Lines Matching +full:storage +full:- +full:repo
8 font-weight: inherit;
9 font-style: inherit;
10 font-size: 100%;
11 font-family: inherit;
12 vertical-align: baseline;
16 font-size: 13px;
21 font-size: 26px;
22 margin-bottom: 1em;
26 font-size: 24px;
27 margin-bottom: 1em;
31 font-size: 20px;
32 margin-bottom: 1em;
33 margin-top: 1em;
37 line-height: 1.5;
38 font-family: Monaco, 'DejaVu Sans Mono', 'Bitstream Vera Sans Mono', 'Lucida Console', monospace;
42 margin-top: 0.5em;
46 font-family: Arial, sans serif;
50 border-bottom: solid #CCC 1px;
54 margin-top: 0.5em;
58 margin-left: 2 em;
62 margin-top: 1em;
69 font-weight: bold;
70 font-size: 14px;
91 …sult in a `PERMISSION_DENIED` error. Attempting to call this method on a non-existent resource wil…
109 …lt in a ` `PERMISSION_DENIED` error. Attempting to call this method on a non-existent resource wil…
112 …for example, "storage.objects.list" on the containing bucket for testing permission of an object).…
129 …Authority to which this Attestation is attached is primarily useful for look-up (how to find this …
130 …"pgpSignedAttestation": { # An attestation wrapper with a PGP-compatible signature. This…
132 …--list-keys`. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character …
133 …y ASCII-armored (`--armor` to gpg), non-clearsigned (`--sign` rather than `--clearsign` to gpg) ar…
137 …"intotoProvenance": { # Deprecated. See InTotoStatement for the replacement. In-toto Pro…
146 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
153 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
155 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
161 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
163 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
171 …-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelo…
172 … "_type": "A String", # Always "https://in-toto.io/Statement/v0.1".
183 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
190 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
192 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
198 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
200 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
222 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
229 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
231 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
235 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
237 …"environment": { # Any other builder-controlled inputs necessary for correctly evaluatin…
245 …"" Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob…
253 …"buildOptions": { # Special options applied to this build. This is a catch-all field whe…
269 "args": [ # Command-line arguments used when executing this Command.
284 …-mail address of the user who initiated this build. Note that this was the user's e-mail addr…
287 …"logsBucket": "A String", # Google Cloud Storage bucket where logs were writte…
292 …lar revision in a Google Cloud Source Repo. # A SourceContext referring to a revision in a Google …
293 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
297 "repoId": { # A unique identifier for a Cloud Repo. # The ID of the repo.
298 …a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within tha…
300 …uot;repoName": "A String", # The name of the repo. Leave empty for the default repo.
302 … "uid": "A String", # A server-assigned, globally unique identifier.
307 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
311 …ted, so "project/subproject" is a valid project name. The "repo name" is the h…
315 … repository (e.g., GitHub). # A SourceContext referring to any third party Git repo (e.g., GitHub).
324 … describes the location of the source in an archive file in Google Cloud Storage. # If provided, t…
325 …uot;, # Google Cloud Storage bucket containing source (see [Bucket Name Requirements] (https://clo…
326 … "generation": "A String", # Google Cloud Storage generation for the object.
327 "object": "A String", # Google Cloud Storage object containing source.
330 …lar revision in a Google Cloud Source Repo. # A SourceContext referring to a revision in a Google …
331 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
335 "repoId": { # A unique identifier for a Cloud Repo. # The ID of the repo.
336 …a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within tha…
338 …uot;repoName": "A String", # The name of the repo. Leave empty for the default repo.
340 … "uid": "A String", # A server-assigned, globally unique identifier.
345 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
349 …ted, so "project/subproject" is a valid project name. The "repo name" is the h…
353 … repository (e.g., GitHub). # A SourceContext referring to any third party Git repo (e.g., GitHub).
371 … in a Google Cloud Source Repository. # If provided, get source from this location in a Cloud Repo.
374 "projectId": "A String", # ID of the project that owns the repo.
375 "repoName": "A String", # Name of the repo.
378 …n an archive file in Google Cloud Storage. # If provided, get the source from this location in in …
379 …uot;, # Google Cloud Storage bucket containing source (see [Bucket Name Requirements] (https://clo…
380 … "generation": "A String", # Google Cloud Storage generation for the object.
381 "object": "A String", # Google Cloud Storage object containing source.
387 …led and compared to the provenance to confirm that it is unchanged. A base64-encoded string repres…
393 … "displayCommand": "A String", # Command to display the non-compliant files.
415 …"v1Name": "A String", # The layer-id of the final layer in the Docker image&#x…
421 …"layerInfo": [ # This contains layer-specific metadata, if populated it has length "…
437 …age": "A String", # A developer-facing error message, which should be in English. A…
441 …"operation": { # This resource represents a long-running operation that is the result of…
450 …age": "A String", # A developer-facing error message, which should be in English. A…
452 …-specific metadata associated with the operation. It typically contains progress information and c…
455 …"name": "A String", # The server-assigned name, which is only unique within th…
462 …"envelope": { # MUST match https://github.com/secure-systems-lab/dsse/blob/master/envelo…
472 …-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelo…
473 … "_type": "A String", # Always "https://in-toto.io/Statement/v0.1".
484 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
491 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
493 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
499 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
501 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
523 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
530 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
532 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
536 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
538 …"environment": { # Any other builder-controlled inputs necessary for correctly evaluatin…
546 …"" Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob…
554 …ub.com/secure-systems-lab/dsse/blob/master/envelope.proto. An authenticated message of arbitrary t…
569 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
589 …;A String", # The name of the resource. E.g., the name of a Docker image - "Debian".
