Class: Google::Cloud::SecurityCenter::V2::Finding

Inherits:

Object

• Object
• Google::Cloud::SecurityCenter::V2::Finding

Extended by:

Protobuf::MessageExts::ClassMethods

Includes:

Protobuf::MessageExts

Defined in:

proto_docs/google/cloud/securitycenter/v2/finding.rb

Overview

Security Command Center finding.

A finding is a record of assessment data like security, risk, health, or privacy, that is ingested into Security Command Center for presentation, notification, analysis, policy testing, and enforcement. For example, a cross-site scripting (XSS) vulnerability in an App Engine application is a finding.

Defined Under Namespace

Modules: FindingClass, Mute, Severity, State Classes: ContactsEntry, ExternalSystemsEntry, MuteInfo, SourcePropertiesEntry

Instance Attribute Summary

• #access ⇒ ::Google::Cloud::SecurityCenter::V2::Access

  Access details associated with the finding, such as more information on the caller, which method was accessed, and from where.

• #affected_resources ⇒ ::Google::Cloud::SecurityCenter::V2::AffectedResources

  AffectedResources associated with the finding.

• #ai_model ⇒ ::Google::Cloud::SecurityCenter::V2::AiModel

  The AI model associated with the finding.

• #application ⇒ ::Google::Cloud::SecurityCenter::V2::Application

  Represents an application associated with the finding.

• #attack_exposure ⇒ ::Google::Cloud::SecurityCenter::V2::AttackExposure

  The results of an attack path simulation relevant to this finding.

• #backup_disaster_recovery ⇒ ::Google::Cloud::SecurityCenter::V2::BackupDisasterRecovery

  Fields related to Backup and DR findings.

• #canonical_name ⇒ ::String readonly

  Output only.

• #category ⇒ ::String

  Immutable.

• #chokepoint ⇒ ::Google::Cloud::SecurityCenter::V2::Chokepoint

  Contains details about a chokepoint, which is a resource or resource group where high-risk attack paths converge, based on attack path simulations.

• #cloud_armor ⇒ ::Google::Cloud::SecurityCenter::V2::CloudArmor

  Fields related to Cloud Armor findings.

• #cloud_dlp_data_profile ⇒ ::Google::Cloud::SecurityCenter::V2::CloudDlpDataProfile

  Cloud DLP data profile that is associated with the finding.

• #cloud_dlp_inspection ⇒ ::Google::Cloud::SecurityCenter::V2::CloudDlpInspection

  Cloud Data Loss Prevention (Cloud DLP) inspection results that are associated with the finding.

• #compliances ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::Compliance>

  Contains compliance information for security standards associated to the finding.

• #connections ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::Connection>

  Contains information about the IP connection associated with the finding.

• #contacts ⇒ ::Google::Protobuf::Map{::String => ::Google::Cloud::SecurityCenter::V2::ContactDetails} readonly

  Output only.

• #containers ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::Container>

  Containers associated with the finding.

• #create_time ⇒ ::Google::Protobuf::Timestamp readonly

  Output only.

• #data_access_events ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::DataAccessEvent>

  Data access events associated with the finding.

• #data_flow_events ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::DataFlowEvent>

  Data flow events associated with the finding.

• #data_retention_deletion_events ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::DataRetentionDeletionEvent>

  Data retention deletion events associated with the finding.

• #database ⇒ ::Google::Cloud::SecurityCenter::V2::Database

  Database associated with the finding.

• #description ⇒ ::String

  Contains more details about the finding.

• #disk ⇒ ::Google::Cloud::SecurityCenter::V2::Disk

  Disk associated with the finding.

• #event_time ⇒ ::Google::Protobuf::Timestamp

  The time the finding was first detected.

• #exfiltration ⇒ ::Google::Cloud::SecurityCenter::V2::Exfiltration

  Represents exfiltrations associated with the finding.

• #external_systems ⇒ ::Google::Protobuf::Map{::String => ::Google::Cloud::SecurityCenter::V2::ExternalSystem} readonly

  Output only.

• #external_uri ⇒ ::String

  The URI that, if available, points to a web page outside of Security Command Center where additional information about the finding can be found.

• #files ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::File>

  File associated with the finding.

• #finding_class ⇒ ::Google::Cloud::SecurityCenter::V2::Finding::FindingClass

  The class of the finding.

• #group_memberships ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::GroupMembership>

  Contains details about groups of which this finding is a member.

• #iam_bindings ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::IamBinding>

  Represents IAM bindings associated with the finding.

• #indicator ⇒ ::Google::Cloud::SecurityCenter::V2::Indicator

  Represents what's commonly known as an indicator of compromise (IoC) in computer forensics.

• #ip_rules ⇒ ::Google::Cloud::SecurityCenter::V2::IpRules

  IP rules associated with the finding.

• #job ⇒ ::Google::Cloud::SecurityCenter::V2::Job

  Job associated with the finding.

• #kernel_rootkit ⇒ ::Google::Cloud::SecurityCenter::V2::KernelRootkit

  Signature of the kernel rootkit.

• #kubernetes ⇒ ::Google::Cloud::SecurityCenter::V2::Kubernetes

  Kubernetes resources associated with the finding.

• #load_balancers ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::LoadBalancer>

  The load balancers associated with the finding.

• #log_entries ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::LogEntry>

  Log entries that are relevant to the finding.

• #mitre_attack ⇒ ::Google::Cloud::SecurityCenter::V2::MitreAttack

  MITRE ATT&CK tactics and techniques related to this finding.

• #module_name ⇒ ::String

  Unique identifier of the module which generated the finding.

• #mute ⇒ ::Google::Cloud::SecurityCenter::V2::Finding::Mute

  Indicates the mute state of a finding (either muted, unmuted or undefined).

• #mute_info ⇒ ::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo readonly

  Output only.

• #mute_initiator ⇒ ::String

  Records additional information about the mute operation, for example, the mute configuration that muted the finding and the user who muted the finding.

• #mute_update_time ⇒ ::Google::Protobuf::Timestamp readonly

  Output only.

• #name ⇒ ::String

  Identifier.

• #networks ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::Network>

  Represents the VPC networks that the resource is attached to.

• #next_steps ⇒ ::String

  Steps to address the finding.

• #notebook ⇒ ::Google::Cloud::SecurityCenter::V2::Notebook

  Notebook associated with the finding.

• #org_policies ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::OrgPolicy>

  Contains information about the org policies associated with the finding.

• #parent ⇒ ::String

  The relative resource name of the source and location the finding belongs to.

• #parent_display_name ⇒ ::String readonly

  Output only.

• #processes ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::Process>

  Represents operating system processes associated with the Finding.

• #resource_name ⇒ ::String

  Immutable.

• #security_marks ⇒ ::Google::Cloud::SecurityCenter::V2::SecurityMarks readonly

  Output only.

• #security_posture ⇒ ::Google::Cloud::SecurityCenter::V2::SecurityPosture

  The security posture associated with the finding.

• #severity ⇒ ::Google::Cloud::SecurityCenter::V2::Finding::Severity

  The severity of the finding.

• #source_properties ⇒ ::Google::Protobuf::Map{::String => ::Google::Protobuf::Value}

  Source specific properties.

• #state ⇒ ::Google::Cloud::SecurityCenter::V2::Finding::State readonly

  Output only.

• #toxic_combination ⇒ ::Google::Cloud::SecurityCenter::V2::ToxicCombination

  Contains details about a group of security issues that, when the issues occur together, represent a greater risk than when the issues occur independently.

• #vertex_ai ⇒ ::Google::Cloud::SecurityCenter::V2::VertexAi

  VertexAi associated with the finding.

• #vulnerability ⇒ ::Google::Cloud::SecurityCenter::V2::Vulnerability

  Represents vulnerability-specific fields like CVE and CVSS scores.

Instance Attribute Details

#access ⇒ ::Google::Cloud::SecurityCenter::V2::Access

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#affected_resources ⇒ ::Google::Cloud::SecurityCenter::V2::AffectedResources

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#ai_model ⇒ ::Google::Cloud::SecurityCenter::V2::AiModel

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#application ⇒ ::Google::Cloud::SecurityCenter::V2::Application

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#attack_exposure ⇒ ::Google::Cloud::SecurityCenter::V2::AttackExposure

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#backup_disaster_recovery ⇒ ::Google::Cloud::SecurityCenter::V2::BackupDisasterRecovery

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#canonical_name ⇒ ::String (readonly)

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#category ⇒ ::String

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#chokepoint ⇒ ::Google::Cloud::SecurityCenter::V2::Chokepoint

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#cloud_armor ⇒ ::Google::Cloud::SecurityCenter::V2::CloudArmor

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#cloud_dlp_data_profile ⇒ ::Google::Cloud::SecurityCenter::V2::CloudDlpDataProfile

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#cloud_dlp_inspection ⇒ ::Google::Cloud::SecurityCenter::V2::CloudDlpInspection

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#compliances ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::Compliance>

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#connections ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::Connection>

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#contacts ⇒ ::Google::Protobuf::Map{::String => ::Google::Cloud::SecurityCenter::V2::ContactDetails} (readonly)

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#containers ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::Container>

