
- Name string
- Name of the command, as presented on the command line, or if the command is packaged as a Docker container, as presented to
docker pull. - Wait
For List<string> - The ID(s) of the command(s) that this command depends on.
- Args []string
- Command-line arguments used when executing this command.
- Dir string
- Working directory (relative to project source root) used when running this command.
- Env []string
- Environment variables set before running this command.
- Name string
- Name of the command, as presented on the command line, or if the command is packaged as a Docker container, as presented to
docker pull. - Wait
For []string - The ID(s) of the command(s) that this command depends on.
- args List<String>
- Command-line arguments used when executing this command.
- dir String
- Working directory (relative to project source root) used when running this command.
- env List<String>
- Environment variables set before running this command.
- name String
- Name of the command, as presented on the command line, or if the command is packaged as a Docker container, as presented to
docker pull. - wait
For List<String> - The ID(s) of the command(s) that this command depends on.
- args string[]
- Command-line arguments used when executing this command.
- dir string
- Working directory (relative to project source root) used when running this command.
- env string[]
- Environment variables set before running this command.
- name string
- Name of the command, as presented on the command line, or if the command is packaged as a Docker container, as presented to
docker pull. - wait
For string[] - The ID(s) of the command(s) that this command depends on.
- args Sequence[str]
- Command-line arguments used when executing this command.
- dir str
- Working directory (relative to project source root) used when running this command.
- env Sequence[str]
- Environment variables set before running this command.
- name str
- Name of the command, as presented on the command line, or if the command is packaged as a Docker container, as presented to
docker pull. - wait_
for Sequence[str] - The ID(s) of the command(s) that this command depends on.
- args List<String>
- Command-line arguments used when executing this command.
- dir String
- Working directory (relative to project source root) used when running this command.
- env List<String>
- Environment variables set before running this command.
- name String
- Name of the command, as presented on the command line, or if the command is packaged as a Docker container, as presented to
docker pull. - wait
For List<String> - The ID(s) of the command(s) that this command depends on.
Deployment, DeploymentArgs
- Deploy
Time string - Beginning of the lifetime of this deployment.
- Address string
- Address of the runtime element hosting this deployment.
- Config string
- Configuration used to create this deployment.
- Platform
Pulumi.
Google Native. Container Analysis. V1Beta1. Deployment Platform - Platform hosting this deployment.
- Undeploy
Time string - End of the lifetime of this deployment.
- User
Email string - Identity of the user that triggered this deployment.
- Deploy
Time string - Beginning of the lifetime of this deployment.
- Address string
- Address of the runtime element hosting this deployment.
- Config string
- Configuration used to create this deployment.
- Platform
Deployment
Platform - Platform hosting this deployment.
- Undeploy
Time string - End of the lifetime of this deployment.
- User
Email string - Identity of the user that triggered this deployment.
- deploy
Time String - Beginning of the lifetime of this deployment.
- address String
- Address of the runtime element hosting this deployment.
- config String
- Configuration used to create this deployment.
- platform
Deployment
Platform - Platform hosting this deployment.
- undeploy
Time String - End of the lifetime of this deployment.
- user
Email String - Identity of the user that triggered this deployment.
- deploy
Time string - Beginning of the lifetime of this deployment.
- address string
- Address of the runtime element hosting this deployment.
- config string
- Configuration used to create this deployment.
- platform
Deployment
Platform - Platform hosting this deployment.
- undeploy
Time string - End of the lifetime of this deployment.
- user
Email string - Identity of the user that triggered this deployment.
- deploy_
time str - Beginning of the lifetime of this deployment.
- address str
- Address of the runtime element hosting this deployment.
- config str
- Configuration used to create this deployment.
- platform
Deployment
Platform - Platform hosting this deployment.
- undeploy_
time str - End of the lifetime of this deployment.
- user_
email str - Identity of the user that triggered this deployment.
- deploy
Time String - Beginning of the lifetime of this deployment.
- address String
- Address of the runtime element hosting this deployment.
- config String
- Configuration used to create this deployment.
- platform "PLATFORM_UNSPECIFIED" | "GKE" | "FLEX" | "CUSTOM"
- Platform hosting this deployment.
- undeploy
Time String - End of the lifetime of this deployment.
- user
Email String - Identity of the user that triggered this deployment.
DeploymentPlatform, DeploymentPlatformArgs
- Platform
Unspecified - PLATFORM_UNSPECIFIEDUnknown.
- Gke
- GKEGoogle Container Engine.
- Flex
- FLEXGoogle App Engine: Flexible Environment.
- Custom
- CUSTOMCustom user-defined platform.
- Deployment
Platform Platform Unspecified - PLATFORM_UNSPECIFIEDUnknown.
- Deployment
Platform Gke - GKEGoogle Container Engine.
- Deployment
Platform Flex - FLEXGoogle App Engine: Flexible Environment.
- Deployment
Platform Custom - CUSTOMCustom user-defined platform.
- Platform
Unspecified - PLATFORM_UNSPECIFIEDUnknown.
- Gke
- GKEGoogle Container Engine.
- Flex
- FLEXGoogle App Engine: Flexible Environment.
- Custom
- CUSTOMCustom user-defined platform.
- Platform
Unspecified - PLATFORM_UNSPECIFIEDUnknown.
- Gke
- GKEGoogle Container Engine.
- Flex
- FLEXGoogle App Engine: Flexible Environment.
- Custom
- CUSTOMCustom user-defined platform.
- PLATFORM_UNSPECIFIED
- PLATFORM_UNSPECIFIEDUnknown.
- GKE
- GKEGoogle Container Engine.
- FLEX
- FLEXGoogle App Engine: Flexible Environment.
- CUSTOM
- CUSTOMCustom user-defined platform.
- "PLATFORM_UNSPECIFIED"
- PLATFORM_UNSPECIFIEDUnknown.
- "GKE"
- GKEGoogle Container Engine.
- "FLEX"
- FLEXGoogle App Engine: Flexible Environment.
- "CUSTOM"
- CUSTOMCustom user-defined platform.
DeploymentResponse, DeploymentResponseArgs
- Address string
- Address of the runtime element hosting this deployment.
- Config string
- Configuration used to create this deployment.
- Deploy
Time string - Beginning of the lifetime of this deployment.
- Platform string
- Platform hosting this deployment.
- Resource
Uri List<string> - Resource URI for the artifact being deployed taken from the deployable field with the same name.
- Undeploy
Time string - End of the lifetime of this deployment.
- User
Email string - Identity of the user that triggered this deployment.
- Address string
- Address of the runtime element hosting this deployment.
- Config string
- Configuration used to create this deployment.
- Deploy
Time string - Beginning of the lifetime of this deployment.
- Platform string
- Platform hosting this deployment.
- Resource
Uri []string - Resource URI for the artifact being deployed taken from the deployable field with the same name.
- Undeploy
Time string - End of the lifetime of this deployment.
- User
Email string - Identity of the user that triggered this deployment.
- address String
- Address of the runtime element hosting this deployment.
- config String
- Configuration used to create this deployment.
- deploy
Time String - Beginning of the lifetime of this deployment.
- platform String
- Platform hosting this deployment.
- resource
Uri List<String> - Resource URI for the artifact being deployed taken from the deployable field with the same name.
- undeploy
Time String - End of the lifetime of this deployment.
- user
Email String - Identity of the user that triggered this deployment.
- address string
- Address of the runtime element hosting this deployment.
- config string
- Configuration used to create this deployment.
- deploy
Time string - Beginning of the lifetime of this deployment.
- platform string
- Platform hosting this deployment.
- resource
Uri string[] - Resource URI for the artifact being deployed taken from the deployable field with the same name.
- undeploy
Time string - End of the lifetime of this deployment.
- user
Email string - Identity of the user that triggered this deployment.
- address str
- Address of the runtime element hosting this deployment.
- config str
- Configuration used to create this deployment.
- deploy_
time str - Beginning of the lifetime of this deployment.
- platform str
- Platform hosting this deployment.
- resource_
uri Sequence[str] - Resource URI for the artifact being deployed taken from the deployable field with the same name.
- undeploy_
time str - End of the lifetime of this deployment.
- user_
email str - Identity of the user that triggered this deployment.
- address String
- Address of the runtime element hosting this deployment.
- config String
- Configuration used to create this deployment.
- deploy
Time String - Beginning of the lifetime of this deployment.
- platform String
- Platform hosting this deployment.
- resource
Uri List<String> - Resource URI for the artifact being deployed taken from the deployable field with the same name.
- undeploy
Time String - End of the lifetime of this deployment.
- user
Email String - Identity of the user that triggered this deployment.
Derived, DerivedArgs
- Fingerprint
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Fingerprint - The fingerprint of the derived image.
- Layer
Info List<Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Layer> - This contains layer-specific metadata, if populated it has length "distance" and is ordered with [distance] being the layer immediately following the base image and [1] being the final layer.
- Fingerprint Fingerprint
- The fingerprint of the derived image.
- Layer
Info []Layer - This contains layer-specific metadata, if populated it has length "distance" and is ordered with [distance] being the layer immediately following the base image and [1] being the final layer.
- fingerprint Fingerprint
- The fingerprint of the derived image.
- layer
Info List<Layer> - This contains layer-specific metadata, if populated it has length "distance" and is ordered with [distance] being the layer immediately following the base image and [1] being the final layer.
- fingerprint Fingerprint
- The fingerprint of the derived image.
- layer
Info Layer[] - This contains layer-specific metadata, if populated it has length "distance" and is ordered with [distance] being the layer immediately following the base image and [1] being the final layer.
- fingerprint Fingerprint
- The fingerprint of the derived image.
- layer_
info Sequence[Layer] - This contains layer-specific metadata, if populated it has length "distance" and is ordered with [distance] being the layer immediately following the base image and [1] being the final layer.
- fingerprint Property Map
- The fingerprint of the derived image.
- layer
Info List<Property Map> - This contains layer-specific metadata, if populated it has length "distance" and is ordered with [distance] being the layer immediately following the base image and [1] being the final layer.
DerivedResponse, DerivedResponseArgs
- Base
Resource stringUrl - This contains the base image URL for the derived image occurrence.
- Distance int
- The number of layers by which this image differs from the associated image basis.
- Fingerprint
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Fingerprint Response - The fingerprint of the derived image.
- Layer
Info List<Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Layer Response> - This contains layer-specific metadata, if populated it has length "distance" and is ordered with [distance] being the layer immediately following the base image and [1] being the final layer.
- Base
Resource stringUrl - This contains the base image URL for the derived image occurrence.
- Distance int
- The number of layers by which this image differs from the associated image basis.
- Fingerprint
Fingerprint
Response - The fingerprint of the derived image.
- Layer
Info []LayerResponse - This contains layer-specific metadata, if populated it has length "distance" and is ordered with [distance] being the layer immediately following the base image and [1] being the final layer.
- base
Resource StringUrl - This contains the base image URL for the derived image occurrence.
- distance Integer
- The number of layers by which this image differs from the associated image basis.
- fingerprint
Fingerprint
Response - The fingerprint of the derived image.
- layer
Info List<LayerResponse> - This contains layer-specific metadata, if populated it has length "distance" and is ordered with [distance] being the layer immediately following the base image and [1] being the final layer.
- base
Resource stringUrl - This contains the base image URL for the derived image occurrence.
- distance number
- The number of layers by which this image differs from the associated image basis.
- fingerprint
Fingerprint
Response - The fingerprint of the derived image.
- layer
Info LayerResponse[] - This contains layer-specific metadata, if populated it has length "distance" and is ordered with [distance] being the layer immediately following the base image and [1] being the final layer.
- base_
resource_ strurl - This contains the base image URL for the derived image occurrence.
- distance int
- The number of layers by which this image differs from the associated image basis.
- fingerprint
Fingerprint
Response - The fingerprint of the derived image.
- layer_
info Sequence[LayerResponse] - This contains layer-specific metadata, if populated it has length "distance" and is ordered with [distance] being the layer immediately following the base image and [1] being the final layer.
- base
Resource StringUrl - This contains the base image URL for the derived image occurrence.
- distance Number
- The number of layers by which this image differs from the associated image basis.
- fingerprint Property Map
- The fingerprint of the derived image.
- layer
Info List<Property Map> - This contains layer-specific metadata, if populated it has length "distance" and is ordered with [distance] being the layer immediately following the base image and [1] being the final layer.
Details, DetailsArgs
- Attestation
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Attestation - Attestation for the resource.
- Attestation Attestation
- Attestation for the resource.
- attestation Attestation
- Attestation for the resource.
- attestation Attestation
- Attestation for the resource.
- attestation Attestation
- Attestation for the resource.
- attestation Property Map
- Attestation for the resource.
DetailsResponse, DetailsResponseArgs
- Attestation
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Attestation Response - Attestation for the resource.
- Attestation
Attestation
Response - Attestation for the resource.
- attestation
Attestation
Response - Attestation for the resource.
- attestation
Attestation
Response - Attestation for the resource.
- attestation
Attestation
Response - Attestation for the resource.
- attestation Property Map
- Attestation for the resource.
Discovered, DiscoveredArgs
- Analysis
Completed Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Analysis Completed - Analysis
Error List<Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Status> - Indicates any errors encountered during analysis of a resource. There could be 0 or more of these errors.
- Analysis
Status Pulumi.Google Native. Container Analysis. V1Beta1. Discovered Analysis Status - The status of discovery for the resource.
- Analysis
Status Pulumi.Error Google Native. Container Analysis. V1Beta1. Inputs. Status - When an error is encountered this will contain a LocalizedMessage under details to show to the user. The LocalizedMessage is output only and populated by the API.
- Continuous
Analysis Pulumi.Google Native. Container Analysis. V1Beta1. Discovered Continuous Analysis - Whether the resource is continuously analyzed.
- Last
Analysis stringTime - The last time continuous analysis was done for this resource. Deprecated, do not use.
- Last
Scan stringTime - The last time this resource was scanned.
- Sbom
Status Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. SBOMStatus - The status of an SBOM generation.
- Analysis
Completed AnalysisCompleted - Analysis
Error []Status - Indicates any errors encountered during analysis of a resource. There could be 0 or more of these errors.
- Analysis
Status DiscoveredAnalysis Status - The status of discovery for the resource.
- Analysis
Status StatusError - When an error is encountered this will contain a LocalizedMessage under details to show to the user. The LocalizedMessage is output only and populated by the API.
- Continuous
Analysis DiscoveredContinuous Analysis - Whether the resource is continuously analyzed.
- Last
Analysis stringTime - The last time continuous analysis was done for this resource. Deprecated, do not use.
- Last
Scan stringTime - The last time this resource was scanned.
- Sbom
Status SBOMStatus - The status of an SBOM generation.
- analysis
Completed AnalysisCompleted - analysis
Error List<Status> - Indicates any errors encountered during analysis of a resource. There could be 0 or more of these errors.
- analysis
Status DiscoveredAnalysis Status - The status of discovery for the resource.
- analysis
Status StatusError - When an error is encountered this will contain a LocalizedMessage under details to show to the user. The LocalizedMessage is output only and populated by the API.
- continuous
Analysis DiscoveredContinuous Analysis - Whether the resource is continuously analyzed.
- last
Analysis StringTime - The last time continuous analysis was done for this resource. Deprecated, do not use.
- last
Scan StringTime - The last time this resource was scanned.
- sbom
Status SBOMStatus - The status of an SBOM generation.
- analysis
Completed AnalysisCompleted - analysis
Error Status[] - Indicates any errors encountered during analysis of a resource. There could be 0 or more of these errors.
- analysis
Status DiscoveredAnalysis Status - The status of discovery for the resource.
- analysis
Status StatusError - When an error is encountered this will contain a LocalizedMessage under details to show to the user. The LocalizedMessage is output only and populated by the API.
- continuous
Analysis DiscoveredContinuous Analysis - Whether the resource is continuously analyzed.
- last
Analysis stringTime - The last time continuous analysis was done for this resource. Deprecated, do not use.
- last
Scan stringTime - The last time this resource was scanned.
- sbom
Status SBOMStatus - The status of an SBOM generation.
- analysis_
completed AnalysisCompleted - analysis_
error Sequence[Status] - Indicates any errors encountered during analysis of a resource. There could be 0 or more of these errors.
- analysis_
status DiscoveredAnalysis Status - The status of discovery for the resource.
- analysis_
status_ Statuserror - When an error is encountered this will contain a LocalizedMessage under details to show to the user. The LocalizedMessage is output only and populated by the API.
- continuous_
analysis DiscoveredContinuous Analysis - Whether the resource is continuously analyzed.
- last_
analysis_ strtime - The last time continuous analysis was done for this resource. Deprecated, do not use.
- last_
scan_ strtime - The last time this resource was scanned.
- sbom_
status SBOMStatus - The status of an SBOM generation.
- analysis
Completed Property Map - analysis
Error List<Property Map> - Indicates any errors encountered during analysis of a resource. There could be 0 or more of these errors.
- analysis
Status "ANALYSIS_STATUS_UNSPECIFIED" | "PENDING" | "SCANNING" | "FINISHED_SUCCESS" | "COMPLETE" | "FINISHED_FAILED" | "FINISHED_UNSUPPORTED" - The status of discovery for the resource.
- analysis
Status Property MapError - When an error is encountered this will contain a LocalizedMessage under details to show to the user. The LocalizedMessage is output only and populated by the API.
- continuous
Analysis "CONTINUOUS_ANALYSIS_UNSPECIFIED" | "ACTIVE" | "INACTIVE" - Whether the resource is continuously analyzed.
- last
Analysis StringTime - The last time continuous analysis was done for this resource. Deprecated, do not use.
- last
Scan StringTime - The last time this resource was scanned.
- sbom
Status Property Map - The status of an SBOM generation.
DiscoveredAnalysisStatus, DiscoveredAnalysisStatusArgs
- Analysis
Status Unspecified - ANALYSIS_STATUS_UNSPECIFIEDUnknown.
- Pending
- PENDINGResource is known but no action has been taken yet.
- Scanning
- SCANNINGResource is being analyzed.
- Finished
Success - FINISHED_SUCCESSAnalysis has finished successfully.
- Complete
- COMPLETEAnalysis has completed.
- Finished
Failed - FINISHED_FAILEDAnalysis has finished unsuccessfully, the analysis itself is in a bad state.
- Finished
Unsupported - FINISHED_UNSUPPORTEDThe resource is known not to be supported
- Discovered
Analysis Status Analysis Status Unspecified - ANALYSIS_STATUS_UNSPECIFIEDUnknown.
- Discovered
Analysis Status Pending - PENDINGResource is known but no action has been taken yet.
- Discovered
Analysis Status Scanning - SCANNINGResource is being analyzed.
- Discovered
Analysis Status Finished Success - FINISHED_SUCCESSAnalysis has finished successfully.
- Discovered
Analysis Status Complete - COMPLETEAnalysis has completed.
- Discovered
Analysis Status Finished Failed - FINISHED_FAILEDAnalysis has finished unsuccessfully, the analysis itself is in a bad state.
- Discovered
Analysis Status Finished Unsupported - FINISHED_UNSUPPORTEDThe resource is known not to be supported
- Analysis
Status Unspecified - ANALYSIS_STATUS_UNSPECIFIEDUnknown.
- Pending
- PENDINGResource is known but no action has been taken yet.
- Scanning
- SCANNINGResource is being analyzed.
- Finished
Success - FINISHED_SUCCESSAnalysis has finished successfully.
- Complete
- COMPLETEAnalysis has completed.
- Finished
Failed - FINISHED_FAILEDAnalysis has finished unsuccessfully, the analysis itself is in a bad state.
- Finished
Unsupported - FINISHED_UNSUPPORTEDThe resource is known not to be supported
- Analysis
Status Unspecified - ANALYSIS_STATUS_UNSPECIFIEDUnknown.
- Pending
- PENDINGResource is known but no action has been taken yet.
- Scanning
- SCANNINGResource is being analyzed.
- Finished
Success - FINISHED_SUCCESSAnalysis has finished successfully.
- Complete
- COMPLETEAnalysis has completed.
- Finished
Failed - FINISHED_FAILEDAnalysis has finished unsuccessfully, the analysis itself is in a bad state.
- Finished
Unsupported - FINISHED_UNSUPPORTEDThe resource is known not to be supported
- ANALYSIS_STATUS_UNSPECIFIED
- ANALYSIS_STATUS_UNSPECIFIEDUnknown.
- PENDING
- PENDINGResource is known but no action has been taken yet.
- SCANNING
- SCANNINGResource is being analyzed.
- FINISHED_SUCCESS
- FINISHED_SUCCESSAnalysis has finished successfully.
- COMPLETE
- COMPLETEAnalysis has completed.
- FINISHED_FAILED
- FINISHED_FAILEDAnalysis has finished unsuccessfully, the analysis itself is in a bad state.
- FINISHED_UNSUPPORTED
- FINISHED_UNSUPPORTEDThe resource is known not to be supported
- "ANALYSIS_STATUS_UNSPECIFIED"
- ANALYSIS_STATUS_UNSPECIFIEDUnknown.
- "PENDING"
- PENDINGResource is known but no action has been taken yet.
- "SCANNING"
- SCANNINGResource is being analyzed.
- "FINISHED_SUCCESS"
- FINISHED_SUCCESSAnalysis has finished successfully.
- "COMPLETE"
- COMPLETEAnalysis has completed.
- "FINISHED_FAILED"
- FINISHED_FAILEDAnalysis has finished unsuccessfully, the analysis itself is in a bad state.
- "FINISHED_UNSUPPORTED"
- FINISHED_UNSUPPORTEDThe resource is known not to be supported
DiscoveredContinuousAnalysis, DiscoveredContinuousAnalysisArgs
- Continuous
Analysis Unspecified - CONTINUOUS_ANALYSIS_UNSPECIFIEDUnknown.
- Active
- ACTIVEThe resource is continuously analyzed.
- Inactive
- INACTIVEThe resource is ignored for continuous analysis.
- Discovered
Continuous Analysis Continuous Analysis Unspecified - CONTINUOUS_ANALYSIS_UNSPECIFIEDUnknown.
- Discovered
Continuous Analysis Active - ACTIVEThe resource is continuously analyzed.
- Discovered
Continuous Analysis Inactive - INACTIVEThe resource is ignored for continuous analysis.
- Continuous
Analysis Unspecified - CONTINUOUS_ANALYSIS_UNSPECIFIEDUnknown.
- Active
- ACTIVEThe resource is continuously analyzed.
- Inactive
- INACTIVEThe resource is ignored for continuous analysis.
- Continuous
Analysis Unspecified - CONTINUOUS_ANALYSIS_UNSPECIFIEDUnknown.
- Active
- ACTIVEThe resource is continuously analyzed.
- Inactive
- INACTIVEThe resource is ignored for continuous analysis.
- CONTINUOUS_ANALYSIS_UNSPECIFIED
- CONTINUOUS_ANALYSIS_UNSPECIFIEDUnknown.
- ACTIVE
- ACTIVEThe resource is continuously analyzed.
- INACTIVE
- INACTIVEThe resource is ignored for continuous analysis.
- "CONTINUOUS_ANALYSIS_UNSPECIFIED"
- CONTINUOUS_ANALYSIS_UNSPECIFIEDUnknown.
- "ACTIVE"
- ACTIVEThe resource is continuously analyzed.
- "INACTIVE"
- INACTIVEThe resource is ignored for continuous analysis.
DiscoveredResponse, DiscoveredResponseArgs
- Analysis
Completed Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Analysis Completed Response - Analysis
Error List<Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Status Response> - Indicates any errors encountered during analysis of a resource. There could be 0 or more of these errors.
- Analysis
Status string - The status of discovery for the resource.
- Analysis
Status Pulumi.Error Google Native. Container Analysis. V1Beta1. Inputs. Status Response - When an error is encountered this will contain a LocalizedMessage under details to show to the user. The LocalizedMessage is output only and populated by the API.
- Continuous
Analysis string - Whether the resource is continuously analyzed.
- Last
Analysis stringTime - The last time continuous analysis was done for this resource. Deprecated, do not use.
- Last
Scan stringTime - The last time this resource was scanned.
- Sbom
Status Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. SBOMStatus Response - The status of an SBOM generation.
- Analysis
Completed AnalysisCompleted Response - Analysis
Error []StatusResponse - Indicates any errors encountered during analysis of a resource. There could be 0 or more of these errors.
- Analysis
Status string - The status of discovery for the resource.
- Analysis
Status StatusError Response - When an error is encountered this will contain a LocalizedMessage under details to show to the user. The LocalizedMessage is output only and populated by the API.
- Continuous
Analysis string - Whether the resource is continuously analyzed.
- Last
Analysis stringTime - The last time continuous analysis was done for this resource. Deprecated, do not use.
- Last
Scan stringTime - The last time this resource was scanned.
- Sbom
Status SBOMStatusResponse - The status of an SBOM generation.
- analysis
Completed AnalysisCompleted Response - analysis
Error List<StatusResponse> - Indicates any errors encountered during analysis of a resource. There could be 0 or more of these errors.
- analysis
Status String - The status of discovery for the resource.
- analysis
Status StatusError Response - When an error is encountered this will contain a LocalizedMessage under details to show to the user. The LocalizedMessage is output only and populated by the API.
- continuous
Analysis String - Whether the resource is continuously analyzed.
- last
Analysis StringTime - The last time continuous analysis was done for this resource. Deprecated, do not use.
- last
Scan StringTime - The last time this resource was scanned.
- sbom
Status SBOMStatusResponse - The status of an SBOM generation.
- analysis
Completed AnalysisCompleted Response - analysis
Error StatusResponse[] - Indicates any errors encountered during analysis of a resource. There could be 0 or more of these errors.
- analysis
Status string - The status of discovery for the resource.
- analysis
Status StatusError Response - When an error is encountered this will contain a LocalizedMessage under details to show to the user. The LocalizedMessage is output only and populated by the API.
- continuous
Analysis string - Whether the resource is continuously analyzed.
- last
Analysis stringTime - The last time continuous analysis was done for this resource. Deprecated, do not use.
- last
Scan stringTime - The last time this resource was scanned.
- sbom
Status SBOMStatusResponse - The status of an SBOM generation.
- analysis_
completed AnalysisCompleted Response - analysis_
error Sequence[StatusResponse] - Indicates any errors encountered during analysis of a resource. There could be 0 or more of these errors.
- analysis_
status str - The status of discovery for the resource.
- analysis_
status_ Statuserror Response - When an error is encountered this will contain a LocalizedMessage under details to show to the user. The LocalizedMessage is output only and populated by the API.
- continuous_
analysis str - Whether the resource is continuously analyzed.
- last_
analysis_ strtime - The last time continuous analysis was done for this resource. Deprecated, do not use.
- last_
scan_ strtime - The last time this resource was scanned.
- sbom_
status SBOMStatusResponse - The status of an SBOM generation.
- analysis
Completed Property Map - analysis
Error List<Property Map> - Indicates any errors encountered during analysis of a resource. There could be 0 or more of these errors.
- analysis
Status String - The status of discovery for the resource.
- analysis
Status Property MapError - When an error is encountered this will contain a LocalizedMessage under details to show to the user. The LocalizedMessage is output only and populated by the API.
- continuous
Analysis String - Whether the resource is continuously analyzed.
- last
Analysis StringTime - The last time continuous analysis was done for this resource. Deprecated, do not use.
- last
Scan StringTime - The last time this resource was scanned.
- sbom
Status Property Map - The status of an SBOM generation.
