summaryrefslogtreecommitdiff
path: root/third_party/googleapis/google/cloud/websecurityscanner/v1alpha/finding_addon.proto
diff options
context:
space:
mode:
Diffstat (limited to 'third_party/googleapis/google/cloud/websecurityscanner/v1alpha/finding_addon.proto')
-rw-r--r--third_party/googleapis/google/cloud/websecurityscanner/v1alpha/finding_addon.proto78
1 files changed, 78 insertions, 0 deletions
diff --git a/third_party/googleapis/google/cloud/websecurityscanner/v1alpha/finding_addon.proto b/third_party/googleapis/google/cloud/websecurityscanner/v1alpha/finding_addon.proto
new file mode 100644
index 0000000..3fafdb4
--- /dev/null
+++ b/third_party/googleapis/google/cloud/websecurityscanner/v1alpha/finding_addon.proto
@@ -0,0 +1,78 @@
+// Copyright 2019 Google LLC.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+// http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+//
+
+syntax = "proto3";
+
+package google.cloud.websecurityscanner.v1alpha;
+
+option go_package = "google.golang.org/genproto/googleapis/cloud/websecurityscanner/v1alpha;websecurityscanner";
+option java_multiple_files = true;
+option java_outer_classname = "FindingAddonProto";
+option java_package = "com.google.cloud.websecurityscanner.v1alpha";
+
+// Information reported for an outdated library.
+message OutdatedLibrary {
+ // The name of the outdated library.
+ string library_name = 1;
+
+ // The version number.
+ string version = 2;
+
+ // URLs to learn more information about the vulnerabilities in the library.
+ repeated string learn_more_urls = 3;
+}
+
+// Information regarding any resource causing the vulnerability such
+// as JavaScript sources, image, audio files, etc.
+message ViolatingResource {
+ // The MIME type of this resource.
+ string content_type = 1;
+
+ // URL of this violating resource.
+ string resource_url = 2;
+}
+
+// Information about vulnerable request parameters.
+message VulnerableParameters {
+ // The vulnerable parameter names.
+ repeated string parameter_names = 1;
+}
+
+// Information about vulnerable or missing HTTP Headers.
+message VulnerableHeaders {
+ // Describes a HTTP Header.
+ message Header {
+ // Header name.
+ string name = 1;
+
+ // Header value.
+ string value = 2;
+ }
+
+ // List of vulnerable headers.
+ repeated Header headers = 1;
+
+ // List of missing headers.
+ repeated Header missing_headers = 2;
+}
+
+// Information reported for an XSS.
+message Xss {
+ // Stack traces leading to the point where the XSS occurred.
+ repeated string stack_traces = 1;
+
+ // An error message generated by a javascript breakage.
+ string error_message = 2;
+}