593 …ument Creation Information section: https://spdx.github.io/spdx-spec/2-document-creation-informati…
605 …e as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the except…
608 …presents an SPDX File Information section: https://spdx.github.io/spdx-spec/4-file-information/ # …
621 …;: { # License information: https://spdx.github.io/spdx-spec/3-package-information/#315-declared-l…
623 …uot;A String", # Expression: https://spdx.github.io/spdx-spec/appendix-IV-SPDX-license-expres…
627 …nts an SPDX Package Information section: https://spdx.github.io/spdx-spec/3-package-information/ #…
632 …;: { # License information: https://spdx.github.io/spdx-spec/3-package-information/#315-declared-l…
634 …uot;A String", # Expression: https://spdx.github.io/spdx-spec/appendix-IV-SPDX-license-expres…
642 …s an SPDX Relationship section: https://spdx.github.io/spdx-spec/7-relationships-between-SPDX-elem…
644 …"source": "A String", # Also referred to as SPDXRef-A The source SPDX element …
645 …"target": "A String", # Also referred to as SPDXRef-B The target SPDC element …
652 …"cpeUri": "A String", # Required - The specific operating system this metadata…
658 "package": "A String", # Required - The package this Upgrade is for.
659 …-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.jasonan…
668 …ut only. The CVSS score of this vulnerability. CVSS score is on a scale of 0-10 where 0 indicates …
673 …https://cpe.mitre.org/specification/) format. Examples include distro or storage location for vuln…
675 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
685 …https://cpe.mitre.org/specification/) format. Examples include distro or storage location for vuln…
687 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
707 1 - v1 error format
708 2 - v2 error format
714 …Authority to which this Attestation is attached is primarily useful for look-up (how to find this …
715 …"pgpSignedAttestation": { # An attestation wrapper with a PGP-compatible signature. This…
717 …--list-keys`. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character …
718 …y ASCII-armored (`--armor` to gpg), non-clearsigned (`--sign` rather than `--clearsign` to gpg) ar…
722 …"intotoProvenance": { # Deprecated. See InTotoStatement for the replacement. In-toto Pro…
731 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
738 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
740 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
746 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
748 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
756 …-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelo…
757 … "_type": "A String", # Always "https://in-toto.io/Statement/v0.1".
768 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
775 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
777 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
783 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
785 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
807 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
814 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
816 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
820 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
822 …"environment": { # Any other builder-controlled inputs necessary for correctly evaluatin…
830 …"" Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob…
838 …"buildOptions": { # Special options applied to this build. This is a catch-all field whe…
854 "args": [ # Command-line arguments used when executing this Command.
869 …-mail address of the user who initiated this build. Note that this was the user's e-mail addr…
872 …"logsBucket": "A String", # Google Cloud Storage bucket where logs were writte…
877 …lar revision in a Google Cloud Source Repo. # A SourceContext referring to a revision in a Google …
878 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
882 "repoId": { # A unique identifier for a Cloud Repo. # The ID of the repo.
883 …a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within tha…
885 …uot;repoName": "A String", # The name of the repo. Leave empty for the default repo.
887 … "uid": "A String", # A server-assigned, globally unique identifier.
892 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
896 …ted, so "project/subproject" is a valid project name. The "repo name" is the h…
900 … repository (e.g., GitHub). # A SourceContext referring to any third party Git repo (e.g., GitHub).
909 … describes the location of the source in an archive file in Google Cloud Storage. # If provided, t…
910 …uot;, # Google Cloud Storage bucket containing source (see [Bucket Name Requirements] (https://clo…
911 … "generation": "A String", # Google Cloud Storage generation for the object.
912 "object": "A String", # Google Cloud Storage object containing source.
915 …lar revision in a Google Cloud Source Repo. # A SourceContext referring to a revision in a Google …
916 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
920 "repoId": { # A unique identifier for a Cloud Repo. # The ID of the repo.
921 …a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within tha…
923 …uot;repoName": "A String", # The name of the repo. Leave empty for the default repo.
925 … "uid": "A String", # A server-assigned, globally unique identifier.
930 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
934 …ted, so "project/subproject" is a valid project name. The "repo name" is the h…
938 … repository (e.g., GitHub). # A SourceContext referring to any third party Git repo (e.g., GitHub).
956 … in a Google Cloud Source Repository. # If provided, get source from this location in a Cloud Repo.
959 "projectId": "A String", # ID of the project that owns the repo.
960 "repoName": "A String", # Name of the repo.
963 …n an archive file in Google Cloud Storage. # If provided, get the source from this location in in …
964 …uot;, # Google Cloud Storage bucket containing source (see [Bucket Name Requirements] (https://clo…
965 … "generation": "A String", # Google Cloud Storage generation for the object.
966 "object": "A String", # Google Cloud Storage object containing source.
972 …led and compared to the provenance to confirm that it is unchanged. A base64-encoded string repres…
978 … "displayCommand": "A String", # Command to display the non-compliant files.
1000 …"v1Name": "A String", # The layer-id of the final layer in the Docker image&#x…
1006 …"layerInfo": [ # This contains layer-specific metadata, if populated it has length "…
1022 …age": "A String", # A developer-facing error message, which should be in English. A…
1026 …"operation": { # This resource represents a long-running operation that is the result of…
1035 …age": "A String", # A developer-facing error message, which should be in English. A…
1037 …-specific metadata associated with the operation. It typically contains progress information and c…
1040 …"name": "A String", # The server-assigned name, which is only unique within th…
1047 …"envelope": { # MUST match https://github.com/secure-systems-lab/dsse/blob/master/envelo…
1057 …-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelo…
1058 … "_type": "A String", # Always "https://in-toto.io/Statement/v0.1".