DocumentOccurrence, DocumentOccurrenceArgs
- Create
Time string - Identify when the SPDX file was originally created. The date is to be specified according to combined date and time in UTC format as specified in ISO 8601 standard
- Creator
Comment string - A field for creators of the SPDX file to provide general comments about the creation of the SPDX file or any other relevant comment not included in the other fields
- Creators List<string>
- Identify who (or what, in the case of a tool) created the SPDX file. If the SPDX file was created by an individual, indicate the person's name
- Document
Comment string - A field for creators of the SPDX file content to provide comments to the consumers of the SPDX document
- External
Document List<string>Refs - Identify any external SPDX documents referenced within this SPDX document
- Id string
- Identify the current SPDX document which may be referenced in relationships by other files, packages internally and documents externally
- License
List stringVersion - A field for creators of the SPDX file to provide the version of the SPDX License List used when the SPDX file was created
- Namespace string
- Provide an SPDX document specific namespace as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the exception of the ‘#’ delimiter
- Title string
- Identify name of this document as designated by creator
- Create
Time string - Identify when the SPDX file was originally created. The date is to be specified according to combined date and time in UTC format as specified in ISO 8601 standard
- Creator
Comment string - A field for creators of the SPDX file to provide general comments about the creation of the SPDX file or any other relevant comment not included in the other fields
- Creators []string
- Identify who (or what, in the case of a tool) created the SPDX file. If the SPDX file was created by an individual, indicate the person's name
- Document
Comment string - A field for creators of the SPDX file content to provide comments to the consumers of the SPDX document
- External
Document []stringRefs - Identify any external SPDX documents referenced within this SPDX document
- Id string
- Identify the current SPDX document which may be referenced in relationships by other files, packages internally and documents externally
- License
List stringVersion - A field for creators of the SPDX file to provide the version of the SPDX License List used when the SPDX file was created
- Namespace string
- Provide an SPDX document specific namespace as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the exception of the ‘#’ delimiter
- Title string
- Identify name of this document as designated by creator
- create
Time String - Identify when the SPDX file was originally created. The date is to be specified according to combined date and time in UTC format as specified in ISO 8601 standard
- creator
Comment String - A field for creators of the SPDX file to provide general comments about the creation of the SPDX file or any other relevant comment not included in the other fields
- creators List<String>
- Identify who (or what, in the case of a tool) created the SPDX file. If the SPDX file was created by an individual, indicate the person's name
- document
Comment String - A field for creators of the SPDX file content to provide comments to the consumers of the SPDX document
- external
Document List<String>Refs - Identify any external SPDX documents referenced within this SPDX document
- id String
- Identify the current SPDX document which may be referenced in relationships by other files, packages internally and documents externally
- license
List StringVersion - A field for creators of the SPDX file to provide the version of the SPDX License List used when the SPDX file was created
- namespace String
- Provide an SPDX document specific namespace as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the exception of the ‘#’ delimiter
- title String
- Identify name of this document as designated by creator
- create
Time string - Identify when the SPDX file was originally created. The date is to be specified according to combined date and time in UTC format as specified in ISO 8601 standard
- creator
Comment string - A field for creators of the SPDX file to provide general comments about the creation of the SPDX file or any other relevant comment not included in the other fields
- creators string[]
- Identify who (or what, in the case of a tool) created the SPDX file. If the SPDX file was created by an individual, indicate the person's name
- document
Comment string - A field for creators of the SPDX file content to provide comments to the consumers of the SPDX document
- external
Document string[]Refs - Identify any external SPDX documents referenced within this SPDX document
- id string
- Identify the current SPDX document which may be referenced in relationships by other files, packages internally and documents externally
- license
List stringVersion - A field for creators of the SPDX file to provide the version of the SPDX License List used when the SPDX file was created
- namespace string
- Provide an SPDX document specific namespace as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the exception of the ‘#’ delimiter
- title string
- Identify name of this document as designated by creator
- create_
time str - Identify when the SPDX file was originally created. The date is to be specified according to combined date and time in UTC format as specified in ISO 8601 standard
- creator_
comment str - A field for creators of the SPDX file to provide general comments about the creation of the SPDX file or any other relevant comment not included in the other fields
- creators Sequence[str]
- Identify who (or what, in the case of a tool) created the SPDX file. If the SPDX file was created by an individual, indicate the person's name
- document_
comment str - A field for creators of the SPDX file content to provide comments to the consumers of the SPDX document
- external_
document_ Sequence[str]refs - Identify any external SPDX documents referenced within this SPDX document
- id str
- Identify the current SPDX document which may be referenced in relationships by other files, packages internally and documents externally
- license_
list_ strversion - A field for creators of the SPDX file to provide the version of the SPDX License List used when the SPDX file was created
- namespace str
- Provide an SPDX document specific namespace as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the exception of the ‘#’ delimiter
- title str
- Identify name of this document as designated by creator
- create
Time String - Identify when the SPDX file was originally created. The date is to be specified according to combined date and time in UTC format as specified in ISO 8601 standard
- creator
Comment String - A field for creators of the SPDX file to provide general comments about the creation of the SPDX file or any other relevant comment not included in the other fields
- creators List<String>
- Identify who (or what, in the case of a tool) created the SPDX file. If the SPDX file was created by an individual, indicate the person's name
- document
Comment String - A field for creators of the SPDX file content to provide comments to the consumers of the SPDX document
- external
Document List<String>Refs - Identify any external SPDX documents referenced within this SPDX document
- id String
- Identify the current SPDX document which may be referenced in relationships by other files, packages internally and documents externally
- license
List StringVersion - A field for creators of the SPDX file to provide the version of the SPDX License List used when the SPDX file was created
- namespace String
- Provide an SPDX document specific namespace as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the exception of the ‘#’ delimiter
- title String
- Identify name of this document as designated by creator
DocumentOccurrenceResponse, DocumentOccurrenceResponseArgs
- Create
Time string - Identify when the SPDX file was originally created. The date is to be specified according to combined date and time in UTC format as specified in ISO 8601 standard
- Creator
Comment string - A field for creators of the SPDX file to provide general comments about the creation of the SPDX file or any other relevant comment not included in the other fields
- Creators List<string>
- Identify who (or what, in the case of a tool) created the SPDX file. If the SPDX file was created by an individual, indicate the person's name
- Document
Comment string - A field for creators of the SPDX file content to provide comments to the consumers of the SPDX document
- External
Document List<string>Refs - Identify any external SPDX documents referenced within this SPDX document
- License
List stringVersion - A field for creators of the SPDX file to provide the version of the SPDX License List used when the SPDX file was created
- Namespace string
- Provide an SPDX document specific namespace as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the exception of the ‘#’ delimiter
- Title string
- Identify name of this document as designated by creator
- Create
Time string - Identify when the SPDX file was originally created. The date is to be specified according to combined date and time in UTC format as specified in ISO 8601 standard
- Creator
Comment string - A field for creators of the SPDX file to provide general comments about the creation of the SPDX file or any other relevant comment not included in the other fields
- Creators []string
- Identify who (or what, in the case of a tool) created the SPDX file. If the SPDX file was created by an individual, indicate the person's name
- Document
Comment string - A field for creators of the SPDX file content to provide comments to the consumers of the SPDX document
- External
Document []stringRefs - Identify any external SPDX documents referenced within this SPDX document
- License
List stringVersion - A field for creators of the SPDX file to provide the version of the SPDX License List used when the SPDX file was created
- Namespace string
- Provide an SPDX document specific namespace as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the exception of the ‘#’ delimiter
- Title string
- Identify name of this document as designated by creator
- create
Time String - Identify when the SPDX file was originally created. The date is to be specified according to combined date and time in UTC format as specified in ISO 8601 standard
- creator
Comment String - A field for creators of the SPDX file to provide general comments about the creation of the SPDX file or any other relevant comment not included in the other fields
- creators List<String>
- Identify who (or what, in the case of a tool) created the SPDX file. If the SPDX file was created by an individual, indicate the person's name
- document
Comment String - A field for creators of the SPDX file content to provide comments to the consumers of the SPDX document
- external
Document List<String>Refs - Identify any external SPDX documents referenced within this SPDX document
- license
List StringVersion - A field for creators of the SPDX file to provide the version of the SPDX License List used when the SPDX file was created
- namespace String
- Provide an SPDX document specific namespace as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the exception of the ‘#’ delimiter
- title String
- Identify name of this document as designated by creator
- create
Time string - Identify when the SPDX file was originally created. The date is to be specified according to combined date and time in UTC format as specified in ISO 8601 standard
- creator
Comment string - A field for creators of the SPDX file to provide general comments about the creation of the SPDX file or any other relevant comment not included in the other fields
- creators string[]
- Identify who (or what, in the case of a tool) created the SPDX file. If the SPDX file was created by an individual, indicate the person's name
- document
Comment string - A field for creators of the SPDX file content to provide comments to the consumers of the SPDX document
- external
Document string[]Refs - Identify any external SPDX documents referenced within this SPDX document
- license
List stringVersion - A field for creators of the SPDX file to provide the version of the SPDX License List used when the SPDX file was created
- namespace string
- Provide an SPDX document specific namespace as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the exception of the ‘#’ delimiter
- title string
- Identify name of this document as designated by creator
- create_
time str - Identify when the SPDX file was originally created. The date is to be specified according to combined date and time in UTC format as specified in ISO 8601 standard
- creator_
comment str - A field for creators of the SPDX file to provide general comments about the creation of the SPDX file or any other relevant comment not included in the other fields
- creators Sequence[str]
- Identify who (or what, in the case of a tool) created the SPDX file. If the SPDX file was created by an individual, indicate the person's name
- document_
comment str - A field for creators of the SPDX file content to provide comments to the consumers of the SPDX document
- external_
document_ Sequence[str]refs - Identify any external SPDX documents referenced within this SPDX document
- license_
list_ strversion - A field for creators of the SPDX file to provide the version of the SPDX License List used when the SPDX file was created
- namespace str
- Provide an SPDX document specific namespace as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the exception of the ‘#’ delimiter
- title str
- Identify name of this document as designated by creator
- create
Time String - Identify when the SPDX file was originally created. The date is to be specified according to combined date and time in UTC format as specified in ISO 8601 standard
- creator
Comment String - A field for creators of the SPDX file to provide general comments about the creation of the SPDX file or any other relevant comment not included in the other fields
- creators List<String>
- Identify who (or what, in the case of a tool) created the SPDX file. If the SPDX file was created by an individual, indicate the person's name
- document
Comment String - A field for creators of the SPDX file content to provide comments to the consumers of the SPDX document
- external
Document List<String>Refs - Identify any external SPDX documents referenced within this SPDX document
- license
List StringVersion - A field for creators of the SPDX file to provide the version of the SPDX License List used when the SPDX file was created
- namespace String
- Provide an SPDX document specific namespace as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the exception of the ‘#’ delimiter
- title String
- Identify name of this document as designated by creator
Envelope, EnvelopeArgs
- Payload string
- Payload
Type string - Signatures
[]Envelope
Signature
- payload String
- payload
Type String - signatures
List<Envelope
Signature>
- payload string
- payload
Type string - signatures
Envelope
Signature[]
- payload String
- payload
Type String - signatures List<Property Map>
EnvelopeResponse, EnvelopeResponseArgs
- Payload string
- Payload
Type string - Signatures
[]Envelope
Signature Response
- payload String
- payload
Type String - signatures
List<Envelope
Signature Response>
- payload string
- payload
Type string - signatures
Envelope
Signature Response[]
- payload String
- payload
Type String - signatures List<Property Map>
EnvelopeSignature, EnvelopeSignatureArgs
EnvelopeSignatureResponse, EnvelopeSignatureResponseArgs
Environment, EnvironmentArgs
- Custom
Values Dictionary<string, string>
- Custom
Values map[string]string
- custom
Values Map<String,String>
- custom
Values {[key: string]: string}
- custom_
values Mapping[str, str]
- custom
Values Map<String>
EnvironmentResponse, EnvironmentResponseArgs
- Custom
Values Dictionary<string, string>
- Custom
Values map[string]string
- custom
Values Map<String,String>
- custom
Values {[key: string]: string}
- custom_
values Mapping[str, str]
- custom
Values Map<String>
FileOccurrence, FileOccurrenceArgs
- Attributions List<string>
- This field provides a place for the SPDX data creator to record, at the file level, acknowledgements that may be needed to be communicated in some contexts
- Comment string
- This field provides a place for the SPDX file creator to record any general comments about the file
- Contributors List<string>
- This field provides a place for the SPDX file creator to record file contributors
- Copyright string
- Identify the copyright holder of the file, as well as any dates present
- Files
License List<string>Info - This field contains the license information actually found in the file, if any
- Id string
- Uniquely identify any element in an SPDX document which may be referenced by other elements
- License
Concluded Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. License - This field contains the license the SPDX file creator has concluded as governing the file or alternative values if the governing license cannot be determined
- Notice string
- This field provides a place for the SPDX file creator to record license notices or other such related notices found in the file
- Attributions []string
- This field provides a place for the SPDX data creator to record, at the file level, acknowledgements that may be needed to be communicated in some contexts
- Comment string
- This field provides a place for the SPDX file creator to record any general comments about the file
- Contributors []string
- This field provides a place for the SPDX file creator to record file contributors
- Copyright string
- Identify the copyright holder of the file, as well as any dates present
- Files
License []stringInfo - This field contains the license information actually found in the file, if any
- Id string
- Uniquely identify any element in an SPDX document which may be referenced by other elements
- License
Concluded License - This field contains the license the SPDX file creator has concluded as governing the file or alternative values if the governing license cannot be determined
- Notice string
- This field provides a place for the SPDX file creator to record license notices or other such related notices found in the file
- attributions List<String>
- This field provides a place for the SPDX data creator to record, at the file level, acknowledgements that may be needed to be communicated in some contexts
- comment String
- This field provides a place for the SPDX file creator to record any general comments about the file
- contributors List<String>
- This field provides a place for the SPDX file creator to record file contributors
- copyright String
- Identify the copyright holder of the file, as well as any dates present
- files
License List<String>Info - This field contains the license information actually found in the file, if any
- id String
- Uniquely identify any element in an SPDX document which may be referenced by other elements
- license
Concluded License - This field contains the license the SPDX file creator has concluded as governing the file or alternative values if the governing license cannot be determined
- notice String
- This field provides a place for the SPDX file creator to record license notices or other such related notices found in the file
- attributions string[]
- This field provides a place for the SPDX data creator to record, at the file level, acknowledgements that may be needed to be communicated in some contexts
- comment string
- This field provides a place for the SPDX file creator to record any general comments about the file
- contributors string[]
- This field provides a place for the SPDX file creator to record file contributors
- copyright string
- Identify the copyright holder of the file, as well as any dates present
- files
License string[]Info - This field contains the license information actually found in the file, if any
- id string
- Uniquely identify any element in an SPDX document which may be referenced by other elements
- license
Concluded License - This field contains the license the SPDX file creator has concluded as governing the file or alternative values if the governing license cannot be determined
- notice string
- This field provides a place for the SPDX file creator to record license notices or other such related notices found in the file
- attributions Sequence[str]
- This field provides a place for the SPDX data creator to record, at the file level, acknowledgements that may be needed to be communicated in some contexts
- comment str
- This field provides a place for the SPDX file creator to record any general comments about the file
- contributors Sequence[str]
- This field provides a place for the SPDX file creator to record file contributors
- copyright str
- Identify the copyright holder of the file, as well as any dates present
- files_
license_ Sequence[str]info - This field contains the license information actually found in the file, if any
- id str
- Uniquely identify any element in an SPDX document which may be referenced by other elements
- license_
concluded License - This field contains the license the SPDX file creator has concluded as governing the file or alternative values if the governing license cannot be determined
- notice str
- This field provides a place for the SPDX file creator to record license notices or other such related notices found in the file
- attributions List<String>
- This field provides a place for the SPDX data creator to record, at the file level, acknowledgements that may be needed to be communicated in some contexts
- comment String
- This field provides a place for the SPDX file creator to record any general comments about the file
- contributors List<String>
- This field provides a place for the SPDX file creator to record file contributors
- copyright String
- Identify the copyright holder of the file, as well as any dates present
- files
License List<String>Info - This field contains the license information actually found in the file, if any
- id String
- Uniquely identify any element in an SPDX document which may be referenced by other elements
- license
Concluded Property Map - This field contains the license the SPDX file creator has concluded as governing the file or alternative values if the governing license cannot be determined
- notice String
- This field provides a place for the SPDX file creator to record license notices or other such related notices found in the file
FileOccurrenceResponse, FileOccurrenceResponseArgs
- Attributions List<string>
- This field provides a place for the SPDX data creator to record, at the file level, acknowledgements that may be needed to be communicated in some contexts
- Comment string
- This field provides a place for the SPDX file creator to record any general comments about the file
- Contributors List<string>
- This field provides a place for the SPDX file creator to record file contributors
- Copyright string
- Identify the copyright holder of the file, as well as any dates present
- Files
License List<string>Info - This field contains the license information actually found in the file, if any
- License
Concluded Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. License Response - This field contains the license the SPDX file creator has concluded as governing the file or alternative values if the governing license cannot be determined
- Notice string
- This field provides a place for the SPDX file creator to record license notices or other such related notices found in the file
- Attributions []string
- This field provides a place for the SPDX data creator to record, at the file level, acknowledgements that may be needed to be communicated in some contexts
- Comment string
- This field provides a place for the SPDX file creator to record any general comments about the file
- Contributors []string
- This field provides a place for the SPDX file creator to record file contributors
- Copyright string
- Identify the copyright holder of the file, as well as any dates present
- Files
License []stringInfo - This field contains the license information actually found in the file, if any
- License
Concluded LicenseResponse - This field contains the license the SPDX file creator has concluded as governing the file or alternative values if the governing license cannot be determined
- Notice string
- This field provides a place for the SPDX file creator to record license notices or other such related notices found in the file
- attributions List<String>
- This field provides a place for the SPDX data creator to record, at the file level, acknowledgements that may be needed to be communicated in some contexts
- comment String
- This field provides a place for the SPDX file creator to record any general comments about the file
- contributors List<String>
- This field provides a place for the SPDX file creator to record file contributors
- copyright String
- Identify the copyright holder of the file, as well as any dates present
- files
License List<String>Info - This field contains the license information actually found in the file, if any
- license
Concluded LicenseResponse - This field contains the license the SPDX file creator has concluded as governing the file or alternative values if the governing license cannot be determined
- notice String
- This field provides a place for the SPDX file creator to record license notices or other such related notices found in the file
- attributions string[]
- This field provides a place for the SPDX data creator to record, at the file level, acknowledgements that may be needed to be communicated in some contexts
- comment string
- This field provides a place for the SPDX file creator to record any general comments about the file
- contributors string[]
- This field provides a place for the SPDX file creator to record file contributors
- copyright string
- Identify the copyright holder of the file, as well as any dates present
- files
License string[]Info - This field contains the license information actually found in the file, if any
- license
Concluded LicenseResponse - This field contains the license the SPDX file creator has concluded as governing the file or alternative values if the governing license cannot be determined
- notice string
- This field provides a place for the SPDX file creator to record license notices or other such related notices found in the file
- attributions Sequence[str]
- This field provides a place for the SPDX data creator to record, at the file level, acknowledgements that may be needed to be communicated in some contexts
- comment str
- This field provides a place for the SPDX file creator to record any general comments about the file
- contributors Sequence[str]
- This field provides a place for the SPDX file creator to record file contributors
- copyright str
- Identify the copyright holder of the file, as well as any dates present
- files_
license_ Sequence[str]info - This field contains the license information actually found in the file, if any
- license_
concluded LicenseResponse - This field contains the license the SPDX file creator has concluded as governing the file or alternative values if the governing license cannot be determined
- notice str
- This field provides a place for the SPDX file creator to record license notices or other such related notices found in the file
- attributions List<String>
- This field provides a place for the SPDX data creator to record, at the file level, acknowledgements that may be needed to be communicated in some contexts
- comment String
- This field provides a place for the SPDX file creator to record any general comments about the file
- contributors List<String>
- This field provides a place for the SPDX file creator to record file contributors
- copyright String
- Identify the copyright holder of the file, as well as any dates present
- files
License List<String>Info - This field contains the license information actually found in the file, if any
- license
Concluded Property Map - This field contains the license the SPDX file creator has concluded as governing the file or alternative values if the governing license cannot be determined
- notice String
- This field provides a place for the SPDX file creator to record license notices or other such related notices found in the file
Fingerprint, FingerprintArgs
FingerprintResponse, FingerprintResponseArgs
- V1Name string
- The layer ID of the final layer in the Docker image's v1 representation.
- V2Blob List<string>
- The ordered list of v2 blobs that represent a given image.
- V2Name string
- The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
- V1Name string
- The layer ID of the final layer in the Docker image's v1 representation.
- V2Blob []string
- The ordered list of v2 blobs that represent a given image.
- V2Name string
- The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
- v1Name String
- The layer ID of the final layer in the Docker image's v1 representation.
- v2Blob List<String>
- The ordered list of v2 blobs that represent a given image.
- v2Name String
- The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
- v1Name string
- The layer ID of the final layer in the Docker image's v1 representation.
- v2Blob string[]
- The ordered list of v2 blobs that represent a given image.
- v2Name string
- The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
- v1_
name str - The layer ID of the final layer in the Docker image's v1 representation.
- v2_
blob Sequence[str] - The ordered list of v2 blobs that represent a given image.
- v2_
name str - The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
- v1Name String
- The layer ID of the final layer in the Docker image's v1 representation.
- v2Blob List<String>
- The ordered list of v2 blobs that represent a given image.
- v2Name String
- The name of the image's v2 blobs computed via: [bottom] := v2_blobbottom := sha256(v2_blob[N] + " " + v2_name[N+1]) Only the name of the final blob is kept.
GenericSignedAttestation, GenericSignedAttestationArgs
- Content
Type Pulumi.Google Native. Container Analysis. V1Beta1. Generic Signed Attestation Content Type - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- Serialized
Payload string - The serialized payload that is verified by one or more
signatures. The encoding and semantic meaning of this payload must match what is set incontent_type. - Signatures
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Signature> - One or more signatures over
serialized_payload. Verifier implementations should consider this attestation message verified if at least onesignatureverifiesserialized_payload. SeeSignaturein common.proto for more details on signature structure and verification.
- Content
Type GenericSigned Attestation Content Type - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- Serialized
Payload string - The serialized payload that is verified by one or more
signatures. The encoding and semantic meaning of this payload must match what is set incontent_type. - Signatures []Signature
- One or more signatures over
serialized_payload. Verifier implementations should consider this attestation message verified if at least onesignatureverifiesserialized_payload. SeeSignaturein common.proto for more details on signature structure and verification.
- content
Type GenericSigned Attestation Content Type - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- serialized
Payload String - The serialized payload that is verified by one or more
signatures. The encoding and semantic meaning of this payload must match what is set incontent_type. - signatures List<Signature>
- One or more signatures over
serialized_payload. Verifier implementations should consider this attestation message verified if at least onesignatureverifiesserialized_payload. SeeSignaturein common.proto for more details on signature structure and verification.
- content
Type GenericSigned Attestation Content Type - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- serialized
Payload string - The serialized payload that is verified by one or more
signatures. The encoding and semantic meaning of this payload must match what is set incontent_type. - signatures Signature[]
- One or more signatures over
serialized_payload. Verifier implementations should consider this attestation message verified if at least onesignatureverifiesserialized_payload. SeeSignaturein common.proto for more details on signature structure and verification.
- content_
type GenericSigned Attestation Content Type - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- serialized_
payload str - The serialized payload that is verified by one or more
signatures. The encoding and semantic meaning of this payload must match what is set incontent_type. - signatures Sequence[Signature]
- One or more signatures over
serialized_payload. Verifier implementations should consider this attestation message verified if at least onesignatureverifiesserialized_payload. SeeSignaturein common.proto for more details on signature structure and verification.
- content
Type "CONTENT_TYPE_UNSPECIFIED" | "SIMPLE_SIGNING_JSON" - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- serialized
Payload String - The serialized payload that is verified by one or more
signatures. The encoding and semantic meaning of this payload must match what is set incontent_type. - signatures List<Property Map>
- One or more signatures over
serialized_payload. Verifier implementations should consider this attestation message verified if at least onesignatureverifiesserialized_payload. SeeSignaturein common.proto for more details on signature structure and verification.
GenericSignedAttestationContentType, GenericSignedAttestationContentTypeArgs
- Content
Type Unspecified - CONTENT_TYPE_UNSPECIFIED
ContentTypeis not set. - Simple
Signing Json - SIMPLE_SIGNING_JSONAtomic format attestation signature. See https://github.com/containers/image/blob/8a5d2f82a6e3263290c8e0276c3e0f64e77723e7/docs/atomic-signature.md The payload extracted in
plaintextis a JSON blob conforming to the linked schema.
- Generic
Signed Attestation Content Type Content Type Unspecified - CONTENT_TYPE_UNSPECIFIED
ContentTypeis not set. - Generic
Signed Attestation Content Type Simple Signing Json - SIMPLE_SIGNING_JSONAtomic format attestation signature. See https://github.com/containers/image/blob/8a5d2f82a6e3263290c8e0276c3e0f64e77723e7/docs/atomic-signature.md The payload extracted in
plaintextis a JSON blob conforming to the linked schema.
- Content
Type Unspecified - CONTENT_TYPE_UNSPECIFIED
ContentTypeis not set. - Simple
Signing Json - SIMPLE_SIGNING_JSONAtomic format attestation signature. See https://github.com/containers/image/blob/8a5d2f82a6e3263290c8e0276c3e0f64e77723e7/docs/atomic-signature.md The payload extracted in
plaintextis a JSON blob conforming to the linked schema.
- Content
Type Unspecified - CONTENT_TYPE_UNSPECIFIED
ContentTypeis not set. - Simple
Signing Json - SIMPLE_SIGNING_JSONAtomic format attestation signature. See https://github.com/containers/image/blob/8a5d2f82a6e3263290c8e0276c3e0f64e77723e7/docs/atomic-signature.md The payload extracted in
plaintextis a JSON blob conforming to the linked schema.
- CONTENT_TYPE_UNSPECIFIED
- CONTENT_TYPE_UNSPECIFIED
ContentTypeis not set. - SIMPLE_SIGNING_JSON
- SIMPLE_SIGNING_JSONAtomic format attestation signature. See https://github.com/containers/image/blob/8a5d2f82a6e3263290c8e0276c3e0f64e77723e7/docs/atomic-signature.md The payload extracted in
plaintextis a JSON blob conforming to the linked schema.
- "CONTENT_TYPE_UNSPECIFIED"
- CONTENT_TYPE_UNSPECIFIED
ContentTypeis not set. - "SIMPLE_SIGNING_JSON"
- SIMPLE_SIGNING_JSONAtomic format attestation signature. See https://github.com/containers/image/blob/8a5d2f82a6e3263290c8e0276c3e0f64e77723e7/docs/atomic-signature.md The payload extracted in
plaintextis a JSON blob conforming to the linked schema.
GenericSignedAttestationResponse, GenericSignedAttestationResponseArgs
- Content
Type string - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- Serialized
Payload string - The serialized payload that is verified by one or more
signatures. The encoding and semantic meaning of this payload must match what is set incontent_type. - Signatures
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Signature Response> - One or more signatures over
serialized_payload. Verifier implementations should consider this attestation message verified if at least onesignatureverifiesserialized_payload. SeeSignaturein common.proto for more details on signature structure and verification.
- Content
Type string - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- Serialized
Payload string - The serialized payload that is verified by one or more
signatures. The encoding and semantic meaning of this payload must match what is set incontent_type. - Signatures
[]Signature
Response - One or more signatures over
serialized_payload. Verifier implementations should consider this attestation message verified if at least onesignatureverifiesserialized_payload. SeeSignaturein common.proto for more details on signature structure and verification.
- content
Type String - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- serialized
Payload String - The serialized payload that is verified by one or more
signatures. The encoding and semantic meaning of this payload must match what is set incontent_type. - signatures
List<Signature
Response> - One or more signatures over
serialized_payload. Verifier implementations should consider this attestation message verified if at least onesignatureverifiesserialized_payload. SeeSignaturein common.proto for more details on signature structure and verification.
- content
Type string - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- serialized
Payload string - The serialized payload that is verified by one or more
signatures. The encoding and semantic meaning of this payload must match what is set incontent_type. - signatures
Signature
Response[] - One or more signatures over
serialized_payload. Verifier implementations should consider this attestation message verified if at least onesignatureverifiesserialized_payload. SeeSignaturein common.proto for more details on signature structure and verification.
- content_
type str - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- serialized_
payload str - The serialized payload that is verified by one or more
signatures. The encoding and semantic meaning of this payload must match what is set incontent_type. - signatures
Sequence[Signature
Response] - One or more signatures over
serialized_payload. Verifier implementations should consider this attestation message verified if at least onesignatureverifiesserialized_payload. SeeSignaturein common.proto for more details on signature structure and verification.
- content
Type String - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- serialized
Payload String - The serialized payload that is verified by one or more
signatures. The encoding and semantic meaning of this payload must match what is set incontent_type. - signatures List<Property Map>
- One or more signatures over
serialized_payload. Verifier implementations should consider this attestation message verified if at least onesignatureverifiesserialized_payload. SeeSignaturein common.proto for more details on signature structure and verification.
GerritSourceContext, GerritSourceContextArgs
- Alias
Context Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Alias Context - An alias, which may be a branch or tag.
- Gerrit
Project string - The full project name within the host. Projects may be nested, so "project/subproject" is a valid project name. The "repo name" is the hostURI/project.
- Host
Uri string - The URI of a running Gerrit instance.
- Revision
Id string - A revision (commit) ID.
- Alias
Context AliasContext - An alias, which may be a branch or tag.
- Gerrit
Project string - The full project name within the host. Projects may be nested, so "project/subproject" is a valid project name. The "repo name" is the hostURI/project.
- Host
Uri string - The URI of a running Gerrit instance.
- Revision
Id string - A revision (commit) ID.
- alias
Context AliasContext - An alias, which may be a branch or tag.
- gerrit
Project String - The full project name within the host. Projects may be nested, so "project/subproject" is a valid project name. The "repo name" is the hostURI/project.
- host
Uri String - The URI of a running Gerrit instance.
- revision
Id String - A revision (commit) ID.
- alias
Context AliasContext - An alias, which may be a branch or tag.
- gerrit
Project string - The full project name within the host. Projects may be nested, so "project/subproject" is a valid project name. The "repo name" is the hostURI/project.
- host
Uri string - The URI of a running Gerrit instance.
- revision
Id string - A revision (commit) ID.
- alias_
context AliasContext - An alias, which may be a branch or tag.
- gerrit_
project str - The full project name within the host. Projects may be nested, so "project/subproject" is a valid project name. The "repo name" is the hostURI/project.
- host_
uri str - The URI of a running Gerrit instance.
- revision_
id str - A revision (commit) ID.
- alias
Context Property Map - An alias, which may be a branch or tag.
- gerrit
Project String - The full project name within the host. Projects may be nested, so "project/subproject" is a valid project name. The "repo name" is the hostURI/project.
- host
Uri String - The URI of a running Gerrit instance.
- revision
Id String - A revision (commit) ID.
GerritSourceContextResponse, GerritSourceContextResponseArgs
- Alias
Context Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Alias Context Response - An alias, which may be a branch or tag.
- Gerrit
Project string - The full project name within the host. Projects may be nested, so "project/subproject" is a valid project name. The "repo name" is the hostURI/project.
- Host
Uri string - The URI of a running Gerrit instance.
- Revision
Id string - A revision (commit) ID.
- Alias
Context AliasContext Response - An alias, which may be a branch or tag.
- Gerrit
Project string - The full project name within the host. Projects may be nested, so "project/subproject" is a valid project name. The "repo name" is the hostURI/project.
- Host
Uri string - The URI of a running Gerrit instance.
- Revision
Id string - A revision (commit) ID.
- alias
Context AliasContext Response - An alias, which may be a branch or tag.
- gerrit
Project String - The full project name within the host. Projects may be nested, so "project/subproject" is a valid project name. The "repo name" is the hostURI/project.
- host
Uri String - The URI of a running Gerrit instance.
