diff --git a/packages/google-cloud-securitycenter/protos/google/cloud/securitycenter/v1/access.proto b/packages/google-cloud-securitycenter/protos/google/cloud/securitycenter/v1/access.proto index 799b84fcccb..159a6ef6f88 100644 --- a/packages/google-cloud-securitycenter/protos/google/cloud/securitycenter/v1/access.proto +++ b/packages/google-cloud-securitycenter/protos/google/cloud/securitycenter/v1/access.proto @@ -42,7 +42,7 @@ message Access { // The caller IP's geolocation, which identifies where the call came from. Geolocation caller_ip_geo = 3; - // What kind of user agent is associated, e.g. operating system shells, + // What kind of user agent is associated, for example operating system shells, // embedded or stand-alone applications, etc. string user_agent_family = 4; @@ -76,6 +76,15 @@ message Access { // authorities are present, they are guaranteed to be sorted based on the // original ordering of the identity delegation events. repeated ServiceAccountDelegationInfo service_account_delegation_info = 9; + + // A string that represents the username of a user, user account, or other + // entity involved in the access event. What the entity is and what its role + // in the access event is depends on the finding that this field appears in. + // The entity is likely not an IAM principal, but could be a user that is + // logged into an operating system, if the finding is VM-related, or a user + // that is logged into some type of application that is involved in the + // access event. + string user_name = 11; } // Identity delegation history of an authenticated service account. @@ -97,4 +106,4 @@ message ServiceAccountDelegationInfo { message Geolocation { // A CLDR. string region_code = 1; -} +} \ No newline at end of file diff --git a/packages/google-cloud-securitycenter/protos/protos.d.ts b/packages/google-cloud-securitycenter/protos/protos.d.ts index d9e0382ded3..4e3271fac1c 100644 --- a/packages/google-cloud-securitycenter/protos/protos.d.ts +++ b/packages/google-cloud-securitycenter/protos/protos.d.ts @@ -55,6 +55,9 @@ export namespace google { /** Access serviceAccountDelegationInfo */ serviceAccountDelegationInfo?: (google.cloud.securitycenter.v1.IServiceAccountDelegationInfo[]|null); + + /** Access userName */ + userName?: (string|null); } /** Represents an Access. */ @@ -93,6 +96,9 @@ export namespace google { /** Access serviceAccountDelegationInfo. */ public serviceAccountDelegationInfo: google.cloud.securitycenter.v1.IServiceAccountDelegationInfo[]; + /** Access userName. */ + public userName: string; + /** * Creates a new Access instance using the specified properties. * @param [properties] Properties to set diff --git a/packages/google-cloud-securitycenter/protos/protos.js b/packages/google-cloud-securitycenter/protos/protos.js index 8063d428e1d..b3f281f0dd3 100644 --- a/packages/google-cloud-securitycenter/protos/protos.js +++ b/packages/google-cloud-securitycenter/protos/protos.js @@ -81,6 +81,7 @@ * @property {string|null} [principalSubject] Access principalSubject * @property {string|null} [serviceAccountKeyName] Access serviceAccountKeyName * @property {Array.|null} [serviceAccountDelegationInfo] Access serviceAccountDelegationInfo + * @property {string|null} [userName] Access userName */ /** @@ -171,6 +172,14 @@ */ Access.prototype.serviceAccountDelegationInfo = $util.emptyArray; + /** + * Access userName. + * @member {string} userName + * @memberof google.cloud.securitycenter.v1.Access + * @instance + */ + Access.prototype.userName = ""; + /** * Creates a new Access instance using the specified properties. * @function create @@ -214,6 +223,8 @@ if (message.serviceAccountDelegationInfo != null && message.serviceAccountDelegationInfo.length) for (var i = 0; i < message.serviceAccountDelegationInfo.length; ++i) $root.google.cloud.securitycenter.v1.ServiceAccountDelegationInfo.encode(message.serviceAccountDelegationInfo[i], writer.uint32(/* id 9, wireType 2 =*/74).fork()).ldelim(); + if (message.userName != null && Object.hasOwnProperty.call(message, "userName")) + writer.uint32(/* id 11, wireType 2 =*/90).string(message.userName); return writer; }; @@ -286,6 +297,10 @@ message.serviceAccountDelegationInfo.push($root.google.cloud.securitycenter.v1.ServiceAccountDelegationInfo.decode(reader, reader.uint32())); break; } + case 11: { + message.userName = reader.string(); + break; + } default: reader.skipType(tag & 7); break; @@ -356,6 +371,9 @@ return "serviceAccountDelegationInfo." + error; } } + if (message.userName != null && message.hasOwnProperty("userName")) + if (!$util.isString(message.userName)) + return "userName: string expected"; return null; }; @@ -400,6 +418,8 @@ message.serviceAccountDelegationInfo[i] = $root.google.cloud.securitycenter.v1.ServiceAccountDelegationInfo.fromObject(object.serviceAccountDelegationInfo[i]); } } + if (object.userName != null) + message.userName = String(object.userName); return message; }; @@ -427,6 +447,7 @@ object.methodName = ""; object.principalSubject = ""; object.serviceAccountKeyName = ""; + object.userName = ""; } if (message.principalEmail != null && message.hasOwnProperty("principalEmail")) object.principalEmail = message.principalEmail; @@ -449,6 +470,8 @@ for (var j = 0; j < message.serviceAccountDelegationInfo.length; ++j) object.serviceAccountDelegationInfo[j] = $root.google.cloud.securitycenter.v1.ServiceAccountDelegationInfo.toObject(message.serviceAccountDelegationInfo[j], options); } + if (message.userName != null && message.hasOwnProperty("userName")) + object.userName = message.userName; return object; }; diff --git a/packages/google-cloud-securitycenter/protos/protos.json b/packages/google-cloud-securitycenter/protos/protos.json index b417be7a31d..85f6daa1416 100644 --- a/packages/google-cloud-securitycenter/protos/protos.json +++ b/packages/google-cloud-securitycenter/protos/protos.json @@ -57,6 +57,10 @@ "rule": "repeated", "type": "ServiceAccountDelegationInfo", "id": 9 + }, + "userName": { + "type": "string", + "id": 11 } } },