1069 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
1076 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
1078 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
1084 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
1086 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
1108 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
1115 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
1117 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
1121 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
1123 …"environment": { # Any other builder-controlled inputs necessary for correctly evaluatin…
1131 …"" Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob…
1139 …ub.com/secure-systems-lab/dsse/blob/master/envelope.proto. An authenticated message of arbitrary t…
1154 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
1174 …;A String", # The name of the resource. E.g., the name of a Docker image - "Debian".
1178 …ument Creation Information section: https://spdx.github.io/spdx-spec/2-document-creation-informati…
1190 …e as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the except…
1193 …presents an SPDX File Information section: https://spdx.github.io/spdx-spec/4-file-information/ # …
1206 …;: { # License information: https://spdx.github.io/spdx-spec/3-package-information/#315-declared-l…
1208 …uot;A String", # Expression: https://spdx.github.io/spdx-spec/appendix-IV-SPDX-license-expres…
1212 …nts an SPDX Package Information section: https://spdx.github.io/spdx-spec/3-package-information/ #…
1217 …;: { # License information: https://spdx.github.io/spdx-spec/3-package-information/#315-declared-l…
1219 …uot;A String", # Expression: https://spdx.github.io/spdx-spec/appendix-IV-SPDX-license-expres…
1227 …s an SPDX Relationship section: https://spdx.github.io/spdx-spec/7-relationships-between-SPDX-elem…
1229 …"source": "A String", # Also referred to as SPDXRef-A The source SPDX element …
1230 …"target": "A String", # Also referred to as SPDXRef-B The target SPDC element …
1237 …"cpeUri": "A String", # Required - The specific operating system this metadata…
1243 "package": "A String", # Required - The package this Upgrade is for.
1244 …-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.jasonan…
1253 …ut only. The CVSS score of this vulnerability. CVSS score is on a scale of 0-10 where 0 indicates …
1258 …https://cpe.mitre.org/specification/) format. Examples include distro or storage location for vuln…
1260 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
1270 …https://cpe.mitre.org/specification/) format. Examples include distro or storage location for vuln…
1272 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
1298 1 - v1 error format
1299 2 - v2 error format
1304 …{ # A generic empty message that you can re-use to avoid defining duplicated empty messages in you…
1316 1 - v1 error format
1317 2 - v2 error format
1323 …Authority to which this Attestation is attached is primarily useful for look-up (how to find this …
1324 …"pgpSignedAttestation": { # An attestation wrapper with a PGP-compatible signature. This…
1326 …--list-keys`. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character …
1327 …y ASCII-armored (`--armor` to gpg), non-clearsigned (`--sign` rather than `--clearsign` to gpg) ar…
1331 …"intotoProvenance": { # Deprecated. See InTotoStatement for the replacement. In-toto Pro…
1340 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
1347 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
1349 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
1355 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
1357 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
1365 …-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelo…
1366 … "_type": "A String", # Always "https://in-toto.io/Statement/v0.1".
1377 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
1384 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
1386 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
1392 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
1394 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
1416 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
1423 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
1425 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
1429 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
1431 …"environment": { # Any other builder-controlled inputs necessary for correctly evaluatin…
1439 …"" Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob…
1447 …"buildOptions": { # Special options applied to this build. This is a catch-all field whe…
1463 "args": [ # Command-line arguments used when executing this Command.
1478 …-mail address of the user who initiated this build. Note that this was the user's e-mail addr…
1481 …"logsBucket": "A String", # Google Cloud Storage bucket where logs were writte…
1486 …lar revision in a Google Cloud Source Repo. # A SourceContext referring to a revision in a Google …
1487 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
1491 "repoId": { # A unique identifier for a Cloud Repo. # The ID of the repo.
1492 …a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within tha…
1494 …uot;repoName": "A String", # The name of the repo. Leave empty for the default repo.
1496 … "uid": "A String", # A server-assigned, globally unique identifier.
1501 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
1505 …ted, so "project/subproject" is a valid project name. The "repo name" is the h…
1509 … repository (e.g., GitHub). # A SourceContext referring to any third party Git repo (e.g., GitHub).
1518 … describes the location of the source in an archive file in Google Cloud Storage. # If provided, t…
1519 …uot;, # Google Cloud Storage bucket containing source (see [Bucket Name Requirements] (https://clo…
1520 … "generation": "A String", # Google Cloud Storage generation for the object.
1521 "object": "A String", # Google Cloud Storage object containing source.
1524 …lar revision in a Google Cloud Source Repo. # A SourceContext referring to a revision in a Google …
1525 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
1529 "repoId": { # A unique identifier for a Cloud Repo. # The ID of the repo.
1530 …a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within tha…
1532 …uot;repoName": "A String", # The name of the repo. Leave empty for the default repo.
1534 … "uid": "A String", # A server-assigned, globally unique identifier.
1539 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
1543 …ted, so "project/subproject" is a valid project name. The "repo name" is the h…
1547 … repository (e.g., GitHub). # A SourceContext referring to any third party Git repo (e.g., GitHub).
1565 … in a Google Cloud Source Repository. # If provided, get source from this location in a Cloud Repo.
1568 "projectId": "A String", # ID of the project that owns the repo.
1569 "repoName": "A String", # Name of the repo.
1572 …n an archive file in Google Cloud Storage. # If provided, get the source from this location in in …
1573 …uot;, # Google Cloud Storage bucket containing source (see [Bucket Name Requirements] (https://clo…
1574 … "generation": "A String", # Google Cloud Storage generation for the object.
1575 "object": "A String", # Google Cloud Storage object containing source.