- revision
Id String - A revision (commit) ID.
- alias
Context AliasContext Response - An alias, which may be a branch or tag.
- gerrit
Project string - The full project name within the host. Projects may be nested, so "project/subproject" is a valid project name. The "repo name" is the hostURI/project.
- host
Uri string - The URI of a running Gerrit instance.
- revision
Id string - A revision (commit) ID.
- alias_
context AliasContext Response - An alias, which may be a branch or tag.
- gerrit_
project str - The full project name within the host. Projects may be nested, so "project/subproject" is a valid project name. The "repo name" is the hostURI/project.
- host_
uri str - The URI of a running Gerrit instance.
- revision_
id str - A revision (commit) ID.
- alias
Context Property Map - An alias, which may be a branch or tag.
- gerrit
Project String - The full project name within the host. Projects may be nested, so "project/subproject" is a valid project name. The "repo name" is the hostURI/project.
- host
Uri String - The URI of a running Gerrit instance.
- revision
Id String - A revision (commit) ID.
GitSourceContext, GitSourceContextArgs
- Revision
Id string - Git commit hash.
- Url string
- Git repository URL.
- Revision
Id string - Git commit hash.
- Url string
- Git repository URL.
- revision
Id String - Git commit hash.
- url String
- Git repository URL.
- revision
Id string - Git commit hash.
- url string
- Git repository URL.
- revision_
id str - Git commit hash.
- url str
- Git repository URL.
- revision
Id String - Git commit hash.
- url String
- Git repository URL.
GitSourceContextResponse, GitSourceContextResponseArgs
- Revision
Id string - Git commit hash.
- Url string
- Git repository URL.
- Revision
Id string - Git commit hash.
- Url string
- Git repository URL.
- revision
Id String - Git commit hash.
- url String
- Git repository URL.
- revision
Id string - Git commit hash.
- url string
- Git repository URL.
- revision_
id str - Git commit hash.
- url str
- Git repository URL.
- revision
Id String - Git commit hash.
- url String
- Git repository URL.
GrafeasV1beta1BuildDetails, GrafeasV1beta1BuildDetailsArgs
- Provenance
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Build Provenance - The actual provenance for the build.
- In
Toto Pulumi.Slsa Provenance V1 Google Native. Container Analysis. V1Beta1. Inputs. In Toto Slsa Provenance V1 - Provenance
Bytes string - Serialized JSON representation of the provenance, used in generating the build signature in the corresponding build note. After verifying the signature,
provenance_bytescan be unmarshalled and compared to the provenance to confirm that it is unchanged. A base64-encoded string representation of the provenance bytes is used for the signature in order to interoperate with openssl which expects this format for signature verification. The serialized form is captured both to avoid ambiguity in how the provenance is marshalled to json as well to prevent incompatibilities with future changes.
- Provenance
Build
Provenance - The actual provenance for the build.
- In
Toto InSlsa Provenance V1 Toto Slsa Provenance V1 - Provenance
Bytes string - Serialized JSON representation of the provenance, used in generating the build signature in the corresponding build note. After verifying the signature,
provenance_bytescan be unmarshalled and compared to the provenance to confirm that it is unchanged. A base64-encoded string representation of the provenance bytes is used for the signature in order to interoperate with openssl which expects this format for signature verification. The serialized form is captured both to avoid ambiguity in how the provenance is marshalled to json as well to prevent incompatibilities with future changes.
- provenance
Build
Provenance - The actual provenance for the build.
- in
Toto InSlsa Provenance V1 Toto Slsa Provenance V1 - provenance
Bytes String - Serialized JSON representation of the provenance, used in generating the build signature in the corresponding build note. After verifying the signature,
provenance_bytescan be unmarshalled and compared to the provenance to confirm that it is unchanged. A base64-encoded string representation of the provenance bytes is used for the signature in order to interoperate with openssl which expects this format for signature verification. The serialized form is captured both to avoid ambiguity in how the provenance is marshalled to json as well to prevent incompatibilities with future changes.
- provenance
Build
Provenance - The actual provenance for the build.
- in
Toto InSlsa Provenance V1 Toto Slsa Provenance V1 - provenance
Bytes string - Serialized JSON representation of the provenance, used in generating the build signature in the corresponding build note. After verifying the signature,
provenance_bytescan be unmarshalled and compared to the provenance to confirm that it is unchanged. A base64-encoded string representation of the provenance bytes is used for the signature in order to interoperate with openssl which expects this format for signature verification. The serialized form is captured both to avoid ambiguity in how the provenance is marshalled to json as well to prevent incompatibilities with future changes.
- provenance
Build
Provenance - The actual provenance for the build.
- in_
toto_ Inslsa_ provenance_ v1 Toto Slsa Provenance V1 - provenance_
bytes str - Serialized JSON representation of the provenance, used in generating the build signature in the corresponding build note. After verifying the signature,
provenance_bytescan be unmarshalled and compared to the provenance to confirm that it is unchanged. A base64-encoded string representation of the provenance bytes is used for the signature in order to interoperate with openssl which expects this format for signature verification. The serialized form is captured both to avoid ambiguity in how the provenance is marshalled to json as well to prevent incompatibilities with future changes.
- provenance Property Map
- The actual provenance for the build.
- in
Toto Property MapSlsa Provenance V1 - provenance
Bytes String - Serialized JSON representation of the provenance, used in generating the build signature in the corresponding build note. After verifying the signature,
provenance_bytescan be unmarshalled and compared to the provenance to confirm that it is unchanged. A base64-encoded string representation of the provenance bytes is used for the signature in order to interoperate with openssl which expects this format for signature verification. The serialized form is captured both to avoid ambiguity in how the provenance is marshalled to json as well to prevent incompatibilities with future changes.
GrafeasV1beta1BuildDetailsResponse, GrafeasV1beta1BuildDetailsResponseArgs
- In
Toto Pulumi.Slsa Provenance V1 Google Native. Container Analysis. V1Beta1. Inputs. In Toto Slsa Provenance V1Response - Provenance
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Build Provenance Response - The actual provenance for the build.
- Provenance
Bytes string - Serialized JSON representation of the provenance, used in generating the build signature in the corresponding build note. After verifying the signature,
provenance_bytescan be unmarshalled and compared to the provenance to confirm that it is unchanged. A base64-encoded string representation of the provenance bytes is used for the signature in order to interoperate with openssl which expects this format for signature verification. The serialized form is captured both to avoid ambiguity in how the provenance is marshalled to json as well to prevent incompatibilities with future changes.
- In
Toto InSlsa Provenance V1 Toto Slsa Provenance V1Response - Provenance
Build
Provenance Response - The actual provenance for the build.
- Provenance
Bytes string - Serialized JSON representation of the provenance, used in generating the build signature in the corresponding build note. After verifying the signature,
provenance_bytescan be unmarshalled and compared to the provenance to confirm that it is unchanged. A base64-encoded string representation of the provenance bytes is used for the signature in order to interoperate with openssl which expects this format for signature verification. The serialized form is captured both to avoid ambiguity in how the provenance is marshalled to json as well to prevent incompatibilities with future changes.
- in
Toto InSlsa Provenance V1 Toto Slsa Provenance V1Response - provenance
Build
Provenance Response - The actual provenance for the build.
- provenance
Bytes String - Serialized JSON representation of the provenance, used in generating the build signature in the corresponding build note. After verifying the signature,
provenance_bytescan be unmarshalled and compared to the provenance to confirm that it is unchanged. A base64-encoded string representation of the provenance bytes is used for the signature in order to interoperate with openssl which expects this format for signature verification. The serialized form is captured both to avoid ambiguity in how the provenance is marshalled to json as well to prevent incompatibilities with future changes.
- in
Toto InSlsa Provenance V1 Toto Slsa Provenance V1Response - provenance
Build
Provenance Response - The actual provenance for the build.
- provenance
Bytes string - Serialized JSON representation of the provenance, used in generating the build signature in the corresponding build note. After verifying the signature,
provenance_bytescan be unmarshalled and compared to the provenance to confirm that it is unchanged. A base64-encoded string representation of the provenance bytes is used for the signature in order to interoperate with openssl which expects this format for signature verification. The serialized form is captured both to avoid ambiguity in how the provenance is marshalled to json as well to prevent incompatibilities with future changes.
- in_
toto_ Inslsa_ provenance_ v1 Toto Slsa Provenance V1Response - provenance
Build
Provenance Response - The actual provenance for the build.
- provenance_
bytes str - Serialized JSON representation of the provenance, used in generating the build signature in the corresponding build note. After verifying the signature,
provenance_bytescan be unmarshalled and compared to the provenance to confirm that it is unchanged. A base64-encoded string representation of the provenance bytes is used for the signature in order to interoperate with openssl which expects this format for signature verification. The serialized form is captured both to avoid ambiguity in how the provenance is marshalled to json as well to prevent incompatibilities with future changes.
- in
Toto Property MapSlsa Provenance V1 - provenance Property Map
- The actual provenance for the build.
- provenance
Bytes String - Serialized JSON representation of the provenance, used in generating the build signature in the corresponding build note. After verifying the signature,
provenance_bytescan be unmarshalled and compared to the provenance to confirm that it is unchanged. A base64-encoded string representation of the provenance bytes is used for the signature in order to interoperate with openssl which expects this format for signature verification. The serialized form is captured both to avoid ambiguity in how the provenance is marshalled to json as well to prevent incompatibilities with future changes.
GrafeasV1beta1DeploymentDetails, GrafeasV1beta1DeploymentDetailsArgs
- Deployment
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Deployment - Deployment history for the resource.
- Deployment Deployment
- Deployment history for the resource.
- deployment Deployment
- Deployment history for the resource.
- deployment Deployment
- Deployment history for the resource.
- deployment Deployment
- Deployment history for the resource.
- deployment Property Map
- Deployment history for the resource.
GrafeasV1beta1DeploymentDetailsResponse, GrafeasV1beta1DeploymentDetailsResponseArgs
- Deployment
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Deployment Response - Deployment history for the resource.
- Deployment
Deployment
Response - Deployment history for the resource.
- deployment
Deployment
Response - Deployment history for the resource.
- deployment
Deployment
Response - Deployment history for the resource.
- deployment
Deployment
Response - Deployment history for the resource.
- deployment Property Map
- Deployment history for the resource.
GrafeasV1beta1DiscoveryDetails, GrafeasV1beta1DiscoveryDetailsArgs
- Discovered
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Discovered - Analysis status for the discovered resource.
- Discovered Discovered
- Analysis status for the discovered resource.
- discovered Discovered
- Analysis status for the discovered resource.
- discovered Discovered
- Analysis status for the discovered resource.
- discovered Discovered
- Analysis status for the discovered resource.
- discovered Property Map
- Analysis status for the discovered resource.
GrafeasV1beta1DiscoveryDetailsResponse, GrafeasV1beta1DiscoveryDetailsResponseArgs
- Discovered
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Discovered Response - Analysis status for the discovered resource.
- Discovered
Discovered
Response - Analysis status for the discovered resource.
- discovered
Discovered
Response - Analysis status for the discovered resource.
- discovered
Discovered
Response - Analysis status for the discovered resource.
- discovered
Discovered
Response - Analysis status for the discovered resource.
- discovered Property Map
- Analysis status for the discovered resource.
GrafeasV1beta1ImageDetails, GrafeasV1beta1ImageDetailsArgs
- Derived
Image Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Derived - Immutable. The child image derived from the base image.
- Derived
Image Derived - Immutable. The child image derived from the base image.
- derived
Image Derived - Immutable. The child image derived from the base image.
- derived
Image Derived - Immutable. The child image derived from the base image.
- derived_
image Derived - Immutable. The child image derived from the base image.
- derived
Image Property Map - Immutable. The child image derived from the base image.
GrafeasV1beta1ImageDetailsResponse, GrafeasV1beta1ImageDetailsResponseArgs
- Derived
Image Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Derived Response - Immutable. The child image derived from the base image.
- Derived
Image DerivedResponse - Immutable. The child image derived from the base image.
- derived
Image DerivedResponse - Immutable. The child image derived from the base image.
- derived
Image DerivedResponse - Immutable. The child image derived from the base image.
- derived_
image DerivedResponse - Immutable. The child image derived from the base image.
- derived
Image Property Map - Immutable. The child image derived from the base image.
GrafeasV1beta1IntotoArtifact, GrafeasV1beta1IntotoArtifactArgs
- Hashes
Artifact
Hashes - Resource
Uri string
- hashes
Artifact
Hashes - resource
Uri String
- hashes
Artifact
Hashes - resource
Uri string
- hashes Property Map
- resource
Uri String
GrafeasV1beta1IntotoArtifactResponse, GrafeasV1beta1IntotoArtifactResponseArgs
- hashes Property Map
- resource
Uri String
GrafeasV1beta1IntotoDetails, GrafeasV1beta1IntotoDetailsArgs
GrafeasV1beta1IntotoDetailsResponse, GrafeasV1beta1IntotoDetailsResponseArgs
GrafeasV1beta1IntotoSignature, GrafeasV1beta1IntotoSignatureArgs
GrafeasV1beta1IntotoSignatureResponse, GrafeasV1beta1IntotoSignatureResponseArgs
GrafeasV1beta1PackageDetails, GrafeasV1beta1PackageDetailsArgs
- Installation
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Installation - Where the package was installed.
- Installation Installation
- Where the package was installed.
- installation Installation
- Where the package was installed.
- installation Installation
- Where the package was installed.
- installation Installation
- Where the package was installed.
- installation Property Map
- Where the package was installed.
GrafeasV1beta1PackageDetailsResponse, GrafeasV1beta1PackageDetailsResponseArgs
- Installation
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Installation Response - Where the package was installed.
- Installation
Installation
Response - Where the package was installed.
- installation
Installation
Response - Where the package was installed.
- installation
Installation
Response - Where the package was installed.
- installation
Installation
Response - Where the package was installed.
- installation Property Map
- Where the package was installed.
GrafeasV1beta1VulnerabilityDetails, GrafeasV1beta1VulnerabilityDetailsArgs
- Package
Issue List<Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Package Issue> - The set of affected locations and their fixes (if available) within the associated resource.
- Cvss
V2 Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. CVSS - The cvss v2 score for the vulnerability.
- Cvss
V3 Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. CVSS - The cvss v3 score for the vulnerability.
- Effective
Severity Pulumi.Google Native. Container Analysis. V1Beta1. Grafeas V1beta1Vulnerability Details Effective Severity - The distro assigned severity for this vulnerability when it is available, and note provider assigned severity when distro has not yet assigned a severity for this vulnerability. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.
- Extra
Details string - Occurrence-specific extra details about the vulnerability.
- Type string
- The type of package; whether native or non native(ruby gems, node.js packages etc)
- Vex
Assessment Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Vex Assessment
- Package
Issue []PackageIssue - The set of affected locations and their fixes (if available) within the associated resource.
- Cvss
V2 CVSS - The cvss v2 score for the vulnerability.
- Cvss
V3 CVSS - The cvss v3 score for the vulnerability.
- Effective
Severity GrafeasV1beta1Vulnerability Details Effective Severity - The distro assigned severity for this vulnerability when it is available, and note provider assigned severity when distro has not yet assigned a severity for this vulnerability. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.
- Extra
Details string - Occurrence-specific extra details about the vulnerability.
- Type string
- The type of package; whether native or non native(ruby gems, node.js packages etc)
- Vex
Assessment VexAssessment
- package
Issue List<PackageIssue> - The set of affected locations and their fixes (if available) within the associated resource.
- cvss
V2 CVSS - The cvss v2 score for the vulnerability.
- cvss
V3 CVSS - The cvss v3 score for the vulnerability.
- effective
Severity GrafeasV1beta1Vulnerability Details Effective Severity - The distro assigned severity for this vulnerability when it is available, and note provider assigned severity when distro has not yet assigned a severity for this vulnerability. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.
- extra
Details String - Occurrence-specific extra details about the vulnerability.
- type String
- The type of package; whether native or non native(ruby gems, node.js packages etc)
- vex
Assessment VexAssessment
- package
Issue PackageIssue[] - The set of affected locations and their fixes (if available) within the associated resource.
- cvss
V2 CVSS - The cvss v2 score for the vulnerability.
- cvss
V3 CVSS - The cvss v3 score for the vulnerability.
- effective
Severity GrafeasV1beta1Vulnerability Details Effective Severity - The distro assigned severity for this vulnerability when it is available, and note provider assigned severity when distro has not yet assigned a severity for this vulnerability. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.
- extra
Details string - Occurrence-specific extra details about the vulnerability.
- type string
- The type of package; whether native or non native(ruby gems, node.js packages etc)
- vex
Assessment VexAssessment
- package_
issue Sequence[PackageIssue] - The set of affected locations and their fixes (if available) within the associated resource.
- cvss_
v2 CVSS - The cvss v2 score for the vulnerability.
- cvss_
v3 CVSS - The cvss v3 score for the vulnerability.
- effective_
severity GrafeasV1beta1Vulnerability Details Effective Severity - The distro assigned severity for this vulnerability when it is available, and note provider assigned severity when distro has not yet assigned a severity for this vulnerability. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.
- extra_
details str - Occurrence-specific extra details about the vulnerability.
- type str
- The type of package; whether native or non native(ruby gems, node.js packages etc)
- vex_
assessment VexAssessment
- package
Issue List<Property Map> - The set of affected locations and their fixes (if available) within the associated resource.
- cvss
V2 Property Map - The cvss v2 score for the vulnerability.
- cvss
V3 Property Map - The cvss v3 score for the vulnerability.
- effective
Severity "SEVERITY_UNSPECIFIED" | "MINIMAL" | "LOW" | "MEDIUM" | "HIGH" | "CRITICAL" - The distro assigned severity for this vulnerability when it is available, and note provider assigned severity when distro has not yet assigned a severity for this vulnerability. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.
- extra
Details String - Occurrence-specific extra details about the vulnerability.
- type String
- The type of package; whether native or non native(ruby gems, node.js packages etc)
- vex
Assessment Property Map
GrafeasV1beta1VulnerabilityDetailsEffectiveSeverity, GrafeasV1beta1VulnerabilityDetailsEffectiveSeverityArgs
- Severity
Unspecified - SEVERITY_UNSPECIFIEDUnknown.
- Minimal
- MINIMALMinimal severity.
- Low
- LOWLow severity.
- Medium
- MEDIUMMedium severity.
- High
- HIGHHigh severity.
- Critical
- CRITICALCritical severity.
- Grafeas
V1beta1Vulnerability Details Effective Severity Severity Unspecified - SEVERITY_UNSPECIFIEDUnknown.
- Grafeas
V1beta1Vulnerability Details Effective Severity Minimal - MINIMALMinimal severity.
- Grafeas
V1beta1Vulnerability Details Effective Severity Low - LOWLow severity.
- Grafeas
V1beta1Vulnerability Details Effective Severity Medium - MEDIUMMedium severity.
- Grafeas
V1beta1Vulnerability Details Effective Severity High - HIGHHigh severity.
- Grafeas
V1beta1Vulnerability Details Effective Severity Critical - CRITICALCritical severity.
- Severity
Unspecified - SEVERITY_UNSPECIFIEDUnknown.
- Minimal
- MINIMALMinimal severity.
- Low
- LOWLow severity.
- Medium
- MEDIUMMedium severity.
- High
- HIGHHigh severity.
- Critical
- CRITICALCritical severity.
- Severity
Unspecified - SEVERITY_UNSPECIFIEDUnknown.
- Minimal
- MINIMALMinimal severity.
- Low
- LOWLow severity.
- Medium
- MEDIUMMedium severity.
- High
- HIGHHigh severity.
- Critical
- CRITICALCritical severity.
- SEVERITY_UNSPECIFIED
- SEVERITY_UNSPECIFIEDUnknown.
- MINIMAL
- MINIMALMinimal severity.
- LOW
- LOWLow severity.
- MEDIUM
- MEDIUMMedium severity.
- HIGH
- HIGHHigh severity.
- CRITICAL
- CRITICALCritical severity.
- "SEVERITY_UNSPECIFIED"
- SEVERITY_UNSPECIFIEDUnknown.
- "MINIMAL"
- MINIMALMinimal severity.
- "LOW"
- LOWLow severity.
- "MEDIUM"
- MEDIUMMedium severity.
- "HIGH"
- HIGHHigh severity.
- "CRITICAL"
- CRITICALCritical severity.
GrafeasV1beta1VulnerabilityDetailsResponse, GrafeasV1beta1VulnerabilityDetailsResponseArgs
- Cvss
Score double - The CVSS score of this vulnerability. CVSS score is on a scale of 0-10 where 0 indicates low severity and 10 indicates high severity.
- Cvss
V2 Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. CVSSResponse - The cvss v2 score for the vulnerability.
- Cvss
V3 Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. CVSSResponse - The cvss v3 score for the vulnerability.
- Cvss
Version string - CVSS version used to populate cvss_score and severity.
- Effective
Severity string - The distro assigned severity for this vulnerability when it is available, and note provider assigned severity when distro has not yet assigned a severity for this vulnerability. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.
- Extra
Details string - Occurrence-specific extra details about the vulnerability.
- Long
Description string - A detailed description of this vulnerability.
- Package
Issue List<Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Package Issue Response> - The set of affected locations and their fixes (if available) within the associated resource.
-
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Related Url Response> - URLs related to this vulnerability.
- Severity string
- The note provider assigned Severity of the vulnerability.
- Short
Description string - A one sentence description of this vulnerability.
- Type string
- The type of package; whether native or non native(ruby gems, node.js packages etc)
- Vex
Assessment Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Vex Assessment Response
- Cvss
Score float64 - The CVSS score of this vulnerability. CVSS score is on a scale of 0-10 where 0 indicates low severity and 10 indicates high severity.
- Cvss
V2 CVSSResponse - The cvss v2 score for the vulnerability.
- Cvss
V3 CVSSResponse - The cvss v3 score for the vulnerability.
- Cvss
Version string - CVSS version used to populate cvss_score and severity.
- Effective
Severity string - The distro assigned severity for this vulnerability when it is available, and note provider assigned severity when distro has not yet assigned a severity for this vulnerability. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.
- Extra
Details string - Occurrence-specific extra details about the vulnerability.
- Long
Description string - A detailed description of this vulnerability.
- Package
Issue []PackageIssue Response - The set of affected locations and their fixes (if available) within the associated resource.
-
[]Related
Url Response - URLs related to this vulnerability.
- Severity string
- The note provider assigned Severity of the vulnerability.
- Short
Description string - A one sentence description of this vulnerability.
- Type string
- The type of package; whether native or non native(ruby gems, node.js packages etc)
- Vex
Assessment VexAssessment Response
- cvss
Score Double - The CVSS score of this vulnerability. CVSS score is on a scale of 0-10 where 0 indicates low severity and 10 indicates high severity.
- cvss
V2 CVSSResponse - The cvss v2 score for the vulnerability.
- cvss
V3 CVSSResponse - The cvss v3 score for the vulnerability.
- cvss
Version String - CVSS version used to populate cvss_score and severity.
- effective
Severity String - The distro assigned severity for this vulnerability when it is available, and note provider assigned severity when distro has not yet assigned a severity for this vulnerability. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.
- extra
Details String - Occurrence-specific extra details about the vulnerability.
- long
Description String - A detailed description of this vulnerability.
- package
Issue List<PackageIssue Response> - The set of affected locations and their fixes (if available) within the associated resource.
-
List<Related
Url Response> - URLs related to this vulnerability.
- severity String
- The note provider assigned Severity of the vulnerability.
- short
Description String - A one sentence description of this vulnerability.
- type String
- The type of package; whether native or non native(ruby gems, node.js packages etc)
- vex
Assessment VexAssessment Response
- cvss
Score number - The CVSS score of this vulnerability. CVSS score is on a scale of 0-10 where 0 indicates low severity and 10 indicates high severity.
- cvss
V2 CVSSResponse - The cvss v2 score for the vulnerability.
- cvss
V3 CVSSResponse - The cvss v3 score for the vulnerability.
- cvss
Version string - CVSS version used to populate cvss_score and severity.
- effective
Severity string - The distro assigned severity for this vulnerability when it is available, and note provider assigned severity when distro has not yet assigned a severity for this vulnerability. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.
- extra
Details string - Occurrence-specific extra details about the vulnerability.
- long
Description string - A detailed description of this vulnerability.
- package
Issue PackageIssue Response[] - The set of affected locations and their fixes (if available) within the associated resource.
-
Related
Url Response[] - URLs related to this vulnerability.
- severity string
- The note provider assigned Severity of the vulnerability.
- short
Description string - A one sentence description of this vulnerability.
- type string
- The type of package; whether native or non native(ruby gems, node.js packages etc)
- vex
Assessment VexAssessment Response
- cvss_
score float - The CVSS score of this vulnerability. CVSS score is on a scale of 0-10 where 0 indicates low severity and 10 indicates high severity.
- cvss_
v2 CVSSResponse - The cvss v2 score for the vulnerability.
- cvss_
v3 CVSSResponse - The cvss v3 score for the vulnerability.
- cvss_
version str - CVSS version used to populate cvss_score and severity.
- effective_
severity str - The distro assigned severity for this vulnerability when it is available, and note provider assigned severity when distro has not yet assigned a severity for this vulnerability. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.
- extra_
details str - Occurrence-specific extra details about the vulnerability.
- long_
description str - A detailed description of this vulnerability.
- package_
issue Sequence[PackageIssue Response] - The set of affected locations and their fixes (if available) within the associated resource.
-
Sequence[Related
Url Response] - URLs related to this vulnerability.
- severity str
- The note provider assigned Severity of the vulnerability.
- short_
description str - A one sentence description of this vulnerability.
- type str
- The type of package; whether native or non native(ruby gems, node.js packages etc)
- vex_
assessment VexAssessment Response
- cvss
Score Number - The CVSS score of this vulnerability. CVSS score is on a scale of 0-10 where 0 indicates low severity and 10 indicates high severity.
- cvss
V2 Property Map - The cvss v2 score for the vulnerability.
- cvss
V3 Property Map - The cvss v3 score for the vulnerability.
- cvss
Version String - CVSS version used to populate cvss_score and severity.
- effective
Severity String - The distro assigned severity for this vulnerability when it is available, and note provider assigned severity when distro has not yet assigned a severity for this vulnerability. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.
- extra
Details String - Occurrence-specific extra details about the vulnerability.
- long
Description String - A detailed description of this vulnerability.
- package
Issue List<Property Map> - The set of affected locations and their fixes (if available) within the associated resource.
- List<Property Map>
- URLs related to this vulnerability.
- severity String
- The note provider assigned Severity of the vulnerability.
- short
Description String - A one sentence description of this vulnerability.
- type String
- The type of package; whether native or non native(ruby gems, node.js packages etc)
- vex
Assessment Property Map
Hash, HashArgs
- Type
Pulumi.
Google Native. Container Analysis. V1Beta1. Hash Type - The type of hash that was performed.
- Value string
- The hash value.
- type "HASH_TYPE_UNSPECIFIED" | "SHA256" | "GO_MODULE_H1" | "SHA512"
- The type of hash that was performed.
- value String
- The hash value.
HashResponse, HashResponseArgs
HashType, HashTypeArgs
- Hash
Type Unspecified - HASH_TYPE_UNSPECIFIEDUnknown.
- Sha256
- SHA256A SHA-256 hash.
- Go
Module H1 - GO_MODULE_H1Dirhash of a Go module's source code which is then hex-encoded. See b/244466565 and https://github.com/in-toto/attestation/pull/108.
- Sha512
- SHA512A SHA-512 hash.
- Hash
Type Hash Type Unspecified - HASH_TYPE_UNSPECIFIEDUnknown.
- Hash
Type Sha256 - SHA256A SHA-256 hash.
- Hash
Type Go Module H1 - GO_MODULE_H1Dirhash of a Go module's source code which is then hex-encoded. See b/244466565 and https://github.com/in-toto/attestation/pull/108.
- Hash
Type Sha512 - SHA512A SHA-512 hash.
- Hash
Type Unspecified - HASH_TYPE_UNSPECIFIEDUnknown.
- Sha256
- SHA256A SHA-256 hash.
- Go
Module H1 - GO_MODULE_H1Dirhash of a Go module's source code which is then hex-encoded. See b/244466565 and https://github.com/in-toto/attestation/pull/108.
- Sha512
- SHA512A SHA-512 hash.
- Hash
Type Unspecified - HASH_TYPE_UNSPECIFIEDUnknown.
- Sha256
- SHA256A SHA-256 hash.
- Go
Module H1 - GO_MODULE_H1Dirhash of a Go module's source code which is then hex-encoded. See b/244466565 and https://github.com/in-toto/attestation/pull/108.
- Sha512
- SHA512A SHA-512 hash.
- HASH_TYPE_UNSPECIFIED
- HASH_TYPE_UNSPECIFIEDUnknown.
- SHA256
- SHA256A SHA-256 hash.
- GO_MODULE_H1
- GO_MODULE_H1Dirhash of a Go module's source code which is then hex-encoded. See b/244466565 and https://github.com/in-toto/attestation/pull/108.
- SHA512
- SHA512A SHA-512 hash.
- "HASH_TYPE_UNSPECIFIED"
- HASH_TYPE_UNSPECIFIEDUnknown.
- "SHA256"
- SHA256A SHA-256 hash.
- "GO_MODULE_H1"
- GO_MODULE_H1Dirhash of a Go module's source code which is then hex-encoded. See b/244466565 and https://github.com/in-toto/attestation/pull/108.
- "SHA512"
- SHA512A SHA-512 hash.
InTotoSlsaProvenanceV1, InTotoSlsaProvenanceV1Args
- Predicate
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Slsa Provenance V1 - Predicate
Type string - Subject
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Subject> - Type string
- InToto spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement
- Predicate
Slsa
Provenance V1 - Predicate
Type string - Subject []Subject
- Type string
- InToto spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement
- predicate
Slsa
Provenance V1 - predicate
Type String - subject List<Subject>
- type String
- InToto spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement
- predicate
Slsa
Provenance V1 - predicate
Type string - subject Subject[]
- type string
- InToto spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement
- predicate
Slsa
Provenance V1 - predicate_
type str - subject Sequence[Subject]
- type str
- InToto spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement
- predicate Property Map
- predicate
Type String - subject List<Property Map>
- type String
- InToto spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement
InTotoSlsaProvenanceV1Response, InTotoSlsaProvenanceV1ResponseArgs
- Predicate
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Slsa Provenance V1Response - Predicate
Type string - Subject
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Subject Response> - Type string
- InToto spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement
- Predicate
Slsa
Provenance V1Response - Predicate
Type string - Subject
[]Subject
Response - Type string
- InToto spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement
- predicate
Slsa
Provenance V1Response - predicate
Type String - subject
List<Subject
Response> - type String
- InToto spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement
- predicate
Slsa
Provenance V1Response - predicate
Type string - subject
Subject
Response[] - type string
- InToto spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement
- predicate
Slsa
Provenance V1Response - predicate_
type str - subject
Sequence[Subject
Response] - type str
- InToto spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement
- predicate Property Map
- predicate
Type String - subject List<Property Map>
- type String
- InToto spec defined at https://github.com/in-toto/attestation/tree/main/spec#statement
Installation, InstallationArgs
- License
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. License - Licenses that have been declared by the authors of the package.
- Location
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Location> - All of the places within the filesystem versions of this package have been found.
- License License
- Licenses that have been declared by the authors of the package.
- Location []Location
- All of the places within the filesystem versions of this package have been found.
- license License
- Licenses that have been declared by the authors of the package.
- location List<Location>
- All of the places within the filesystem versions of this package have been found.
- license License
- Licenses that have been declared by the authors of the package.
- location Location[]
- All of the places within the filesystem versions of this package have been found.
- license License
- Licenses that have been declared by the authors of the package.
- location Sequence[Location]
- All of the places within the filesystem versions of this package have been found.
- license Property Map
- Licenses that have been declared by the authors of the package.
- location List<Property Map>
- All of the places within the filesystem versions of this package have been found.
InstallationResponse, InstallationResponseArgs
- Architecture string
- The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
- Cpe
Uri string - The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
- License
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. License Response - Licenses that have been declared by the authors of the package.
- Location
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Location Response> - All of the places within the filesystem versions of this package have been found.
- Name string
- The name of the installed package.
- Package
Type string - The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- Version
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Version Response - The version of the package.
- Architecture string
- The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
- Cpe
Uri string - The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
- License
License
Response - Licenses that have been declared by the authors of the package.
- Location
[]Location
Response - All of the places within the filesystem versions of this package have been found.
- Name string
- The name of the installed package.
- Package
Type string - The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- Version
Version
Response - The version of the package.
- architecture String
- The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
- cpe
Uri String - The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
- license
License
Response - Licenses that have been declared by the authors of the package.
- location
List<Location
Response> - All of the places within the filesystem versions of this package have been found.
- name String
- The name of the installed package.
- package
Type String - The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- version
Version
Response - The version of the package.
- architecture string
- The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
- cpe
Uri string - The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
- license
License
Response - Licenses that have been declared by the authors of the package.
- location
Location
Response[] - All of the places within the filesystem versions of this package have been found.
- name string
- The name of the installed package.
- package
Type string - The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- version
Version
Response - The version of the package.
- architecture str
- The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
- cpe_
uri str - The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
- license
License
Response - Licenses that have been declared by the authors of the package.
- location
Sequence[Location
Response] - All of the places within the filesystem versions of this package have been found.
- name str
- The name of the installed package.
- package_
type str - The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- version
Version
Response - The version of the package.
- architecture String
- The CPU architecture for which packages in this distribution channel were built. Architecture will be blank for language packages.
- cpe
Uri String - The cpe_uri in CPE format denoting the package manager version distributing a package. The cpe_uri will be blank for language packages.
- license Property Map
- Licenses that have been declared by the authors of the package.
- location List<Property Map>
- All of the places within the filesystem versions of this package have been found.
- name String
- The name of the installed package.
- package
Type String - The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).
- version Property Map
- The version of the package.
Justification, JustificationArgs
- Details string
- Additional details on why this justification was chosen.
- Justification
Type Pulumi.Google Native. Container Analysis. V1Beta1. Justification Justification Type - The justification type for this vulnerability.
- Details string
- Additional details on why this justification was chosen.
- Justification
Type JustificationJustification Type - The justification type for this vulnerability.
- details String
- Additional details on why this justification was chosen.
- justification
Type JustificationJustification Type - The justification type for this vulnerability.
- details string
- Additional details on why this justification was chosen.
- justification
Type JustificationJustification Type - The justification type for this vulnerability.
- details str
- Additional details on why this justification was chosen.
- justification_
type JustificationJustification Type - The justification type for this vulnerability.
- details String
- Additional details on why this justification was chosen.
- justification
Type "JUSTIFICATION_TYPE_UNSPECIFIED" | "COMPONENT_NOT_PRESENT" | "VULNERABLE_CODE_NOT_PRESENT" | "VULNERABLE_CODE_NOT_IN_EXECUTE_PATH" | "VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARY" | "INLINE_MITIGATIONS_ALREADY_EXIST" - The justification type for this vulnerability.
JustificationJustificationType, JustificationJustificationTypeArgs
- Justification
Type Unspecified - JUSTIFICATION_TYPE_UNSPECIFIEDJUSTIFICATION_TYPE_UNSPECIFIED.
- Component
Not Present - COMPONENT_NOT_PRESENTThe vulnerable component is not present in the product.
- Vulnerable
Code Not Present - VULNERABLE_CODE_NOT_PRESENTThe vulnerable code is not present. Typically this case occurs when source code is configured or built in a way that excludes the vulnerable code.
- Vulnerable
Code Not In Execute Path - VULNERABLE_CODE_NOT_IN_EXECUTE_PATHThe vulnerable code can not be executed. Typically this case occurs when the product includes the vulnerable code but does not call or use the vulnerable code.
- Vulnerable
Code Cannot Be Controlled By Adversary - VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARYThe vulnerable code cannot be controlled by an attacker to exploit the vulnerability.
- Inline
Mitigations Already Exist - INLINE_MITIGATIONS_ALREADY_EXISTThe product includes built-in protections or features that prevent exploitation of the vulnerability. These built-in protections cannot be subverted by the attacker and cannot be configured or disabled by the user. These mitigations completely prevent exploitation based on known attack vectors.
- Justification
Justification Type Justification Type Unspecified - JUSTIFICATION_TYPE_UNSPECIFIEDJUSTIFICATION_TYPE_UNSPECIFIED.
- Justification
Justification Type Component Not Present - COMPONENT_NOT_PRESENTThe vulnerable component is not present in the product.
- Justification
Justification Type Vulnerable Code Not Present - VULNERABLE_CODE_NOT_PRESENTThe vulnerable code is not present. Typically this case occurs when source code is configured or built in a way that excludes the vulnerable code.
- Justification
Justification Type Vulnerable Code Not In Execute Path - VULNERABLE_CODE_NOT_IN_EXECUTE_PATHThe vulnerable code can not be executed. Typically this case occurs when the product includes the vulnerable code but does not call or use the vulnerable code.
- Justification
Justification Type Vulnerable Code Cannot Be Controlled By Adversary - VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARYThe vulnerable code cannot be controlled by an attacker to exploit the vulnerability.
- Justification
Justification Type Inline Mitigations Already Exist - INLINE_MITIGATIONS_ALREADY_EXISTThe product includes built-in protections or features that prevent exploitation of the vulnerability. These built-in protections cannot be subverted by the attacker and cannot be configured or disabled by the user. These mitigations completely prevent exploitation based on known attack vectors.
- Justification
Type Unspecified - JUSTIFICATION_TYPE_UNSPECIFIEDJUSTIFICATION_TYPE_UNSPECIFIED.
- Component
Not Present - COMPONENT_NOT_PRESENTThe vulnerable component is not present in the product.
- Vulnerable
Code Not Present - VULNERABLE_CODE_NOT_PRESENTThe vulnerable code is not present. Typically this case occurs when source code is configured or built in a way that excludes the vulnerable code.
- Vulnerable
Code Not In Execute Path - VULNERABLE_CODE_NOT_IN_EXECUTE_PATHThe vulnerable code can not be executed. Typically this case occurs when the product includes the vulnerable code but does not call or use the vulnerable code.
- Vulnerable
Code Cannot Be Controlled By Adversary - VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARYThe vulnerable code cannot be controlled by an attacker to exploit the vulnerability.
- Inline
Mitigations Already Exist - INLINE_MITIGATIONS_ALREADY_EXISTThe product includes built-in protections or features that prevent exploitation of the vulnerability. These built-in protections cannot be subverted by the attacker and cannot be configured or disabled by the user. These mitigations completely prevent exploitation based on known attack vectors.
- Justification
Type Unspecified - JUSTIFICATION_TYPE_UNSPECIFIEDJUSTIFICATION_TYPE_UNSPECIFIED.
- Component
Not Present - COMPONENT_NOT_PRESENTThe vulnerable component is not present in the product.
- Vulnerable
Code Not Present - VULNERABLE_CODE_NOT_PRESENTThe vulnerable code is not present. Typically this case occurs when source code is configured or built in a way that excludes the vulnerable code.
- Vulnerable
Code Not In Execute Path - VULNERABLE_CODE_NOT_IN_EXECUTE_PATHThe vulnerable code can not be executed. Typically this case occurs when the product includes the vulnerable code but does not call or use the vulnerable code.
- Vulnerable
Code Cannot Be Controlled By Adversary - VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARYThe vulnerable code cannot be controlled by an attacker to exploit the vulnerability.
- Inline
Mitigations Already Exist - INLINE_MITIGATIONS_ALREADY_EXISTThe product includes built-in protections or features that prevent exploitation of the vulnerability. These built-in protections cannot be subverted by the attacker and cannot be configured or disabled by the user. These mitigations completely prevent exploitation based on known attack vectors.
- JUSTIFICATION_TYPE_UNSPECIFIED
- JUSTIFICATION_TYPE_UNSPECIFIEDJUSTIFICATION_TYPE_UNSPECIFIED.
- COMPONENT_NOT_PRESENT
- COMPONENT_NOT_PRESENTThe vulnerable component is not present in the product.
- VULNERABLE_CODE_NOT_PRESENT
- VULNERABLE_CODE_NOT_PRESENTThe vulnerable code is not present. Typically this case occurs when source code is configured or built in a way that excludes the vulnerable code.
- VULNERABLE_CODE_NOT_IN_EXECUTE_PATH
- VULNERABLE_CODE_NOT_IN_EXECUTE_PATHThe vulnerable code can not be executed. Typically this case occurs when the product includes the vulnerable code but does not call or use the vulnerable code.
- VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARY
- VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARYThe vulnerable code cannot be controlled by an attacker to exploit the vulnerability.
- INLINE_MITIGATIONS_ALREADY_EXIST
- INLINE_MITIGATIONS_ALREADY_EXISTThe product includes built-in protections or features that prevent exploitation of the vulnerability. These built-in protections cannot be subverted by the attacker and cannot be configured or disabled by the user. These mitigations completely prevent exploitation based on known attack vectors.
- "JUSTIFICATION_TYPE_UNSPECIFIED"
- JUSTIFICATION_TYPE_UNSPECIFIEDJUSTIFICATION_TYPE_UNSPECIFIED.
- "COMPONENT_NOT_PRESENT"
- COMPONENT_NOT_PRESENTThe vulnerable component is not present in the product.
- "VULNERABLE_CODE_NOT_PRESENT"
- VULNERABLE_CODE_NOT_PRESENTThe vulnerable code is not present. Typically this case occurs when source code is configured or built in a way that excludes the vulnerable code.
- "VULNERABLE_CODE_NOT_IN_EXECUTE_PATH"
- VULNERABLE_CODE_NOT_IN_EXECUTE_PATHThe vulnerable code can not be executed. Typically this case occurs when the product includes the vulnerable code but does not call or use the vulnerable code.
- "VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARY"
- VULNERABLE_CODE_CANNOT_BE_CONTROLLED_BY_ADVERSARYThe vulnerable code cannot be controlled by an attacker to exploit the vulnerability.
- "INLINE_MITIGATIONS_ALREADY_EXIST"
- INLINE_MITIGATIONS_ALREADY_EXISTThe product includes built-in protections or features that prevent exploitation of the vulnerability. These built-in protections cannot be subverted by the attacker and cannot be configured or disabled by the user. These mitigations completely prevent exploitation based on known attack vectors.
JustificationResponse, JustificationResponseArgs
- Details string
- Additional details on why this justification was chosen.
- Justification
Type string - The justification type for this vulnerability.
- Details string
- Additional details on why this justification was chosen.
- Justification
Type string - The justification type for this vulnerability.
- details String
- Additional details on why this justification was chosen.
- justification
Type String - The justification type for this vulnerability.
- details string
- Additional details on why this justification was chosen.
- justification
Type string - The justification type for this vulnerability.
- details str
- Additional details on why this justification was chosen.
- justification_
type str - The justification type for this vulnerability.
- details String
- Additional details on why this justification was chosen.
- justification
Type String - The justification type for this vulnerability.
Layer, LayerArgs
- Directive
Pulumi.
Google Native. Container Analysis. V1Beta1. Layer Directive - The recovered Dockerfile directive used to construct this layer.
- Arguments string
- The recovered arguments to the Dockerfile directive.
- Directive
Layer
Directive - The recovered Dockerfile directive used to construct this layer.
- Arguments string
- The recovered arguments to the Dockerfile directive.
- directive
Layer
Directive - The recovered Dockerfile directive used to construct this layer.
- arguments String
- The recovered arguments to the Dockerfile directive.
- directive
Layer
Directive - The recovered Dockerfile directive used to construct this layer.
- arguments string
- The recovered arguments to the Dockerfile directive.
- directive
Layer
Directive - The recovered Dockerfile directive used to construct this layer.
- arguments str
- The recovered arguments to the Dockerfile directive.
- directive "DIRECTIVE_UNSPECIFIED" | "MAINTAINER" | "RUN" | "CMD" | "LABEL" | "EXPOSE" | "ENV" | "ADD" | "COPY" | "ENTRYPOINT" | "VOLUME" | "USER" | "WORKDIR" | "ARG" | "ONBUILD" | "STOPSIGNAL" | "HEALTHCHECK" | "SHELL"
- The recovered Dockerfile directive used to construct this layer.
- arguments String
- The recovered arguments to the Dockerfile directive.
LayerDirective, LayerDirectiveArgs
- Directive
Unspecified - DIRECTIVE_UNSPECIFIEDDefault value for unsupported/missing directive.
- Maintainer
- MAINTAINERhttps://docs.docker.com/engine/reference/builder/
- Run
- RUNhttps://docs.docker.com/engine/reference/builder/
- Cmd
- CMDhttps://docs.docker.com/engine/reference/builder/
- Label
- LABELhttps://docs.docker.com/engine/reference/builder/
- Expose
- EXPOSEhttps://docs.docker.com/engine/reference/builder/
- Env
- ENVhttps://docs.docker.com/engine/reference/builder/
- Add
- ADDhttps://docs.docker.com/engine/reference/builder/
- Copy
- COPYhttps://docs.docker.com/engine/reference/builder/
- Entrypoint
- ENTRYPOINThttps://docs.docker.com/engine/reference/builder/
- Volume
- VOLUMEhttps://docs.docker.com/engine/reference/builder/
- User
- USERhttps://docs.docker.com/engine/reference/builder/
- Workdir
- WORKDIRhttps://docs.docker.com/engine/reference/builder/
- Arg
- ARGhttps://docs.docker.com/engine/reference/builder/
- Onbuild
- ONBUILDhttps://docs.docker.com/engine/reference/builder/
- Stopsignal
- STOPSIGNALhttps://docs.docker.com/engine/reference/builder/
- Healthcheck
- HEALTHCHECKhttps://docs.docker.com/engine/reference/builder/
- Shell
- SHELLhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Directive Unspecified - DIRECTIVE_UNSPECIFIEDDefault value for unsupported/missing directive.
- Layer
Directive Maintainer - MAINTAINERhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Run - RUNhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Cmd - CMDhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Label - LABELhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Expose - EXPOSEhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Env - ENVhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Add - ADDhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Copy - COPYhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Entrypoint - ENTRYPOINThttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Volume - VOLUMEhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive User - USERhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Workdir - WORKDIRhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Arg - ARGhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Onbuild - ONBUILDhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Stopsignal - STOPSIGNALhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Healthcheck - HEALTHCHECKhttps://docs.docker.com/engine/reference/builder/
- Layer
Directive Shell - SHELLhttps://docs.docker.com/engine/reference/builder/
- Directive
Unspecified - DIRECTIVE_UNSPECIFIEDDefault value for unsupported/missing directive.
- Maintainer
- MAINTAINERhttps://docs.docker.com/engine/reference/builder/
- Run
- RUNhttps://docs.docker.com/engine/reference/builder/
- Cmd
- CMDhttps://docs.docker.com/engine/reference/builder/
- Label
- LABELhttps://docs.docker.com/engine/reference/builder/
- Expose
- EXPOSEhttps://docs.docker.com/engine/reference/builder/
- Env
- ENVhttps://docs.docker.com/engine/reference/builder/
- Add
- ADDhttps://docs.docker.com/engine/reference/builder/
- Copy
- COPYhttps://docs.docker.com/engine/reference/builder/
- Entrypoint
- ENTRYPOINThttps://docs.docker.com/engine/reference/builder/
- Volume
- VOLUMEhttps://docs.docker.com/engine/reference/builder/
- User
- USERhttps://docs.docker.com/engine/reference/builder/
- Workdir
- WORKDIRhttps://docs.docker.com/engine/reference/builder/
- Arg
- ARGhttps://docs.docker.com/engine/reference/builder/
- Onbuild
- ONBUILDhttps://docs.docker.com/engine/reference/builder/
- Stopsignal
- STOPSIGNALhttps://docs.docker.com/engine/reference/builder/
- Healthcheck
- HEALTHCHECKhttps://docs.docker.com/engine/reference/builder/
- Shell
- SHELLhttps://docs.docker.com/engine/reference/builder/
- Directive
Unspecified - DIRECTIVE_UNSPECIFIEDDefault value for unsupported/missing directive.
- Maintainer
- MAINTAINERhttps://docs.docker.com/engine/reference/builder/
- Run
- RUNhttps://docs.docker.com/engine/reference/builder/
- Cmd
- CMDhttps://docs.docker.com/engine/reference/builder/
- Label
- LABELhttps://docs.docker.com/engine/reference/builder/
- Expose
- EXPOSEhttps://docs.docker.com/engine/reference/builder/
- Env
- ENVhttps://docs.docker.com/engine/reference/builder/
- Add
- ADDhttps://docs.docker.com/engine/reference/builder/
- Copy
- COPYhttps://docs.docker.com/engine/reference/builder/
- Entrypoint
- ENTRYPOINThttps://docs.docker.com/engine/reference/builder/
- Volume
- VOLUMEhttps://docs.docker.com/engine/reference/builder/
- User
- USERhttps://docs.docker.com/engine/reference/builder/
- Workdir
- WORKDIRhttps://docs.docker.com/engine/reference/builder/
- Arg
- ARGhttps://docs.docker.com/engine/reference/builder/
- Onbuild
- ONBUILDhttps://docs.docker.com/engine/reference/builder/
- Stopsignal
- STOPSIGNALhttps://docs.docker.com/engine/reference/builder/
- Healthcheck
- HEALTHCHECKhttps://docs.docker.com/engine/reference/builder/
- Shell
- SHELLhttps://docs.docker.com/engine/reference/builder/
- DIRECTIVE_UNSPECIFIED
- DIRECTIVE_UNSPECIFIEDDefault value for unsupported/missing directive.
- MAINTAINER
- MAINTAINERhttps://docs.docker.com/engine/reference/builder/
- RUN
- RUNhttps://docs.docker.com/engine/reference/builder/
- CMD
- CMDhttps://docs.docker.com/engine/reference/builder/
- LABEL
- LABELhttps://docs.docker.com/engine/reference/builder/
- EXPOSE
- EXPOSEhttps://docs.docker.com/engine/reference/builder/
- ENV
- ENVhttps://docs.docker.com/engine/reference/builder/
- ADD
- ADDhttps://docs.docker.com/engine/reference/builder/
- COPY
- COPYhttps://docs.docker.com/engine/reference/builder/
- ENTRYPOINT
- ENTRYPOINThttps://docs.docker.com/engine/reference/builder/
- VOLUME
- VOLUMEhttps://docs.docker.com/engine/reference/builder/
- USER
- USERhttps://docs.docker.com/engine/reference/builder/
- WORKDIR
- WORKDIRhttps://docs.docker.com/engine/reference/builder/
- ARG
- ARGhttps://docs.docker.com/engine/reference/builder/
- ONBUILD
- ONBUILDhttps://docs.docker.com/engine/reference/builder/
- STOPSIGNAL
- STOPSIGNALhttps://docs.docker.com/engine/reference/builder/
- HEALTHCHECK
- HEALTHCHECKhttps://docs.docker.com/engine/reference/builder/
- SHELL
- SHELLhttps://docs.docker.com/engine/reference/builder/
- "DIRECTIVE_UNSPECIFIED"
- DIRECTIVE_UNSPECIFIEDDefault value for unsupported/missing directive.
- "MAINTAINER"
- MAINTAINERhttps://docs.docker.com/engine/reference/builder/
- "RUN"
- RUNhttps://docs.docker.com/engine/reference/builder/
- "CMD"
- CMDhttps://docs.docker.com/engine/reference/builder/
- "LABEL"
- LABELhttps://docs.docker.com/engine/reference/builder/
- "EXPOSE"
- EXPOSEhttps://docs.docker.com/engine/reference/builder/
- "ENV"
- ENVhttps://docs.docker.com/engine/reference/builder/
- "ADD"
- ADDhttps://docs.docker.com/engine/reference/builder/
- "COPY"
- COPYhttps://docs.docker.com/engine/reference/builder/
- "ENTRYPOINT"
- ENTRYPOINThttps://docs.docker.com/engine/reference/builder/
- "VOLUME"
- VOLUMEhttps://docs.docker.com/engine/reference/builder/
- "USER"
- USERhttps://docs.docker.com/engine/reference/builder/
- "WORKDIR"
- WORKDIRhttps://docs.docker.com/engine/reference/builder/
- "ARG"
- ARGhttps://docs.docker.com/engine/reference/builder/
- "ONBUILD"
- ONBUILDhttps://docs.docker.com/engine/reference/builder/
- "STOPSIGNAL"
- STOPSIGNALhttps://docs.docker.com/engine/reference/builder/
- "HEALTHCHECK"
- HEALTHCHECKhttps://docs.docker.com/engine/reference/builder/
- "SHELL"
- SHELLhttps://docs.docker.com/engine/reference/builder/
LayerResponse, LayerResponseArgs
License, LicenseArgs
- Comments string
- Comments
- Expression string
- Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- Comments string
- Comments
- Expression string
- Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- comments String
- Comments
- expression String
- Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- comments string
- Comments
- expression string
- Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- comments str
- Comments
- expression str
- Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- comments String
- Comments
- expression String
- Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
LicenseResponse, LicenseResponseArgs
- Comments string
- Comments
- Expression string
- Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- Comments string
- Comments
- Expression string
- Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- comments String
- Comments
- expression String
- Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- comments string
- Comments
- expression string
- Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- comments str
- Comments
- expression str
- Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
- comments String
- Comments
- expression String
- Often a single license can be used to represent the licensing terms. Sometimes it is necessary to include a choice of one or more licenses or some combination of license identifiers. Examples: "LGPL-2.1-only OR MIT", "LGPL-2.1-only AND MIT", "GPL-2.0-or-later WITH Bison-exception-2.2".
Link, LinkArgs
- Byproducts
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. By Products - ByProducts are data generated as part of a software supply chain step, but are not the actual result of the step.
- Command List<string>
- This field contains the full command executed for the step. This can also be empty if links are generated for operations that aren't directly mapped to a specific command. Each term in the command is an independent string in the list. An example of a command in the in-toto metadata field is: "command": ["git", "clone", "https://github.com/in-toto/demo-project.git"]
- Environment
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Environment - This is a field that can be used to capture information about the environment. It is suggested for this field to contain information that details environment variables, filesystem information, and the present working directory. The recommended structure of this field is: "environment": { "custom_values": { "variables": "", "filesystem": "", "workdir": "", "": "..." } }
- Materials
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Grafeas V1beta1Intoto Artifact> - Materials are the supply chain artifacts that go into the step and are used for the operation performed. The key of the map is the path of the artifact and the structure contains the recorded hash information. An example is: "materials": [ { "resource_uri": "foo/bar", "hashes": { "sha256": "ebebf...", : } } ]
- Products
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Grafeas V1beta1Intoto Artifact> - Products are the supply chain artifacts generated as a result of the step. The structure is identical to that of materials.
- Byproducts
By
Products - ByProducts are data generated as part of a software supply chain step, but are not the actual result of the step.
- Command []string
- This field contains the full command executed for the step. This can also be empty if links are generated for operations that aren't directly mapped to a specific command. Each term in the command is an independent string in the list. An example of a command in the in-toto metadata field is: "command": ["git", "clone", "https://github.com/in-toto/demo-project.git"]
- Environment Environment
- This is a field that can be used to capture information about the environment. It is suggested for this field to contain information that details environment variables, filesystem information, and the present working directory. The recommended structure of this field is: "environment": { "custom_values": { "variables": "", "filesystem": "", "workdir": "", "": "..." } }
- Materials
[]Grafeas
V1beta1Intoto Artifact - Materials are the supply chain artifacts that go into the step and are used for the operation performed. The key of the map is the path of the artifact and the structure contains the recorded hash information. An example is: "materials": [ { "resource_uri": "foo/bar", "hashes": { "sha256": "ebebf...", : } } ]
- Products
[]Grafeas
V1beta1Intoto Artifact - Products are the supply chain artifacts generated as a result of the step. The structure is identical to that of materials.
- byproducts
By
Products - ByProducts are data generated as part of a software supply chain step, but are not the actual result of the step.
- command List<String>
- This field contains the full command executed for the step. This can also be empty if links are generated for operations that aren't directly mapped to a specific command. Each term in the command is an independent string in the list. An example of a command in the in-toto metadata field is: "command": ["git", "clone", "https://github.com/in-toto/demo-project.git"]
- environment Environment
- This is a field that can be used to capture information about the environment. It is suggested for this field to contain information that details environment variables, filesystem information, and the present working directory. The recommended structure of this field is: "environment": { "custom_values": { "variables": "", "filesystem": "", "workdir": "", "": "..." } }
- materials
List<Grafeas
V1beta1Intoto Artifact> - Materials are the supply chain artifacts that go into the step and are used for the operation performed. The key of the map is the path of the artifact and the structure contains the recorded hash information. An example is: "materials": [ { "resource_uri": "foo/bar", "hashes": { "sha256": "ebebf...", : } } ]
- products
List<Grafeas
V1beta1Intoto Artifact> - Products are the supply chain artifacts generated as a result of the step. The structure is identical to that of materials.
- byproducts
By
Products - ByProducts are data generated as part of a software supply chain step, but are not the actual result of the step.
- command string[]
- This field contains the full command executed for the step. This can also be empty if links are generated for operations that aren't directly mapped to a specific command. Each term in the command is an independent string in the list. An example of a command in the in-toto metadata field is: "command": ["git", "clone", "https://github.com/in-toto/demo-project.git"]
- environment Environment
- This is a field that can be used to capture information about the environment. It is suggested for this field to contain information that details environment variables, filesystem information, and the present working directory. The recommended structure of this field is: "environment": { "custom_values": { "variables": "", "filesystem": "", "workdir": "", "": "..." } }
- materials
Grafeas
V1beta1Intoto Artifact[] - Materials are the supply chain artifacts that go into the step and are used for the operation performed. The key of the map is the path of the artifact and the structure contains the recorded hash information. An example is: "materials": [ { "resource_uri": "foo/bar", "hashes": { "sha256": "ebebf...", : } } ]
- products
Grafeas
V1beta1Intoto Artifact[] - Products are the supply chain artifacts generated as a result of the step. The structure is identical to that of materials.
- byproducts
By
Products - ByProducts are data generated as part of a software supply chain step, but are not the actual result of the step.
- command Sequence[str]
- This field contains the full command executed for the step. This can also be empty if links are generated for operations that aren't directly mapped to a specific command. Each term in the command is an independent string in the list. An example of a command in the in-toto metadata field is: "command": ["git", "clone", "https://github.com/in-toto/demo-project.git"]
- environment Environment
- This is a field that can be used to capture information about the environment. It is suggested for this field to contain information that details environment variables, filesystem information, and the present working directory. The recommended structure of this field is: "environment": { "custom_values": { "variables": "", "filesystem": "", "workdir": "", "": "..." } }
- materials
Sequence[Grafeas
V1beta1Intoto Artifact] - Materials are the supply chain artifacts that go into the step and are used for the operation performed. The key of the map is the path of the artifact and the structure contains the recorded hash information. An example is: "materials": [ { "resource_uri": "foo/bar", "hashes": { "sha256": "ebebf...", : } } ]
- products
Sequence[Grafeas
V1beta1Intoto Artifact] - Products are the supply chain artifacts generated as a result of the step. The structure is identical to that of materials.
- byproducts Property Map
- ByProducts are data generated as part of a software supply chain step, but are not the actual result of the step.
- command List<String>
- This field contains the full command executed for the step. This can also be empty if links are generated for operations that aren't directly mapped to a specific command. Each term in the command is an independent string in the list. An example of a command in the in-toto metadata field is: "command": ["git", "clone", "https://github.com/in-toto/demo-project.git"]
- environment Property Map
- This is a field that can be used to capture information about the environment. It is suggested for this field to contain information that details environment variables, filesystem information, and the present working directory. The recommended structure of this field is: "environment": { "custom_values": { "variables": "", "filesystem": "", "workdir": "", "": "..." } }
- materials List<Property Map>
- Materials are the supply chain artifacts that go into the step and are used for the operation performed. The key of the map is the path of the artifact and the structure contains the recorded hash information. An example is: "materials": [ { "resource_uri": "foo/bar", "hashes": { "sha256": "ebebf...", : } } ]
- products List<Property Map>
- Products are the supply chain artifacts generated as a result of the step. The structure is identical to that of materials.
LinkResponse, LinkResponseArgs
- Byproducts
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. By Products Response - ByProducts are data generated as part of a software supply chain step, but are not the actual result of the step.
- Command List<string>
- This field contains the full command executed for the step. This can also be empty if links are generated for operations that aren't directly mapped to a specific command. Each term in the command is an independent string in the list. An example of a command in the in-toto metadata field is: "command": ["git", "clone", "https://github.com/in-toto/demo-project.git"]
- Environment
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Environment Response - This is a field that can be used to capture information about the environment. It is suggested for this field to contain information that details environment variables, filesystem information, and the present working directory. The recommended structure of this field is: "environment": { "custom_values": { "variables": "", "filesystem": "", "workdir": "", "": "..." } }
- Materials
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Grafeas V1beta1Intoto Artifact Response> - Materials are the supply chain artifacts that go into the step and are used for the operation performed. The key of the map is the path of the artifact and the structure contains the recorded hash information. An example is: "materials": [ { "resource_uri": "foo/bar", "hashes": { "sha256": "ebebf...", : } } ]
- Products
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Grafeas V1beta1Intoto Artifact Response> - Products are the supply chain artifacts generated as a result of the step. The structure is identical to that of materials.
- Byproducts
By
Products Response - ByProducts are data generated as part of a software supply chain step, but are not the actual result of the step.
- Command []string
- This field contains the full command executed for the step. This can also be empty if links are generated for operations that aren't directly mapped to a specific command. Each term in the command is an independent string in the list. An example of a command in the in-toto metadata field is: "command": ["git", "clone", "https://github.com/in-toto/demo-project.git"]
- Environment
Environment
Response - This is a field that can be used to capture information about the environment. It is suggested for this field to contain information that details environment variables, filesystem information, and the present working directory. The recommended structure of this field is: "environment": { "custom_values": { "variables": "", "filesystem": "", "workdir": "", "": "..." } }
- Materials
[]Grafeas
V1beta1Intoto Artifact Response - Materials are the supply chain artifacts that go into the step and are used for the operation performed. The key of the map is the path of the artifact and the structure contains the recorded hash information. An example is: "materials": [ { "resource_uri": "foo/bar", "hashes": { "sha256": "ebebf...", : } } ]
- Products
[]Grafeas
V1beta1Intoto Artifact Response - Products are the supply chain artifacts generated as a result of the step. The structure is identical to that of materials.
- byproducts
By
Products Response - ByProducts are data generated as part of a software supply chain step, but are not the actual result of the step.
- command List<String>
- This field contains the full command executed for the step. This can also be empty if links are generated for operations that aren't directly mapped to a specific command. Each term in the command is an independent string in the list. An example of a command in the in-toto metadata field is: "command": ["git", "clone", "https://github.com/in-toto/demo-project.git"]
- environment
Environment
Response - This is a field that can be used to capture information about the environment. It is suggested for this field to contain information that details environment variables, filesystem information, and the present working directory. The recommended structure of this field is: "environment": { "custom_values": { "variables": "", "filesystem": "", "workdir": "", "": "..." } }
- materials
List<Grafeas
V1beta1Intoto Artifact Response> - Materials are the supply chain artifacts that go into the step and are used for the operation performed. The key of the map is the path of the artifact and the structure contains the recorded hash information. An example is: "materials": [ { "resource_uri": "foo/bar", "hashes": { "sha256": "ebebf...", : } } ]
- products
List<Grafeas
V1beta1Intoto Artifact Response> - Products are the supply chain artifacts generated as a result of the step. The structure is identical to that of materials.
- byproducts
By
Products Response - ByProducts are data generated as part of a software supply chain step, but are not the actual result of the step.
- command string[]
- This field contains the full command executed for the step. This can also be empty if links are generated for operations that aren't directly mapped to a specific command. Each term in the command is an independent string in the list. An example of a command in the in-toto metadata field is: "command": ["git", "clone", "https://github.com/in-toto/demo-project.git"]
- environment
Environment
Response - This is a field that can be used to capture information about the environment. It is suggested for this field to contain information that details environment variables, filesystem information, and the present working directory. The recommended structure of this field is: "environment": { "custom_values": { "variables": "", "filesystem": "", "workdir": "", "": "..." } }
- materials
Grafeas
V1beta1Intoto Artifact Response[] - Materials are the supply chain artifacts that go into the step and are used for the operation performed. The key of the map is the path of the artifact and the structure contains the recorded hash information. An example is: "materials": [ { "resource_uri": "foo/bar", "hashes": { "sha256": "ebebf...", : } } ]
- products
Grafeas
V1beta1Intoto Artifact Response[] - Products are the supply chain artifacts generated as a result of the step. The structure is identical to that of materials.
- byproducts
By
Products Response - ByProducts are data generated as part of a software supply chain step, but are not the actual result of the step.
- command Sequence[str]
- This field contains the full command executed for the step. This can also be empty if links are generated for operations that aren't directly mapped to a specific command. Each term in the command is an independent string in the list. An example of a command in the in-toto metadata field is: "command": ["git", "clone", "https://github.com/in-toto/demo-project.git"]
- environment
Environment
Response - This is a field that can be used to capture information about the environment. It is suggested for this field to contain information that details environment variables, filesystem information, and the present working directory. The recommended structure of this field is: "environment": { "custom_values": { "variables": "", "filesystem": "", "workdir": "", "": "..." } }
- materials
Sequence[Grafeas
V1beta1Intoto Artifact Response] - Materials are the supply chain artifacts that go into the step and are used for the operation performed. The key of the map is the path of the artifact and the structure contains the recorded hash information. An example is: "materials": [ { "resource_uri": "foo/bar", "hashes": { "sha256": "ebebf...", : } } ]
- products
Sequence[Grafeas
V1beta1Intoto Artifact Response] - Products are the supply chain artifacts generated as a result of the step. The structure is identical to that of materials.
- byproducts Property Map
- ByProducts are data generated as part of a software supply chain step, but are not the actual result of the step.
- command List<String>
- This field contains the full command executed for the step. This can also be empty if links are generated for operations that aren't directly mapped to a specific command. Each term in the command is an independent string in the list. An example of a command in the in-toto metadata field is: "command": ["git", "clone", "https://github.com/in-toto/demo-project.git"]
- environment Property Map
- This is a field that can be used to capture information about the environment. It is suggested for this field to contain information that details environment variables, filesystem information, and the present working directory. The recommended structure of this field is: "environment": { "custom_values": { "variables": "", "filesystem": "", "workdir": "", "": "..." } }
- materials List<Property Map>
- Materials are the supply chain artifacts that go into the step and are used for the operation performed. The key of the map is the path of the artifact and the structure contains the recorded hash information. An example is: "materials": [ { "resource_uri": "foo/bar", "hashes": { "sha256": "ebebf...", : } } ]
- products List<Property Map>
- Products are the supply chain artifacts generated as a result of the step. The structure is identical to that of materials.
Location, LocationArgs
- Cpe
Uri string - Deprecated. The CPE URI in CPE format denoting the package manager version distributing a package.
- Path string
- The path from which we gathered that this package/version is installed.
- Version
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Version - Deprecated. The version installed at this location.
- Cpe
Uri string - Deprecated. The CPE URI in CPE format denoting the package manager version distributing a package.
- Path string
- The path from which we gathered that this package/version is installed.
- Version Version
- Deprecated. The version installed at this location.
- cpe
Uri String - Deprecated. The CPE URI in CPE format denoting the package manager version distributing a package.
- path String
- The path from which we gathered that this package/version is installed.
- version Version
- Deprecated. The version installed at this location.
- cpe
Uri string - Deprecated. The CPE URI in CPE format denoting the package manager version distributing a package.
- path string
- The path from which we gathered that this package/version is installed.
- version Version
- Deprecated. The version installed at this location.
- cpe_
uri str - Deprecated. The CPE URI in CPE format denoting the package manager version distributing a package.
- path str
- The path from which we gathered that this package/version is installed.
- version Version
- Deprecated. The version installed at this location.
- cpe
Uri String - Deprecated. The CPE URI in CPE format denoting the package manager version distributing a package.
- path String
- The path from which we gathered that this package/version is installed.
- version Property Map
- Deprecated. The version installed at this location.
LocationResponse, LocationResponseArgs
- Cpe
Uri string - Deprecated. The CPE URI in CPE format denoting the package manager version distributing a package.
- Path string
- The path from which we gathered that this package/version is installed.
- Version
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Version Response - Deprecated. The version installed at this location.
- Cpe
Uri string - Deprecated. The CPE URI in CPE format denoting the package manager version distributing a package.
- Path string
- The path from which we gathered that this package/version is installed.
- Version
Version
Response - Deprecated. The version installed at this location.
- cpe
Uri String - Deprecated. The CPE URI in CPE format denoting the package manager version distributing a package.
- path String
- The path from which we gathered that this package/version is installed.
- version
Version
Response - Deprecated. The version installed at this location.
- cpe
Uri string - Deprecated. The CPE URI in CPE format denoting the package manager version distributing a package.
- path string
- The path from which we gathered that this package/version is installed.
- version
Version
Response - Deprecated. The version installed at this location.
- cpe_
uri str - Deprecated. The CPE URI in CPE format denoting the package manager version distributing a package.
- path str
- The path from which we gathered that this package/version is installed.
- version
Version
Response - Deprecated. The version installed at this location.
- cpe
Uri String - Deprecated. The CPE URI in CPE format denoting the package manager version distributing a package.
- path String
- The path from which we gathered that this package/version is installed.
- version Property Map
- Deprecated. The version installed at this location.
PackageInfoOccurrence, PackageInfoOccurrenceArgs
- Comment string
- A place for the SPDX file creator to record any general comments about the package being described
- Filename string
- Provide the actual file name of the package, or path of the directory being treated as a package
- Id string
- Uniquely identify any element in an SPDX document which may be referenced by other elements
- License
Concluded Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. License - package or alternative values, if the governing license cannot be determined
- Source
Info string - Provide a place for the SPDX file creator to record any relevant background information or additional comments about the origin of the package
- Comment string
- A place for the SPDX file creator to record any general comments about the package being described
- Filename string
- Provide the actual file name of the package, or path of the directory being treated as a package
- Id string
- Uniquely identify any element in an SPDX document which may be referenced by other elements
- License
Concluded License - package or alternative values, if the governing license cannot be determined
- Source
Info string - Provide a place for the SPDX file creator to record any relevant background information or additional comments about the origin of the package
- comment String
- A place for the SPDX file creator to record any general comments about the package being described
- filename String
- Provide the actual file name of the package, or path of the directory being treated as a package
- id String
- Uniquely identify any element in an SPDX document which may be referenced by other elements
- license
Concluded License - package or alternative values, if the governing license cannot be determined
- source
Info String - Provide a place for the SPDX file creator to record any relevant background information or additional comments about the origin of the package
- comment string
- A place for the SPDX file creator to record any general comments about the package being described
- filename string
- Provide the actual file name of the package, or path of the directory being treated as a package
- id string
- Uniquely identify any element in an SPDX document which may be referenced by other elements
- license
Concluded License - package or alternative values, if the governing license cannot be determined
- source
Info string - Provide a place for the SPDX file creator to record any relevant background information or additional comments about the origin of the package
- comment str
- A place for the SPDX file creator to record any general comments about the package being described
- filename str
- Provide the actual file name of the package, or path of the directory being treated as a package
- id str
- Uniquely identify any element in an SPDX document which may be referenced by other elements
- license_
concluded License - package or alternative values, if the governing license cannot be determined
- source_
info str - Provide a place for the SPDX file creator to record any relevant background information or additional comments about the origin of the package
- comment String
- A place for the SPDX file creator to record any general comments about the package being described
- filename String
- Provide the actual file name of the package, or path of the directory being treated as a package
- id String
- Uniquely identify any element in an SPDX document which may be referenced by other elements
- license
Concluded Property Map - package or alternative values, if the governing license cannot be determined
- source
Info String - Provide a place for the SPDX file creator to record any relevant background information or additional comments about the origin of the package
PackageInfoOccurrenceResponse, PackageInfoOccurrenceResponseArgs
- Comment string
- A place for the SPDX file creator to record any general comments about the package being described
- Filename string
- Provide the actual file name of the package, or path of the directory being treated as a package
- Home
Page string - Provide a place for the SPDX file creator to record a web site that serves as the package's home page
- License
Concluded Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. License Response - package or alternative values, if the governing license cannot be determined
- Package
Type string - The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
- Source
Info string - Provide a place for the SPDX file creator to record any relevant background information or additional comments about the origin of the package
- Summary
Description string - A short description of the package
- Title string
- Identify the full name of the package as given by the Package Originator
- Version string
- Identify the version of the package
- Comment string
- A place for the SPDX file creator to record any general comments about the package being described
- Filename string
- Provide the actual file name of the package, or path of the directory being treated as a package
- Home
Page string - Provide a place for the SPDX file creator to record a web site that serves as the package's home page
- License
Concluded LicenseResponse - package or alternative values, if the governing license cannot be determined
- Package
Type string - The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
- Source
Info string - Provide a place for the SPDX file creator to record any relevant background information or additional comments about the origin of the package
- Summary
Description string - A short description of the package
- Title string
- Identify the full name of the package as given by the Package Originator
- Version string
- Identify the version of the package
- comment String
- A place for the SPDX file creator to record any general comments about the package being described
- filename String
- Provide the actual file name of the package, or path of the directory being treated as a package
- home
Page String - Provide a place for the SPDX file creator to record a web site that serves as the package's home page
- license
Concluded LicenseResponse - package or alternative values, if the governing license cannot be determined
- package
Type String - The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
- source
Info String - Provide a place for the SPDX file creator to record any relevant background information or additional comments about the origin of the package
- summary
Description String - A short description of the package
- title String
- Identify the full name of the package as given by the Package Originator
- version String
- Identify the version of the package
- comment string
- A place for the SPDX file creator to record any general comments about the package being described
- filename string
- Provide the actual file name of the package, or path of the directory being treated as a package
- home
Page string - Provide a place for the SPDX file creator to record a web site that serves as the package's home page
- license
Concluded LicenseResponse - package or alternative values, if the governing license cannot be determined
- package
Type string - The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
- source
Info string - Provide a place for the SPDX file creator to record any relevant background information or additional comments about the origin of the package
- summary
Description string - A short description of the package
- title string
- Identify the full name of the package as given by the Package Originator
- version string
- Identify the version of the package
- comment str
- A place for the SPDX file creator to record any general comments about the package being described
- filename str
- Provide the actual file name of the package, or path of the directory being treated as a package
- home_
page str - Provide a place for the SPDX file creator to record a web site that serves as the package's home page
- license_
concluded LicenseResponse - package or alternative values, if the governing license cannot be determined
- package_
type str - The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
- source_
info str - Provide a place for the SPDX file creator to record any relevant background information or additional comments about the origin of the package
- summary_
description str - A short description of the package
- title str
- Identify the full name of the package as given by the Package Originator
- version str
- Identify the version of the package
- comment String
- A place for the SPDX file creator to record any general comments about the package being described
- filename String
- Provide the actual file name of the package, or path of the directory being treated as a package
- home
Page String - Provide a place for the SPDX file creator to record a web site that serves as the package's home page
- license
Concluded Property Map - package or alternative values, if the governing license cannot be determined
- package
Type String - The type of package: OS, MAVEN, GO, GO_STDLIB, etc.
- source
Info String - Provide a place for the SPDX file creator to record any relevant background information or additional comments about the origin of the package
- summary
Description String - A short description of the package
- title String
- Identify the full name of the package as given by the Package Originator
- version String
- Identify the version of the package
PackageIssue, PackageIssueArgs
- Affected
Location Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Vulnerability Location - The location of the vulnerability.
- Fixed
Location Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Vulnerability Location - The location of the available fix for vulnerability.
- Package
Type string - The type of package (e.g. OS, MAVEN, GO).
- Severity
Name string - Deprecated, use Details.effective_severity instead The severity (e.g., distro assigned severity) for this vulnerability.
- Affected
Location VulnerabilityLocation - The location of the vulnerability.
- Fixed
Location VulnerabilityLocation - The location of the available fix for vulnerability.
- Package
Type string - The type of package (e.g. OS, MAVEN, GO).
- Severity
Name string - Deprecated, use Details.effective_severity instead The severity (e.g., distro assigned severity) for this vulnerability.
- affected
Location VulnerabilityLocation - The location of the vulnerability.
- fixed
Location VulnerabilityLocation - The location of the available fix for vulnerability.
- package
Type String - The type of package (e.g. OS, MAVEN, GO).
- severity
Name String - Deprecated, use Details.effective_severity instead The severity (e.g., distro assigned severity) for this vulnerability.
- affected
Location VulnerabilityLocation - The location of the vulnerability.
- fixed
Location VulnerabilityLocation - The location of the available fix for vulnerability.
- package
Type string - The type of package (e.g. OS, MAVEN, GO).
- severity
Name string - Deprecated, use Details.effective_severity instead The severity (e.g., distro assigned severity) for this vulnerability.
- affected_
location VulnerabilityLocation - The location of the vulnerability.
- fixed_
location VulnerabilityLocation - The location of the available fix for vulnerability.
- package_
type str - The type of package (e.g. OS, MAVEN, GO).
- severity_
name str - Deprecated, use Details.effective_severity instead The severity (e.g., distro assigned severity) for this vulnerability.
- affected
Location Property Map - The location of the vulnerability.
- fixed
Location Property Map - The location of the available fix for vulnerability.
- package
Type String - The type of package (e.g. OS, MAVEN, GO).
- severity
Name String - Deprecated, use Details.effective_severity instead The severity (e.g., distro assigned severity) for this vulnerability.
PackageIssueResponse, PackageIssueResponseArgs
- Affected
Location Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Vulnerability Location Response - The location of the vulnerability.
- Effective
Severity string - The distro or language system assigned severity for this vulnerability when that is available and note provider assigned severity when it is not available.
- Fixed
Location Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Vulnerability Location Response - The location of the available fix for vulnerability.
- Package
Type string - The type of package (e.g. OS, MAVEN, GO).
- Severity
Name string - Deprecated, use Details.effective_severity instead The severity (e.g., distro assigned severity) for this vulnerability.
- Affected
Location VulnerabilityLocation Response - The location of the vulnerability.
- Effective
Severity string - The distro or language system assigned severity for this vulnerability when that is available and note provider assigned severity when it is not available.
- Fixed
Location VulnerabilityLocation Response - The location of the available fix for vulnerability.
- Package
Type string - The type of package (e.g. OS, MAVEN, GO).
- Severity
Name string - Deprecated, use Details.effective_severity instead The severity (e.g., distro assigned severity) for this vulnerability.
- affected
Location VulnerabilityLocation Response - The location of the vulnerability.
- effective
Severity String - The distro or language system assigned severity for this vulnerability when that is available and note provider assigned severity when it is not available.
- fixed
Location VulnerabilityLocation Response - The location of the available fix for vulnerability.
- package
Type String - The type of package (e.g. OS, MAVEN, GO).
- severity
Name String - Deprecated, use Details.effective_severity instead The severity (e.g., distro assigned severity) for this vulnerability.
- affected
Location VulnerabilityLocation Response - The location of the vulnerability.
- effective
Severity string - The distro or language system assigned severity for this vulnerability when that is available and note provider assigned severity when it is not available.
- fixed
Location VulnerabilityLocation Response - The location of the available fix for vulnerability.
- package
Type string - The type of package (e.g. OS, MAVEN, GO).
- severity
Name string - Deprecated, use Details.effective_severity instead The severity (e.g., distro assigned severity) for this vulnerability.
- affected_
location VulnerabilityLocation Response - The location of the vulnerability.
- effective_
severity str - The distro or language system assigned severity for this vulnerability when that is available and note provider assigned severity when it is not available.
- fixed_
location VulnerabilityLocation Response - The location of the available fix for vulnerability.
- package_
type str - The type of package (e.g. OS, MAVEN, GO).
- severity_
name str - Deprecated, use Details.effective_severity instead The severity (e.g., distro assigned severity) for this vulnerability.
- affected
Location Property Map - The location of the vulnerability.
- effective
Severity String - The distro or language system assigned severity for this vulnerability when that is available and note provider assigned severity when it is not available.
- fixed
Location Property Map - The location of the available fix for vulnerability.
- package
Type String - The type of package (e.g. OS, MAVEN, GO).
- severity
Name String - Deprecated, use Details.effective_severity instead The severity (e.g., distro assigned severity) for this vulnerability.
PgpSignedAttestation, PgpSignedAttestationArgs
- Signature string
- The raw content of the signature, as output by GNU Privacy Guard (GPG) or equivalent. Since this message only supports attached signatures, the payload that was signed must be attached. While the signature format supported is dependent on the verification implementation, currently only ASCII-armored (
--armorto gpg), non-clearsigned (--signrather than--clearsignto gpg) are supported. Concretely,gpg --sign --armor --output=signature.gpg payload.jsonwill create the signature content expected in this field insignature.gpgfor thepayload.jsonattestation payload. - Content
Type Pulumi.Google Native. Container Analysis. V1Beta1. Pgp Signed Attestation Content Type - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- Pgp
Key stringId - The cryptographic fingerprint of the key used to generate the signature, as output by, e.g.
gpg --list-keys. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character hexadecimal string. See https://tools.ietf.org/html/rfc4880#section-12.2 for details. Implementations may choose to acknowledge "LONG", "SHORT", or other abbreviated key IDs, but only the full fingerprint is guaranteed to work. In gpg, the full fingerprint can be retrieved from thefprfield returned when calling --list-keys with --with-colons. For example:gpg --with-colons --with-fingerprint --force-v4-certs \ --list-keys attester@example.com tru::1:1513631572:0:3:1:5 pub:...... fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:Above, the fingerprint is24FF6481B76AC91E66A00AC657A93A81EF3AE6FB.
- Signature string
- The raw content of the signature, as output by GNU Privacy Guard (GPG) or equivalent. Since this message only supports attached signatures, the payload that was signed must be attached. While the signature format supported is dependent on the verification implementation, currently only ASCII-armored (
--armorto gpg), non-clearsigned (--signrather than--clearsignto gpg) are supported. Concretely,gpg --sign --armor --output=signature.gpg payload.jsonwill create the signature content expected in this field insignature.gpgfor thepayload.jsonattestation payload. - Content
Type PgpSigned Attestation Content Type - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- Pgp
Key stringId - The cryptographic fingerprint of the key used to generate the signature, as output by, e.g.
gpg --list-keys. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character hexadecimal string. See https://tools.ietf.org/html/rfc4880#section-12.2 for details. Implementations may choose to acknowledge "LONG", "SHORT", or other abbreviated key IDs, but only the full fingerprint is guaranteed to work. In gpg, the full fingerprint can be retrieved from thefprfield returned when calling --list-keys with --with-colons. For example:gpg --with-colons --with-fingerprint --force-v4-certs \ --list-keys attester@example.com tru::1:1513631572:0:3:1:5 pub:...... fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:Above, the fingerprint is24FF6481B76AC91E66A00AC657A93A81EF3AE6FB.
- signature String
- The raw content of the signature, as output by GNU Privacy Guard (GPG) or equivalent. Since this message only supports attached signatures, the payload that was signed must be attached. While the signature format supported is dependent on the verification implementation, currently only ASCII-armored (
--armorto gpg), non-clearsigned (--signrather than--clearsignto gpg) are supported. Concretely,gpg --sign --armor --output=signature.gpg payload.jsonwill create the signature content expected in this field insignature.gpgfor thepayload.jsonattestation payload. - content
Type PgpSigned Attestation Content Type - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- pgp
Key StringId - The cryptographic fingerprint of the key used to generate the signature, as output by, e.g.
gpg --list-keys. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character hexadecimal string. See https://tools.ietf.org/html/rfc4880#section-12.2 for details. Implementations may choose to acknowledge "LONG", "SHORT", or other abbreviated key IDs, but only the full fingerprint is guaranteed to work. In gpg, the full fingerprint can be retrieved from thefprfield returned when calling --list-keys with --with-colons. For example:gpg --with-colons --with-fingerprint --force-v4-certs \ --list-keys attester@example.com tru::1:1513631572:0:3:1:5 pub:...... fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:Above, the fingerprint is24FF6481B76AC91E66A00AC657A93A81EF3AE6FB.
- signature string
- The raw content of the signature, as output by GNU Privacy Guard (GPG) or equivalent. Since this message only supports attached signatures, the payload that was signed must be attached. While the signature format supported is dependent on the verification implementation, currently only ASCII-armored (
--armorto gpg), non-clearsigned (--signrather than--clearsignto gpg) are supported. Concretely,gpg --sign --armor --output=signature.gpg payload.jsonwill create the signature content expected in this field insignature.gpgfor thepayload.jsonattestation payload. - content
Type PgpSigned Attestation Content Type - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- pgp
Key stringId - The cryptographic fingerprint of the key used to generate the signature, as output by, e.g.
gpg --list-keys. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character hexadecimal string. See https://tools.ietf.org/html/rfc4880#section-12.2 for details. Implementations may choose to acknowledge "LONG", "SHORT", or other abbreviated key IDs, but only the full fingerprint is guaranteed to work. In gpg, the full fingerprint can be retrieved from thefprfield returned when calling --list-keys with --with-colons. For example:gpg --with-colons --with-fingerprint --force-v4-certs \ --list-keys attester@example.com tru::1:1513631572:0:3:1:5 pub:...... fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:Above, the fingerprint is24FF6481B76AC91E66A00AC657A93A81EF3AE6FB.
- signature str
- The raw content of the signature, as output by GNU Privacy Guard (GPG) or equivalent. Since this message only supports attached signatures, the payload that was signed must be attached. While the signature format supported is dependent on the verification implementation, currently only ASCII-armored (
--armorto gpg), non-clearsigned (--signrather than--clearsignto gpg) are supported. Concretely,gpg --sign --armor --output=signature.gpg payload.jsonwill create the signature content expected in this field insignature.gpgfor thepayload.jsonattestation payload. - content_
type PgpSigned Attestation Content Type - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- pgp_
key_ strid - The cryptographic fingerprint of the key used to generate the signature, as output by, e.g.
gpg --list-keys. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character hexadecimal string. See https://tools.ietf.org/html/rfc4880#section-12.2 for details. Implementations may choose to acknowledge "LONG", "SHORT", or other abbreviated key IDs, but only the full fingerprint is guaranteed to work. In gpg, the full fingerprint can be retrieved from thefprfield returned when calling --list-keys with --with-colons. For example:gpg --with-colons --with-fingerprint --force-v4-certs \ --list-keys attester@example.com tru::1:1513631572:0:3:1:5 pub:...... fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:Above, the fingerprint is24FF6481B76AC91E66A00AC657A93A81EF3AE6FB.
- signature String
- The raw content of the signature, as output by GNU Privacy Guard (GPG) or equivalent. Since this message only supports attached signatures, the payload that was signed must be attached. While the signature format supported is dependent on the verification implementation, currently only ASCII-armored (
--armorto gpg), non-clearsigned (--signrather than--clearsignto gpg) are supported. Concretely,gpg --sign --armor --output=signature.gpg payload.jsonwill create the signature content expected in this field insignature.gpgfor thepayload.jsonattestation payload. - content
Type "CONTENT_TYPE_UNSPECIFIED" | "SIMPLE_SIGNING_JSON" - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- pgp
Key StringId - The cryptographic fingerprint of the key used to generate the signature, as output by, e.g.
gpg --list-keys. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character hexadecimal string. See https://tools.ietf.org/html/rfc4880#section-12.2 for details. Implementations may choose to acknowledge "LONG", "SHORT", or other abbreviated key IDs, but only the full fingerprint is guaranteed to work. In gpg, the full fingerprint can be retrieved from thefprfield returned when calling --list-keys with --with-colons. For example:gpg --with-colons --with-fingerprint --force-v4-certs \ --list-keys attester@example.com tru::1:1513631572:0:3:1:5 pub:...... fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:Above, the fingerprint is24FF6481B76AC91E66A00AC657A93A81EF3AE6FB.
PgpSignedAttestationContentType, PgpSignedAttestationContentTypeArgs
- Content
Type Unspecified - CONTENT_TYPE_UNSPECIFIED
ContentTypeis not set. - Simple
Signing Json - SIMPLE_SIGNING_JSONAtomic format attestation signature. See https://github.com/containers/image/blob/8a5d2f82a6e3263290c8e0276c3e0f64e77723e7/docs/atomic-signature.md The payload extracted from
signatureis a JSON blob conforming to the linked schema.
- Pgp
Signed Attestation Content Type Content Type Unspecified - CONTENT_TYPE_UNSPECIFIED
ContentTypeis not set. - Pgp
Signed Attestation Content Type Simple Signing Json - SIMPLE_SIGNING_JSONAtomic format attestation signature. See https://github.com/containers/image/blob/8a5d2f82a6e3263290c8e0276c3e0f64e77723e7/docs/atomic-signature.md The payload extracted from
signatureis a JSON blob conforming to the linked schema.
