You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/dyn/securitycenter_v1.folders.securityHealthAnalyticsSettings.customModules.html
+8Lines changed: 8 additions & 0 deletions
Original file line number
Diff line number
Diff line change
@@ -768,6 +768,14 @@ <h3>Method Details</h3>
768
768
"violatedLocation": "A String", # Non-compliant location of the principal or the data destination.
769
769
},
770
770
],
771
+
"dataRetentionDeletionEvents": [ # Data retention deletion events associated with the finding.
772
+
{ # Details about data retention deletion violations, in which the data is non-compliant based on their retention or deletion time, as defined in the applicable data security policy. The Data Retention Deletion (DRD) control is a control of the DSPM (Data Security Posture Management) suite that enables organizations to manage data retention and deletion policies in compliance with regulations, such as GDPR and CRPA. DRD supports two primary policy types: maximum storage length (max TTL) and minimum storage length (min TTL). Both are aimed at helping organizations meet regulatory and data management commitments.
773
+
"dataObjectCount": "A String", # Number of objects that violated the policy for this resource. If the number is less than 1,000, then the value of this field is the exact number. If the number of objects that violated the policy is greater than or equal to 1,000, then the value of this field is 1000.
774
+
"eventDetectionTime": "A String", # Timestamp indicating when the event was detected.
775
+
"eventType": "A String", # Type of the DRD event.
776
+
"maxRetentionAllowed": "A String", # Maximum duration of retention allowed from the DRD control. This comes from the DRD control where users set a max TTL for their data. For example, suppose that a user set the max TTL for a Cloud Storage bucket to 90 days. However, an object in that bucket is 100 days old. In this case, a DataRetentionDeletionEvent will be generated for that Cloud Storage bucket, and the max_retention_allowed is 90 days.
777
+
},
778
+
],
771
779
"database": { # Represents database access information, such as queries. A database may be a sub-resource of an instance (as in the case of Cloud SQL instances or Cloud Spanner instances), or the database instance itself. Some database resources might not have the [full resource name](https://google.aip.dev/122#full-resource-names) populated because these resource types, such as Cloud SQL databases, are not yet supported by Cloud Asset Inventory. In these cases only the display name is provided. # Database associated with the finding.
772
780
"displayName": "A String", # The human-readable name of the database that the user connected to.
773
781
"grantees": [ # The target usernames, roles, or groups of an SQL privilege grant, which is not an IAM policy change.
Copy file name to clipboardExpand all lines: docs/dyn/securitycenter_v1.folders.sources.findings.html
+40Lines changed: 40 additions & 0 deletions
Original file line number
Diff line number
Diff line change
@@ -337,6 +337,14 @@ <h3>Method Details</h3>
337
337
"violatedLocation": "A String", # Non-compliant location of the principal or the data destination.
338
338
},
339
339
],
340
+
"dataRetentionDeletionEvents": [ # Data retention deletion events associated with the finding.
341
+
{ # Details about data retention deletion violations, in which the data is non-compliant based on their retention or deletion time, as defined in the applicable data security policy. The Data Retention Deletion (DRD) control is a control of the DSPM (Data Security Posture Management) suite that enables organizations to manage data retention and deletion policies in compliance with regulations, such as GDPR and CRPA. DRD supports two primary policy types: maximum storage length (max TTL) and minimum storage length (min TTL). Both are aimed at helping organizations meet regulatory and data management commitments.
342
+
"dataObjectCount": "A String", # Number of objects that violated the policy for this resource. If the number is less than 1,000, then the value of this field is the exact number. If the number of objects that violated the policy is greater than or equal to 1,000, then the value of this field is 1000.
343
+
"eventDetectionTime": "A String", # Timestamp indicating when the event was detected.
344
+
"eventType": "A String", # Type of the DRD event.
345
+
"maxRetentionAllowed": "A String", # Maximum duration of retention allowed from the DRD control. This comes from the DRD control where users set a max TTL for their data. For example, suppose that a user set the max TTL for a Cloud Storage bucket to 90 days. However, an object in that bucket is 100 days old. In this case, a DataRetentionDeletionEvent will be generated for that Cloud Storage bucket, and the max_retention_allowed is 90 days.
346
+
},
347
+
],
340
348
"database": { # Represents database access information, such as queries. A database may be a sub-resource of an instance (as in the case of Cloud SQL instances or Cloud Spanner instances), or the database instance itself. Some database resources might not have the [full resource name](https://google.aip.dev/122#full-resource-names) populated because these resource types, such as Cloud SQL databases, are not yet supported by Cloud Asset Inventory. In these cases only the display name is provided. # Database associated with the finding.
341
349
"displayName": "A String", # The human-readable name of the database that the user connected to.
342
350
"grantees": [ # The target usernames, roles, or groups of an SQL privilege grant, which is not an IAM policy change.
@@ -1003,6 +1011,14 @@ <h3>Method Details</h3>
1003
1011
"violatedLocation": "A String", # Non-compliant location of the principal or the data destination.