1581 …led and compared to the provenance to confirm that it is unchanged. A base64-encoded string repres…
1587 … "displayCommand": "A String", # Command to display the non-compliant files.
1609 …"v1Name": "A String", # The layer-id of the final layer in the Docker image&#x…
1615 …"layerInfo": [ # This contains layer-specific metadata, if populated it has length "…
1631 …age": "A String", # A developer-facing error message, which should be in English. A…
1635 …"operation": { # This resource represents a long-running operation that is the result of…
1644 …age": "A String", # A developer-facing error message, which should be in English. A…
1646 …-specific metadata associated with the operation. It typically contains progress information and c…
1649 …"name": "A String", # The server-assigned name, which is only unique within th…
1656 …"envelope": { # MUST match https://github.com/secure-systems-lab/dsse/blob/master/envelo…
1666 …-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelo…
1667 … "_type": "A String", # Always "https://in-toto.io/Statement/v0.1".
1678 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
1685 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
1687 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
1693 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
1695 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
1717 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
1724 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
1726 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
1730 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
1732 …"environment": { # Any other builder-controlled inputs necessary for correctly evaluatin…
1740 …"" Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob…
1748 …ub.com/secure-systems-lab/dsse/blob/master/envelope.proto. An authenticated message of arbitrary t…
1763 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
1783 …;A String", # The name of the resource. E.g., the name of a Docker image - "Debian".
1787 …ument Creation Information section: https://spdx.github.io/spdx-spec/2-document-creation-informati…
1799 …e as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the except…
1802 …presents an SPDX File Information section: https://spdx.github.io/spdx-spec/4-file-information/ # …
1815 …;: { # License information: https://spdx.github.io/spdx-spec/3-package-information/#315-declared-l…
1817 …uot;A String", # Expression: https://spdx.github.io/spdx-spec/appendix-IV-SPDX-license-expres…
1821 …nts an SPDX Package Information section: https://spdx.github.io/spdx-spec/3-package-information/ #…
1826 …;: { # License information: https://spdx.github.io/spdx-spec/3-package-information/#315-declared-l…
1828 …uot;A String", # Expression: https://spdx.github.io/spdx-spec/appendix-IV-SPDX-license-expres…
1836 …s an SPDX Relationship section: https://spdx.github.io/spdx-spec/7-relationships-between-SPDX-elem…
1838 …"source": "A String", # Also referred to as SPDXRef-A The source SPDX element …
1839 …"target": "A String", # Also referred to as SPDXRef-B The target SPDC element …
1846 …"cpeUri": "A String", # Required - The specific operating system this metadata…
1852 "package": "A String", # Required - The package this Upgrade is for.
1853 …-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.jasonan…
1862 …ut only. The CVSS score of this vulnerability. CVSS score is on a scale of 0-10 where 0 indicates …
1867 …https://cpe.mitre.org/specification/) format. Examples include distro or storage location for vuln…
1869 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
1879 …https://cpe.mitre.org/specification/) format. Examples include distro or storage location for vuln…
1881 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
1901 …sult in a `PERMISSION_DENIED` error. Attempting to call this method on a non-existent resource wil…
1910 …icies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
1916 1 - v1 error format
1917 2 - v2 error format
1922 …-created custom role. For some types of Google Cloud resources, a `binding` can also specify a `co…
1925 …-like expression language. The syntax and semantics of CEL are documented at https://github.com/go…
1931 …-other-app@appspot.gserviceaccount.com`. * `group:{emailid}`: An email address that represents a G…
1937 …It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to per…
1938 …icies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
1950 1 - v1 error format
1951 2 - v2 error format
1958 …"hint": { # This submessage provides human-readable hints about the purpose of the Attes…
1964 …"v1Name": "A String", # The layer-id of the final layer in the Docker image&#x…
1977 …-decoded into its binary representation in signature.bin, and the provenance bytes from `BuildDeta…
1994 …", # The version of the benchmark. This is set to the version of the OS-specific CIS document…
2008 …"hint": { # This submessage provides human-readable hints about the purpose of the autho…
2009 …ed. The human readable name of this attestation authority, for example "cloudbuild-prod".
2018 …icular channel of distribution for a given package. e.g. Debian's jessie-backports dpkg mirror
2021 …"description": "A String", # The distribution channel-specific description of …
2022 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
2030 …"url": "A String", # The distribution channel-specific homepage for this packa…
2041 …ument Creation Infromation section: https://spdx.github.io/spdx-spec/2-document-creation-informati…
2042 …des populating the SPDX fields therein with data related to such fields ("SPDX-Metadata")
2046 …presents an SPDX File Information section: https://spdx.github.io/spdx-spec/4-file-information/ # …
2053 …nts an SPDX Package Information section: https://spdx.github.io/spdx-spec/3-package-information/ #…
2063 …"comment": "A String", # Human-readable information about the purpose and targ…
2064 …ng", # The unique string with no spaces necessary to access the package-specific information,…
2072 …;: { # License information: https://spdx.github.io/spdx-spec/3-package-information/#315-declared-l…
2074 …uot;A String", # Expression: https://spdx.github.io/spdx-spec/appendix-IV-SPDX-license-expres…
2084 …s an SPDX Relationship section: https://spdx.github.io/spdx-spec/7-relationships-between-SPDX-elem…
2092 …"cpeUri": "A String", # Required - The specific operating system this metadata…
2099 "package": "A String", # Required - The package this Upgrade is for.
2100 …-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.jasonan…
2111 … specific distro/location For example: glibc in cpe:/o:debian:debian_linux:8 for versions 2.1 - 2.2
2112 …ation/) in which the vulnerability manifests. Examples include distro or storage location for vuln…
2113 "description": "A String", # A vendor-specific description of this note.
2115 …https://cpe.mitre.org/specification/) format. Examples include distro or storage location for vuln…
2117 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
2126 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
2133 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
2161 1 - v1 error format
2162 2 - v2 error format
2186 KIND_UNSPECIFIED - Unknown
2187 PACKAGE_VULNERABILITY - The note and occurrence represent a package vulnerability.
2188 BUILD_DETAILS - The note and occurrence assert build provenance.
2189 IMAGE_BASIS - This represents an image basis relationship.
2190 PACKAGE_MANAGER - This represents a package installed via a package manager.
2191 DEPLOYABLE - The note and occurrence track deployment events.
2192 DISCOVERY - The note and occurrence track the initial discovery status of a resource.
2193 … ATTESTATION_AUTHORITY - This represents a logical "role" that can attest to artifacts.
2194 UPGRADE - This represents an available software upgrade.
2195 COMPLIANCE - This represents a compliance check that can be applied to a resource.
2196 SBOM - This represents a software bill of materials.
2197 SPDX_PACKAGE - This represents an SPDX Package.
2198 SPDX_FILE - This represents an SPDX File.
2199 SPDX_RELATIONSHIP - This represents an SPDX Relationship.
2200 DSSE_ATTESTATION - This represents a DSSE attestation Note
2206 1 - v1 error format
2207 2 - v2 error format
2216 …Authority to which this Attestation is attached is primarily useful for look-up (how to find this …
2217 …"pgpSignedAttestation": { # An attestation wrapper with a PGP-compatible signature. This…
2219 …--list-keys`. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character …
2220 …y ASCII-armored (`--armor` to gpg), non-clearsigned (`--sign` rather than `--clearsign` to gpg) ar…
2224 …"intotoProvenance": { # Deprecated. See InTotoStatement for the replacement. In-toto Pro…
2233 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
2240 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
2242 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
2248 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
2250 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
2258 …-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelo…
2259 … "_type": "A String", # Always "https://in-toto.io/Statement/v0.1".
2270 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
2277 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
2279 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
2285 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
2287 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
2309 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
2316 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
2318 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
2322 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
2324 …"environment": { # Any other builder-controlled inputs necessary for correctly evaluatin…
2332 …"" Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob…
2340 …"buildOptions": { # Special options applied to this build. This is a catch-all field whe…
2356 "args": [ # Command-line arguments used when executing this Command.
2371 …-mail address of the user who initiated this build. Note that this was the user's e-mail addr…
2374 …"logsBucket": "A String", # Google Cloud Storage bucket where logs were writte…
2379 …lar revision in a Google Cloud Source Repo. # A SourceContext referring to a revision in a Google …
2380 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
2384 … "repoId": { # A unique identifier for a Cloud Repo. # The ID of the repo.
2385 …a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within tha…
2387 …uot;repoName": "A String", # The name of the repo. Leave empty for the default repo.
2389 … "uid": "A String", # A server-assigned, globally unique identifier.
2394 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
2398 …ted, so "project/subproject" is a valid project name. The "repo name" is the h…
2402 … repository (e.g., GitHub). # A SourceContext referring to any third party Git repo (e.g., GitHub).
2411 … describes the location of the source in an archive file in Google Cloud Storage. # If provided, t…
2412 …uot;, # Google Cloud Storage bucket containing source (see [Bucket Name Requirements] (https://clo…
2413 … "generation": "A String", # Google Cloud Storage generation for the object.
2414 … "object": "A String", # Google Cloud Storage object containing source.
2417 …lar revision in a Google Cloud Source Repo. # A SourceContext referring to a revision in a Google …
2418 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
2422 "repoId": { # A unique identifier for a Cloud Repo. # The ID of the repo.
2423 …a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within tha…
2425 …uot;repoName": "A String", # The name of the repo. Leave empty for the default repo.
2427 … "uid": "A String", # A server-assigned, globally unique identifier.
2432 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
2436 …ted, so "project/subproject" is a valid project name. The "repo name" is the h…
2440 … repository (e.g., GitHub). # A SourceContext referring to any third party Git repo (e.g., GitHub).
2458 … in a Google Cloud Source Repository. # If provided, get source from this location in a Cloud Repo.
2461 "projectId": "A String", # ID of the project that owns the repo.
2462 "repoName": "A String", # Name of the repo.
2465 …n an archive file in Google Cloud Storage. # If provided, get the source from this location in in …
2466 …uot;, # Google Cloud Storage bucket containing source (see [Bucket Name Requirements] (https://clo…
2467 … "generation": "A String", # Google Cloud Storage generation for the object.
2468 … "object": "A String", # Google Cloud Storage object containing source.
2474 …led and compared to the provenance to confirm that it is unchanged. A base64-encoded string repres…
2480 … "displayCommand": "A String", # Command to display the non-compliant files.
2502 …"v1Name": "A String", # The layer-id of the final layer in the Docker image&#x…
2508 …"layerInfo": [ # This contains layer-specific metadata, if populated it has length "…
2524 …age": "A String", # A developer-facing error message, which should be in English. A…
2528 …"operation": { # This resource represents a long-running operation that is the result of…
2537 …age": "A String", # A developer-facing error message, which should be in English. A…
2539 …-specific metadata associated with the operation. It typically contains progress information and c…
2542 …"name": "A String", # The server-assigned name, which is only unique within th…
2549 …"envelope": { # MUST match https://github.com/secure-systems-lab/dsse/blob/master/envelo…
2559 …-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelo…
2560 … "_type": "A String", # Always "https://in-toto.io/Statement/v0.1".