- Content
Type Unspecified - CONTENT_TYPE_UNSPECIFIED
ContentTypeis not set. - Simple
Signing Json - SIMPLE_SIGNING_JSONAtomic format attestation signature. See https://github.com/containers/image/blob/8a5d2f82a6e3263290c8e0276c3e0f64e77723e7/docs/atomic-signature.md The payload extracted from
signatureis a JSON blob conforming to the linked schema.
- Content
Type Unspecified - CONTENT_TYPE_UNSPECIFIED
ContentTypeis not set. - Simple
Signing Json - SIMPLE_SIGNING_JSONAtomic format attestation signature. See https://github.com/containers/image/blob/8a5d2f82a6e3263290c8e0276c3e0f64e77723e7/docs/atomic-signature.md The payload extracted from
signatureis a JSON blob conforming to the linked schema.
- CONTENT_TYPE_UNSPECIFIED
- CONTENT_TYPE_UNSPECIFIED
ContentTypeis not set. - SIMPLE_SIGNING_JSON
- SIMPLE_SIGNING_JSONAtomic format attestation signature. See https://github.com/containers/image/blob/8a5d2f82a6e3263290c8e0276c3e0f64e77723e7/docs/atomic-signature.md The payload extracted from
signatureis a JSON blob conforming to the linked schema.
- "CONTENT_TYPE_UNSPECIFIED"
- CONTENT_TYPE_UNSPECIFIED
ContentTypeis not set. - "SIMPLE_SIGNING_JSON"
- SIMPLE_SIGNING_JSONAtomic format attestation signature. See https://github.com/containers/image/blob/8a5d2f82a6e3263290c8e0276c3e0f64e77723e7/docs/atomic-signature.md The payload extracted from
signatureis a JSON blob conforming to the linked schema.
PgpSignedAttestationResponse, PgpSignedAttestationResponseArgs
- Content
Type string - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- Pgp
Key stringId - The cryptographic fingerprint of the key used to generate the signature, as output by, e.g.
gpg --list-keys. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character hexadecimal string. See https://tools.ietf.org/html/rfc4880#section-12.2 for details. Implementations may choose to acknowledge "LONG", "SHORT", or other abbreviated key IDs, but only the full fingerprint is guaranteed to work. In gpg, the full fingerprint can be retrieved from thefprfield returned when calling --list-keys with --with-colons. For example:gpg --with-colons --with-fingerprint --force-v4-certs \ --list-keys attester@example.com tru::1:1513631572:0:3:1:5 pub:...... fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:Above, the fingerprint is24FF6481B76AC91E66A00AC657A93A81EF3AE6FB. - Signature string
- The raw content of the signature, as output by GNU Privacy Guard (GPG) or equivalent. Since this message only supports attached signatures, the payload that was signed must be attached. While the signature format supported is dependent on the verification implementation, currently only ASCII-armored (
--armorto gpg), non-clearsigned (--signrather than--clearsignto gpg) are supported. Concretely,gpg --sign --armor --output=signature.gpg payload.jsonwill create the signature content expected in this field insignature.gpgfor thepayload.jsonattestation payload.
- Content
Type string - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- Pgp
Key stringId - The cryptographic fingerprint of the key used to generate the signature, as output by, e.g.
gpg --list-keys. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character hexadecimal string. See https://tools.ietf.org/html/rfc4880#section-12.2 for details. Implementations may choose to acknowledge "LONG", "SHORT", or other abbreviated key IDs, but only the full fingerprint is guaranteed to work. In gpg, the full fingerprint can be retrieved from thefprfield returned when calling --list-keys with --with-colons. For example:gpg --with-colons --with-fingerprint --force-v4-certs \ --list-keys attester@example.com tru::1:1513631572:0:3:1:5 pub:...... fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:Above, the fingerprint is24FF6481B76AC91E66A00AC657A93A81EF3AE6FB. - Signature string
- The raw content of the signature, as output by GNU Privacy Guard (GPG) or equivalent. Since this message only supports attached signatures, the payload that was signed must be attached. While the signature format supported is dependent on the verification implementation, currently only ASCII-armored (
--armorto gpg), non-clearsigned (--signrather than--clearsignto gpg) are supported. Concretely,gpg --sign --armor --output=signature.gpg payload.jsonwill create the signature content expected in this field insignature.gpgfor thepayload.jsonattestation payload.
- content
Type String - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- pgp
Key StringId - The cryptographic fingerprint of the key used to generate the signature, as output by, e.g.
gpg --list-keys. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character hexadecimal string. See https://tools.ietf.org/html/rfc4880#section-12.2 for details. Implementations may choose to acknowledge "LONG", "SHORT", or other abbreviated key IDs, but only the full fingerprint is guaranteed to work. In gpg, the full fingerprint can be retrieved from thefprfield returned when calling --list-keys with --with-colons. For example:gpg --with-colons --with-fingerprint --force-v4-certs \ --list-keys attester@example.com tru::1:1513631572:0:3:1:5 pub:...... fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:Above, the fingerprint is24FF6481B76AC91E66A00AC657A93A81EF3AE6FB. - signature String
- The raw content of the signature, as output by GNU Privacy Guard (GPG) or equivalent. Since this message only supports attached signatures, the payload that was signed must be attached. While the signature format supported is dependent on the verification implementation, currently only ASCII-armored (
--armorto gpg), non-clearsigned (--signrather than--clearsignto gpg) are supported. Concretely,gpg --sign --armor --output=signature.gpg payload.jsonwill create the signature content expected in this field insignature.gpgfor thepayload.jsonattestation payload.
- content
Type string - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- pgp
Key stringId - The cryptographic fingerprint of the key used to generate the signature, as output by, e.g.
gpg --list-keys. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character hexadecimal string. See https://tools.ietf.org/html/rfc4880#section-12.2 for details. Implementations may choose to acknowledge "LONG", "SHORT", or other abbreviated key IDs, but only the full fingerprint is guaranteed to work. In gpg, the full fingerprint can be retrieved from thefprfield returned when calling --list-keys with --with-colons. For example:gpg --with-colons --with-fingerprint --force-v4-certs \ --list-keys attester@example.com tru::1:1513631572:0:3:1:5 pub:...... fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:Above, the fingerprint is24FF6481B76AC91E66A00AC657A93A81EF3AE6FB. - signature string
- The raw content of the signature, as output by GNU Privacy Guard (GPG) or equivalent. Since this message only supports attached signatures, the payload that was signed must be attached. While the signature format supported is dependent on the verification implementation, currently only ASCII-armored (
--armorto gpg), non-clearsigned (--signrather than--clearsignto gpg) are supported. Concretely,gpg --sign --armor --output=signature.gpg payload.jsonwill create the signature content expected in this field insignature.gpgfor thepayload.jsonattestation payload.
- content_
type str - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- pgp_
key_ strid - The cryptographic fingerprint of the key used to generate the signature, as output by, e.g.
gpg --list-keys. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character hexadecimal string. See https://tools.ietf.org/html/rfc4880#section-12.2 for details. Implementations may choose to acknowledge "LONG", "SHORT", or other abbreviated key IDs, but only the full fingerprint is guaranteed to work. In gpg, the full fingerprint can be retrieved from thefprfield returned when calling --list-keys with --with-colons. For example:gpg --with-colons --with-fingerprint --force-v4-certs \ --list-keys attester@example.com tru::1:1513631572:0:3:1:5 pub:...... fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:Above, the fingerprint is24FF6481B76AC91E66A00AC657A93A81EF3AE6FB. - signature str
- The raw content of the signature, as output by GNU Privacy Guard (GPG) or equivalent. Since this message only supports attached signatures, the payload that was signed must be attached. While the signature format supported is dependent on the verification implementation, currently only ASCII-armored (
--armorto gpg), non-clearsigned (--signrather than--clearsignto gpg) are supported. Concretely,gpg --sign --armor --output=signature.gpg payload.jsonwill create the signature content expected in this field insignature.gpgfor thepayload.jsonattestation payload.
- content
Type String - Type (for example schema) of the attestation payload that was signed. The verifier must ensure that the provided type is one that the verifier supports, and that the attestation payload is a valid instantiation of that type (for example by validating a JSON schema).
- pgp
Key StringId - The cryptographic fingerprint of the key used to generate the signature, as output by, e.g.
gpg --list-keys. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character hexadecimal string. See https://tools.ietf.org/html/rfc4880#section-12.2 for details. Implementations may choose to acknowledge "LONG", "SHORT", or other abbreviated key IDs, but only the full fingerprint is guaranteed to work. In gpg, the full fingerprint can be retrieved from thefprfield returned when calling --list-keys with --with-colons. For example:gpg --with-colons --with-fingerprint --force-v4-certs \ --list-keys attester@example.com tru::1:1513631572:0:3:1:5 pub:...... fpr:::::::::24FF6481B76AC91E66A00AC657A93A81EF3AE6FB:Above, the fingerprint is24FF6481B76AC91E66A00AC657A93A81EF3AE6FB. - signature String
- The raw content of the signature, as output by GNU Privacy Guard (GPG) or equivalent. Since this message only supports attached signatures, the payload that was signed must be attached. While the signature format supported is dependent on the verification implementation, currently only ASCII-armored (
--armorto gpg), non-clearsigned (--signrather than--clearsignto gpg) are supported. Concretely,gpg --sign --armor --output=signature.gpg payload.jsonwill create the signature content expected in this field insignature.gpgfor thepayload.jsonattestation payload.
ProjectRepoId, ProjectRepoIdArgs
ProjectRepoIdResponse, ProjectRepoIdResponseArgs
ProvenanceBuilder, ProvenanceBuilderArgs
- Builder
Dependencies List<Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Resource Descriptor> - Id string
- Version Dictionary<string, string>
- Builder
Dependencies []ResourceDescriptor - Id string
- Version map[string]string
- builder
Dependencies List<ResourceDescriptor> - id String
- version Map<String,String>
- builder
Dependencies ResourceDescriptor[] - id string
- version {[key: string]: string}
- builder_
dependencies Sequence[ResourceDescriptor] - id str
- version Mapping[str, str]
- builder
Dependencies List<Property Map> - id String
- version Map<String>
ProvenanceBuilderResponse, ProvenanceBuilderResponseArgs
- Builder
Dependencies List<Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Resource Descriptor Response> - Version Dictionary<string, string>
- Builder
Dependencies []ResourceDescriptor Response - Version map[string]string
- builder
Dependencies List<ResourceDescriptor Response> - version Map<String,String>
- builder
Dependencies ResourceDescriptor Response[] - version {[key: string]: string}
- builder_
dependencies Sequence[ResourceDescriptor Response] - version Mapping[str, str]
- builder
Dependencies List<Property Map> - version Map<String>
RelatedUrl, RelatedUrlArgs
RelatedUrlResponse, RelatedUrlResponseArgs
RelationshipOccurrence, RelationshipOccurrenceArgs
- Comment string
- A place for the SPDX file creator to record any general comments about the relationship
- Source string
- Also referred to as SPDXRef-A The source SPDX element (file, package, etc)
- Target string
- Also referred to as SPDXRef-B The target SPDC element (file, package, etc) In cases where there are "known unknowns", the use of the keyword NOASSERTION can be used The keywords NONE can be used to indicate that an SPDX element (package/file/snippet) has no other elements connected by some relationship to it
- Comment string
- A place for the SPDX file creator to record any general comments about the relationship
- Source string
- Also referred to as SPDXRef-A The source SPDX element (file, package, etc)
- Target string
- Also referred to as SPDXRef-B The target SPDC element (file, package, etc) In cases where there are "known unknowns", the use of the keyword NOASSERTION can be used The keywords NONE can be used to indicate that an SPDX element (package/file/snippet) has no other elements connected by some relationship to it
- comment String
- A place for the SPDX file creator to record any general comments about the relationship
- source String
- Also referred to as SPDXRef-A The source SPDX element (file, package, etc)
- target String
- Also referred to as SPDXRef-B The target SPDC element (file, package, etc) In cases where there are "known unknowns", the use of the keyword NOASSERTION can be used The keywords NONE can be used to indicate that an SPDX element (package/file/snippet) has no other elements connected by some relationship to it
- comment string
- A place for the SPDX file creator to record any general comments about the relationship
- source string
- Also referred to as SPDXRef-A The source SPDX element (file, package, etc)
- target string
- Also referred to as SPDXRef-B The target SPDC element (file, package, etc) In cases where there are "known unknowns", the use of the keyword NOASSERTION can be used The keywords NONE can be used to indicate that an SPDX element (package/file/snippet) has no other elements connected by some relationship to it
- comment str
- A place for the SPDX file creator to record any general comments about the relationship
- source str
- Also referred to as SPDXRef-A The source SPDX element (file, package, etc)
- target str
- Also referred to as SPDXRef-B The target SPDC element (file, package, etc) In cases where there are "known unknowns", the use of the keyword NOASSERTION can be used The keywords NONE can be used to indicate that an SPDX element (package/file/snippet) has no other elements connected by some relationship to it
- comment String
- A place for the SPDX file creator to record any general comments about the relationship
- source String
- Also referred to as SPDXRef-A The source SPDX element (file, package, etc)
- target String
- Also referred to as SPDXRef-B The target SPDC element (file, package, etc) In cases where there are "known unknowns", the use of the keyword NOASSERTION can be used The keywords NONE can be used to indicate that an SPDX element (package/file/snippet) has no other elements connected by some relationship to it
RelationshipOccurrenceResponse, RelationshipOccurrenceResponseArgs
- Comment string
- A place for the SPDX file creator to record any general comments about the relationship
- Source string
- Also referred to as SPDXRef-A The source SPDX element (file, package, etc)
- Target string
- Also referred to as SPDXRef-B The target SPDC element (file, package, etc) In cases where there are "known unknowns", the use of the keyword NOASSERTION can be used The keywords NONE can be used to indicate that an SPDX element (package/file/snippet) has no other elements connected by some relationship to it
- Type string
- The type of relationship between the source and target SPDX elements
- Comment string
- A place for the SPDX file creator to record any general comments about the relationship
- Source string
- Also referred to as SPDXRef-A The source SPDX element (file, package, etc)
- Target string
- Also referred to as SPDXRef-B The target SPDC element (file, package, etc) In cases where there are "known unknowns", the use of the keyword NOASSERTION can be used The keywords NONE can be used to indicate that an SPDX element (package/file/snippet) has no other elements connected by some relationship to it
- Type string
- The type of relationship between the source and target SPDX elements
- comment String
- A place for the SPDX file creator to record any general comments about the relationship
- source String
- Also referred to as SPDXRef-A The source SPDX element (file, package, etc)
- target String
- Also referred to as SPDXRef-B The target SPDC element (file, package, etc) In cases where there are "known unknowns", the use of the keyword NOASSERTION can be used The keywords NONE can be used to indicate that an SPDX element (package/file/snippet) has no other elements connected by some relationship to it
- type String
- The type of relationship between the source and target SPDX elements
- comment string
- A place for the SPDX file creator to record any general comments about the relationship
- source string
- Also referred to as SPDXRef-A The source SPDX element (file, package, etc)
- target string
- Also referred to as SPDXRef-B The target SPDC element (file, package, etc) In cases where there are "known unknowns", the use of the keyword NOASSERTION can be used The keywords NONE can be used to indicate that an SPDX element (package/file/snippet) has no other elements connected by some relationship to it
- type string
- The type of relationship between the source and target SPDX elements
- comment str
- A place for the SPDX file creator to record any general comments about the relationship
- source str
- Also referred to as SPDXRef-A The source SPDX element (file, package, etc)
- target str
- Also referred to as SPDXRef-B The target SPDC element (file, package, etc) In cases where there are "known unknowns", the use of the keyword NOASSERTION can be used The keywords NONE can be used to indicate that an SPDX element (package/file/snippet) has no other elements connected by some relationship to it
- type str
- The type of relationship between the source and target SPDX elements
- comment String
- A place for the SPDX file creator to record any general comments about the relationship
- source String
- Also referred to as SPDXRef-A The source SPDX element (file, package, etc)
- target String
- Also referred to as SPDXRef-B The target SPDC element (file, package, etc) In cases where there are "known unknowns", the use of the keyword NOASSERTION can be used The keywords NONE can be used to indicate that an SPDX element (package/file/snippet) has no other elements connected by some relationship to it
- type String
- The type of relationship between the source and target SPDX elements
Remediation, RemediationArgs
- Details string
- Contains a comprehensive human-readable discussion of the remediation.
- Remediation
Type Pulumi.Google Native. Container Analysis. V1Beta1. Remediation Remediation Type - The type of remediation that can be applied.
- Remediation
Uri Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Related Url - Contains the URL where to obtain the remediation.
- Details string
- Contains a comprehensive human-readable discussion of the remediation.
- Remediation
Type RemediationRemediation Type - The type of remediation that can be applied.
- Remediation
Uri RelatedUrl - Contains the URL where to obtain the remediation.
- details String
- Contains a comprehensive human-readable discussion of the remediation.
- remediation
Type RemediationRemediation Type - The type of remediation that can be applied.
- remediation
Uri RelatedUrl - Contains the URL where to obtain the remediation.
- details string
- Contains a comprehensive human-readable discussion of the remediation.
- remediation
Type RemediationRemediation Type - The type of remediation that can be applied.
- remediation
Uri RelatedUrl - Contains the URL where to obtain the remediation.
- details str
- Contains a comprehensive human-readable discussion of the remediation.
- remediation_
type RemediationRemediation Type - The type of remediation that can be applied.
- remediation_
uri RelatedUrl - Contains the URL where to obtain the remediation.
- details String
- Contains a comprehensive human-readable discussion of the remediation.
- remediation
Type "REMEDIATION_TYPE_UNSPECIFIED" | "MITIGATION" | "NO_FIX_PLANNED" | "NONE_AVAILABLE" | "VENDOR_FIX" | "WORKAROUND" - The type of remediation that can be applied.
- remediation
Uri Property Map - Contains the URL where to obtain the remediation.
RemediationRemediationType, RemediationRemediationTypeArgs
- Remediation
Type Unspecified - REMEDIATION_TYPE_UNSPECIFIEDNo remediation type specified.
- Mitigation
- MITIGATIONA MITIGATION is available.
- No
Fix Planned - NO_FIX_PLANNEDNo fix is planned.
- None
Available - NONE_AVAILABLENot available.
- Vendor
Fix - VENDOR_FIXA vendor fix is available.
- Workaround
- WORKAROUNDA workaround is available.
- Remediation
Remediation Type Remediation Type Unspecified - REMEDIATION_TYPE_UNSPECIFIEDNo remediation type specified.
- Remediation
Remediation Type Mitigation - MITIGATIONA MITIGATION is available.
- Remediation
Remediation Type No Fix Planned - NO_FIX_PLANNEDNo fix is planned.
- Remediation
Remediation Type None Available - NONE_AVAILABLENot available.
- Remediation
Remediation Type Vendor Fix - VENDOR_FIXA vendor fix is available.
- Remediation
Remediation Type Workaround - WORKAROUNDA workaround is available.
- Remediation
Type Unspecified - REMEDIATION_TYPE_UNSPECIFIEDNo remediation type specified.
- Mitigation
- MITIGATIONA MITIGATION is available.
- No
Fix Planned - NO_FIX_PLANNEDNo fix is planned.
- None
Available - NONE_AVAILABLENot available.
- Vendor
Fix - VENDOR_FIXA vendor fix is available.
- Workaround
- WORKAROUNDA workaround is available.
- Remediation
Type Unspecified - REMEDIATION_TYPE_UNSPECIFIEDNo remediation type specified.
- Mitigation
- MITIGATIONA MITIGATION is available.
- No
Fix Planned - NO_FIX_PLANNEDNo fix is planned.
- None
Available - NONE_AVAILABLENot available.
- Vendor
Fix - VENDOR_FIXA vendor fix is available.
- Workaround
- WORKAROUNDA workaround is available.
- REMEDIATION_TYPE_UNSPECIFIED
- REMEDIATION_TYPE_UNSPECIFIEDNo remediation type specified.
- MITIGATION
- MITIGATIONA MITIGATION is available.
- NO_FIX_PLANNED
- NO_FIX_PLANNEDNo fix is planned.
- NONE_AVAILABLE
- NONE_AVAILABLENot available.
- VENDOR_FIX
- VENDOR_FIXA vendor fix is available.
- WORKAROUND
- WORKAROUNDA workaround is available.
- "REMEDIATION_TYPE_UNSPECIFIED"
- REMEDIATION_TYPE_UNSPECIFIEDNo remediation type specified.
- "MITIGATION"
- MITIGATIONA MITIGATION is available.
- "NO_FIX_PLANNED"
- NO_FIX_PLANNEDNo fix is planned.
- "NONE_AVAILABLE"
- NONE_AVAILABLENot available.
- "VENDOR_FIX"
- VENDOR_FIXA vendor fix is available.
- "WORKAROUND"
- WORKAROUNDA workaround is available.
RemediationResponse, RemediationResponseArgs
- Details string
- Contains a comprehensive human-readable discussion of the remediation.
- Remediation
Type string - The type of remediation that can be applied.
- Remediation
Uri Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Related Url Response - Contains the URL where to obtain the remediation.
- Details string
- Contains a comprehensive human-readable discussion of the remediation.
- Remediation
Type string - The type of remediation that can be applied.
- Remediation
Uri RelatedUrl Response - Contains the URL where to obtain the remediation.
- details String
- Contains a comprehensive human-readable discussion of the remediation.
- remediation
Type String - The type of remediation that can be applied.
- remediation
Uri RelatedUrl Response - Contains the URL where to obtain the remediation.
- details string
- Contains a comprehensive human-readable discussion of the remediation.
- remediation
Type string - The type of remediation that can be applied.
- remediation
Uri RelatedUrl Response - Contains the URL where to obtain the remediation.
- details str
- Contains a comprehensive human-readable discussion of the remediation.
- remediation_
type str - The type of remediation that can be applied.
- remediation_
uri RelatedUrl Response - Contains the URL where to obtain the remediation.
- details String
- Contains a comprehensive human-readable discussion of the remediation.
- remediation
Type String - The type of remediation that can be applied.
- remediation
Uri Property Map - Contains the URL where to obtain the remediation.
RepoId, RepoIdArgs
- Project
Repo Pulumi.Id Google Native. Container Analysis. V1Beta1. Inputs. Project Repo Id - A combination of a project ID and a repo name.
- Uid string
- A server-assigned, globally unique identifier.
- Project
Repo ProjectId Repo Id - A combination of a project ID and a repo name.
- Uid string
- A server-assigned, globally unique identifier.
- project
Repo ProjectId Repo Id - A combination of a project ID and a repo name.
- uid String
- A server-assigned, globally unique identifier.
- project
Repo ProjectId Repo Id - A combination of a project ID and a repo name.
- uid string
- A server-assigned, globally unique identifier.
- project_
repo_ Projectid Repo Id - A combination of a project ID and a repo name.
- uid str
- A server-assigned, globally unique identifier.
- project
Repo Property MapId - A combination of a project ID and a repo name.
- uid String
- A server-assigned, globally unique identifier.
RepoIdResponse, RepoIdResponseArgs
- Project
Repo Pulumi.Id Google Native. Container Analysis. V1Beta1. Inputs. Project Repo Id Response - A combination of a project ID and a repo name.
- Uid string
- A server-assigned, globally unique identifier.
- Project
Repo ProjectId Repo Id Response - A combination of a project ID and a repo name.
- Uid string
- A server-assigned, globally unique identifier.
- project
Repo ProjectId Repo Id Response - A combination of a project ID and a repo name.
- uid String
- A server-assigned, globally unique identifier.
- project
Repo ProjectId Repo Id Response - A combination of a project ID and a repo name.
- uid string
- A server-assigned, globally unique identifier.
- project_
repo_ Projectid Repo Id Response - A combination of a project ID and a repo name.
- uid str
- A server-assigned, globally unique identifier.
- project
Repo Property MapId - A combination of a project ID and a repo name.
- uid String
- A server-assigned, globally unique identifier.
Resource, ResourceArgs
- Uri string
- The unique URI of the resource. For example,
https://gcr.io/project/image@sha256:foofor a Docker image. - Content
Hash Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Hash - Deprecated, do not use. Use uri instead. The hash of the resource content. For example, the Docker digest.
- Name string
- Deprecated, do not use. Use uri instead. The name of the resource. For example, the name of a Docker image - "Debian".
- Uri string
- The unique URI of the resource. For example,
https://gcr.io/project/image@sha256:foofor a Docker image. - Content
Hash Hash - Deprecated, do not use. Use uri instead. The hash of the resource content. For example, the Docker digest.
- Name string
- Deprecated, do not use. Use uri instead. The name of the resource. For example, the name of a Docker image - "Debian".
- uri String
- The unique URI of the resource. For example,
https://gcr.io/project/image@sha256:foofor a Docker image. - content
Hash Hash - Deprecated, do not use. Use uri instead. The hash of the resource content. For example, the Docker digest.
- name String
- Deprecated, do not use. Use uri instead. The name of the resource. For example, the name of a Docker image - "Debian".
- uri string
- The unique URI of the resource. For example,
https://gcr.io/project/image@sha256:foofor a Docker image. - content
Hash Hash - Deprecated, do not use. Use uri instead. The hash of the resource content. For example, the Docker digest.
- name string
- Deprecated, do not use. Use uri instead. The name of the resource. For example, the name of a Docker image - "Debian".
- uri str
- The unique URI of the resource. For example,
https://gcr.io/project/image@sha256:foofor a Docker image. - content_
hash Hash - Deprecated, do not use. Use uri instead. The hash of the resource content. For example, the Docker digest.
- name str
- Deprecated, do not use. Use uri instead. The name of the resource. For example, the name of a Docker image - "Debian".
- uri String
- The unique URI of the resource. For example,
https://gcr.io/project/image@sha256:foofor a Docker image. - content
Hash Property Map - Deprecated, do not use. Use uri instead. The hash of the resource content. For example, the Docker digest.
- name String
- Deprecated, do not use. Use uri instead. The name of the resource. For example, the name of a Docker image - "Debian".
ResourceDescriptor, ResourceDescriptorArgs
- Annotations Dictionary<string, string>
- Content string
- Digest Dictionary<string, string>
- Download
Location string - Media
Type string - Name string
- Uri string
- Annotations map[string]string
- Content string
- Digest map[string]string
- Download
Location string - Media
Type string - Name string
- Uri string
- annotations Map<String,String>
- content String
- digest Map<String,String>
- download
Location String - media
Type String - name String
- uri String
- annotations {[key: string]: string}
- content string
- digest {[key: string]: string}
- download
Location string - media
Type string - name string
- uri string
- annotations Mapping[str, str]
- content str
- digest Mapping[str, str]
- download_
location str - media_
type str - name str
- uri str
- annotations Map<String>
- content String
- digest Map<String>
- download
Location String - media
Type String - name String
- uri String
ResourceDescriptorResponse, ResourceDescriptorResponseArgs
- Annotations Dictionary<string, string>
- Content string
- Digest Dictionary<string, string>
- Download
Location string - Media
Type string - Name string
- Uri string
- Annotations map[string]string
- Content string
- Digest map[string]string
- Download
Location string - Media
Type string - Name string
- Uri string
- annotations Map<String,String>
- content String
- digest Map<String,String>
- download
Location String - media
Type String - name String
- uri String
- annotations {[key: string]: string}
- content string
- digest {[key: string]: string}
- download
Location string - media
Type string - name string
- uri string
- annotations Mapping[str, str]
- content str
- digest Mapping[str, str]
- download_
location str - media_
type str - name str
- uri str
- annotations Map<String>
- content String
- digest Map<String>
- download
Location String - media
Type String - name String
- uri String
ResourceResponse, ResourceResponseArgs
- Content
Hash Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Hash Response - Deprecated, do not use. Use uri instead. The hash of the resource content. For example, the Docker digest.
- Name string
- Deprecated, do not use. Use uri instead. The name of the resource. For example, the name of a Docker image - "Debian".
- Uri string
- The unique URI of the resource. For example,
https://gcr.io/project/image@sha256:foofor a Docker image.
- Content
Hash HashResponse - Deprecated, do not use. Use uri instead. The hash of the resource content. For example, the Docker digest.
- Name string
- Deprecated, do not use. Use uri instead. The name of the resource. For example, the name of a Docker image - "Debian".
- Uri string
- The unique URI of the resource. For example,
https://gcr.io/project/image@sha256:foofor a Docker image.
- content
Hash HashResponse - Deprecated, do not use. Use uri instead. The hash of the resource content. For example, the Docker digest.
- name String
- Deprecated, do not use. Use uri instead. The name of the resource. For example, the name of a Docker image - "Debian".
- uri String
- The unique URI of the resource. For example,
https://gcr.io/project/image@sha256:foofor a Docker image.
- content
Hash HashResponse - Deprecated, do not use. Use uri instead. The hash of the resource content. For example, the Docker digest.
- name string
- Deprecated, do not use. Use uri instead. The name of the resource. For example, the name of a Docker image - "Debian".
- uri string
- The unique URI of the resource. For example,
https://gcr.io/project/image@sha256:foofor a Docker image.
- content_
hash HashResponse - Deprecated, do not use. Use uri instead. The hash of the resource content. For example, the Docker digest.
- name str
- Deprecated, do not use. Use uri instead. The name of the resource. For example, the name of a Docker image - "Debian".
- uri str
- The unique URI of the resource. For example,
https://gcr.io/project/image@sha256:foofor a Docker image.
- content
Hash Property Map - Deprecated, do not use. Use uri instead. The hash of the resource content. For example, the Docker digest.
- name String
- Deprecated, do not use. Use uri instead. The name of the resource. For example, the name of a Docker image - "Debian".
- uri String
- The unique URI of the resource. For example,
https://gcr.io/project/image@sha256:foofor a Docker image.