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#create_time ⇒ ::Google::Protobuf::Timestamp (readonly)

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#data_access_events ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::DataAccessEvent>

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#data_flow_events ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::DataFlowEvent>

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#data_retention_deletion_events ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::DataRetentionDeletionEvent>

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#database ⇒ ::Google::Cloud::SecurityCenter::V2::Database

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#description ⇒ ::String

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#disk ⇒ ::Google::Cloud::SecurityCenter::V2::Disk

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#event_time ⇒ ::Google::Protobuf::Timestamp

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#exfiltration ⇒ ::Google::Cloud::SecurityCenter::V2::Exfiltration

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#external_systems ⇒ ::Google::Protobuf::Map{::String => ::Google::Cloud::SecurityCenter::V2::ExternalSystem} (readonly)

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#external_uri ⇒ ::String

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#files ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::File>

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#finding_class ⇒ ::Google::Cloud::SecurityCenter::V2::Finding::FindingClass

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#group_memberships ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::GroupMembership>

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#iam_bindings ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::IamBinding>

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#indicator ⇒ ::Google::Cloud::SecurityCenter::V2::Indicator

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#ip_rules ⇒ ::Google::Cloud::SecurityCenter::V2::IpRules

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#job ⇒ ::Google::Cloud::SecurityCenter::V2::Job

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#kernel_rootkit ⇒ ::Google::Cloud::SecurityCenter::V2::KernelRootkit

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#kubernetes ⇒ ::Google::Cloud::SecurityCenter::V2::Kubernetes

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#load_balancers ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::LoadBalancer>

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#log_entries ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::LogEntry>

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#mitre_attack ⇒ ::Google::Cloud::SecurityCenter::V2::MitreAttack

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#module_name ⇒ ::String

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#mute ⇒ ::Google::Cloud::SecurityCenter::V2::Finding::Mute

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#mute_info ⇒ ::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo (readonly)

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#mute_initiator ⇒ ::String

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#mute_update_time ⇒ ::Google::Protobuf::Timestamp (readonly)

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#name ⇒ ::String

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#networks ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::Network>

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#next_steps ⇒ ::String

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#notebook ⇒ ::Google::Cloud::SecurityCenter::V2::Notebook

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#org_policies ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::OrgPolicy>

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#parent ⇒ ::String

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#parent_display_name ⇒ ::String (readonly)

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#processes ⇒ ::Array<::Google::Cloud::SecurityCenter::V2::Process>

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#resource_name ⇒ ::String

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#security_marks ⇒ ::Google::Cloud::SecurityCenter::V2::SecurityMarks (readonly)

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#security_posture ⇒ ::Google::Cloud::SecurityCenter::V2::SecurityPosture

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#severity ⇒ ::Google::Cloud::SecurityCenter::V2::Finding::Severity

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#source_properties ⇒ ::Google::Protobuf::Map{::String => ::Google::Protobuf::Value}

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#state ⇒ ::Google::Cloud::SecurityCenter::V2::Finding::State (readonly)

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#toxic_combination ⇒ ::Google::Cloud::SecurityCenter::V2::ToxicCombination

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#vertex_ai ⇒ ::Google::Cloud::SecurityCenter::V2::VertexAi

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end

#vulnerability ⇒ ::Google::Cloud::SecurityCenter::V2::Vulnerability

# File 'proto_docs/google/cloud/securitycenter/v2/finding.rb', line 319

class Finding
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Mute information about the finding, including whether the finding has a
  # static mute or any matching dynamic mute rules.
  # @!attribute [rw] static_mute
  #   @return [::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::StaticMute]
  #     If set, the static mute applied to this finding. Static mutes override
  #     dynamic mutes. If unset, there is no static mute.
  # @!attribute [rw] dynamic_mute_records
  #   @return [::Array<::Google::Cloud::SecurityCenter::V2::Finding::MuteInfo::DynamicMuteRecord>]
  #     The list of dynamic mute rules that currently match the finding.
  class MuteInfo
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # Information about the static mute state. A static mute state overrides
    # any dynamic mute rules that apply to this finding. The static mute state
    # can be set by a static mute rule or by muting the finding directly.
    # @!attribute [rw] state
    #   @return [::Google::Cloud::SecurityCenter::V2::Finding::Mute]
    #     The static mute state. If the value is `MUTED` or `UNMUTED`, then the
    #     finding's overall mute state will have the same value.
    # @!attribute [rw] apply_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the static mute was applied.
    class StaticMute
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end

    # The record of a dynamic mute rule that matches the finding.
    # @!attribute [rw] mute_config
    #   @return [::String]
    #     The relative resource name of the mute rule, represented by a mute
    #     config, that created this record, for example
    #     `organizations/123/muteConfigs/mymuteconfig` or
    #     `organizations/123/locations/global/muteConfigs/mymuteconfig`.
    # @!attribute [rw] match_time
    #   @return [::Google::Protobuf::Timestamp]
    #     When the dynamic mute rule first matched the finding.
    class DynamicMuteRecord
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Protobuf::Value]
  class SourcePropertiesEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ExternalSystem]
  class ExternalSystemsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # @!attribute [rw] key
  #   @return [::String]
  # @!attribute [rw] value
  #   @return [::Google::Cloud::SecurityCenter::V2::ContactDetails]
  class ContactsEntry
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end

  # The state of the finding.
  module State
    # Unspecified state.
    STATE_UNSPECIFIED = 0

    # The finding requires attention and has not been addressed yet.
    ACTIVE = 1

    # The finding has been fixed, triaged as a non-issue or otherwise addressed
    # and is no longer active.
    INACTIVE = 2
  end

  # The severity of the finding.
  module Severity
    # This value is used for findings when a source doesn't write a severity
    # value.
    SEVERITY_UNSPECIFIED = 0

    # Vulnerability:
    # A critical vulnerability is easily discoverable by an external actor,
    # exploitable, and results in the direct ability to execute arbitrary code,
    # exfiltrate data, and otherwise gain additional access and privileges to
    # cloud resources and workloads. Examples include publicly accessible
    # unprotected user data and public SSH access with weak or no
    # passwords.
    #
    # Threat:
    # Indicates a threat that is able to access, modify, or delete data or
    # execute unauthorized code within existing resources.
    CRITICAL = 1

    # Vulnerability:
    # A high risk vulnerability can be easily discovered and exploited in
    # combination with other vulnerabilities in order to gain direct access and
    # the ability to execute arbitrary code, exfiltrate data, and otherwise
    # gain additional access and privileges to cloud resources and workloads.
    # An example is a database with weak or no passwords that is only
    # accessible internally. This database could easily be compromised by an
    # actor that had access to the internal network.
    #
    # Threat:
    # Indicates a threat that is able to create new computational resources in
    # an environment but not able to access data or execute code in existing
    # resources.
    HIGH = 2

    # Vulnerability:
    # A medium risk vulnerability could be used by an actor to gain access to
    # resources or privileges that enable them to eventually (through multiple
    # steps or a complex exploit) gain access and the ability to execute
    # arbitrary code or exfiltrate data. An example is a service account with
    # access to more projects than it should have. If an actor gains access to
    # the service account, they could potentially use that access to manipulate
    # a project the service account was not intended to.
    #
    # Threat:
    # Indicates a threat that is able to cause operational impact but may not
    # access data or execute unauthorized code.
    MEDIUM = 3

    # Vulnerability:
    # A low risk vulnerability hampers a security organization's ability to
    # detect vulnerabilities or active threats in their deployment, or prevents
    # the root cause investigation of security issues. An example is monitoring
    # and logs being disabled for resource configurations and access.
    #
    # Threat:
    # Indicates a threat that has obtained minimal access to an environment but
    # is not able to access data, execute code, or create resources.
    LOW = 4
  end

  # Mute state a finding can be in.
  module Mute
    # Unspecified.
    MUTE_UNSPECIFIED = 0

    # Finding has been muted.
    MUTED = 1

    # Finding has been unmuted.
    UNMUTED = 2

    # Finding has never been muted/unmuted.
    UNDEFINED = 3
  end

  # Represents what kind of Finding it is.
  module FindingClass
    # Unspecified finding class.
    FINDING_CLASS_UNSPECIFIED = 0

    # Describes unwanted or malicious activity.
    THREAT = 1

    # Describes a potential weakness in software that increases risk to
    # Confidentiality & Integrity & Availability.
    VULNERABILITY = 2

    # Describes a potential weakness in cloud resource/asset configuration that
    # increases risk.
    MISCONFIGURATION = 3

    # Describes a security observation that is for informational purposes.
    OBSERVATION = 4

    # Describes an error that prevents some SCC functionality.
    SCC_ERROR = 5

    # Describes a potential security risk due to a change in the security
    # posture.
    POSTURE_VIOLATION = 6

    # Describes a combination of security issues that represent a more severe
    # security problem when taken together.
    TOXIC_COMBINATION = 7

    # Describes a potential security risk to data assets that contain sensitive
    # data.
    SENSITIVE_DATA_RISK = 8

    # Describes a resource or resource group where high risk attack paths
    # converge, based on attack path simulations (APS).
    CHOKEPOINT = 9
  end
end