class Google::Apis::ContaineranalysisV1alpha1::Occurrence

`Occurrence` includes information about analysis occurrences for an image.

Attributes

attestation[RW]

Occurrence that represents a single “attestation”. The authenticity of an Attestation can be verified using the attached signature. If the verifier trusts the public key of the signer, then verifying the signature is sufficient to establish trust. In this circumstance, the AttestationAuthority to which this Attestation is attached is primarily useful for look-up (how to find this Attestation if you already know the Authority and artifact to be verified) and intent (which authority was this attestation intended to sign for). Corresponds to the JSON property `attestation` @return [Google::Apis::ContaineranalysisV1alpha1::Attestation]

build_details[RW]

Message encapsulating build provenance details. Corresponds to the JSON property `buildDetails` @return [Google::Apis::ContaineranalysisV1alpha1::BuildDetails]

compliance[RW]

An indication that the compliance checks in the associated ComplianceNote were not satisfied for particular resources or a specified reason. Corresponds to the JSON property `compliance` @return [Google::Apis::ContaineranalysisV1alpha1::ComplianceOccurrence]

create_time[RW]

Output only. The time this `Occurrence` was created. Corresponds to the JSON property `createTime` @return [String]

deployment[RW]

The period during which some deployable was active in a runtime. Corresponds to the JSON property `deployment` @return [Google::Apis::ContaineranalysisV1alpha1::Deployment]

derived_image[RW]

Derived describes the derived image portion (Occurrence) of the DockerImage relationship. This image would be produced from a Dockerfile with FROM . Corresponds to the JSON property `derivedImage` @return [Google::Apis::ContaineranalysisV1alpha1::Derived]

discovered[RW]

Provides information about the scan status of a discovered resource. Corresponds to the JSON property `discovered` @return [Google::Apis::ContaineranalysisV1alpha1::Discovered]

dsse_attestation[RW]

An occurrence describing an attestation on a resource Corresponds to the JSON property `dsseAttestation` @return [Google::Apis::ContaineranalysisV1alpha1::DsseAttestationOccurrence]

envelope[RW]

MUST match github.com/secure-systems-lab/dsse/blob/master/envelope. proto. An authenticated message of arbitrary type. Corresponds to the JSON property `envelope` @return [Google::Apis::ContaineranalysisV1alpha1::Envelope]

installation[RW]

This represents how a particular software package may be installed on a system. Corresponds to the JSON property `installation` @return [Google::Apis::ContaineranalysisV1alpha1::Installation]

kind[RW]

Output only. This explicitly denotes which of the `Occurrence` details are specified. This field can be used as a filter in list requests. Corresponds to the JSON property `kind` @return [String]

name[RW]

Output only. The name of the `Occurrence` in the form “projects/`project_id`/ occurrences/`OCCURRENCE_ID`” Corresponds to the JSON property `name` @return [String]

note_name[RW]

An analysis note associated with this image, in the form “providers/` provider_id`/notes/`NOTE_ID`” This field can be used as a filter in list requests. Corresponds to the JSON property `noteName` @return [String]

remediation[RW]

A description of actions that can be taken to remedy the `Note` Corresponds to the JSON property `remediation` @return [String]

resource[RW]

Resource is an entity that can have metadata. E.g., a Docker image. Corresponds to the JSON property `resource` @return [Google::Apis::ContaineranalysisV1alpha1::Resource]

resource_url[RW]

The unique URL of the image or the container for which the `Occurrence` applies. For example, gcr.io/project/image@sha256:foo This field can be used as a filter in list requests. Corresponds to the JSON property `resourceUrl` @return [String]

sbom[RW]

DocumentOccurrence represents an SPDX Document Creation Information section: spdx.github.io/spdx-spec/2-document-creation-information/ Corresponds to the JSON property `sbom` @return [Google::Apis::ContaineranalysisV1alpha1::DocumentOccurrence]

spdx_file[RW]

FileOccurrence represents an SPDX File Information section: spdx. github.io/spdx-spec/4-file-information/ Corresponds to the JSON property `spdxFile` @return [Google::Apis::ContaineranalysisV1alpha1::FileOccurrence]

spdx_package[RW]

PackageOccurrence represents an SPDX Package Information section: spdx. github.io/spdx-spec/3-package-information/ Corresponds to the JSON property `spdxPackage` @return [Google::Apis::ContaineranalysisV1alpha1::PackageOccurrence]

spdx_relationship[RW]

RelationshipOccurrence represents an SPDX Relationship section: spdx. github.io/spdx-spec/7-relationships-between-SPDX-elements/ Corresponds to the JSON property `spdxRelationship` @return [Google::Apis::ContaineranalysisV1alpha1::RelationshipOccurrence]

update_time[RW]

Output only. The time this `Occurrence` was last updated. Corresponds to the JSON property `updateTime` @return [String]

upgrade[RW]

An Upgrade Occurrence represents that a specific resource_url could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability). Corresponds to the JSON property `upgrade` @return [Google::Apis::ContaineranalysisV1alpha1::UpgradeOccurrence]

vulnerability_details[RW]

Used by Occurrence to point to where the vulnerability exists and how to fix it. Corresponds to the JSON property `vulnerabilityDetails` @return [Google::Apis::ContaineranalysisV1alpha1::VulnerabilityDetails]

Public Class Methods

new(**args) click to toggle source
# File lib/google/apis/containeranalysis_v1alpha1/classes.rb, line 2583
def initialize(**args)
   update!(**args)
end

Public Instance Methods

update!(**args) click to toggle source

Update properties of this object

# File lib/google/apis/containeranalysis_v1alpha1/classes.rb, line 2588
def update!(**args)
  @attestation = args[:attestation] if args.key?(:attestation)
  @build_details = args[:build_details] if args.key?(:build_details)
  @compliance = args[:compliance] if args.key?(:compliance)
  @create_time = args[:create_time] if args.key?(:create_time)
  @deployment = args[:deployment] if args.key?(:deployment)
  @derived_image = args[:derived_image] if args.key?(:derived_image)
  @discovered = args[:discovered] if args.key?(:discovered)
  @dsse_attestation = args[:dsse_attestation] if args.key?(:dsse_attestation)
  @envelope = args[:envelope] if args.key?(:envelope)
  @installation = args[:installation] if args.key?(:installation)
  @kind = args[:kind] if args.key?(:kind)
  @name = args[:name] if args.key?(:name)
  @note_name = args[:note_name] if args.key?(:note_name)
  @remediation = args[:remediation] if args.key?(:remediation)
  @resource = args[:resource] if args.key?(:resource)
  @resource_url = args[:resource_url] if args.key?(:resource_url)
  @sbom = args[:sbom] if args.key?(:sbom)
  @spdx_file = args[:spdx_file] if args.key?(:spdx_file)
  @spdx_package = args[:spdx_package] if args.key?(:spdx_package)
  @spdx_relationship = args[:spdx_relationship] if args.key?(:spdx_relationship)
  @update_time = args[:update_time] if args.key?(:update_time)
  @upgrade = args[:upgrade] if args.key?(:upgrade)
  @vulnerability_details = args[:vulnerability_details] if args.key?(:vulnerability_details)
end