RunDetails, RunDetailsArgs
RunDetailsResponse, RunDetailsResponseArgs
SBOMReferenceOccurrence, SBOMReferenceOccurrenceArgs
- Payload
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Sbom Reference Intoto Payload - The actual payload that contains the SBOM reference data.
- Payload
Type string - The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'.
- Signatures
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Envelope Signature> - The signatures over the payload.
- Payload
Sbom
Reference Intoto Payload - The actual payload that contains the SBOM reference data.
- Payload
Type string - The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'.
- Signatures
[]Envelope
Signature - The signatures over the payload.
- payload
Sbom
Reference Intoto Payload - The actual payload that contains the SBOM reference data.
- payload
Type String - The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'.
- signatures
List<Envelope
Signature> - The signatures over the payload.
- payload
Sbom
Reference Intoto Payload - The actual payload that contains the SBOM reference data.
- payload
Type string - The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'.
- signatures
Envelope
Signature[] - The signatures over the payload.
- payload
Sbom
Reference Intoto Payload - The actual payload that contains the SBOM reference data.
- payload_
type str - The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'.
- signatures
Sequence[Envelope
Signature] - The signatures over the payload.
- payload Property Map
- The actual payload that contains the SBOM reference data.
- payload
Type String - The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'.
- signatures List<Property Map>
- The signatures over the payload.
SBOMReferenceOccurrenceResponse, SBOMReferenceOccurrenceResponseArgs
- Payload
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Sbom Reference Intoto Payload Response - The actual payload that contains the SBOM reference data.
- Payload
Type string - The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'.
- Signatures
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Envelope Signature Response> - The signatures over the payload.
- Payload
Sbom
Reference Intoto Payload Response - The actual payload that contains the SBOM reference data.
- Payload
Type string - The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'.
- Signatures
[]Envelope
Signature Response - The signatures over the payload.
- payload
Sbom
Reference Intoto Payload Response - The actual payload that contains the SBOM reference data.
- payload
Type String - The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'.
- signatures
List<Envelope
Signature Response> - The signatures over the payload.
- payload
Sbom
Reference Intoto Payload Response - The actual payload that contains the SBOM reference data.
- payload
Type string - The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'.
- signatures
Envelope
Signature Response[] - The signatures over the payload.
- payload
Sbom
Reference Intoto Payload Response - The actual payload that contains the SBOM reference data.
- payload_
type str - The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'.
- signatures
Sequence[Envelope
Signature Response] - The signatures over the payload.
- payload Property Map
- The actual payload that contains the SBOM reference data.
- payload
Type String - The kind of payload that SbomReferenceIntotoPayload takes. Since it's in the intoto format, this value is expected to be 'application/vnd.in-toto+json'.
- signatures List<Property Map>
- The signatures over the payload.
SBOMStatus, SBOMStatusArgs
- Error string
- If there was an error generating an SBOM, this will indicate what that error was.
- Sbom
State Pulumi.Google Native. Container Analysis. V1Beta1. SBOMStatus Sbom State - The progress of the SBOM generation.
- Error string
- If there was an error generating an SBOM, this will indicate what that error was.
- Sbom
State SBOMStatusSbom State - The progress of the SBOM generation.
- error String
- If there was an error generating an SBOM, this will indicate what that error was.
- sbom
State SBOMStatusSbom State - The progress of the SBOM generation.
- error string
- If there was an error generating an SBOM, this will indicate what that error was.
- sbom
State SBOMStatusSbom State - The progress of the SBOM generation.
- error str
- If there was an error generating an SBOM, this will indicate what that error was.
- sbom_
state SBOMStatusSbom State - The progress of the SBOM generation.
- error String
- If there was an error generating an SBOM, this will indicate what that error was.
- sbom
State "SBOM_STATE_UNSPECIFIED" | "PENDING" | "COMPLETE" - The progress of the SBOM generation.
SBOMStatusResponse, SBOMStatusResponseArgs
- error str
- If there was an error generating an SBOM, this will indicate what that error was.
- sbom_
state str - The progress of the SBOM generation.
SBOMStatusSbomState, SBOMStatusSbomStateArgs
- Sbom
State Unspecified - SBOM_STATE_UNSPECIFIEDDefault unknown state.
- Pending
- PENDINGSBOM scanning is pending.
- Complete
- COMPLETESBOM scanning has completed.
- SBOMStatus
Sbom State Sbom State Unspecified - SBOM_STATE_UNSPECIFIEDDefault unknown state.
- SBOMStatus
Sbom State Pending - PENDINGSBOM scanning is pending.
- SBOMStatus
Sbom State Complete - COMPLETESBOM scanning has completed.
- Sbom
State Unspecified - SBOM_STATE_UNSPECIFIEDDefault unknown state.
- Pending
- PENDINGSBOM scanning is pending.
- Complete
- COMPLETESBOM scanning has completed.
- Sbom
State Unspecified - SBOM_STATE_UNSPECIFIEDDefault unknown state.
- Pending
- PENDINGSBOM scanning is pending.
- Complete
- COMPLETESBOM scanning has completed.
- SBOM_STATE_UNSPECIFIED
- SBOM_STATE_UNSPECIFIEDDefault unknown state.
- PENDING
- PENDINGSBOM scanning is pending.
- COMPLETE
- COMPLETESBOM scanning has completed.
- "SBOM_STATE_UNSPECIFIED"
- SBOM_STATE_UNSPECIFIEDDefault unknown state.
- "PENDING"
- PENDINGSBOM scanning is pending.
- "COMPLETE"
- COMPLETESBOM scanning has completed.
SbomReferenceIntotoPayload, SbomReferenceIntotoPayloadArgs
- Predicate
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Sbom Reference Intoto Predicate - Additional parameters of the Predicate. Includes the actual data about the SBOM.
- Predicate
Type string - URI identifying the type of the Predicate.
- Subject
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Subject> - Set of software artifacts that the attestation applies to. Each element represents a single software artifact.
- Type string
- Identifier for the schema of the Statement.
- Predicate
Sbom
Reference Intoto Predicate - Additional parameters of the Predicate. Includes the actual data about the SBOM.
- Predicate
Type string - URI identifying the type of the Predicate.
- Subject []Subject
- Set of software artifacts that the attestation applies to. Each element represents a single software artifact.
- Type string
- Identifier for the schema of the Statement.
- predicate
Sbom
Reference Intoto Predicate - Additional parameters of the Predicate. Includes the actual data about the SBOM.
- predicate
Type String - URI identifying the type of the Predicate.
- subject List<Subject>
- Set of software artifacts that the attestation applies to. Each element represents a single software artifact.
- type String
- Identifier for the schema of the Statement.
- predicate
Sbom
Reference Intoto Predicate - Additional parameters of the Predicate. Includes the actual data about the SBOM.
- predicate
Type string - URI identifying the type of the Predicate.
- subject Subject[]
- Set of software artifacts that the attestation applies to. Each element represents a single software artifact.
- type string
- Identifier for the schema of the Statement.
- predicate
Sbom
Reference Intoto Predicate - Additional parameters of the Predicate. Includes the actual data about the SBOM.
- predicate_
type str - URI identifying the type of the Predicate.
- subject Sequence[Subject]
- Set of software artifacts that the attestation applies to. Each element represents a single software artifact.
- type str
- Identifier for the schema of the Statement.
- predicate Property Map
- Additional parameters of the Predicate. Includes the actual data about the SBOM.
- predicate
Type String - URI identifying the type of the Predicate.
- subject List<Property Map>
- Set of software artifacts that the attestation applies to. Each element represents a single software artifact.
- type String
- Identifier for the schema of the Statement.
SbomReferenceIntotoPayloadResponse, SbomReferenceIntotoPayloadResponseArgs
- Predicate
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Sbom Reference Intoto Predicate Response - Additional parameters of the Predicate. Includes the actual data about the SBOM.
- Predicate
Type string - URI identifying the type of the Predicate.
- Subject
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Subject Response> - Set of software artifacts that the attestation applies to. Each element represents a single software artifact.
- Type string
- Identifier for the schema of the Statement.
- Predicate
Sbom
Reference Intoto Predicate Response - Additional parameters of the Predicate. Includes the actual data about the SBOM.
- Predicate
Type string - URI identifying the type of the Predicate.
- Subject
[]Subject
Response - Set of software artifacts that the attestation applies to. Each element represents a single software artifact.
- Type string
- Identifier for the schema of the Statement.
- predicate
Sbom
Reference Intoto Predicate Response - Additional parameters of the Predicate. Includes the actual data about the SBOM.
- predicate
Type String - URI identifying the type of the Predicate.
- subject
List<Subject
Response> - Set of software artifacts that the attestation applies to. Each element represents a single software artifact.
- type String
- Identifier for the schema of the Statement.
- predicate
Sbom
Reference Intoto Predicate Response - Additional parameters of the Predicate. Includes the actual data about the SBOM.
- predicate
Type string - URI identifying the type of the Predicate.
- subject
Subject
Response[] - Set of software artifacts that the attestation applies to. Each element represents a single software artifact.
- type string
- Identifier for the schema of the Statement.
- predicate
Sbom
Reference Intoto Predicate Response - Additional parameters of the Predicate. Includes the actual data about the SBOM.
- predicate_
type str - URI identifying the type of the Predicate.
- subject
Sequence[Subject
Response] - Set of software artifacts that the attestation applies to. Each element represents a single software artifact.
- type str
- Identifier for the schema of the Statement.
- predicate Property Map
- Additional parameters of the Predicate. Includes the actual data about the SBOM.
- predicate
Type String - URI identifying the type of the Predicate.
- subject List<Property Map>
- Set of software artifacts that the attestation applies to. Each element represents a single software artifact.
- type String
- Identifier for the schema of the Statement.
SbomReferenceIntotoPredicate, SbomReferenceIntotoPredicateArgs
- Digest Dictionary<string, string>
- A map of algorithm to digest of the contents of the SBOM.
- Location string
- The location of the SBOM.
- Mime
Type string - The mime type of the SBOM.
- Referrer
Id string - The person or system referring this predicate to the consumer.
- Digest map[string]string
- A map of algorithm to digest of the contents of the SBOM.
- Location string
- The location of the SBOM.
- Mime
Type string - The mime type of the SBOM.
- Referrer
Id string - The person or system referring this predicate to the consumer.
- digest Map<String,String>
- A map of algorithm to digest of the contents of the SBOM.
- location String
- The location of the SBOM.
- mime
Type String - The mime type of the SBOM.
- referrer
Id String - The person or system referring this predicate to the consumer.
- digest {[key: string]: string}
- A map of algorithm to digest of the contents of the SBOM.
- location string
- The location of the SBOM.
- mime
Type string - The mime type of the SBOM.
- referrer
Id string - The person or system referring this predicate to the consumer.
- digest Mapping[str, str]
- A map of algorithm to digest of the contents of the SBOM.
- location str
- The location of the SBOM.
- mime_
type str - The mime type of the SBOM.
- referrer_
id str - The person or system referring this predicate to the consumer.
- digest Map<String>
- A map of algorithm to digest of the contents of the SBOM.
- location String
- The location of the SBOM.
- mime
Type String - The mime type of the SBOM.
- referrer
Id String - The person or system referring this predicate to the consumer.
SbomReferenceIntotoPredicateResponse, SbomReferenceIntotoPredicateResponseArgs
- Digest Dictionary<string, string>
- A map of algorithm to digest of the contents of the SBOM.
- Location string
- The location of the SBOM.
- Mime
Type string - The mime type of the SBOM.
- Referrer
Id string - The person or system referring this predicate to the consumer.
- Digest map[string]string
- A map of algorithm to digest of the contents of the SBOM.
- Location string
- The location of the SBOM.
- Mime
Type string - The mime type of the SBOM.
- Referrer
Id string - The person or system referring this predicate to the consumer.
- digest Map<String,String>
- A map of algorithm to digest of the contents of the SBOM.
- location String
- The location of the SBOM.
- mime
Type String - The mime type of the SBOM.
- referrer
Id String - The person or system referring this predicate to the consumer.
- digest {[key: string]: string}
- A map of algorithm to digest of the contents of the SBOM.
- location string
- The location of the SBOM.
- mime
Type string - The mime type of the SBOM.
- referrer
Id string - The person or system referring this predicate to the consumer.
- digest Mapping[str, str]
- A map of algorithm to digest of the contents of the SBOM.
- location str
- The location of the SBOM.
- mime_
type str - The mime type of the SBOM.
- referrer_
id str - The person or system referring this predicate to the consumer.
- digest Map<String>
- A map of algorithm to digest of the contents of the SBOM.
- location String
- The location of the SBOM.
- mime
Type String - The mime type of the SBOM.
- referrer
Id String - The person or system referring this predicate to the consumer.
Signature, SignatureArgs
- Public
Key stringId - The identifier for the public key that verifies this signature. * The
public_key_idis required. * Thepublic_key_idSHOULD be an RFC3986 conformant URI. * When possible, thepublic_key_idSHOULD be an immutable reference, such as a cryptographic digest. Examples of validpublic_key_ids: OpenPGP V4 public key fingerprint: * "openpgp4fpr:74FAF3B861BDA0870C7B6DEF607E48D2A663AEEA" See https://www.iana.org/assignments/uri-schemes/prov/openpgp4fpr for more details on this scheme. RFC6920 digest-named SubjectPublicKeyInfo (digest of the DER serialization): * "ni:///sha-256;cD9o9Cq6LG3jD0iKXqEi_vdjJGecm_iXkbqVoScViaU" * "nih:///sha-256;703f68f42aba2c6de30f488a5ea122fef76324679c9bf89791ba95a1271589a5" - Signature string
- The content of the signature, an opaque bytestring. The payload that this signature verifies MUST be unambiguously provided with the Signature during verification. A wrapper message might provide the payload explicitly. Alternatively, a message might have a canonical serialization that can always be unambiguously computed to derive the payload.
- Public
Key stringId - The identifier for the public key that verifies this signature. * The
public_key_idis required. * Thepublic_key_idSHOULD be an RFC3986 conformant URI. * When possible, thepublic_key_idSHOULD be an immutable reference, such as a cryptographic digest. Examples of validpublic_key_ids: OpenPGP V4 public key fingerprint: * "openpgp4fpr:74FAF3B861BDA0870C7B6DEF607E48D2A663AEEA" See https://www.iana.org/assignments/uri-schemes/prov/openpgp4fpr for more details on this scheme. RFC6920 digest-named SubjectPublicKeyInfo (digest of the DER serialization): * "ni:///sha-256;cD9o9Cq6LG3jD0iKXqEi_vdjJGecm_iXkbqVoScViaU" * "nih:///sha-256;703f68f42aba2c6de30f488a5ea122fef76324679c9bf89791ba95a1271589a5" - Signature string
- The content of the signature, an opaque bytestring. The payload that this signature verifies MUST be unambiguously provided with the Signature during verification. A wrapper message might provide the payload explicitly. Alternatively, a message might have a canonical serialization that can always be unambiguously computed to derive the payload.
- public
Key StringId - The identifier for the public key that verifies this signature. * The
public_key_idis required. * Thepublic_key_idSHOULD be an RFC3986 conformant URI. * When possible, thepublic_key_idSHOULD be an immutable reference, such as a cryptographic digest. Examples of validpublic_key_ids: OpenPGP V4 public key fingerprint: * "openpgp4fpr:74FAF3B861BDA0870C7B6DEF607E48D2A663AEEA" See https://www.iana.org/assignments/uri-schemes/prov/openpgp4fpr for more details on this scheme. RFC6920 digest-named SubjectPublicKeyInfo (digest of the DER serialization): * "ni:///sha-256;cD9o9Cq6LG3jD0iKXqEi_vdjJGecm_iXkbqVoScViaU" * "nih:///sha-256;703f68f42aba2c6de30f488a5ea122fef76324679c9bf89791ba95a1271589a5" - signature String
- The content of the signature, an opaque bytestring. The payload that this signature verifies MUST be unambiguously provided with the Signature during verification. A wrapper message might provide the payload explicitly. Alternatively, a message might have a canonical serialization that can always be unambiguously computed to derive the payload.
- public
Key stringId - The identifier for the public key that verifies this signature. * The
public_key_idis required. * Thepublic_key_idSHOULD be an RFC3986 conformant URI. * When possible, thepublic_key_idSHOULD be an immutable reference, such as a cryptographic digest. Examples of validpublic_key_ids: OpenPGP V4 public key fingerprint: * "openpgp4fpr:74FAF3B861BDA0870C7B6DEF607E48D2A663AEEA" See https://www.iana.org/assignments/uri-schemes/prov/openpgp4fpr for more details on this scheme. RFC6920 digest-named SubjectPublicKeyInfo (digest of the DER serialization): * "ni:///sha-256;cD9o9Cq6LG3jD0iKXqEi_vdjJGecm_iXkbqVoScViaU" * "nih:///sha-256;703f68f42aba2c6de30f488a5ea122fef76324679c9bf89791ba95a1271589a5" - signature string
- The content of the signature, an opaque bytestring. The payload that this signature verifies MUST be unambiguously provided with the Signature during verification. A wrapper message might provide the payload explicitly. Alternatively, a message might have a canonical serialization that can always be unambiguously computed to derive the payload.
- public_
key_ strid - The identifier for the public key that verifies this signature. * The
public_key_idis required. * Thepublic_key_idSHOULD be an RFC3986 conformant URI. * When possible, thepublic_key_idSHOULD be an immutable reference, such as a cryptographic digest. Examples of validpublic_key_ids: OpenPGP V4 public key fingerprint: * "openpgp4fpr:74FAF3B861BDA0870C7B6DEF607E48D2A663AEEA" See https://www.iana.org/assignments/uri-schemes/prov/openpgp4fpr for more details on this scheme. RFC6920 digest-named SubjectPublicKeyInfo (digest of the DER serialization): * "ni:///sha-256;cD9o9Cq6LG3jD0iKXqEi_vdjJGecm_iXkbqVoScViaU" * "nih:///sha-256;703f68f42aba2c6de30f488a5ea122fef76324679c9bf89791ba95a1271589a5" - signature str
- The content of the signature, an opaque bytestring. The payload that this signature verifies MUST be unambiguously provided with the Signature during verification. A wrapper message might provide the payload explicitly. Alternatively, a message might have a canonical serialization that can always be unambiguously computed to derive the payload.
- public
Key StringId - The identifier for the public key that verifies this signature. * The
public_key_idis required. * Thepublic_key_idSHOULD be an RFC3986 conformant URI. * When possible, thepublic_key_idSHOULD be an immutable reference, such as a cryptographic digest. Examples of validpublic_key_ids: OpenPGP V4 public key fingerprint: * "openpgp4fpr:74FAF3B861BDA0870C7B6DEF607E48D2A663AEEA" See https://www.iana.org/assignments/uri-schemes/prov/openpgp4fpr for more details on this scheme. RFC6920 digest-named SubjectPublicKeyInfo (digest of the DER serialization): * "ni:///sha-256;cD9o9Cq6LG3jD0iKXqEi_vdjJGecm_iXkbqVoScViaU" * "nih:///sha-256;703f68f42aba2c6de30f488a5ea122fef76324679c9bf89791ba95a1271589a5" - signature String
- The content of the signature, an opaque bytestring. The payload that this signature verifies MUST be unambiguously provided with the Signature during verification. A wrapper message might provide the payload explicitly. Alternatively, a message might have a canonical serialization that can always be unambiguously computed to derive the payload.
SignatureResponse, SignatureResponseArgs
- Public
Key stringId - The identifier for the public key that verifies this signature. * The
public_key_idis required. * Thepublic_key_idSHOULD be an RFC3986 conformant URI. * When possible, thepublic_key_idSHOULD be an immutable reference, such as a cryptographic digest. Examples of validpublic_key_ids: OpenPGP V4 public key fingerprint: * "openpgp4fpr:74FAF3B861BDA0870C7B6DEF607E48D2A663AEEA" See https://www.iana.org/assignments/uri-schemes/prov/openpgp4fpr for more details on this scheme. RFC6920 digest-named SubjectPublicKeyInfo (digest of the DER serialization): * "ni:///sha-256;cD9o9Cq6LG3jD0iKXqEi_vdjJGecm_iXkbqVoScViaU" * "nih:///sha-256;703f68f42aba2c6de30f488a5ea122fef76324679c9bf89791ba95a1271589a5" - Signature string
- The content of the signature, an opaque bytestring. The payload that this signature verifies MUST be unambiguously provided with the Signature during verification. A wrapper message might provide the payload explicitly. Alternatively, a message might have a canonical serialization that can always be unambiguously computed to derive the payload.
- Public
Key stringId - The identifier for the public key that verifies this signature. * The
public_key_idis required. * Thepublic_key_idSHOULD be an RFC3986 conformant URI. * When possible, thepublic_key_idSHOULD be an immutable reference, such as a cryptographic digest. Examples of validpublic_key_ids: OpenPGP V4 public key fingerprint: * "openpgp4fpr:74FAF3B861BDA0870C7B6DEF607E48D2A663AEEA" See https://www.iana.org/assignments/uri-schemes/prov/openpgp4fpr for more details on this scheme. RFC6920 digest-named SubjectPublicKeyInfo (digest of the DER serialization): * "ni:///sha-256;cD9o9Cq6LG3jD0iKXqEi_vdjJGecm_iXkbqVoScViaU" * "nih:///sha-256;703f68f42aba2c6de30f488a5ea122fef76324679c9bf89791ba95a1271589a5" - Signature string
- The content of the signature, an opaque bytestring. The payload that this signature verifies MUST be unambiguously provided with the Signature during verification. A wrapper message might provide the payload explicitly. Alternatively, a message might have a canonical serialization that can always be unambiguously computed to derive the payload.
- public
Key StringId - The identifier for the public key that verifies this signature. * The
public_key_idis required. * Thepublic_key_idSHOULD be an RFC3986 conformant URI. * When possible, thepublic_key_idSHOULD be an immutable reference, such as a cryptographic digest. Examples of validpublic_key_ids: OpenPGP V4 public key fingerprint: * "openpgp4fpr:74FAF3B861BDA0870C7B6DEF607E48D2A663AEEA" See https://www.iana.org/assignments/uri-schemes/prov/openpgp4fpr for more details on this scheme. RFC6920 digest-named SubjectPublicKeyInfo (digest of the DER serialization): * "ni:///sha-256;cD9o9Cq6LG3jD0iKXqEi_vdjJGecm_iXkbqVoScViaU" * "nih:///sha-256;703f68f42aba2c6de30f488a5ea122fef76324679c9bf89791ba95a1271589a5" - signature String
- The content of the signature, an opaque bytestring. The payload that this signature verifies MUST be unambiguously provided with the Signature during verification. A wrapper message might provide the payload explicitly. Alternatively, a message might have a canonical serialization that can always be unambiguously computed to derive the payload.
- public
Key stringId - The identifier for the public key that verifies this signature. * The
public_key_idis required. * Thepublic_key_idSHOULD be an RFC3986 conformant URI. * When possible, thepublic_key_idSHOULD be an immutable reference, such as a cryptographic digest. Examples of validpublic_key_ids: OpenPGP V4 public key fingerprint: * "openpgp4fpr:74FAF3B861BDA0870C7B6DEF607E48D2A663AEEA" See https://www.iana.org/assignments/uri-schemes/prov/openpgp4fpr for more details on this scheme. RFC6920 digest-named SubjectPublicKeyInfo (digest of the DER serialization): * "ni:///sha-256;cD9o9Cq6LG3jD0iKXqEi_vdjJGecm_iXkbqVoScViaU" * "nih:///sha-256;703f68f42aba2c6de30f488a5ea122fef76324679c9bf89791ba95a1271589a5" - signature string
- The content of the signature, an opaque bytestring. The payload that this signature verifies MUST be unambiguously provided with the Signature during verification. A wrapper message might provide the payload explicitly. Alternatively, a message might have a canonical serialization that can always be unambiguously computed to derive the payload.
- public_
key_ strid - The identifier for the public key that verifies this signature. * The
public_key_idis required. * Thepublic_key_idSHOULD be an RFC3986 conformant URI. * When possible, thepublic_key_idSHOULD be an immutable reference, such as a cryptographic digest. Examples of validpublic_key_ids: OpenPGP V4 public key fingerprint: * "openpgp4fpr:74FAF3B861BDA0870C7B6DEF607E48D2A663AEEA" See https://www.iana.org/assignments/uri-schemes/prov/openpgp4fpr for more details on this scheme. RFC6920 digest-named SubjectPublicKeyInfo (digest of the DER serialization): * "ni:///sha-256;cD9o9Cq6LG3jD0iKXqEi_vdjJGecm_iXkbqVoScViaU" * "nih:///sha-256;703f68f42aba2c6de30f488a5ea122fef76324679c9bf89791ba95a1271589a5" - signature str
- The content of the signature, an opaque bytestring. The payload that this signature verifies MUST be unambiguously provided with the Signature during verification. A wrapper message might provide the payload explicitly. Alternatively, a message might have a canonical serialization that can always be unambiguously computed to derive the payload.
- public
Key StringId - The identifier for the public key that verifies this signature. * The
public_key_idis required. * Thepublic_key_idSHOULD be an RFC3986 conformant URI. * When possible, thepublic_key_idSHOULD be an immutable reference, such as a cryptographic digest. Examples of validpublic_key_ids: OpenPGP V4 public key fingerprint: * "openpgp4fpr:74FAF3B861BDA0870C7B6DEF607E48D2A663AEEA" See https://www.iana.org/assignments/uri-schemes/prov/openpgp4fpr for more details on this scheme. RFC6920 digest-named SubjectPublicKeyInfo (digest of the DER serialization): * "ni:///sha-256;cD9o9Cq6LG3jD0iKXqEi_vdjJGecm_iXkbqVoScViaU" * "nih:///sha-256;703f68f42aba2c6de30f488a5ea122fef76324679c9bf89791ba95a1271589a5" - signature String
- The content of the signature, an opaque bytestring. The payload that this signature verifies MUST be unambiguously provided with the Signature during verification. A wrapper message might provide the payload explicitly. Alternatively, a message might have a canonical serialization that can always be unambiguously computed to derive the payload.
SlsaProvenanceV1, SlsaProvenanceV1Args
SlsaProvenanceV1Response, SlsaProvenanceV1ResponseArgs
Source, SourceArgs
- Additional
Contexts List<Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Source Context> - If provided, some of the source code used for the build may be found in these locations, in the case where the source repository had multiple remotes or submodules. This list will not include the context specified in the context field.
- Artifact
Storage stringSource Uri - If provided, the input binary artifacts for the build came from this location.
- Context
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Source Context - If provided, the source code used for the build came from this location.
- File
Hashes Dictionary<string, string> - Hash(es) of the build source, which can be used to verify that the original source integrity was maintained in the build. The keys to this map are file paths used as build source and the values contain the hash values for those files. If the build source came in a single package such as a gzipped tarfile (.tar.gz), the FileHash will be for the single path to that file.
- Additional
Contexts []SourceContext - If provided, some of the source code used for the build may be found in these locations, in the case where the source repository had multiple remotes or submodules. This list will not include the context specified in the context field.
- Artifact
Storage stringSource Uri - If provided, the input binary artifacts for the build came from this location.
- Context
Source
Context - If provided, the source code used for the build came from this location.
- File
Hashes map[string]string - Hash(es) of the build source, which can be used to verify that the original source integrity was maintained in the build. The keys to this map are file paths used as build source and the values contain the hash values for those files. If the build source came in a single package such as a gzipped tarfile (.tar.gz), the FileHash will be for the single path to that file.
- additional
Contexts List<SourceContext> - If provided, some of the source code used for the build may be found in these locations, in the case where the source repository had multiple remotes or submodules. This list will not include the context specified in the context field.
- artifact
Storage StringSource Uri - If provided, the input binary artifacts for the build came from this location.
- context
Source
Context - If provided, the source code used for the build came from this location.
- file
Hashes Map<String,String> - Hash(es) of the build source, which can be used to verify that the original source integrity was maintained in the build. The keys to this map are file paths used as build source and the values contain the hash values for those files. If the build source came in a single package such as a gzipped tarfile (.tar.gz), the FileHash will be for the single path to that file.
- additional
Contexts SourceContext[] - If provided, some of the source code used for the build may be found in these locations, in the case where the source repository had multiple remotes or submodules. This list will not include the context specified in the context field.
- artifact
Storage stringSource Uri - If provided, the input binary artifacts for the build came from this location.
- context
Source
Context - If provided, the source code used for the build came from this location.
- file
Hashes {[key: string]: string} - Hash(es) of the build source, which can be used to verify that the original source integrity was maintained in the build. The keys to this map are file paths used as build source and the values contain the hash values for those files. If the build source came in a single package such as a gzipped tarfile (.tar.gz), the FileHash will be for the single path to that file.
- additional_
contexts Sequence[SourceContext] - If provided, some of the source code used for the build may be found in these locations, in the case where the source repository had multiple remotes or submodules. This list will not include the context specified in the context field.
- artifact_
storage_ strsource_ uri - If provided, the input binary artifacts for the build came from this location.
- context
Source
Context - If provided, the source code used for the build came from this location.
- file_
hashes Mapping[str, str] - Hash(es) of the build source, which can be used to verify that the original source integrity was maintained in the build. The keys to this map are file paths used as build source and the values contain the hash values for those files. If the build source came in a single package such as a gzipped tarfile (.tar.gz), the FileHash will be for the single path to that file.
- additional
Contexts List<Property Map> - If provided, some of the source code used for the build may be found in these locations, in the case where the source repository had multiple remotes or submodules. This list will not include the context specified in the context field.
- artifact
Storage StringSource Uri - If provided, the input binary artifacts for the build came from this location.
- context Property Map
- If provided, the source code used for the build came from this location.
- file
Hashes Map<String> - Hash(es) of the build source, which can be used to verify that the original source integrity was maintained in the build. The keys to this map are file paths used as build source and the values contain the hash values for those files. If the build source came in a single package such as a gzipped tarfile (.tar.gz), the FileHash will be for the single path to that file.
