1// Copyright 2023 Google LLC 2// 3// Licensed under the Apache License, Version 2.0 (the "License"); 4// you may not use this file except in compliance with the License. 5// You may obtain a copy of the License at 6// 7// http://www.apache.org/licenses/LICENSE-2.0 8// 9// Unless required by applicable law or agreed to in writing, software 10// distributed under the License is distributed on an "AS IS" BASIS, 11// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 12// See the License for the specific language governing permissions and 13// limitations under the License. 14 15syntax = "proto3"; 16 17package google.cloud.securitycenter.v2; 18 19import "google/api/field_behavior.proto"; 20import "google/protobuf/timestamp.proto"; 21 22option csharp_namespace = "Google.Cloud.SecurityCenter.V2"; 23option go_package = "cloud.google.com/go/securitycenter/apiv2/securitycenterpb;securitycenterpb"; 24option java_multiple_files = true; 25option java_outer_classname = "AttackExposureProto"; 26option java_package = "com.google.cloud.securitycenter.v2"; 27option php_namespace = "Google\\Cloud\\SecurityCenter\\V2"; 28option ruby_package = "Google::Cloud::SecurityCenter::V2"; 29 30// An attack exposure contains the results of an attack path simulation run. 31message AttackExposure { 32 // This enum defines the various states an AttackExposure can be in. 33 enum State { 34 // The state is not specified. 35 STATE_UNSPECIFIED = 0; 36 37 // The attack exposure has been calculated. 38 CALCULATED = 1; 39 40 // The attack exposure has not been calculated. 41 NOT_CALCULATED = 2; 42 } 43 44 // A number between 0 (inclusive) and infinity that represents how important 45 // this finding is to remediate. The higher the score, the more important it 46 // is to remediate. 47 double score = 1; 48 49 // The most recent time the attack exposure was updated on this finding. 50 google.protobuf.Timestamp latest_calculation_time = 2; 51 52 // The resource name of the attack path simulation result that contains the 53 // details regarding this attack exposure score. 54 // Example: organizations/123/simulations/456/attackExposureResults/789 55 string attack_exposure_result = 3; 56 57 // Output only. What state this AttackExposure is in. This captures whether or 58 // not an attack exposure has been calculated or not. 59 State state = 4 [(google.api.field_behavior) = OUTPUT_ONLY]; 60 61 // The number of high value resources that are exposed as a result of this 62 // finding. 63 int32 exposed_high_value_resources_count = 5; 64 65 // The number of medium value resources that are exposed as a result of this 66 // finding. 67 int32 exposed_medium_value_resources_count = 6; 68 69 // The number of high value resources that are exposed as a result of this 70 // finding. 71 int32 exposed_low_value_resources_count = 7; 72} 73