feat(osconfig): update the API

#### osconfig:v1alpha

The following keys were added:
- schemas.VulnerabilityReport.properties.highestUpgradableCveSeverity.description
- schemas.VulnerabilityReport.properties.highestUpgradableCveSeverity.enum
- schemas.VulnerabilityReport.properties.highestUpgradableCveSeverity.enumDescriptions
- schemas.VulnerabilityReport.properties.highestUpgradableCveSeverity.readOnly
- schemas.VulnerabilityReport.properties.highestUpgradableCveSeverity.type

#### osconfig:v1

The following keys were added:
- schemas.VulnerabilityReport.properties.highestUpgradableCveSeverity.description
- schemas.VulnerabilityReport.properties.highestUpgradableCveSeverity.enum
- schemas.VulnerabilityReport.properties.highestUpgradableCveSeverity.enumDescriptions
- schemas.VulnerabilityReport.properties.highestUpgradableCveSeverity.readOnly
- schemas.VulnerabilityReport.properties.highestUpgradableCveSeverity.type

Author: yoshi-automation

discovery/osconfig-v1.json

@@ -1083,7 +1083,7 @@
       }
     }
   },
-  "revision": "20250511",
+  "revision": "20250727",
   "rootUrl": "https://osconfig.googleapis.com/",
   "schemas": {
     "AptSettings": {
@@ -3665,6 +3665,29 @@
       "description": "This API resource represents the vulnerability report for a specified Compute Engine virtual machine (VM) instance at a given point in time. For more information, see [Vulnerability reports](https://cloud.google.com/compute/docs/instances/os-inventory-management#vulnerability-reports).",
       "id": "VulnerabilityReport",
       "properties": {
+        "highestUpgradableCveSeverity": {
+          "description": "Output only. Highest level of severity among all the upgradable vulnerabilities with CVEs attached.",
+          "enum": [
+            "VULNERABILITY_SEVERITY_LEVEL_UNSPECIFIED",
+            "NONE",
+            "MINIMAL",
+            "LOW",
+            "MEDIUM",
+            "HIGH",
+            "CRITICAL"
+          ],
+          "enumDescriptions": [
+            "Default SeverityLevel. This value is unused.",
+            "Vulnerability has no severity level.",
+            "Vulnerability severity level is minimal. This is level below the low severity level.",
+            "Vulnerability severity level is low. This is level below the medium severity level.",
+            "Vulnerability severity level is medium. This is level below the high severity level.",
+            "Vulnerability severity level is high. This is level below the critical severity level.",
+            "Vulnerability severity level is critical. This is the highest severity level."
+          ],
+          "readOnly": true,
+          "type": "string"
+        },
         "name": {
           "description": "Output only. The `vulnerabilityReport` API resource name. Format: `projects/{project_number}/locations/{location}/instances/{instance_id}/vulnerabilityReport`",
           "readOnly": true,

discovery/osconfig-v1alpha.json

@@ -707,7 +707,7 @@
       }
     }
   },
-  "revision": "20250511",
+  "revision": "20250727",
   "rootUrl": "https://osconfig.googleapis.com/",
   "schemas": {
     "CVSSv3": {
@@ -2720,6 +2720,29 @@
       "description": "This API resource represents the vulnerability report for a specified Compute Engine virtual machine (VM) instance at a given point in time. For more information, see [Vulnerability reports](https://cloud.google.com/compute/docs/instances/os-inventory-management#vulnerability-reports).",
       "id": "VulnerabilityReport",
       "properties": {
+        "highestUpgradableCveSeverity": {
+          "description": "Output only. Highest level of severity among all the upgradable vulnerabilities with CVEs attached.",
+          "enum": [
+            "VULNERABILITY_SEVERITY_LEVEL_UNSPECIFIED",
+            "NONE",
+            "MINIMAL",
+            "LOW",
+            "MEDIUM",
+            "HIGH",
+            "CRITICAL"
+          ],
+          "enumDescriptions": [
+            "Default SeverityLevel. This value is unused.",
+            "Vulnerability has no severity level.",
+            "Vulnerability severity level is minimal. This is level below the low severity level.",
+            "Vulnerability severity level is low. This is level below the medium severity level.",
+            "Vulnerability severity level is medium. This is level below the high severity level.",
+            "Vulnerability severity level is high. This is level below the critical severity level.",
+            "Vulnerability severity level is critical. This is the highest severity level."
+          ],
+          "readOnly": true,
+          "type": "string"
+        },
         "name": {
           "description": "Output only. The `vulnerabilityReport` API resource name. Format: `projects/{project_number}/locations/{location}/instances/{instance_id}/vulnerabilityReport`",
           "readOnly": true,

src/apis/osconfig/v1.ts

@@ -1912,6 +1912,10 @@ export namespace osconfig_v1 {
    * This API resource represents the vulnerability report for a specified Compute Engine virtual machine (VM) instance at a given point in time. For more information, see [Vulnerability reports](https://cloud.google.com/compute/docs/instances/os-inventory-management#vulnerability-reports).
    */
   export interface Schema$VulnerabilityReport {
+    /**
+     * Output only. Highest level of severity among all the upgradable vulnerabilities with CVEs attached.
+     */
+    highestUpgradableCveSeverity?: string | null;
     /**
      * Output only. The `vulnerabilityReport` API resource name. Format: `projects/{project_number\}/locations/{location\}/instances/{instance_id\}/vulnerabilityReport`
      */
@@ -3211,6 +3215,7 @@ export namespace osconfig_v1 {
      *
      *   // Example response
      *   // {
+     *   //   "highestUpgradableCveSeverity": "my_highestUpgradableCveSeverity",
      *   //   "name": "my_name",
      *   //   "updateTime": "my_updateTime",
      *   //   "vulnerabilities": []

src/apis/osconfig/v1alpha.ts

@@ -1489,6 +1489,10 @@ export namespace osconfig_v1alpha {
    * This API resource represents the vulnerability report for a specified Compute Engine virtual machine (VM) instance at a given point in time. For more information, see [Vulnerability reports](https://cloud.google.com/compute/docs/instances/os-inventory-management#vulnerability-reports).
    */
   export interface Schema$VulnerabilityReport {
+    /**
+     * Output only. Highest level of severity among all the upgradable vulnerabilities with CVEs attached.
+     */
+    highestUpgradableCveSeverity?: string | null;
     /**
      * Output only. The `vulnerabilityReport` API resource name. Format: `projects/{project_number\}/locations/{location\}/instances/{instance_id\}/vulnerabilityReport`
      */
@@ -2706,6 +2710,7 @@ export namespace osconfig_v1alpha {
      *
      *   // Example response
      *   // {
+     *   //   "highestUpgradableCveSeverity": "my_highestUpgradableCveSeverity",
      *   //   "name": "my_name",
      *   //   "updateTime": "my_updateTime",
      *   //   "vulnerabilities": []