1004
1012
},
1005
1013
],
1014
+
"dataRetentionDeletionEvents": [ # Data retention deletion events associated with the finding.
1015
+
{ # Details about data retention deletion violations, in which the data is non-compliant based on their retention or deletion time, as defined in the applicable data security policy. The Data Retention Deletion (DRD) control is a control of the DSPM (Data Security Posture Management) suite that enables organizations to manage data retention and deletion policies in compliance with regulations, such as GDPR and CRPA. DRD supports two primary policy types: maximum storage length (max TTL) and minimum storage length (min TTL). Both are aimed at helping organizations meet regulatory and data management commitments.
1016
+
"dataObjectCount": "A String", # Number of objects that violated the policy for this resource. If the number is less than 1,000, then the value of this field is the exact number. If the number of objects that violated the policy is greater than or equal to 1,000, then the value of this field is 1000.
1017
+
"eventDetectionTime": "A String", # Timestamp indicating when the event was detected.
1018
+
"eventType": "A String", # Type of the DRD event.
1019
+
"maxRetentionAllowed": "A String", # Maximum duration of retention allowed from the DRD control. This comes from the DRD control where users set a max TTL for their data. For example, suppose that a user set the max TTL for a Cloud Storage bucket to 90 days. However, an object in that bucket is 100 days old. In this case, a DataRetentionDeletionEvent will be generated for that Cloud Storage bucket, and the max_retention_allowed is 90 days.
1020
+
},
1021
+
],
1006
1022
"database": { # Represents database access information, such as queries. A database may be a sub-resource of an instance (as in the case of Cloud SQL instances or Cloud Spanner instances), or the database instance itself. Some database resources might not have the [full resource name](https://google.aip.dev/122#full-resource-names) populated because these resource types, such as Cloud SQL databases, are not yet supported by Cloud Asset Inventory. In these cases only the display name is provided. # Database associated with the finding.
1007
1023
"displayName": "A String", # The human-readable name of the database that the user connected to.
1008
1024
"grantees": [ # The target usernames, roles, or groups of an SQL privilege grant, which is not an IAM policy change.
@@ -1583,6 +1599,14 @@ <h3>Method Details</h3>
1583
1599
"violatedLocation": "A String", # Non-compliant location of the principal or the data destination.
1584
1600
},
1585
1601
],
1602
+
"dataRetentionDeletionEvents": [ # Data retention deletion events associated with the finding.
1603
+
{ # Details about data retention deletion violations, in which the data is non-compliant based on their retention or deletion time, as defined in the applicable data security policy. The Data Retention Deletion (DRD) control is a control of the DSPM (Data Security Posture Management) suite that enables organizations to manage data retention and deletion policies in compliance with regulations, such as GDPR and CRPA. DRD supports two primary policy types: maximum storage length (max TTL) and minimum storage length (min TTL). Both are aimed at helping organizations meet regulatory and data management commitments.
1604
+
"dataObjectCount": "A String", # Number of objects that violated the policy for this resource. If the number is less than 1,000, then the value of this field is the exact number. If the number of objects that violated the policy is greater than or equal to 1,000, then the value of this field is 1000.
1605
+
"eventDetectionTime": "A String", # Timestamp indicating when the event was detected.
1606
+
"eventType": "A String", # Type of the DRD event.
1607
+
"maxRetentionAllowed": "A String", # Maximum duration of retention allowed from the DRD control. This comes from the DRD control where users set a max TTL for their data. For example, suppose that a user set the max TTL for a Cloud Storage bucket to 90 days. However, an object in that bucket is 100 days old. In this case, a DataRetentionDeletionEvent will be generated for that Cloud Storage bucket, and the max_retention_allowed is 90 days.
1608
+
},
1609
+
],
1586
1610
"database": { # Represents database access information, such as queries. A database may be a sub-resource of an instance (as in the case of Cloud SQL instances or Cloud Spanner instances), or the database instance itself. Some database resources might not have the [full resource name](https://google.aip.dev/122#full-resource-names) populated because these resource types, such as Cloud SQL databases, are not yet supported by Cloud Asset Inventory. In these cases only the display name is provided. # Database associated with the finding.
1587
1611
"displayName": "A String", # The human-readable name of the database that the user connected to.
1588
1612
"grantees": [ # The target usernames, roles, or groups of an SQL privilege grant, which is not an IAM policy change.
@@ -2176,6 +2200,14 @@ <h3>Method Details</h3>
2176
2200
"violatedLocation": "A String", # Non-compliant location of the principal or the data destination.
2177
2201
},
2178
2202
],
2203
+
"dataRetentionDeletionEvents": [ # Data retention deletion events associated with the finding.
2204
+
{ # Details about data retention deletion violations, in which the data is non-compliant based on their retention or deletion time, as defined in the applicable data security policy. The Data Retention Deletion (DRD) control is a control of the DSPM (Data Security Posture Management) suite that enables organizations to manage data retention and deletion policies in compliance with regulations, such as GDPR and CRPA. DRD supports two primary policy types: maximum storage length (max TTL) and minimum storage length (min TTL). Both are aimed at helping organizations meet regulatory and data management commitments.
