Skip to content

Commit a85beae

Browse files
Google APIscopybara-github
Google APIs
authored and
copybara-github
committed
feat: Update OSConfig API
PiperOrigin-RevId: 409204961
1 parent 2bea4df commit a85beae

1 file changed

Lines changed: 31 additions & 2 deletions

File tree

google/cloud/osconfig/v1/vulnerability.proto

Lines changed: 31 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -75,6 +75,32 @@ message VulnerabilityReport {
7575
repeated Reference references = 6;
7676
}
7777

78+
// OS inventory item that is affected by a vulnerability or fixed as a
79+
// result of a vulnerability.
80+
message Item {
81+
// Corresponds to the `INSTALLED_PACKAGE` inventory item on the VM.
82+
// This field displays the inventory items affected by this vulnerability.
83+
// If the vulnerability report was not updated after the VM inventory
84+
// update, these values might not display in VM inventory. For some
85+
// operating systems, this field might be empty.
86+
string installed_inventory_item_id = 1;
87+
88+
// Corresponds to the `AVAILABLE_PACKAGE` inventory item on the VM.
89+
// If the vulnerability report was not updated after the VM inventory
90+
// update, these values might not display in VM inventory. If there is no
91+
// available fix, the field is empty. The `inventory_item` value specifies
92+
// the latest `SoftwarePackage` available to the VM that fixes the
93+
// vulnerability.
94+
string available_inventory_item_id = 2;
95+
96+
// The recommended [CPE URI](https://cpe.mitre.org/specification/) update
97+
// that contains a fix for this vulnerability.
98+
string fixed_cpe_uri = 3;
99+
100+
// The upstream OS patch, packages or KB that fixes the vulnerability.
101+
string upstream_fix = 4;
102+
}
103+
78104
// Contains metadata as per the upstream feed of the operating system and
79105
// NVD.
80106
Details details = 1;
@@ -84,21 +110,24 @@ message VulnerabilityReport {
84110
// If the vulnerability report was not updated after the VM inventory
85111
// update, these values might not display in VM inventory. For some distros,
86112
// this field may be empty.
87-
repeated string installed_inventory_item_ids = 2;
113+
repeated string installed_inventory_item_ids = 2 [deprecated = true];
88114

89115
// Corresponds to the `AVAILABLE_PACKAGE` inventory item on the VM.
90116
// If the vulnerability report was not updated after the VM inventory
91117
// update, these values might not display in VM inventory. If there is no
92118
// available fix, the field is empty. The `inventory_item` value specifies
93119
// the latest `SoftwarePackage` available to the VM that fixes the
94120
// vulnerability.
95-
repeated string available_inventory_item_ids = 3;
121+
repeated string available_inventory_item_ids = 3 [deprecated = true];
96122

97123
// The timestamp for when the vulnerability was first detected.
98124
google.protobuf.Timestamp create_time = 4;
99125

100126
// The timestamp for when the vulnerability was last modified.
101127
google.protobuf.Timestamp update_time = 5;
128+
129+
// List of items affected by the vulnerability.
130+
repeated Item items = 6;
102131
}
103132

104133
// Output only. The `vulnerabilityReport` API resource name.

0 commit comments

Comments
 (0)