SrSSKJr SSKJr SSKJr Sr"SS\R5r "SS \R5r "S S \R5r "S S \R5r "SS\R5r"SS\R5r"SS\R5r"SS\R5r"SS\R5r"SS\R5r"SS\R5r"SS\R5r"SS\R5r"S S!\R5r"S"S#\R5r"S$S%\R5r"S&S'\R5r"S(S)\R5r"S*S+\R5r"S,S-\R5r"S.S/\R5r"S0S1\R5r"S2S3\R5r "S4S5\R5r!"S6S7\R5r""S8S9\R5r#"S:S;\R5r$"S<S=\R5r%"S>S?\R5r&"S@SA\R5r'"SBSC\R5r("SDSE\R5r)"SFSG\R5r*"SHSI\R5r+"SJSK\R5r,"SLSM\R5r-"SNSO\R5r."SPSQ\R5r/"SRSS\R5r0"STSU\R5r1"SVSW\R5r2"SXSY\R5r3"SZS[\R5r4"S\S]\R5r5\Rl"\!S^S_5 \Rn"\!RpS`Sa5 \Rn"\!RpSbSc5 gd)ezGenerated message classes for websecurityscanner version v1beta. Scans your Compute and App Engine apps for common web vulnerabilities. )absolute_import)messages)encodingwebsecurityscannerc\rSrSrSr\R "SS5r\R "SS5r\R "SS5r S r g ) AuthenticationzScan authentication configuration. Fields: customAccount: Authentication using a custom account. googleAccount: Authentication using a Google account. iapCredential: Authentication using Identity-Aware-Proxy (IAP). CustomAccount GoogleAccount IapCredentialN) __name__ __module__ __qualname____firstlineno____doc__ _messages MessageField customAccount googleAccount iapCredential__static_attributes__rilib/googlecloudsdk/generated_clients/apis/websecurityscanner/v1beta/websecurityscanner_v1beta_messages.pyrrs?((!<-((!<-((!<-rrc\rSrSrSr\R "S5r\R "S5r\R "S5r Sr g) CrawledUrlaA CrawledUrl resource represents a URL that was crawled during a ScanRun. Web Security Scanner Service crawls the web applications, following all links within the scope of sites, to find the URLs to test against. Fields: body: The body of the request that was used to visit the URL. httpMethod: The http method of the request that was used to visit the URL, in uppercase. url: The URL that was crawled. r r rrN) rrrrrr StringFieldbody httpMethodurlrrrrrrs9    q !$$$Q'*a #rrc\rSrSrSr\R "S5r\R "S5r\R "S5r Sr g)r /anDescribes authentication configuration that uses a custom account. Fields: loginUrl: Required. The login form URL of the website. password: Required. Input only. The password of the custom account. The credential is stored encrypted and not returned in any response nor included in audit logs. username: Required. The user name of the custom account. r r rrN) rrrrrrr!loginUrlpasswordusernamerrrrr r /s9 " "1 %(  " "1 %(  " "1 %(rr c\rSrSrSrSrg)Empty?aA generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. A typical example is to use it as the request or the response type of an API method. For instance: service Foo { rpc Bar(google.protobuf.Empty) returns (google.protobuf.Empty); } rNrrrrrrrrrr+r+?srr+c\rSrSrSr"SS\R 5r\R"S5r \R"S5r \R"S5r \R"S5r \R"S S 5r\R"S 5r\R"S 5r\R"S 5r\R"S5r\R"SS5r\R"S5r\R*"SS5r\R"S5r\R"SS5r\R"SS5r\R"SS5r\R"SS5r\R"SS5rSrg) FindingHaQA Finding resource represents a vulnerability instance identified during a ScanRun. Enums: SeverityValueValuesEnum: The severity level of the reported vulnerability. Fields: body: The body of the request that triggered the vulnerability. description: The description of the vulnerability. finalUrl: The URL where the browser lands when the vulnerability is detected. findingType: The type of the Finding. Detailed and up-to-date information on findings can be found here: https://cloud.google.com/security- command-center/docs/how-to-remediate-web-security-scanner form: An addon containing information reported for a vulnerability with an HTML form, if any. frameUrl: If the vulnerability was originated from nested IFrame, the immediate parent IFrame is reported. fuzzedUrl: The URL produced by the server-side fuzzer and used in the request that triggered the vulnerability. httpMethod: The http method of the request that triggered the vulnerability, in uppercase. name: The resource name of the Finding. The name follows the format of 'pr ojects/{projectId}/scanConfigs/{scanConfigId}/scanruns/{scanRunId}/findi ngs/{findingId}'. The finding IDs are generated by the system. outdatedLibrary: An addon containing information about outdated libraries. reproductionUrl: The URL containing human-readable payload that user can leverage to reproduce the vulnerability. severity: The severity level of the reported vulnerability. trackingId: The tracking ID uniquely identifies a vulnerability instance across multiple ScanRuns. violatingResource: An addon containing detailed information regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc. vulnerableHeaders: An addon containing information about vulnerable or missing HTTP headers. vulnerableParameters: An addon containing information about request parameters which were found to be vulnerable. xss: An addon containing information reported for an XSS, if any. xxe: An addon containing information reported for an XXE, if any. c,\rSrSrSrSrSrSrSrSr Sr g ) Finding.SeverityValueValuesEnumszThe severity level of the reported vulnerability. Values: SEVERITY_UNSPECIFIED: No severity specified. The default value. CRITICAL: Critical severity. HIGH: High severity. MEDIUM: Medium severity. LOW: Low severity. rr r rrN) rrrrrSEVERITY_UNSPECIFIEDCRITICALHIGHMEDIUMLOWrrrrSeverityValueValuesEnumr2ss#H D F Crr:r r rr4Form OutdatedLibrary ViolatingResourceVulnerableHeadersVulnerableParametersr XssXxerN)rrrrrrEnumr:r!r" descriptionfinalUrl findingTyperformframeUrl fuzzedUrlr#nameoutdatedLibraryreproductionUrl EnumFieldseverity trackingIdviolatingResourcevulnerableHeadersvulnerableParametersxssxxerrrrr/r/HsR(T    q !$%%a(+  " "1 %(%%a(+    *$  " "1 %(##A&)$$Q'*   q !$**+\rSrSrSr\R "SS5rSrg)rzDescribes authentication configuration for Identity-Aware-Proxy (IAP). Fields: iapTestServiceAccountInfo: Authentication configuration when Web-Security- Scanner service account is added in Identity-Aware-Proxy (IAP) access policies. IapTestServiceAccountInfor rN) rrrrrrriapTestServiceAccountInforrrrrrs(445PRSTrrc<\rSrSrSr\R "S5rSrg)rxa Describes authentication configuration when Web-Security-Scanner service account is added in Identity-Aware-Proxy (IAP) access policies. Fields: targetAudienceClientId: Required. Describes OAuth2 Client ID of resources protected by Identity-Aware-Proxy(IAP). r rN) rrrrrrr!targetAudienceClientIdrrrrrxrxs%003rrxc`\rSrSrSr\R "SSSS9r\R"S5r Sr g ) ListCrawledUrlsResponsezResponse for the `ListCrawledUrls` method. Fields: crawledUrls: The list of CrawledUrls returned. nextPageToken: Token to retrieve the next page of results, or empty if there are no more results in the list. rr Trlr rN) rrrrrrr crawledUrlsr! nextPageTokenrrrrr~r~s-&&|QF+''*-rr~c<\rSrSrSr\R "SSSS9rSrg) ListFindingTypeStatsResponseztResponse for the `ListFindingTypeStats` method. Fields: findingTypeStats: The list of FindingTypeStats returned. rbr TrlrN) rrrrrrrfindingTypeStatsrrrrrrs ++,>DQrrc`\rSrSrSr\R "SSSS9r\R"S5r Sr g ) ListFindingsResponsezResponse for the `ListFindings` method. Fields: findings: The list of Findings returned. nextPageToken: Token to retrieve the next page of results, or empty if there are no more results in the list. r/r Trlr rN) rrrrrrrfindingsr!rrrrrrrs- # #Iq4 @(''*-rrc`\rSrSrSr\R "S5r\R"SSSS9r Sr g ) ListScanConfigsResponseizResponse for the `ListScanConfigs` method. Fields: nextPageToken: Token to retrieve the next page of results, or empty if there are no more results in the list. scanConfigs: The list of ScanConfigs returned. r ScanConfigr TrlrN) rrrrrrr!rr scanConfigsrrrrrrs-''*-&&|QF+rrc`\rSrSrSr\R "S5r\R"SSSS9r Sr g ) ListScanRunsResponseizResponse for the `ListScanRuns` method. Fields: nextPageToken: Token to retrieve the next page of results, or empty if there are no more results in the list. scanRuns: The list of ScanRuns returned. r ScanRunr TrlrN) rrrrrrr!rrscanRunsrrrrrrs-''*-  # #Iq4 @(rrc\rSrSrSr\R "SSS9r\R "S5r\R "S5r Sr g ) rAi zInformation reported for an outdated library. Fields: learnMoreUrls: URLs to learn more information about the vulnerabilities in the library. libraryName: The name of the outdated library. version: The version number. r Trlr rrN) rrrrrrr! learnMoreUrls libraryNameversionrrrrrArA s;''D9-%%a(+  ! !! $'rrAc \rSrSrSr"SS\R 5r"SS\R 5r"SS\R 5r "S S \R 5r \R"S S 5r \R"S SS9r\R"S5r\R "SS5r\R$"S5r\R"SS5r\R$"S5r\R,"S\R.R0S9r\R"S5r\R "SS5r\R"SS5r\R"SSS9r\R$"S5r\R "SSSS9r\R "S S5r S r!g!)"ri/a7A ScanConfig resource contains the configurations to launch a scan. Enums: ExportToSecurityCommandCenterValueValuesEnum: Controls export of scan configurations and results to Security Command Center. RiskLevelValueValuesEnum: The risk level selected for the scan TargetPlatformsValueListEntryValuesEnum: UserAgentValueValuesEnum: The user agent used during scanning. Fields: authentication: The authentication configuration. If specified, service will use the authentication configuration during scanning. blacklistPatterns: The excluded URL patterns as described in https://cloud.google.com/security-command-center/docs/how-to-use-web- security-scanner#excluding_urls displayName: Required. The user provided display name of the ScanConfig. exportToSecurityCommandCenter: Controls export of scan configurations and results to Security Command Center. ignoreHttpStatusErrors: Whether to keep scanning even if most requests return HTTP error codes. latestRun: Latest ScanRun if available. managedScan: Whether the scan config is managed by Web Security Scanner, output only. maxQps: The maximum QPS during scanning. A valid value ranges from 5 to 20 inclusively. If the field is unspecified or its value is set 0, server will default to 15. Other values outside of [5, 20] range will be rejected with INVALID_ARGUMENT error. name: The resource name of the ScanConfig. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}'. The ScanConfig IDs are generated by the system. riskLevel: The risk level selected for the scan schedule: The schedule of the ScanConfig. startingUrls: Required. The starting URLs from which the scanner finds site pages. staticIpScan: Whether the scan configuration has enabled static IP address scan feature. If enabled, the scanner will access applications from static IP addresses. targetPlatforms: Set of Google Cloud platforms targeted by the scan. If empty, APP_ENGINE will be used as a default. userAgent: The user agent used during scanning. c$\rSrSrSrSrSrSrSrg)7ScanConfig.ExportToSecurityCommandCenterValueValuesEnumiZa:Controls export of scan configurations and results to Security Command Center. Values: EXPORT_TO_SECURITY_COMMAND_CENTER_UNSPECIFIED: Use default, which is ENABLED. ENABLED: Export results of this scan to Security Command Center. DISABLED: Do not export results of this scan to Security Command Center. rr r rN) rrrrr-EXPORT_TO_SECURITY_COMMAND_CENTER_UNSPECIFIEDENABLEDDISABLEDrrrr,ExportToSecurityCommandCenterValueValuesEnumrZs561GHrrc$\rSrSrSrSrSrSrSrg)#ScanConfig.RiskLevelValueValuesEnumihzThe risk level selected for the scan Values: RISK_LEVEL_UNSPECIFIED: Use default, which is NORMAL. NORMAL: Normal scanning (Recommended) LOW: Lower impact scanning rr r rN) rrrrrRISK_LEVEL_UNSPECIFIEDNORMALr9rrrrRiskLevelValueValuesEnumrhs F Crrc,\rSrSrSrSrSrSrSrSr Sr g ) 2ScanConfig.TargetPlatformsValueListEntryValuesEnumitawTargetPlatformsValueListEntryValuesEnum enum type. Values: TARGET_PLATFORM_UNSPECIFIED: The target platform is unknown. Requests with this enum value will be rejected with INVALID_ARGUMENT error. APP_ENGINE: Google App Engine service. COMPUTE: Google Compute Engine service. CLOUD_RUN: Google Cloud Run service. CLOUD_FUNCTIONS: Google Cloud Function service. rr r rr4rN) rrrrrTARGET_PLATFORM_UNSPECIFIED APP_ENGINECOMPUTE CLOUD_RUNCLOUD_FUNCTIONSrrrr'TargetPlatformsValueListEntryValuesEnumrts# #$JGIOrrc(\rSrSrSrSrSrSrSrSr g) #ScanConfig.UserAgentValueValuesEnumia&The user agent used during scanning. Values: USER_AGENT_UNSPECIFIED: The user agent is unknown. Service will default to CHROME_LINUX. CHROME_LINUX: Chrome on Linux. This is the service default if unspecified. CHROME_ANDROID: Chrome on Android. SAFARI_IPHONE: Safari on IPhone. rr r rrN) rrrrrUSER_AGENT_UNSPECIFIED CHROME_LINUXCHROME_ANDROID SAFARI_IPHONErrrrUserAgentValueValuesEnumrs LNMrrrr r Trlrr4r<rr=r>r?rdr@rBSchedulerCrDrErGrIrN)"rrrrrrrOrrrrrauthenticationr!blacklistPatterns displayNamerYexportToSecurityCommandCenter BooleanFieldignoreHttpStatusErrors latestRun managedScanrfrgrhmaxQpsrV riskLevelschedule startingUrls staticIpScantargetPlatforms userAgentrrrrrr/sg(T Y^^      " ))*:A>.++A=%%a(+"+"5"56dfg"h$11!4$$Y2)&&q)+  ! !!Y->->-D-D E&   q !$!!"r?r@rBrCrDrErGrIr rLrNr  !"#$%&'()*rN)1rrrrrCODE_UNSPECIFIEDOKINTERNAL_ERRORAPPENGINE_API_BACKEND_ERRORAPPENGINE_API_NOT_ACCESSIBLEAPPENGINE_DEFAULT_HOST_MISSINGCANNOT_USE_GOOGLE_COM_ACCOUNTCANNOT_USE_OWNER_ACCOUNTCOMPUTE_API_BACKEND_ERRORCOMPUTE_API_NOT_ACCESSIBLE3CUSTOM_LOGIN_URL_DOES_NOT_BELONG_TO_CURRENT_PROJECTCUSTOM_LOGIN_URL_MALFORMED/CUSTOM_LOGIN_URL_MAPPED_TO_NON_ROUTABLE_ADDRESS-CUSTOM_LOGIN_URL_MAPPED_TO_UNRESERVED_ADDRESS,CUSTOM_LOGIN_URL_HAS_NON_ROUTABLE_IP_ADDRESS*CUSTOM_LOGIN_URL_HAS_UNRESERVED_IP_ADDRESSDUPLICATE_SCAN_NAMEINVALID_FIELD_VALUE FAILED_TO_AUTHENTICATE_TO_TARGETFINDING_TYPE_UNSPECIFIEDFORBIDDEN_TO_SCAN_COMPUTE FORBIDDEN_UPDATE_TO_MANAGED_SCANMALFORMED_FILTERMALFORMED_RESOURCE_NAMEPROJECT_INACTIVEREQUIRED_FIELDRESOURCE_NAME_INCONSISTENTSCAN_ALREADY_RUNNINGSCAN_NOT_RUNNING+SEED_URL_DOES_NOT_BELONG_TO_CURRENT_PROJECTSEED_URL_MALFORMED'SEED_URL_MAPPED_TO_NON_ROUTABLE_ADDRESS%SEED_URL_MAPPED_TO_UNRESERVED_ADDRESS$SEED_URL_HAS_NON_ROUTABLE_IP_ADDRESS"SEED_URL_HAS_UNRESERVED_IP_ADDRESSSERVICE_ACCOUNT_NOT_CONFIGUREDTOO_MANY_SCANSUNABLE_TO_RESOLVE_PROJECT_INFO$UNSUPPORTED_BLACKLIST_PATTERN_FORMATUNSUPPORTED_FILTERUNSUPPORTED_FINDING_TYPEUNSUPPORTED_URL_SCHEME%CLOUD_ASSET_INVENTORY_ASSET_NOT_FOUNDrrrrCodeValueValuesEnumrs Tj BN"##$ %&"$%!  !!":<7!#68346135013.')$! "')$ N!#24/.0+,.)+-()+&%'"N%'"+-(!,.)rrr r rN) rrrrrrrOrrYcoder! fieldNamerrrrrrs?"@/INN@/D   2A 6$##A&)rrc$\rSrSrSr"SS\R 5r"SS\R 5r\R"S5r \R"SS 5r \R"SS 5r\R"S 5r\R"S 5r\R$"S \R&R(S9r\R"SS5r\R"S5r\R$"S5r\R$"S5r\R"SSSS9rSrg)ri>a_A ScanRun is a output-only resource representing an actual run of the scan. Next id: 12 Enums: ExecutionStateValueValuesEnum: The execution state of the ScanRun. ResultStateValueValuesEnum: The result state of the ScanRun. This field is only available after the execution state reaches "FINISHED". Fields: endTime: The time at which the ScanRun reached termination state - that the ScanRun is either finished or stopped by user. errorTrace: If result_state is an ERROR, this field provides the primary reason for scan's termination and more details, if such are available. executionState: The execution state of the ScanRun. hasVulnerabilities: Whether the scan run has found any vulnerabilities. name: The resource name of the ScanRun. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}/scanRuns/{scanRunId}'. The ScanRun IDs are generated by the system. progressPercent: The percentage of total completion ranging from 0 to 100. If the scan is in queue, the value is 0. If the scan is running, the value ranges from 0 to 100. If the scan is finished, the value is 100. resultState: The result state of the ScanRun. This field is only available after the execution state reaches "FINISHED". startTime: The time at which the ScanRun started. urlsCrawledCount: The number of URLs crawled during this ScanRun. If the scan is in progress, the value represents the number of URLs crawled up to now. urlsTestedCount: The number of URLs tested during this ScanRun. If the scan is in progress, the value represents the number of URLs tested up to now. The number of URLs tested is usually larger than the number URLS crawled because typically a crawled URL is tested with multiple test payloads. warningTraces: A list of warnings, if such are encountered during this scan run. c(\rSrSrSrSrSrSrSrSr g) %ScanRun.ExecutionStateValueValuesEnumica?The execution state of the ScanRun. Values: EXECUTION_STATE_UNSPECIFIED: Represents an invalid state caused by internal server error. This value should never be returned. QUEUED: The scan is waiting in the queue. SCANNING: The scan is in progress. FINISHED: The scan is either finished or stopped by user. rr r rrN) rrrrrEXECUTION_STATE_UNSPECIFIEDQUEUEDSCANNINGFINISHEDrrrrExecutionStateValueValuesEnumr cs#$ FHHrrc(\rSrSrSrSrSrSrSrSr g) "ScanRun.ResultStateValueValuesEnumiraaThe result state of the ScanRun. This field is only available after the execution state reaches "FINISHED". Values: RESULT_STATE_UNSPECIFIED: Default value. This value is returned when the ScanRun is not yet finished. SUCCESS: The scan finished without errors. ERROR: The scan finished with errors. KILLED: The scan was terminated by user. rr r rrN) rrrrrRESULT_STATE_UNSPECIFIEDSUCCESSERRORKILLEDrrrrResultStateValueValuesEnumrrs  !G E Frrr ScanRunErrorTracer rr4r<r=rdr>r?r@rBScanRunWarningTracerCTrlrN)rrrrrrrOrrr!endTimer errorTracerYexecutionStaterhasVulnerabilitiesrVrfrgrhprogressPercent resultState startTimeurlsCrawledCounturlsTestedCount warningTracesrrrrrr>s"H inn 9>>  ! !! $'%%&91=*&&'FJ. --a0   q !$**1i6G6G6M6MN/##$@!D+##A&)++A.**2./(()>TR-rrc\rSrSrSr"SS\R 5r\R"SS5r \R"S\RRS9r \R"SS 5rS rg ) riakOutput only. Defines an error trace message for a ScanRun. Enums: CodeValueValuesEnum: Indicates the error reason code. Fields: code: Indicates the error reason code. mostCommonHttpErrorCode: If the scan encounters TOO_MANY_HTTP_ERRORS, this field indicates the most common HTTP error code, if such is available. For example, if this code is 404, the scan has encountered too many NOT_FOUND responses. scanConfigError: If the scan encounters SCAN_CONFIG_ISSUE error, this field has the error message encountered during scan configuration validation that is performed before each scan run. c8\rSrSrSrSrSrSrSrSr Sr S r S r S r g ) %ScanRunErrorTrace.CodeValueValuesEnumia>Indicates the error reason code. Values: CODE_UNSPECIFIED: Default value is never used. INTERNAL_ERROR: Indicates that the scan run failed due to an internal server error. SCAN_CONFIG_ISSUE: Indicates a scan configuration error, usually due to outdated ScanConfig settings, such as starting_urls or the DNS configuration. AUTHENTICATION_CONFIG_ISSUE: Indicates an authentication error, usually due to outdated ScanConfig authentication settings. TIMED_OUT_WHILE_SCANNING: Indicates a scan operation timeout, usually caused by a very large site. TOO_MANY_REDIRECTS: Indicates that a scan encountered excessive redirects, either to authentication or some other page outside of the scan scope. TOO_MANY_HTTP_ERRORS: Indicates that a scan encountered numerous errors from the web site pages. When available, most_common_http_error_code field indicates the most common HTTP error code encountered during the scan. STARTING_URLS_CRAWL_HTTP_ERRORS: Indicates that some of the starting web urls returned HTTP errors during the scan. rr r rr4r<r=r>rN)rrrrrrrSCAN_CONFIG_ISSUEAUTHENTICATION_CONFIG_ISSUETIMED_OUT_WHILE_SCANNINGTOO_MANY_REDIRECTSTOO_MANY_HTTP_ERRORSSTARTING_URLS_CRAWL_HTTP_ERRORSrrrrrr's8.N"# &'#rrr r rdrrrN)rrrrrrrOrrYrrfrgrhmostCommonHttpErrorCoderscanConfigErrorrrrrrrs_ (INN(B   2A 6$%221i>O>O>U>UV**+" to include in api requests. uploadType: Legacy upload protocol for media (e.g. "media", "multipart"). upload_protocol: Upload protocol for media (e.g. "raw", "multipart"). c$\rSrSrSrSrSrSrSrg)*StandardQueryParameters.AltValueValuesEnumizData format for response. Values: json: Responses with Content-Type of application/json media: Media download with context-dependent Content-Type proto: Responses with Content-Type of application/x-protobuf rr r rN) rrrrrjsonmediaprotorrrrAltValueValuesEnumr>s D E ErrBc \rSrSrSrSrSrSrg)-StandardQueryParameters.FXgafvValueValuesEnumi%zFV1 error format. Values: _1: v1 error format _2: v2 error format rr rN)rrrrr_1_2rrrrFXgafvValueValuesEnumrD%s B BrrGr r rr?)defaultr4r<r=r>r?Tr@rBrCrDrN)rrrrrrrOrBrGrYf__xgafvr! access_tokenaltcallbackrokey oauth_tokenr prettyPrint quotaUsertrace uploadTypeupload_protocolrrrrr<r<s4 9>>  inn  !8! <(&&q),0!VD#  " "1 %(   #&a #%%a(+&&q$7+##A&)    #%$$R(*))"-/rr<c\rSrSrSrSrg)StartScanRunRequesti=z&Request for the `StartScanRun` method.rNr-rrrrUrU=s/rrUc\rSrSrSrSrg)StopScanRunRequestiAz%Request for the `StopScanRun` method.rNr-rrrrWrWAs.rrWc`\rSrSrSr\R "S5r\R "S5rSr g)rFiEzInformation regarding any resource causing the vulnerability such as JavaScript sources, image, audio files, etc. Fields: contentType: The MIME type of this resource. resourceUrl: URL of this violating resource. r r rN) rrrrrrr! contentType resourceUrlrrrrrFrFEs)%%a(+%%a(+rrFc`\rSrSrSr\R "SSSS9r\R "SSSS9rSr g ) rHiRzInformation about vulnerable or missing HTTP Headers. Fields: headers: List of vulnerable headers. missingHeaders: List of missing headers. rsr Trlr rN) rrrrrrrheadersmissingHeadersrrrrrHrHRs1  " "8Q >'))(AE.rrHc:\rSrSrSr\R "SSS9rSrg)rJi^zlInformation about vulnerable request parameters. Fields: parameterNames: The vulnerable parameter names. r TrlrN) rrrrrrr!parameterNamesrrrrrJrJ^s ((T:.rrJc`\rSrSrSr\R "SSS9r\R"SS5r Sr g ) 2WebsecurityscannerProjectsScanConfigsCreateRequestiha*A WebsecurityscannerProjectsScanConfigsCreateRequest object. Fields: parent: Required. The parent resource name where the scan is created, which should be a project resource name in the format 'projects/{projectId}'. scanConfig: A ScanConfig resource to be passed as the request body. r Trequiredrr rN) rrrrrrr!parentr scanConfigrrrrrarahs-  T 2&%%lA6*rrac:\rSrSrSr\R "SSS9rSrg)2WebsecurityscannerProjectsScanConfigsDeleteRequestivzA WebsecurityscannerProjectsScanConfigsDeleteRequest object. Fields: name: Required. The resource name of the ScanConfig to be deleted. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}'. r TrbrN rrrrrrr!rVrrrrrgrgv   q4 0$rrgc:\rSrSrSr\R "SSS9rSrg)/WebsecurityscannerProjectsScanConfigsGetRequestizA WebsecurityscannerProjectsScanConfigsGetRequest object. Fields: name: Required. The resource name of the ScanConfig to be returned. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}'. r TrbrNrhrrrrkrkrirrkc\rSrSrSr\R "S\RRS9r \R"S5r \R"SSS9r S r g ) 0WebsecurityscannerProjectsScanConfigsListRequestiaFA WebsecurityscannerProjectsScanConfigsListRequest object. Fields: pageSize: The maximum number of ScanConfigs to return, can be limited by server. If not specified or not positive, the implementation will select a reasonable value. pageToken: A token identifying a page of results to be returned. This should be a `next_page_token` value returned from a previous List request. If unspecified, the first page of results is returned. parent: Required. The parent resource name, which should be a project resource name in the format 'projects/{projectId}'. r rdr rTrbrNrrrrrrrfrgrhpageSizer! pageTokenrdrrrrrmrmsI  # #Ay/@/@/F/F G(##A&)  T 2&rrmc\rSrSrSr\R "SSS9r\R"SS5r \R "S5r S r g ) 1WebsecurityscannerProjectsScanConfigsPatchRequestiaA WebsecurityscannerProjectsScanConfigsPatchRequest object. Fields: name: The resource name of the ScanConfig. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}'. The ScanConfig IDs are generated by the system. scanConfig: A ScanConfig resource to be passed as the request body. updateMask: Required. The update mask applies to the resource. For the `FieldMask` definition, see https://developers.google.com/protocol- buffers/docs/reference/google.protobuf#fieldmask r Trbrr rrN) rrrrrrr!rVrre updateMaskrrrrrrrrs=    q4 0$%%lA6*$$Q'*rrrc\rSrSrSr\R "S\RRS9r \R"S5r \R"SSS9r S r g ) CWebsecurityscannerProjectsScanConfigsScanRunsCrawledUrlsListRequestiaA WebsecurityscannerProjectsScanConfigsScanRunsCrawledUrlsListRequest object. Fields: pageSize: The maximum number of CrawledUrls to return, can be limited by server. If not specified or not positive, the implementation will select a reasonable value. pageToken: A token identifying a page of results to be returned. This should be a `next_page_token` value returned from a previous List request. If unspecified, the first page of results is returned. parent: Required. The parent resource name, which should be a scan run resource name in the format 'projects/{projectId}/scanConfigs/{scanConfigId}/scanRuns/{scanRunId}'. r rdr rTrbrNrnrrrrurusI  # #Ay/@/@/F/F G(##A&)  T 2&rruc:\rSrSrSr\R "SSS9rSrg)HWebsecurityscannerProjectsScanConfigsScanRunsFindingTypeStatsListRequestiaA WebsecurityscannerProjectsScanConfigsScanRunsFindingTypeStatsListRequest object. Fields: parent: Required. The parent resource name, which should be a scan run resource name in the format 'projects/{projectId}/scanConfigs/{scanConfigId}/scanRuns/{scanRunId}'. r TrbrN) rrrrrrr!rdrrrrrwrws  T 2&rrwc:\rSrSrSr\R "SSS9rSrg)?WebsecurityscannerProjectsScanConfigsScanRunsFindingsGetRequestiaA WebsecurityscannerProjectsScanConfigsScanRunsFindingsGetRequest object. Fields: name: Required. The resource name of the Finding to be returned. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}/s canRuns/{scanRunId}/findings/{findingId}'. r TrbrNrhrrrryrys   q4 0$rryc\rSrSrSr\R "S5r\R"S\RRS9r \R "S5r \R "SSS 9r S rg ) @WebsecurityscannerProjectsScanConfigsScanRunsFindingsListRequestiaA WebsecurityscannerProjectsScanConfigsScanRunsFindingsListRequest object. Fields: filter: Required. The filter expression. The expression must be in the format: . Supported field: 'finding_type'. Supported operator: '='. pageSize: The maximum number of Findings to return, can be limited by server. If not specified or not positive, the implementation will select a reasonable value. pageToken: A token identifying a page of results to be returned. This should be a `next_page_token` value returned from a previous List request. If unspecified, the first page of results is returned. parent: Required. The parent resource name, which should be a scan run resource name in the format 'projects/{projectId}/scanConfigs/{scanConfigId}/scanRuns/{scanRunId}'. r r rdrr4TrbrN)rrrrrrr!filterrfrgrhrorprdrrrrr{r{sY"   #&  # #Ay/@/@/F/F G(##A&)  T 2&rr{c:\rSrSrSr\R "SSS9rSrg)7WebsecurityscannerProjectsScanConfigsScanRunsGetRequestizA WebsecurityscannerProjectsScanConfigsScanRunsGetRequest object. Fields: name: Required. The resource name of the ScanRun to be returned. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}/scanRuns/{scanRunId}'. r TrbrNrhrrrr~r~rirr~c\rSrSrSr\R "S\RRS9r \R"S5r \R"SSS9r S r g ) 8WebsecurityscannerProjectsScanConfigsScanRunsListRequestiagA WebsecurityscannerProjectsScanConfigsScanRunsListRequest object. Fields: pageSize: The maximum number of ScanRuns to return, can be limited by server. If not specified or not positive, the implementation will select a reasonable value. pageToken: A token identifying a page of results to be returned. This should be a `next_page_token` value returned from a previous List request. If unspecified, the first page of results is returned. parent: Required. The parent resource name, which should be a scan resource name in the format 'projects/{projectId}/scanConfigs/{scanConfigId}'. r rdr rTrbrNrnrrrrrsI  # #Ay/@/@/F/F G(##A&)  T 2&rrc`\rSrSrSr\R "SSS9r\R"SS5r Sr g ) 8WebsecurityscannerProjectsScanConfigsScanRunsStopRequestiaWA WebsecurityscannerProjectsScanConfigsScanRunsStopRequest object. Fields: name: Required. The resource name of the ScanRun to be stopped. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}/scanRuns/{scanRunId}'. stopScanRunRequest: A StopScanRunRequest resource to be passed as the request body. r TrbrWr rN) rrrrrrr!rVrstopScanRunRequestrrrrrrs/   q4 0$ --.BAFrrc`\rSrSrSr\R "SSS9r\R"SS5r Sr g ) 1WebsecurityscannerProjectsScanConfigsStartRequesti*a9A WebsecurityscannerProjectsScanConfigsStartRequest object. Fields: name: Required. The resource name of the ScanConfig to be used. The name follows the format of 'projects/{projectId}/scanConfigs/{scanConfigId}'. startScanRunRequest: A StartScanRunRequest resource to be passed as the request body. r TrbrUr rN) rrrrrrr!rVrstartScanRunRequestrrrrrr*s/   q4 0$!../DaHrrc^\rSrSrSr\R "S5r\R "SSS9rSr g) rKi8zInformation reported for an XSS. Fields: errorMessage: An error message generated by a javascript breakage. stackTraces: Stack traces leading to the point where the XSS occurred. r r TrlrN) rrrrrrr! errorMessage stackTracesrrrrrKrK8s+&&q),%%a$7+rrKc\rSrSrSr"SS\R 5r\R"SS5r \R"S5r Sr g) rMiDaOInformation reported for an XXE. Enums: PayloadLocationValueValuesEnum: Location within the request where the payload was placed. Fields: payloadLocation: Location within the request where the payload was placed. payloadValue: The XML string that triggered the XXE vulnerability. Non- payload values might be redacted. c \rSrSrSrSrSrSrg)"Xxe.PayloadLocationValueValuesEnumiQzLocation within the request where the payload was placed. Values: LOCATION_UNSPECIFIED: Unknown Location. COMPLETE_REQUEST_BODY: The XML payload replaced the complete request body. rr rN)rrrrrLOCATION_UNSPECIFIEDCOMPLETE_REQUEST_BODYrrrrPayloadLocationValueValuesEnumrQsrrr r rN) rrrrrrrOrrYpayloadLocationr! payloadValuerrrrrMrMDs<  y~~ ''(H!L/&&q),rrMrIz$.xgafvrE1rF2N)9r __future__rapitools.base.protorpcliterrapitools.base.pyrpackageMessagerrr r+r/rbr;r rsrrxr~rrrrrArrrrrrr<rUrWrFrHrJrargrkrmrrrurwryr{r~rrrrKrMAddCustomJsonFieldMappingAddCustomJsonEnumMappingrGrrrrs '<%  =Y&& =!""!" &I%% & I  L*iL*^ )y(( ) 39   3 &I%% & #Y   # UI%% U 4 1 1 4 +i// +R9#4#4R +9,, + Gi// G A9,, A %i'' %tB""tBnU'i''U'pNSiNSb4A ))4An%7)++%7P *y  * <.i//<.~0)++0/**/ ) )) ) F )) F;9,,; 79J9J 7 19J9J 1 1i6G6G 13y7H7H3&( 8I8I($3)J[J[3* 3yO`O` 3 1iFWFW 13yGXGX30 1i>O>O 13y?P?P3( Gy?P?P G I 8I8I I 8)   8*)  *8 ""Z4!!114>!!114>r