Package types (0.4.0)

The request message for [AggregateFrameworkComplianceReport][].

The response message for [AggregateFrameworkComplianceReport][].

The aggregated compliance report.

The allowed set of values for the parameter.

The attribute at the given path that's substituted entirely.

The audit configuration for Compliance Manager.

A Cloud Storage bucket destination.

A Common Expression Language (CEL) expression that's used to create a rule.

.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields

The request message for [CalculateEffectiveCmEnrollment][].

The response message for [CalculateEffectiveCmEnrollment][].

A cloud control is a set of rules and associated metadata that you can use to define your organization's security or compliance intent.

The cloud control assessment details for non-manual cloud controls.

The details for a cloud control audit.

The category for the cloud control.

A cloud control deployment represents the deployment of a particular cloud control on a target resource. Supported target resources are organizations/{organizationID}, folders/{folderID}, and projects/{projectID}.

The reference to a cloud control deployment.

The details of a cloud control.

The details for a cloud control group.

The enforcement mode and parameters of a cloud control deployment.

The cloud control report.

This message has oneof_ fields (mutually exclusive fields). For each oneof, at most one member field can be set at the same time. Setting any member of the oneof automatically clears all other members.

.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields

The cloud provider that's associated with the cloud control.

The settings for Compliance Manager at a specific resource scope.=

The state of compliance after evaluation is complete.

The details for a control assessment.

The details for control compliance.

The regulatory family of the control.

The request message for [CreateCloudControl][].

The request message for [CreateFrameworkAudit][].

The request message for [CreateFrameworkDeployment][].

The request message for [CreateFramework][].

The request message for [DeleteCloudControl][].

The request message for [DeleteFrameworkDeployment][].

Request message for [DeleteFramework][].

The state of the deployment resource.

The enforcement mode for the cloud control.

The evaluation state of the control.

The evidence details for a finding.

The request message for [FetchFrameworkComplianceReport][].

A finding is a record of assessment data like security, risk, health, or privacy.

The details for a finding.

The details for a finding.

The configuration that's required to create a folder to be used as the target resource for a deployment.

A framework is a collection of cloud controls and regulatory controls that represent security best practices or industry-defined standards such as FedRAMP or NIST.

A framework audit.

A destination for the framework audit.

.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields

The category for the framework.

The response message for [GetFrameworkComplianceReport][].

The details for a framework compliance summary.

Framework deployments represent the assignment of a framework to a target resource. Supported target resources are organizations, folders, and projects.

The reference to a framework deployment.

The reference of a framework, in the format organizations/{organization}/locations/{location}/frameworks/{framework}. The only supported location is global.

.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields

The request message for [GenerateFrameworkAuditScopeReport][].

The response message for [GenerateFrameworkAuditScopeReport][].

.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields

The request message for [GetCloudControlDeployment][].

The request message for [GetCloudControl][].

The request message for [GetFrameworkAudit][].

The request message for [GetFrameworkDeployment][].

The request message for [GetFramework][].

The number range for number parameters.

The request message for [ListCloudControlDeployments][].

The response message for [ListCloudControlDeployments][].

Request message for [ListCloudControls][].

The response message for [ListCloudControls][].

The request message for [ListControlComplianceSummaries][].

The response message for [ListControlComplianceSummaries][].

The request message for [ListFindingSummaries][].

The response message for [ListFindingSummaries][].

The request message for [ListFrameworkAudits][].

The response message for [ListFrameworkAudits][].

The request message for ListFrameworkComplianceSummariesRequest.

The response message for ListFrameworkComplianceSummariesResponse.

The request message for [ListFrameworkDeployments][].

The response message for [ListFrameworkDeployments][].

Request message for [ListFrameworks][].

The response message for [ListFrameworks][]. Returns a paginated list of Framework resources.

The details for a manual cloud control assessment.

The observation details for a finding.

The metadata for the long-running operation.

The possible parameter value types.

This message has oneof_ fields (mutually exclusive fields). For each oneof, at most one member field can be set at the same time. Setting any member of the oneof automatically clears all other members.

.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields

Parameters are key-value pairs that let you provide your custom location requirements, environment requirements, or other settings that are relevant to the cloud control.

The parameter specification for the cloud control.

The parameter substitution rules.

This message has oneof_ fields (mutually exclusive fields). For each oneof, at most one member field can be set at the same time. Setting any member of the oneof automatically clears all other members.

.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields

The placeholder that's substituted in the rendered string.

The configuration that's required to create a project to be used as the target resource of a deployment.

The regular expression (regex) validator for parameter values.

The responsibility type for the regulatory control.

Additional information for an audit operation.

A rule in the cloud control.

.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields

The action type of the rule.

The severity of the finding.

    A critical threat is a threat that can access,
    modify, or delete data or execute unauthorized
    code within existing resources.
HIGH (2):
    A high-risk vulnerability can be easily
    discovered and exploited in combination with
    other vulnerabilities to gain direct access and
    the ability to execute arbitrary code,
    exfiltrate data, and otherwise gain additional
    access and privileges to cloud resources and
    workloads. An example is a database with weak or
    no passwords that is only accessible internally.
    This database could easily be compromised by an
    actor that had access to the internal network.

    A high-risk threat is a threat that can create
    new computational resources in an environment
    but can't access data or execute code in
    existing resources.
MEDIUM (3):
    A medium-risk vulnerability can be used by an
    actor to gain access to resources or privileges
    that enable them to eventually (through multiple
    steps or a complex exploit) gain access and the
    ability to execute arbitrary code or exfiltrate
    data. An example is a service account with
    access to more projects than it should have. If
    an actor gains access to the service account,
    they could potentially use that access to
    manipulate a project the service account was not
    intended to.

    A medium-risk threat can cause operational
    impact but might not access data or execute
    unauthorized code.
LOW (4):
    A low-risk vulnerability hampers a security
    organization's ability to detect vulnerabilities
    or active threats in their deployment, or
    prevents the root cause investigation of
    security issues. An example is monitoring and
    logs being disabled for resource configurations
    and access.

    A low-risk threat is a threat that has obtained
    minimal access to an environment but can't
    access data, execute code, or create resources.

The similar controls.

A list of strings for the parameter value.

The name of the target resource or the configuration that's required to create a new target resource.

This message has oneof_ fields (mutually exclusive fields). For each oneof, at most one member field can be set at the same time. Setting any member of the oneof automatically clears all other members.

.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields

The configuration that's required to create a target resource.

This message has oneof_ fields (mutually exclusive fields). For each oneof, at most one member field can be set at the same time. Setting any member of the oneof automatically clears all other members.

.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields

The details for a target resource.

The type of resource that a control or framework can be applied to.

The request message for [UpdateCloudControl][].

The request message for [UpdateCmEnrollment][].

The request message for [UpdateFramework][].

The validation of the parameter.

This message has oneof_ fields (mutually exclusive fields). For each oneof, at most one member field can be set at the same time. Setting any member of the oneof automatically clears all other members.

.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields