class Google::Apis::ContaineranalysisV1alpha1::Occurrence
`Occurrence` includes information about analysis occurrences for an image.
Attributes
Occurrence
that represents a single “attestation”. The authenticity of an Attestation
can be verified using the attached signature. If the verifier trusts the public key of the signer, then verifying the signature is sufficient to establish trust. In this circumstance, the AttestationAuthority
to which this Attestation
is attached is primarily useful for look-up (how to find this Attestation
if you already know the Authority and artifact to be verified) and intent (which authority was this attestation intended to sign for). Corresponds to the JSON property `attestation` @return [Google::Apis::ContaineranalysisV1alpha1::Attestation]
Message encapsulating build provenance details. Corresponds to the JSON property `buildDetails` @return [Google::Apis::ContaineranalysisV1alpha1::BuildDetails]
An indication that the compliance checks in the associated ComplianceNote
were not satisfied for particular resources or a specified reason. Corresponds to the JSON property `compliance` @return [Google::Apis::ContaineranalysisV1alpha1::ComplianceOccurrence]
Output only. The time this `Occurrence` was created. Corresponds to the JSON property `createTime` @return [String]
The period during which some deployable was active in a runtime. Corresponds to the JSON property `deployment` @return [Google::Apis::ContaineranalysisV1alpha1::Deployment]
Derived
describes the derived image portion (Occurrence
) of the DockerImage relationship. This image would be produced from a Dockerfile with FROM . Corresponds to the JSON property `derivedImage` @return [Google::Apis::ContaineranalysisV1alpha1::Derived]
Provides information about the scan status of a discovered resource. Corresponds to the JSON property `discovered` @return [Google::Apis::ContaineranalysisV1alpha1::Discovered]
An occurrence describing an attestation on a resource Corresponds to the JSON property `dsseAttestation` @return [Google::Apis::ContaineranalysisV1alpha1::DsseAttestationOccurrence]
MUST match github.com/secure-systems-lab/dsse/blob/master/envelope. proto. An authenticated message of arbitrary type. Corresponds to the JSON property `envelope` @return [Google::Apis::ContaineranalysisV1alpha1::Envelope]
This represents how a particular software package may be installed on a system. Corresponds to the JSON property `installation` @return [Google::Apis::ContaineranalysisV1alpha1::Installation]
Output only. This explicitly denotes which of the `Occurrence` details are specified. This field can be used as a filter in list requests. Corresponds to the JSON property `kind` @return [String]
Output only. The name of the `Occurrence` in the form “projects/`project_id`/ occurrences/`OCCURRENCE_ID`” Corresponds to the JSON property `name` @return [String]
An analysis note associated with this image, in the form “providers/` provider_id`/notes/`NOTE_ID`” This field can be used as a filter in list requests. Corresponds to the JSON property `noteName` @return [String]
A description of actions that can be taken to remedy the `Note` Corresponds to the JSON property `remediation` @return [String]
Resource
is an entity that can have metadata. E.g., a Docker image. Corresponds to the JSON property `resource` @return [Google::Apis::ContaineranalysisV1alpha1::Resource]
The unique URL of the image or the container for which the `Occurrence` applies. For example, gcr.io/project/image@sha256:foo This field can be used as a filter in list requests. Corresponds to the JSON property `resourceUrl` @return [String]
DocumentOccurrence
represents an SPDX Document Creation Information section: spdx.github.io/spdx-spec/2-document-creation-information/ Corresponds to the JSON property `sbom` @return [Google::Apis::ContaineranalysisV1alpha1::DocumentOccurrence]
FileOccurrence
represents an SPDX File Information section: spdx. github.io/spdx-spec/4-file-information/ Corresponds to the JSON property `spdxFile` @return [Google::Apis::ContaineranalysisV1alpha1::FileOccurrence]
PackageOccurrence
represents an SPDX Package
Information section: spdx. github.io/spdx-spec/3-package-information/ Corresponds to the JSON property `spdxPackage` @return [Google::Apis::ContaineranalysisV1alpha1::PackageOccurrence]
RelationshipOccurrence
represents an SPDX Relationship section: spdx. github.io/spdx-spec/7-relationships-between-SPDX-elements/ Corresponds to the JSON property `spdxRelationship` @return [Google::Apis::ContaineranalysisV1alpha1::RelationshipOccurrence]
Output only. The time this `Occurrence` was last updated. Corresponds to the JSON property `updateTime` @return [String]
An Upgrade Occurrence
represents that a specific resource_url
could install a specific upgrade. This presence is supplied via local sources (i.e. it is present in the mirror and the running system has noticed its availability). Corresponds to the JSON property `upgrade` @return [Google::Apis::ContaineranalysisV1alpha1::UpgradeOccurrence]
Used by Occurrence
to point to where the vulnerability exists and how to fix it. Corresponds to the JSON property `vulnerabilityDetails` @return [Google::Apis::ContaineranalysisV1alpha1::VulnerabilityDetails]
Public Class Methods
# File lib/google/apis/containeranalysis_v1alpha1/classes.rb, line 2583 def initialize(**args) update!(**args) end
Public Instance Methods
Update properties of this object
# File lib/google/apis/containeranalysis_v1alpha1/classes.rb, line 2588 def update!(**args) @attestation = args[:attestation] if args.key?(:attestation) @build_details = args[:build_details] if args.key?(:build_details) @compliance = args[:compliance] if args.key?(:compliance) @create_time = args[:create_time] if args.key?(:create_time) @deployment = args[:deployment] if args.key?(:deployment) @derived_image = args[:derived_image] if args.key?(:derived_image) @discovered = args[:discovered] if args.key?(:discovered) @dsse_attestation = args[:dsse_attestation] if args.key?(:dsse_attestation) @envelope = args[:envelope] if args.key?(:envelope) @installation = args[:installation] if args.key?(:installation) @kind = args[:kind] if args.key?(:kind) @name = args[:name] if args.key?(:name) @note_name = args[:note_name] if args.key?(:note_name) @remediation = args[:remediation] if args.key?(:remediation) @resource = args[:resource] if args.key?(:resource) @resource_url = args[:resource_url] if args.key?(:resource_url) @sbom = args[:sbom] if args.key?(:sbom) @spdx_file = args[:spdx_file] if args.key?(:spdx_file) @spdx_package = args[:spdx_package] if args.key?(:spdx_package) @spdx_relationship = args[:spdx_relationship] if args.key?(:spdx_relationship) @update_time = args[:update_time] if args.key?(:update_time) @upgrade = args[:upgrade] if args.key?(:upgrade) @vulnerability_details = args[:vulnerability_details] if args.key?(:vulnerability_details) end