SourceContext, SourceContextArgs
- Cloud
Repo Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Cloud Repo Source Context - A SourceContext referring to a revision in a Google Cloud Source Repo.
- Gerrit
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Gerrit Source Context - A SourceContext referring to a Gerrit project.
- Git
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Git Source Context - A SourceContext referring to any third party Git repo (e.g., GitHub).
- Labels Dictionary<string, string>
- Labels with user defined metadata.
- Cloud
Repo CloudRepo Source Context - A SourceContext referring to a revision in a Google Cloud Source Repo.
- Gerrit
Gerrit
Source Context - A SourceContext referring to a Gerrit project.
- Git
Git
Source Context - A SourceContext referring to any third party Git repo (e.g., GitHub).
- Labels map[string]string
- Labels with user defined metadata.
- cloud
Repo CloudRepo Source Context - A SourceContext referring to a revision in a Google Cloud Source Repo.
- gerrit
Gerrit
Source Context - A SourceContext referring to a Gerrit project.
- git
Git
Source Context - A SourceContext referring to any third party Git repo (e.g., GitHub).
- labels Map<String,String>
- Labels with user defined metadata.
- cloud
Repo CloudRepo Source Context - A SourceContext referring to a revision in a Google Cloud Source Repo.
- gerrit
Gerrit
Source Context - A SourceContext referring to a Gerrit project.
- git
Git
Source Context - A SourceContext referring to any third party Git repo (e.g., GitHub).
- labels {[key: string]: string}
- Labels with user defined metadata.
- cloud_
repo CloudRepo Source Context - A SourceContext referring to a revision in a Google Cloud Source Repo.
- gerrit
Gerrit
Source Context - A SourceContext referring to a Gerrit project.
- git
Git
Source Context - A SourceContext referring to any third party Git repo (e.g., GitHub).
- labels Mapping[str, str]
- Labels with user defined metadata.
- cloud
Repo Property Map - A SourceContext referring to a revision in a Google Cloud Source Repo.
- gerrit Property Map
- A SourceContext referring to a Gerrit project.
- git Property Map
- A SourceContext referring to any third party Git repo (e.g., GitHub).
- labels Map<String>
- Labels with user defined metadata.
SourceContextResponse, SourceContextResponseArgs
- Cloud
Repo Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Cloud Repo Source Context Response - A SourceContext referring to a revision in a Google Cloud Source Repo.
- Gerrit
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Gerrit Source Context Response - A SourceContext referring to a Gerrit project.
- Git
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Git Source Context Response - A SourceContext referring to any third party Git repo (e.g., GitHub).
- Labels Dictionary<string, string>
- Labels with user defined metadata.
- Cloud
Repo CloudRepo Source Context Response - A SourceContext referring to a revision in a Google Cloud Source Repo.
- Gerrit
Gerrit
Source Context Response - A SourceContext referring to a Gerrit project.
- Git
Git
Source Context Response - A SourceContext referring to any third party Git repo (e.g., GitHub).
- Labels map[string]string
- Labels with user defined metadata.
- cloud
Repo CloudRepo Source Context Response - A SourceContext referring to a revision in a Google Cloud Source Repo.
- gerrit
Gerrit
Source Context Response - A SourceContext referring to a Gerrit project.
- git
Git
Source Context Response - A SourceContext referring to any third party Git repo (e.g., GitHub).
- labels Map<String,String>
- Labels with user defined metadata.
- cloud
Repo CloudRepo Source Context Response - A SourceContext referring to a revision in a Google Cloud Source Repo.
- gerrit
Gerrit
Source Context Response - A SourceContext referring to a Gerrit project.
- git
Git
Source Context Response - A SourceContext referring to any third party Git repo (e.g., GitHub).
- labels {[key: string]: string}
- Labels with user defined metadata.
- cloud_
repo CloudRepo Source Context Response - A SourceContext referring to a revision in a Google Cloud Source Repo.
- gerrit
Gerrit
Source Context Response - A SourceContext referring to a Gerrit project.
- git
Git
Source Context Response - A SourceContext referring to any third party Git repo (e.g., GitHub).
- labels Mapping[str, str]
- Labels with user defined metadata.
- cloud
Repo Property Map - A SourceContext referring to a revision in a Google Cloud Source Repo.
- gerrit Property Map
- A SourceContext referring to a Gerrit project.
- git Property Map
- A SourceContext referring to any third party Git repo (e.g., GitHub).
- labels Map<String>
- Labels with user defined metadata.
SourceResponse, SourceResponseArgs
- Additional
Contexts List<Pulumi.Google Native. Container Analysis. V1Beta1. Inputs. Source Context Response> - If provided, some of the source code used for the build may be found in these locations, in the case where the source repository had multiple remotes or submodules. This list will not include the context specified in the context field.
- Artifact
Storage stringSource Uri - If provided, the input binary artifacts for the build came from this location.
- Context
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Source Context Response - If provided, the source code used for the build came from this location.
- File
Hashes Dictionary<string, string> - Hash(es) of the build source, which can be used to verify that the original source integrity was maintained in the build. The keys to this map are file paths used as build source and the values contain the hash values for those files. If the build source came in a single package such as a gzipped tarfile (.tar.gz), the FileHash will be for the single path to that file.
- Additional
Contexts []SourceContext Response - If provided, some of the source code used for the build may be found in these locations, in the case where the source repository had multiple remotes or submodules. This list will not include the context specified in the context field.
- Artifact
Storage stringSource Uri - If provided, the input binary artifacts for the build came from this location.
- Context
Source
Context Response - If provided, the source code used for the build came from this location.
- File
Hashes map[string]string - Hash(es) of the build source, which can be used to verify that the original source integrity was maintained in the build. The keys to this map are file paths used as build source and the values contain the hash values for those files. If the build source came in a single package such as a gzipped tarfile (.tar.gz), the FileHash will be for the single path to that file.
- additional
Contexts List<SourceContext Response> - If provided, some of the source code used for the build may be found in these locations, in the case where the source repository had multiple remotes or submodules. This list will not include the context specified in the context field.
- artifact
Storage StringSource Uri - If provided, the input binary artifacts for the build came from this location.
- context
Source
Context Response - If provided, the source code used for the build came from this location.
- file
Hashes Map<String,String> - Hash(es) of the build source, which can be used to verify that the original source integrity was maintained in the build. The keys to this map are file paths used as build source and the values contain the hash values for those files. If the build source came in a single package such as a gzipped tarfile (.tar.gz), the FileHash will be for the single path to that file.
- additional
Contexts SourceContext Response[] - If provided, some of the source code used for the build may be found in these locations, in the case where the source repository had multiple remotes or submodules. This list will not include the context specified in the context field.
- artifact
Storage stringSource Uri - If provided, the input binary artifacts for the build came from this location.
- context
Source
Context Response - If provided, the source code used for the build came from this location.
- file
Hashes {[key: string]: string} - Hash(es) of the build source, which can be used to verify that the original source integrity was maintained in the build. The keys to this map are file paths used as build source and the values contain the hash values for those files. If the build source came in a single package such as a gzipped tarfile (.tar.gz), the FileHash will be for the single path to that file.
- additional_
contexts Sequence[SourceContext Response] - If provided, some of the source code used for the build may be found in these locations, in the case where the source repository had multiple remotes or submodules. This list will not include the context specified in the context field.
- artifact_
storage_ strsource_ uri - If provided, the input binary artifacts for the build came from this location.
- context
Source
Context Response - If provided, the source code used for the build came from this location.
- file_
hashes Mapping[str, str] - Hash(es) of the build source, which can be used to verify that the original source integrity was maintained in the build. The keys to this map are file paths used as build source and the values contain the hash values for those files. If the build source came in a single package such as a gzipped tarfile (.tar.gz), the FileHash will be for the single path to that file.
- additional
Contexts List<Property Map> - If provided, some of the source code used for the build may be found in these locations, in the case where the source repository had multiple remotes or submodules. This list will not include the context specified in the context field.
- artifact
Storage StringSource Uri - If provided, the input binary artifacts for the build came from this location.
- context Property Map
- If provided, the source code used for the build came from this location.
- file
Hashes Map<String> - Hash(es) of the build source, which can be used to verify that the original source integrity was maintained in the build. The keys to this map are file paths used as build source and the values contain the hash values for those files. If the build source came in a single package such as a gzipped tarfile (.tar.gz), the FileHash will be for the single path to that file.
Status, StatusArgs
- Code int
- The status code, which should be an enum value of google.rpc.Code.
- Details
List<Immutable
Dictionary<string, string>> - A list of messages that carry the error details. There is a common set of message types for APIs to use.
- Message string
- A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
- Code int
- The status code, which should be an enum value of google.rpc.Code.
- Details []map[string]string
- A list of messages that carry the error details. There is a common set of message types for APIs to use.
- Message string
- A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
- code Integer
- The status code, which should be an enum value of google.rpc.Code.
- details List<Map<String,String>>
- A list of messages that carry the error details. There is a common set of message types for APIs to use.
- message String
- A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
- code number
- The status code, which should be an enum value of google.rpc.Code.
- details {[key: string]: string}[]
- A list of messages that carry the error details. There is a common set of message types for APIs to use.
- message string
- A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
- code int
- The status code, which should be an enum value of google.rpc.Code.
- details Sequence[Mapping[str, str]]
- A list of messages that carry the error details. There is a common set of message types for APIs to use.
- message str
- A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
- code Number
- The status code, which should be an enum value of google.rpc.Code.
- details List<Map<String>>
- A list of messages that carry the error details. There is a common set of message types for APIs to use.
- message String
- A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
StatusResponse, StatusResponseArgs
- Code int
- The status code, which should be an enum value of google.rpc.Code.
- Details
List<Immutable
Dictionary<string, string>> - A list of messages that carry the error details. There is a common set of message types for APIs to use.
- Message string
- A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
- Code int
- The status code, which should be an enum value of google.rpc.Code.
- Details []map[string]string
- A list of messages that carry the error details. There is a common set of message types for APIs to use.
- Message string
- A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
- code Integer
- The status code, which should be an enum value of google.rpc.Code.
- details List<Map<String,String>>
- A list of messages that carry the error details. There is a common set of message types for APIs to use.
- message String
- A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
- code number
- The status code, which should be an enum value of google.rpc.Code.
- details {[key: string]: string}[]
- A list of messages that carry the error details. There is a common set of message types for APIs to use.
- message string
- A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
- code int
- The status code, which should be an enum value of google.rpc.Code.
- details Sequence[Mapping[str, str]]
- A list of messages that carry the error details. There is a common set of message types for APIs to use.
- message str
- A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
- code Number
- The status code, which should be an enum value of google.rpc.Code.
- details List<Map<String>>
- A list of messages that carry the error details. There is a common set of message types for APIs to use.
- message String
- A developer-facing error message, which should be in English. Any user-facing error message should be localized and sent in the google.rpc.Status.details field, or localized by the client.
Subject, SubjectArgs
SubjectResponse, SubjectResponseArgs
Version, VersionArgs
- Kind
Pulumi.
Google Native. Container Analysis. V1Beta1. Version Kind - Distinguishes between sentinel MIN/MAX versions and normal versions.
- Epoch int
- Used to correct mistakes in the version numbering scheme.
- Inclusive bool
- Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- Name string
- Required only when version kind is NORMAL. The main part of the version name.
- Revision string
- The iteration of the package build from the above version.
- Kind
Version
Kind - Distinguishes between sentinel MIN/MAX versions and normal versions.
- Epoch int
- Used to correct mistakes in the version numbering scheme.
- Inclusive bool
- Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- Name string
- Required only when version kind is NORMAL. The main part of the version name.
- Revision string
- The iteration of the package build from the above version.
- kind
Version
Kind - Distinguishes between sentinel MIN/MAX versions and normal versions.
- epoch Integer
- Used to correct mistakes in the version numbering scheme.
- inclusive Boolean
- Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- name String
- Required only when version kind is NORMAL. The main part of the version name.
- revision String
- The iteration of the package build from the above version.
- kind
Version
Kind - Distinguishes between sentinel MIN/MAX versions and normal versions.
- epoch number
- Used to correct mistakes in the version numbering scheme.
- inclusive boolean
- Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- name string
- Required only when version kind is NORMAL. The main part of the version name.
- revision string
- The iteration of the package build from the above version.
- kind
Version
Kind - Distinguishes between sentinel MIN/MAX versions and normal versions.
- epoch int
- Used to correct mistakes in the version numbering scheme.
- inclusive bool
- Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- name str
- Required only when version kind is NORMAL. The main part of the version name.
- revision str
- The iteration of the package build from the above version.
- kind "VERSION_KIND_UNSPECIFIED" | "NORMAL" | "MINIMUM" | "MAXIMUM"
- Distinguishes between sentinel MIN/MAX versions and normal versions.
- epoch Number
- Used to correct mistakes in the version numbering scheme.
- inclusive Boolean
- Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- name String
- Required only when version kind is NORMAL. The main part of the version name.
- revision String
- The iteration of the package build from the above version.
VersionKind, VersionKindArgs
- Version
Kind Unspecified - VERSION_KIND_UNSPECIFIEDUnknown.
- Normal
- NORMALA standard package version.
- Minimum
- MINIMUMA special version representing negative infinity.
- Maximum
- MAXIMUMA special version representing positive infinity.
- Version
Kind Version Kind Unspecified - VERSION_KIND_UNSPECIFIEDUnknown.
- Version
Kind Normal - NORMALA standard package version.
- Version
Kind Minimum - MINIMUMA special version representing negative infinity.
- Version
Kind Maximum - MAXIMUMA special version representing positive infinity.
- Version
Kind Unspecified - VERSION_KIND_UNSPECIFIEDUnknown.
- Normal
- NORMALA standard package version.
- Minimum
- MINIMUMA special version representing negative infinity.
- Maximum
- MAXIMUMA special version representing positive infinity.
- Version
Kind Unspecified - VERSION_KIND_UNSPECIFIEDUnknown.
- Normal
- NORMALA standard package version.
- Minimum
- MINIMUMA special version representing negative infinity.
- Maximum
- MAXIMUMA special version representing positive infinity.
- VERSION_KIND_UNSPECIFIED
- VERSION_KIND_UNSPECIFIEDUnknown.
- NORMAL
- NORMALA standard package version.
- MINIMUM
- MINIMUMA special version representing negative infinity.
- MAXIMUM
- MAXIMUMA special version representing positive infinity.
- "VERSION_KIND_UNSPECIFIED"
- VERSION_KIND_UNSPECIFIEDUnknown.
- "NORMAL"
- NORMALA standard package version.
- "MINIMUM"
- MINIMUMA special version representing negative infinity.
- "MAXIMUM"
- MAXIMUMA special version representing positive infinity.
VersionResponse, VersionResponseArgs
- Epoch int
- Used to correct mistakes in the version numbering scheme.
- Inclusive bool
- Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- Kind string
- Distinguishes between sentinel MIN/MAX versions and normal versions.
- Name string
- Required only when version kind is NORMAL. The main part of the version name.
- Revision string
- The iteration of the package build from the above version.
- Epoch int
- Used to correct mistakes in the version numbering scheme.
- Inclusive bool
- Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- Kind string
- Distinguishes between sentinel MIN/MAX versions and normal versions.
- Name string
- Required only when version kind is NORMAL. The main part of the version name.
- Revision string
- The iteration of the package build from the above version.
- epoch Integer
- Used to correct mistakes in the version numbering scheme.
- inclusive Boolean
- Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- kind String
- Distinguishes between sentinel MIN/MAX versions and normal versions.
- name String
- Required only when version kind is NORMAL. The main part of the version name.
- revision String
- The iteration of the package build from the above version.
- epoch number
- Used to correct mistakes in the version numbering scheme.
- inclusive boolean
- Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- kind string
- Distinguishes between sentinel MIN/MAX versions and normal versions.
- name string
- Required only when version kind is NORMAL. The main part of the version name.
- revision string
- The iteration of the package build from the above version.
- epoch int
- Used to correct mistakes in the version numbering scheme.
- inclusive bool
- Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- kind str
- Distinguishes between sentinel MIN/MAX versions and normal versions.
- name str
- Required only when version kind is NORMAL. The main part of the version name.
- revision str
- The iteration of the package build from the above version.
- epoch Number
- Used to correct mistakes in the version numbering scheme.
- inclusive Boolean
- Whether this version is specifying part of an inclusive range. Grafeas does not have the capability to specify version ranges; instead we have fields that specify start version and end versions. At times this is insufficient - we also need to specify whether the version is included in the range or is excluded from the range. This boolean is expected to be set to true when the version is included in a range.
- kind String
- Distinguishes between sentinel MIN/MAX versions and normal versions.
- name String
- Required only when version kind is NORMAL. The main part of the version name.
- revision String
- The iteration of the package build from the above version.
VexAssessment, VexAssessmentArgs
- Cve string
- Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.
- Impacts List<string>
- Contains information about the impact of this vulnerability, this will change with time.
- Justification
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Justification - Justification provides the justification when the state of the assessment if NOT_AFFECTED.
- Note
Name string - The VulnerabilityAssessment note from which this VexAssessment was generated. This will be of the form:
projects/[PROJECT_ID]/notes/[NOTE_ID]. -
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Related Url> - Holds a list of references associated with this vulnerability item and assessment.
- Remediations
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Remediation> - Specifies details on how to handle (and presumably, fix) a vulnerability.
- State
Pulumi.
Google Native. Container Analysis. V1Beta1. Vex Assessment State - Provides the state of this Vulnerability assessment.
- Vulnerability
Id string - The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
- Cve string
- Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.
- Impacts []string
- Contains information about the impact of this vulnerability, this will change with time.
- Justification Justification
- Justification provides the justification when the state of the assessment if NOT_AFFECTED.
- Note
Name string - The VulnerabilityAssessment note from which this VexAssessment was generated. This will be of the form:
projects/[PROJECT_ID]/notes/[NOTE_ID]. -
[]Related
Url - Holds a list of references associated with this vulnerability item and assessment.
- Remediations []Remediation
- Specifies details on how to handle (and presumably, fix) a vulnerability.
- State
Vex
Assessment State - Provides the state of this Vulnerability assessment.
- Vulnerability
Id string - The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
- cve String
- Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.
- impacts List<String>
- Contains information about the impact of this vulnerability, this will change with time.
- justification Justification
- Justification provides the justification when the state of the assessment if NOT_AFFECTED.
- note
Name String - The VulnerabilityAssessment note from which this VexAssessment was generated. This will be of the form:
projects/[PROJECT_ID]/notes/[NOTE_ID]. -
List<Related
Url> - Holds a list of references associated with this vulnerability item and assessment.
- remediations List<Remediation>
- Specifies details on how to handle (and presumably, fix) a vulnerability.
- state
Vex
Assessment State - Provides the state of this Vulnerability assessment.
- vulnerability
Id String - The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
- cve string
- Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.
- impacts string[]
- Contains information about the impact of this vulnerability, this will change with time.
- justification Justification
- Justification provides the justification when the state of the assessment if NOT_AFFECTED.
- note
Name string - The VulnerabilityAssessment note from which this VexAssessment was generated. This will be of the form:
projects/[PROJECT_ID]/notes/[NOTE_ID]. -
Related
Url[] - Holds a list of references associated with this vulnerability item and assessment.
- remediations Remediation[]
- Specifies details on how to handle (and presumably, fix) a vulnerability.
- state
Vex
Assessment State - Provides the state of this Vulnerability assessment.
- vulnerability
Id string - The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
- cve str
- Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.
- impacts Sequence[str]
- Contains information about the impact of this vulnerability, this will change with time.
- justification Justification
- Justification provides the justification when the state of the assessment if NOT_AFFECTED.
- note_
name str - The VulnerabilityAssessment note from which this VexAssessment was generated. This will be of the form:
projects/[PROJECT_ID]/notes/[NOTE_ID]. -
Sequence[Related
Url] - Holds a list of references associated with this vulnerability item and assessment.
- remediations Sequence[Remediation]
- Specifies details on how to handle (and presumably, fix) a vulnerability.
- state
Vex
Assessment State - Provides the state of this Vulnerability assessment.
- vulnerability_
id str - The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
- cve String
- Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.
- impacts List<String>
- Contains information about the impact of this vulnerability, this will change with time.
- justification Property Map
- Justification provides the justification when the state of the assessment if NOT_AFFECTED.
- note
Name String - The VulnerabilityAssessment note from which this VexAssessment was generated. This will be of the form:
projects/[PROJECT_ID]/notes/[NOTE_ID]. - List<Property Map>
- Holds a list of references associated with this vulnerability item and assessment.
- remediations List<Property Map>
- Specifies details on how to handle (and presumably, fix) a vulnerability.
- state "STATE_UNSPECIFIED" | "AFFECTED" | "NOT_AFFECTED" | "FIXED" | "UNDER_INVESTIGATION"
- Provides the state of this Vulnerability assessment.
- vulnerability
Id String - The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
VexAssessmentResponse, VexAssessmentResponseArgs
- Cve string
- Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.
- Impacts List<string>
- Contains information about the impact of this vulnerability, this will change with time.
- Justification
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Justification Response - Justification provides the justification when the state of the assessment if NOT_AFFECTED.
- Note
Name string - The VulnerabilityAssessment note from which this VexAssessment was generated. This will be of the form:
projects/[PROJECT_ID]/notes/[NOTE_ID]. -
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Related Url Response> - Holds a list of references associated with this vulnerability item and assessment.
- Remediations
List<Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Remediation Response> - Specifies details on how to handle (and presumably, fix) a vulnerability.
- State string
- Provides the state of this Vulnerability assessment.
- Vulnerability
Id string - The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
- Cve string
- Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.
- Impacts []string
- Contains information about the impact of this vulnerability, this will change with time.
- Justification
Justification
Response - Justification provides the justification when the state of the assessment if NOT_AFFECTED.
- Note
Name string - The VulnerabilityAssessment note from which this VexAssessment was generated. This will be of the form:
projects/[PROJECT_ID]/notes/[NOTE_ID]. -
[]Related
Url Response - Holds a list of references associated with this vulnerability item and assessment.
- Remediations
[]Remediation
Response - Specifies details on how to handle (and presumably, fix) a vulnerability.
- State string
- Provides the state of this Vulnerability assessment.
- Vulnerability
Id string - The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
- cve String
- Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.
- impacts List<String>
- Contains information about the impact of this vulnerability, this will change with time.
- justification
Justification
Response - Justification provides the justification when the state of the assessment if NOT_AFFECTED.
- note
Name String - The VulnerabilityAssessment note from which this VexAssessment was generated. This will be of the form:
projects/[PROJECT_ID]/notes/[NOTE_ID]. -
List<Related
Url Response> - Holds a list of references associated with this vulnerability item and assessment.
- remediations
List<Remediation
Response> - Specifies details on how to handle (and presumably, fix) a vulnerability.
- state String
- Provides the state of this Vulnerability assessment.
- vulnerability
Id String - The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
- cve string
- Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.
- impacts string[]
- Contains information about the impact of this vulnerability, this will change with time.
- justification
Justification
Response - Justification provides the justification when the state of the assessment if NOT_AFFECTED.
- note
Name string - The VulnerabilityAssessment note from which this VexAssessment was generated. This will be of the form:
projects/[PROJECT_ID]/notes/[NOTE_ID]. -
Related
Url Response[] - Holds a list of references associated with this vulnerability item and assessment.
- remediations
Remediation
Response[] - Specifies details on how to handle (and presumably, fix) a vulnerability.
- state string
- Provides the state of this Vulnerability assessment.
- vulnerability
Id string - The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
- cve str
- Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.
- impacts Sequence[str]
- Contains information about the impact of this vulnerability, this will change with time.
- justification
Justification
Response - Justification provides the justification when the state of the assessment if NOT_AFFECTED.
- note_
name str - The VulnerabilityAssessment note from which this VexAssessment was generated. This will be of the form:
projects/[PROJECT_ID]/notes/[NOTE_ID]. -
Sequence[Related
Url Response] - Holds a list of references associated with this vulnerability item and assessment.
- remediations
Sequence[Remediation
Response] - Specifies details on how to handle (and presumably, fix) a vulnerability.
- state str
- Provides the state of this Vulnerability assessment.
- vulnerability_
id str - The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
- cve String
- Holds the MITRE standard Common Vulnerabilities and Exposures (CVE) tracking number for the vulnerability. Deprecated: Use vulnerability_id instead to denote CVEs.
- impacts List<String>
- Contains information about the impact of this vulnerability, this will change with time.
- justification Property Map
- Justification provides the justification when the state of the assessment if NOT_AFFECTED.
- note
Name String - The VulnerabilityAssessment note from which this VexAssessment was generated. This will be of the form:
projects/[PROJECT_ID]/notes/[NOTE_ID]. - List<Property Map>
- Holds a list of references associated with this vulnerability item and assessment.
- remediations List<Property Map>
- Specifies details on how to handle (and presumably, fix) a vulnerability.
- state String
- Provides the state of this Vulnerability assessment.
- vulnerability
Id String - The vulnerability identifier for this Assessment. Will hold one of common identifiers e.g. CVE, GHSA etc.
VexAssessmentState, VexAssessmentStateArgs
- State
Unspecified - STATE_UNSPECIFIEDNo state is specified.
- Affected
- AFFECTEDThis product is known to be affected by this vulnerability.
- Not
Affected - NOT_AFFECTEDThis product is known to be not affected by this vulnerability.
- Fixed
- FIXEDThis product contains a fix for this vulnerability.
- Under
Investigation - UNDER_INVESTIGATIONIt is not known yet whether these versions are or are not affected by the vulnerability. However, it is still under investigation.
- Vex
Assessment State State Unspecified - STATE_UNSPECIFIEDNo state is specified.
- Vex
Assessment State Affected - AFFECTEDThis product is known to be affected by this vulnerability.
- Vex
Assessment State Not Affected - NOT_AFFECTEDThis product is known to be not affected by this vulnerability.
- Vex
Assessment State Fixed - FIXEDThis product contains a fix for this vulnerability.
- Vex
Assessment State Under Investigation - UNDER_INVESTIGATIONIt is not known yet whether these versions are or are not affected by the vulnerability. However, it is still under investigation.
- State
Unspecified - STATE_UNSPECIFIEDNo state is specified.
- Affected
- AFFECTEDThis product is known to be affected by this vulnerability.
- Not
Affected - NOT_AFFECTEDThis product is known to be not affected by this vulnerability.
- Fixed
- FIXEDThis product contains a fix for this vulnerability.
- Under
Investigation - UNDER_INVESTIGATIONIt is not known yet whether these versions are or are not affected by the vulnerability. However, it is still under investigation.
- State
Unspecified - STATE_UNSPECIFIEDNo state is specified.
- Affected
- AFFECTEDThis product is known to be affected by this vulnerability.
- Not
Affected - NOT_AFFECTEDThis product is known to be not affected by this vulnerability.
- Fixed
- FIXEDThis product contains a fix for this vulnerability.
- Under
Investigation - UNDER_INVESTIGATIONIt is not known yet whether these versions are or are not affected by the vulnerability. However, it is still under investigation.
- STATE_UNSPECIFIED
- STATE_UNSPECIFIEDNo state is specified.
- AFFECTED
- AFFECTEDThis product is known to be affected by this vulnerability.
- NOT_AFFECTED
- NOT_AFFECTEDThis product is known to be not affected by this vulnerability.
- FIXED
- FIXEDThis product contains a fix for this vulnerability.
- UNDER_INVESTIGATION
- UNDER_INVESTIGATIONIt is not known yet whether these versions are or are not affected by the vulnerability. However, it is still under investigation.
- "STATE_UNSPECIFIED"
- STATE_UNSPECIFIEDNo state is specified.
- "AFFECTED"
- AFFECTEDThis product is known to be affected by this vulnerability.
- "NOT_AFFECTED"
- NOT_AFFECTEDThis product is known to be not affected by this vulnerability.
- "FIXED"
- FIXEDThis product contains a fix for this vulnerability.
- "UNDER_INVESTIGATION"
- UNDER_INVESTIGATIONIt is not known yet whether these versions are or are not affected by the vulnerability. However, it is still under investigation.
VulnerabilityLocation, VulnerabilityLocationArgs
- Cpe
Uri string - The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
- Package string
- The package being described.
- Version
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Version - The version of the package being described.
- Cpe
Uri string - The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
- Package string
- The package being described.
- Version Version
- The version of the package being described.
- cpe
Uri String - The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
- package_ String
- The package being described.
- version Version
- The version of the package being described.
- cpe
Uri string - The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
- package string
- The package being described.
- version Version
- The version of the package being described.
- cpe_
uri str - The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
- package str
- The package being described.
- version Version
- The version of the package being described.
- cpe
Uri String - The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
- package String
- The package being described.
- version Property Map
- The version of the package being described.
VulnerabilityLocationResponse, VulnerabilityLocationResponseArgs
- Cpe
Uri string - The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
- Package string
- The package being described.
- Version
Pulumi.
Google Native. Container Analysis. V1Beta1. Inputs. Version Response - The version of the package being described.
- Cpe
Uri string - The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
- Package string
- The package being described.
- Version
Version
Response - The version of the package being described.
- cpe
Uri String - The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
- package_ String
- The package being described.
- version
Version
Response - The version of the package being described.
- cpe
Uri string - The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
- package string
- The package being described.
- version
Version
Response - The version of the package being described.
- cpe_
uri str - The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
- package str
- The package being described.
- version
Version
Response - The version of the package being described.
- cpe
Uri String - The CPE URI in cpe format format. Examples include distro or storage location for vulnerable jar.
- package String
- The package being described.
- version Property Map
- The version of the package being described.
Package Details
- Repository
- Google Cloud Native pulumi/pulumi-google-native
- License
- Apache-2.0
Google Cloud Native is in preview. Google Cloud Classic is fully supported.
Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi