Merge branch 'main' into Improving_tpu

Author: TetyanaYahodska

security-command-center/snippets/pom.xml

@@ -45,6 +45,18 @@
       <version>2.45.0</version>
     </dependency>
 
+    <dependency>
+      <groupId>com.google.cloud</groupId>
+      <artifactId>google-cloud-securitycentermanagement</artifactId>
+      <version>0.20.0</version>
+    </dependency>
+
+	<dependency>
+      <groupId>com.google.api.grpc</groupId>
+      <artifactId>proto-google-cloud-securitycentermanagement-v1</artifactId>
+      <version>0.20.0</version>
+	</dependency>
+
     <dependency>
       <groupId>com.google.cloud</groupId>
       <artifactId>google-cloud-pubsub</artifactId>
@@ -80,4 +92,13 @@
       <scope>test</scope>
     </dependency>
   </dependencies>
+	<build>
+	 <plugins>
+	   <plugin>
+	     <groupId>org.apache.maven.plugins</groupId>
+	     <artifactId>maven-surefire-plugin</artifactId>
+ 	     <version>3.2.5</version>
+	   </plugin>
+	  </plugins>
+	</build>
 </project>

security-command-center/snippets/src/main/java/management/api/CreateSecurityHealthAnalyticsCustomModule.java

@@ -0,0 +1,101 @@
+/*
+ * Copyright 2024 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *       http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package management.api;
+
+// [START securitycenter_create_security_health_analytics_custom_module]
+import com.google.cloud.securitycentermanagement.v1.CreateSecurityHealthAnalyticsCustomModuleRequest;
+import com.google.cloud.securitycentermanagement.v1.CustomConfig;
+import com.google.cloud.securitycentermanagement.v1.CustomConfig.ResourceSelector;
+import com.google.cloud.securitycentermanagement.v1.CustomConfig.Severity;
+import com.google.cloud.securitycentermanagement.v1.SecurityCenterManagementClient;
+import com.google.cloud.securitycentermanagement.v1.SecurityHealthAnalyticsCustomModule;
+import com.google.cloud.securitycentermanagement.v1.SecurityHealthAnalyticsCustomModule.EnablementState;
+import com.google.type.Expr;
+import java.io.IOException;
+
+public class CreateSecurityHealthAnalyticsCustomModule {
+
+  public static void main(String[] args) throws IOException {
+    // https://cloud.google.com/security-command-center/docs/reference/security-center-management/rest/v1/organizations.locations.securityHealthAnalyticsCustomModules/create
+    //  replace "project_id" with a real project ID
+    String parent = String.format("projects/%s/locations/%s", "project_id", "global");
+
+    String customModuleDisplayName = "custom_module_display_name";
+
+    createSecurityHealthAnalyticsCustomModule(parent, customModuleDisplayName);
+  }
+
+  public static SecurityHealthAnalyticsCustomModule createSecurityHealthAnalyticsCustomModule(
+      String parent, String customModuleDisplayName) throws IOException {
+
+    // Initialize client that will be used to send requests. This client only needs
+    // to be created
+    // once, and can be reused for multiple requests.
+    try (SecurityCenterManagementClient client = SecurityCenterManagementClient.create()) {
+
+      String name =
+          String.format("%s/securityHealthAnalyticsCustomModules/%s", parent, "custom_module");
+
+      // define the CEL expression here, change it according to the your requirements
+      Expr expr =
+          Expr.newBuilder()
+              .setExpression(
+                  "has(resource.rotationPeriod) && (resource.rotationPeriod > "
+                      + "duration('2592000s'))")
+              .build();
+
+      // define the resource selector
+      ResourceSelector resourceSelector =
+          ResourceSelector.newBuilder()
+              .addResourceTypes("cloudkms.googleapis.com/CryptoKey")
+              .build();
+
+      // define the custom module configuration, update the severity, description,
+      // recommendation below
+      CustomConfig customConfig =
+          CustomConfig.newBuilder()
+              .setPredicate(expr)
+              .setResourceSelector(resourceSelector)
+              .setSeverity(Severity.MEDIUM)
+              .setDescription("add your description here")
+              .setRecommendation("add your recommendation here")
+              .build();
+
+      // define the security health analytics custom module configuration, update the
+      // EnablementState below
+      SecurityHealthAnalyticsCustomModule securityHealthAnalyticsCustomModule =
+          SecurityHealthAnalyticsCustomModule.newBuilder()
+              .setName(name)
+              .setDisplayName(customModuleDisplayName)
+              .setEnablementState(EnablementState.ENABLED)
+              .setCustomConfig(customConfig)
+              .build();
+
+      CreateSecurityHealthAnalyticsCustomModuleRequest request =
+          CreateSecurityHealthAnalyticsCustomModuleRequest.newBuilder()
+              .setParent(parent)
+              .setSecurityHealthAnalyticsCustomModule(securityHealthAnalyticsCustomModule)
+              .build();
+
+      SecurityHealthAnalyticsCustomModule response =
+          client.createSecurityHealthAnalyticsCustomModule(request);
+
+      return response;
+    }
+  }
+}
+// [END securitycenter_create_security_health_analytics_custom_module]

security-command-center/snippets/src/main/java/management/api/DeleteSecurityHealthAnalyticsCustomModule.java

@@ -0,0 +1,55 @@
+/*
+ * Copyright 2024 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *       http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package management.api;
+
+// [START securitycenter_delete_security_health_analytics_custom_module]
+import com.google.cloud.securitycentermanagement.v1.DeleteSecurityHealthAnalyticsCustomModuleRequest;
+import com.google.cloud.securitycentermanagement.v1.SecurityCenterManagementClient;
+import java.io.IOException;
+
+public class DeleteSecurityHealthAnalyticsCustomModule {
+
+  public static void main(String[] args) throws IOException {
+    // https://cloud.google.com/security-command-center/docs/reference/security-center-management/rest/v1/organizations.locations.securityHealthAnalyticsCustomModules/delete
+    //  replace "project_id" with a real project ID
+    String parent = String.format("projects/%s/locations/%s", "project_id", "global");
+
+    String customModuleId = "custom_module_id";
+
+    deleteSecurityHealthAnalyticsCustomModule(parent, customModuleId);
+  }
+
+  public static boolean deleteSecurityHealthAnalyticsCustomModule(
+      String parent, String customModuleId) throws IOException {
+
+    // Initialize client that will be used to send requests. This client only needs
+    // to be created
+    // once, and can be reused for multiple requests.
+    try (SecurityCenterManagementClient client = SecurityCenterManagementClient.create()) {
+      String name =
+          String.format("%s/securityHealthAnalyticsCustomModules/%s", parent, customModuleId);
+
+      DeleteSecurityHealthAnalyticsCustomModuleRequest request =
+          DeleteSecurityHealthAnalyticsCustomModuleRequest.newBuilder().setName(name).build();
+
+      client.deleteSecurityHealthAnalyticsCustomModule(request);
+
+      return true;
+    }
+  }
+}
+// [END securitycenter_delete_security_health_analytics_custom_module]

security-command-center/snippets/src/main/java/management/api/GetSecurityHealthAnalyticsCustomModule.java

@@ -0,0 +1,58 @@
+/*
+ * Copyright 2024 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *       http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package management.api;
+
+// [START securitycenter_get_security_health_analytics_custom_module]
+import com.google.cloud.securitycentermanagement.v1.GetSecurityHealthAnalyticsCustomModuleRequest;
+import com.google.cloud.securitycentermanagement.v1.SecurityCenterManagementClient;
+import com.google.cloud.securitycentermanagement.v1.SecurityHealthAnalyticsCustomModule;
+import java.io.IOException;
+
+public class GetSecurityHealthAnalyticsCustomModule {
+
+  public static void main(String[] args) throws IOException {
+    // https://cloud.google.com/security-command-center/docs/reference/security-center-management/rest/v1/organizations.locations.securityHealthAnalyticsCustomModules/get
+    //  replace "project_id" with a real project ID
+    String parent = String.format("projects/%s/locations/%s", "project_id", "global");
+
+    String customModuleId = "custom_module_id";
+
+    getSecurityHealthAnalyticsCustomModule(parent, customModuleId);
+  }
+
+  public static SecurityHealthAnalyticsCustomModule getSecurityHealthAnalyticsCustomModule(
+      String parent, String customModuleId) throws IOException {
+
+    // Initialize client that will be used to send requests. This client only needs
+    // to be created
+    // once, and can be reused for multiple requests.
+    try (SecurityCenterManagementClient client = SecurityCenterManagementClient.create()) {
+
+      String name =
+          String.format("%s/securityHealthAnalyticsCustomModules/%s", parent, customModuleId);
+
+      GetSecurityHealthAnalyticsCustomModuleRequest request =
+          GetSecurityHealthAnalyticsCustomModuleRequest.newBuilder().setName(name).build();
+
+      SecurityHealthAnalyticsCustomModule response =
+          client.getSecurityHealthAnalyticsCustomModule(request);
+
+      return response;
+    }
+  }
+}
+// [END securitycenter_get_security_health_analytics_custom_module]

security-command-center/snippets/src/main/java/management/api/ListSecurityHealthAnalyticsCustomModules.java

@@ -0,0 +1,52 @@
+/*
+ * Copyright 2024 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *       http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package management.api;
+
+// [START securitycenter_list_security_health_analytics_custom_module]
+import com.google.cloud.securitycentermanagement.v1.ListSecurityHealthAnalyticsCustomModulesRequest;
+import com.google.cloud.securitycentermanagement.v1.SecurityCenterManagementClient;
+import com.google.cloud.securitycentermanagement.v1.SecurityCenterManagementClient.ListSecurityHealthAnalyticsCustomModulesPagedResponse;
+import java.io.IOException;
+
+public class ListSecurityHealthAnalyticsCustomModules {
+
+  public static void main(String[] args) throws IOException {
+    // https://cloud.google.com/security-command-center/docs/reference/security-center-management/rest/v1/organizations.locations.securityHealthAnalyticsCustomModules/list
+    //  replace "project_id" with a real project ID
+    String parent = String.format("projects/%s/locations/%s", "project_id", "global");
+
+    listSecurityHealthAnalyticsCustomModules(parent);
+  }
+
+  public static ListSecurityHealthAnalyticsCustomModulesPagedResponse
+      listSecurityHealthAnalyticsCustomModules(String parent) throws IOException {
+    // Initialize client that will be used to send requests. This client only needs
+    // to be created
+    // once, and can be reused for multiple requests.
+    try (SecurityCenterManagementClient client = SecurityCenterManagementClient.create()) {
+
+      ListSecurityHealthAnalyticsCustomModulesRequest request =
+          ListSecurityHealthAnalyticsCustomModulesRequest.newBuilder().setParent(parent).build();
+
+      ListSecurityHealthAnalyticsCustomModulesPagedResponse response =
+          client.listSecurityHealthAnalyticsCustomModules(request);
+
+      return response;
+    }
+  }
+}
+// [END securitycenter_list_security_health_analytics_custom_module]