2571 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
2578 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
2580 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
2586 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
2588 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
2610 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
2617 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
2619 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
2623 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
2625 …"environment": { # Any other builder-controlled inputs necessary for correctly evaluatin…
2633 …"" Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob…
2641 …ub.com/secure-systems-lab/dsse/blob/master/envelope.proto. An authenticated message of arbitrary t…
2656 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
2676 …;A String", # The name of the resource. E.g., the name of a Docker image - "Debian".
2680 …ument Creation Information section: https://spdx.github.io/spdx-spec/2-document-creation-informati…
2692 …e as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the except…
2695 …presents an SPDX File Information section: https://spdx.github.io/spdx-spec/4-file-information/ # …
2708 …;: { # License information: https://spdx.github.io/spdx-spec/3-package-information/#315-declared-l…
2710 …uot;A String", # Expression: https://spdx.github.io/spdx-spec/appendix-IV-SPDX-license-expres…
2714 …nts an SPDX Package Information section: https://spdx.github.io/spdx-spec/3-package-information/ #…
2719 …;: { # License information: https://spdx.github.io/spdx-spec/3-package-information/#315-declared-l…
2721 …uot;A String", # Expression: https://spdx.github.io/spdx-spec/appendix-IV-SPDX-license-expres…
2729 …s an SPDX Relationship section: https://spdx.github.io/spdx-spec/7-relationships-between-SPDX-elem…
2731 …"source": "A String", # Also referred to as SPDXRef-A The source SPDX element …
2732 …"target": "A String", # Also referred to as SPDXRef-B The target SPDC element …
2739 …"cpeUri": "A String", # Required - The specific operating system this metadata…
2745 "package": "A String", # Required - The package this Upgrade is for.
2746 …-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.jasonan…
2755 …ut only. The CVSS score of this vulnerability. CVSS score is on a scale of 0-10 where 0 indicates …
2760 …https://cpe.mitre.org/specification/) format. Examples include distro or storage location for vuln…
2762 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
2772 …https://cpe.mitre.org/specification/) format. Examples include distro or storage location for vuln…
2774 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
2818 …Authority to which this Attestation is attached is primarily useful for look-up (how to find this …
2819 …"pgpSignedAttestation": { # An attestation wrapper with a PGP-compatible signature. This…
2821 …--list-keys`. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character …
2822 …y ASCII-armored (`--armor` to gpg), non-clearsigned (`--sign` rather than `--clearsign` to gpg) ar…
2826 …"intotoProvenance": { # Deprecated. See InTotoStatement for the replacement. In-toto Pro…
2835 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
2842 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
2844 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
2850 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
2852 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
2860 …-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelo…
2861 … "_type": "A String", # Always "https://in-toto.io/Statement/v0.1".
2872 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
2879 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
2881 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
2887 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
2889 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
2911 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
2918 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
2920 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
2924 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
2926 …"environment": { # Any other builder-controlled inputs necessary for correctly evaluatin…
2934 …"" Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob…
2942 …"buildOptions": { # Special options applied to this build. This is a catch-all field whe…
2958 "args": [ # Command-line arguments used when executing this Command.
2973 …-mail address of the user who initiated this build. Note that this was the user's e-mail addr…
2976 …"logsBucket": "A String", # Google Cloud Storage bucket where logs were writte…
2981 …lar revision in a Google Cloud Source Repo. # A SourceContext referring to a revision in a Google …
2982 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
2986 "repoId": { # A unique identifier for a Cloud Repo. # The ID of the repo.
2987 …a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within tha…
2989 …uot;repoName": "A String", # The name of the repo. Leave empty for the default repo.
2991 … "uid": "A String", # A server-assigned, globally unique identifier.
2996 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
3000 …ted, so "project/subproject" is a valid project name. The "repo name" is the h…
3004 … repository (e.g., GitHub). # A SourceContext referring to any third party Git repo (e.g., GitHub).
3013 … describes the location of the source in an archive file in Google Cloud Storage. # If provided, t…
3014 …uot;, # Google Cloud Storage bucket containing source (see [Bucket Name Requirements] (https://clo…
3015 … "generation": "A String", # Google Cloud Storage generation for the object.
3016 "object": "A String", # Google Cloud Storage object containing source.
3019 …lar revision in a Google Cloud Source Repo. # A SourceContext referring to a revision in a Google …
3020 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
3024 "repoId": { # A unique identifier for a Cloud Repo. # The ID of the repo.
3025 …a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within tha…
3027 …uot;repoName": "A String", # The name of the repo. Leave empty for the default repo.
3029 … "uid": "A String", # A server-assigned, globally unique identifier.
3034 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
3038 …ted, so "project/subproject" is a valid project name. The "repo name" is the h…
3042 … repository (e.g., GitHub). # A SourceContext referring to any third party Git repo (e.g., GitHub).
3060 … in a Google Cloud Source Repository. # If provided, get source from this location in a Cloud Repo.
3063 "projectId": "A String", # ID of the project that owns the repo.
3064 "repoName": "A String", # Name of the repo.
3067 …n an archive file in Google Cloud Storage. # If provided, get the source from this location in in …
3068 …uot;, # Google Cloud Storage bucket containing source (see [Bucket Name Requirements] (https://clo…
3069 … "generation": "A String", # Google Cloud Storage generation for the object.
3070 "object": "A String", # Google Cloud Storage object containing source.
3076 …led and compared to the provenance to confirm that it is unchanged. A base64-encoded string repres…
3082 … "displayCommand": "A String", # Command to display the non-compliant files.
3104 …"v1Name": "A String", # The layer-id of the final layer in the Docker image&#x…
3110 …"layerInfo": [ # This contains layer-specific metadata, if populated it has length "…
3126 …age": "A String", # A developer-facing error message, which should be in English. A…
3130 …"operation": { # This resource represents a long-running operation that is the result of…
3139 …age": "A String", # A developer-facing error message, which should be in English. A…
3141 …-specific metadata associated with the operation. It typically contains progress information and c…
3144 …"name": "A String", # The server-assigned name, which is only unique within th…
3151 …"envelope": { # MUST match https://github.com/secure-systems-lab/dsse/blob/master/envelo…
3161 …-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelo…
3162 … "_type": "A String", # Always "https://in-toto.io/Statement/v0.1".
3173 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
3180 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
3182 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
3188 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
3190 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
3212 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
3219 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
3221 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
3225 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
3227 …"environment": { # Any other builder-controlled inputs necessary for correctly evaluatin…
3235 …"" Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob…
3243 …ub.com/secure-systems-lab/dsse/blob/master/envelope.proto. An authenticated message of arbitrary t…
3258 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
3278 …;A String", # The name of the resource. E.g., the name of a Docker image - "Debian".
3282 …ument Creation Information section: https://spdx.github.io/spdx-spec/2-document-creation-informati…
3294 …e as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the except…
3297 …presents an SPDX File Information section: https://spdx.github.io/spdx-spec/4-file-information/ # …
3310 …;: { # License information: https://spdx.github.io/spdx-spec/3-package-information/#315-declared-l…
3312 …uot;A String", # Expression: https://spdx.github.io/spdx-spec/appendix-IV-SPDX-license-expres…
3316 …nts an SPDX Package Information section: https://spdx.github.io/spdx-spec/3-package-information/ #…
3321 …;: { # License information: https://spdx.github.io/spdx-spec/3-package-information/#315-declared-l…
3323 …uot;A String", # Expression: https://spdx.github.io/spdx-spec/appendix-IV-SPDX-license-expres…
3331 …s an SPDX Relationship section: https://spdx.github.io/spdx-spec/7-relationships-between-SPDX-elem…
3333 …"source": "A String", # Also referred to as SPDXRef-A The source SPDX element …
3334 …"target": "A String", # Also referred to as SPDXRef-B The target SPDC element …
3341 …"cpeUri": "A String", # Required - The specific operating system this metadata…
3347 "package": "A String", # Required - The package this Upgrade is for.
3348 …-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.jasonan…
3357 …ut only. The CVSS score of this vulnerability. CVSS score is on a scale of 0-10 where 0 indicates …
3362 …https://cpe.mitre.org/specification/) format. Examples include distro or storage location for vuln…
3364 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
3374 …https://cpe.mitre.org/specification/) format. Examples include distro or storage location for vuln…
3376 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
3396 1 - v1 error format
3397 2 - v2 error format
3403 …Authority to which this Attestation is attached is primarily useful for look-up (how to find this …
3404 …"pgpSignedAttestation": { # An attestation wrapper with a PGP-compatible signature. This…
3406 …--list-keys`. This should be the version 4, full 160-bit fingerprint, expressed as a 40 character …
3407 …y ASCII-armored (`--armor` to gpg), non-clearsigned (`--sign` rather than `--clearsign` to gpg) ar…
3411 …"intotoProvenance": { # Deprecated. See InTotoStatement for the replacement. In-toto Pro…
3420 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
3427 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
3429 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
3435 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
3437 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
3445 …-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelo…
3446 … "_type": "A String", # Always "https://in-toto.io/Statement/v0.1".
3457 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
3464 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
3466 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
3472 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
3474 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
3496 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
3503 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
3505 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
3509 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
3511 …"environment": { # Any other builder-controlled inputs necessary for correctly evaluatin…
3519 …"" Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob…
3527 …"buildOptions": { # Special options applied to this build. This is a catch-all field whe…
3543 "args": [ # Command-line arguments used when executing this Command.
3558 …-mail address of the user who initiated this build. Note that this was the user's e-mail addr…
3561 …"logsBucket": "A String", # Google Cloud Storage bucket where logs were writte…
3566 …lar revision in a Google Cloud Source Repo. # A SourceContext referring to a revision in a Google …
3567 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
3571 "repoId": { # A unique identifier for a Cloud Repo. # The ID of the repo.
3572 …a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within tha…
3574 …uot;repoName": "A String", # The name of the repo. Leave empty for the default repo.
3576 … "uid": "A String", # A server-assigned, globally unique identifier.
3581 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
3585 …ted, so "project/subproject" is a valid project name. The "repo name" is the h…
3589 … repository (e.g., GitHub). # A SourceContext referring to any third party Git repo (e.g., GitHub).
3598 … describes the location of the source in an archive file in Google Cloud Storage. # If provided, t…
3599 …uot;, # Google Cloud Storage bucket containing source (see [Bucket Name Requirements] (https://clo…
3600 … "generation": "A String", # Google Cloud Storage generation for the object.
3601 "object": "A String", # Google Cloud Storage object containing source.
3604 …lar revision in a Google Cloud Source Repo. # A SourceContext referring to a revision in a Google …
3605 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
3609 "repoId": { # A unique identifier for a Cloud Repo. # The ID of the repo.
3610 …a repo using a Google Cloud Platform project ID (e.g., winged-cargo-31) and a repo name within tha…
3612 …uot;repoName": "A String", # The name of the repo. Leave empty for the default repo.
3614 … "uid": "A String", # A server-assigned, globally unique identifier.
3619 …"aliasContext": { # An alias to a repo revision. # An alias, which may be a branch or ta…
3623 …ted, so "project/subproject" is a valid project name. The "repo name" is the h…
3627 … repository (e.g., GitHub). # A SourceContext referring to any third party Git repo (e.g., GitHub).
3645 … in a Google Cloud Source Repository. # If provided, get source from this location in a Cloud Repo.
3648 "projectId": "A String", # ID of the project that owns the repo.
3649 "repoName": "A String", # Name of the repo.
3652 …n an archive file in Google Cloud Storage. # If provided, get the source from this location in in …
3653 …uot;, # Google Cloud Storage bucket containing source (see [Bucket Name Requirements] (https://clo…
3654 … "generation": "A String", # Google Cloud Storage generation for the object.
3655 "object": "A String", # Google Cloud Storage object containing source.
3661 …led and compared to the provenance to confirm that it is unchanged. A base64-encoded string repres…
3667 … "displayCommand": "A String", # Command to display the non-compliant files.
3689 …"v1Name": "A String", # The layer-id of the final layer in the Docker image&#x…
3695 …"layerInfo": [ # This contains layer-specific metadata, if populated it has length "…
3711 …age": "A String", # A developer-facing error message, which should be in English. A…
3715 …"operation": { # This resource represents a long-running operation that is the result of…
3724 …age": "A String", # A developer-facing error message, which should be in English. A…
3726 …-specific metadata associated with the operation. It typically contains progress information and c…
3729 …"name": "A String", # The server-assigned name, which is only unique within th…
3736 …"envelope": { # MUST match https://github.com/secure-systems-lab/dsse/blob/master/envelo…
3746 …-toto/attestation/tree/main/spec#statement The serialized InTotoStatement will be stored as Envelo…
3747 … "_type": "A String", # Always "https://in-toto.io/Statement/v0.1".
3758 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
3765 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
3767 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
3773 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
3775 …"environment": [ # Any other builder-controlled inputs necessary for correctly evaluatin…
3797 … useful for finding associated logs or other ad-hoc analysis. The value SHOULD be globally unique,…
3804 …, the builder claims that running the recipe on materials will produce bit-for-bit identical outpu…
3806 …ials, this SHOULD fully describe the build, such that re-running this recipe results in bit-for-bi…
3810 … to the source containing the Makefile, not the make program itself. Set to -1 if the recipe doesn…
3812 …"environment": { # Any other builder-controlled inputs necessary for correctly evaluatin…
3820 …"" Algorithms can be e.g. sha256, sha512 See https://github.com/in-toto/attestation/blob…
3828 …ub.com/secure-systems-lab/dsse/blob/master/envelope.proto. An authenticated message of arbitrary t…
3843 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
3863 …;A String", # The name of the resource. E.g., the name of a Docker image - "Debian".
3867 …ument Creation Information section: https://spdx.github.io/spdx-spec/2-document-creation-informati…
3879 …e as a unique absolute Uniform Resource Identifier (URI) as specified in RFC-3986, with the except…
3882 …presents an SPDX File Information section: https://spdx.github.io/spdx-spec/4-file-information/ # …
3895 …;: { # License information: https://spdx.github.io/spdx-spec/3-package-information/#315-declared-l…
3897 …uot;A String", # Expression: https://spdx.github.io/spdx-spec/appendix-IV-SPDX-license-expres…
3901 …nts an SPDX Package Information section: https://spdx.github.io/spdx-spec/3-package-information/ #…
3906 …;: { # License information: https://spdx.github.io/spdx-spec/3-package-information/#315-declared-l…
3908 …uot;A String", # Expression: https://spdx.github.io/spdx-spec/appendix-IV-SPDX-license-expres…
3916 …s an SPDX Relationship section: https://spdx.github.io/spdx-spec/7-relationships-between-SPDX-elem…
3918 …"source": "A String", # Also referred to as SPDXRef-A The source SPDX element …
3919 …"target": "A String", # Also referred to as SPDXRef-B The target SPDC element …
3926 …"cpeUri": "A String", # Required - The specific operating system this metadata…
3932 "package": "A String", # Required - The package this Upgrade is for.
3933 …-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.jasonan…
3942 …ut only. The CVSS score of this vulnerability. CVSS score is on a scale of 0-10 where 0 indicates …
3947 …https://cpe.mitre.org/specification/) format. Examples include distro or storage location for vuln…
3949 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
3959 …https://cpe.mitre.org/specification/) format. Examples include distro or storage location for vuln…
3961 …/debian-packages-version-convention For a discussion of this in Redhat/Fedora/Centos: http://blog.…
3981 …lt in a ` `PERMISSION_DENIED` error. Attempting to call this method on a non-existent resource wil…
3989 …-created custom role. For some types of Google Cloud resources, a `binding` can also specify a `co…
3992 …-like expression language. The syntax and semantics of CEL are documented at https://github.com/go…
3998 …-other-app@appspot.gserviceaccount.com`. * `group:{emailid}`: An email address that represents a G…
4004 …It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to per…
4005 …icies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
4011 1 - v1 error format
4012 2 - v2 error format
4017 …-created custom role. For some types of Google Cloud resources, a `binding` can also specify a `co…
4020 …-like expression language. The syntax and semantics of CEL are documented at https://github.com/go…
4026 …-other-app@appspot.gserviceaccount.com`. * `group:{emailid}`: An email address that represents a G…
4032 …It is strongly suggested that systems make use of the `etag` in the read-modify-write cycle to per…
4033 …icies, see the [IAM documentation](https://cloud.google.com/iam/help/conditions/resource-policies).
4039 …ple, "storage.objects.list" on the containing bucket for testing permission of an object…
4047 …e `resource`. Permissions with wildcards (such as '*' or 'storage.*') are not …
4054 1 - v1 error format
4055 2 - v2 error format