2205
+
"dataObjectCount": "A String", # Number of objects that violated the policy for this resource. If the number is less than 1,000, then the value of this field is the exact number. If the number of objects that violated the policy is greater than or equal to 1,000, then the value of this field is 1000.
2206
+
"eventDetectionTime": "A String", # Timestamp indicating when the event was detected.
2207
+
"eventType": "A String", # Type of the DRD event.
2208
+
"maxRetentionAllowed": "A String", # Maximum duration of retention allowed from the DRD control. This comes from the DRD control where users set a max TTL for their data. For example, suppose that a user set the max TTL for a Cloud Storage bucket to 90 days. However, an object in that bucket is 100 days old. In this case, a DataRetentionDeletionEvent will be generated for that Cloud Storage bucket, and the max_retention_allowed is 90 days.
2209
+
},
2210
+
],
2179
2211
"database": { # Represents database access information, such as queries. A database may be a sub-resource of an instance (as in the case of Cloud SQL instances or Cloud Spanner instances), or the database instance itself. Some database resources might not have the [full resource name](https://google.aip.dev/122#full-resource-names) populated because these resource types, such as Cloud SQL databases, are not yet supported by Cloud Asset Inventory. In these cases only the display name is provided. # Database associated with the finding.
2180
2212
"displayName": "A String", # The human-readable name of the database that the user connected to.
2181
2213
"grantees": [ # The target usernames, roles, or groups of an SQL privilege grant, which is not an IAM policy change.
@@ -2770,6 +2802,14 @@ <h3>Method Details</h3>
2770
2802
"violatedLocation": "A String", # Non-compliant location of the principal or the data destination.
2771
2803
},
2772
2804
],
2805
+
"dataRetentionDeletionEvents": [ # Data retention deletion events associated with the finding.
2806
+
{ # Details about data retention deletion violations, in which the data is non-compliant based on their retention or deletion time, as defined in the applicable data security policy. The Data Retention Deletion (DRD) control is a control of the DSPM (Data Security Posture Management) suite that enables organizations to manage data retention and deletion policies in compliance with regulations, such as GDPR and CRPA. DRD supports two primary policy types: maximum storage length (max TTL) and minimum storage length (min TTL). Both are aimed at helping organizations meet regulatory and data management commitments.
2807
+
"dataObjectCount": "A String", # Number of objects that violated the policy for this resource. If the number is less than 1,000, then the value of this field is the exact number. If the number of objects that violated the policy is greater than or equal to 1,000, then the value of this field is 1000.
2808
+
"eventDetectionTime": "A String", # Timestamp indicating when the event was detected.
2809
+
"eventType": "A String", # Type of the DRD event.
2810
+
"maxRetentionAllowed": "A String", # Maximum duration of retention allowed from the DRD control. This comes from the DRD control where users set a max TTL for their data. For example, suppose that a user set the max TTL for a Cloud Storage bucket to 90 days. However, an object in that bucket is 100 days old. In this case, a DataRetentionDeletionEvent will be generated for that Cloud Storage bucket, and the max_retention_allowed is 90 days.
2811
+
},
2812
+
],
2773
2813
"database": { # Represents database access information, such as queries. A database may be a sub-resource of an instance (as in the case of Cloud SQL instances or Cloud Spanner instances), or the database instance itself. Some database resources might not have the [full resource name](https://google.aip.dev/122#full-resource-names) populated because these resource types, such as Cloud SQL databases, are not yet supported by Cloud Asset Inventory. In these cases only the display name is provided. # Database associated with the finding.
2774
2814
"displayName": "A String", # The human-readable name of the database that the user connected to.
2775
2815
"grantees": [ # The target usernames, roles, or groups of an SQL privilege grant, which is not an IAM policy change.
Copy file name to clipboardExpand all lines: docs/dyn/securitycenter_v1.organizations.securityHealthAnalyticsSettings.customModules.html
+8Lines changed: 8 additions & 0 deletions
Original file line number
Diff line number
Diff line change
@@ -768,6 +768,14 @@ <h3>Method Details</h3>
768
768
"violatedLocation": "A String", # Non-compliant location of the principal or the data destination.
769
769
},
770
770
],
771
+
"dataRetentionDeletionEvents": [ # Data retention deletion events associated with the finding.
772
+
{ # Details about data retention deletion violations, in which the data is non-compliant based on their retention or deletion time, as defined in the applicable data security policy. The Data Retention Deletion (DRD) control is a control of the DSPM (Data Security Posture Management) suite that enables organizations to manage data retention and deletion policies in compliance with regulations, such as GDPR and CRPA. DRD supports two primary policy types: maximum storage length (max TTL) and minimum storage length (min TTL). Both are aimed at helping organizations meet regulatory and data management commitments.
773
+
"dataObjectCount": "A String", # Number of objects that violated the policy for this resource. If the number is less than 1,000, then the value of this field is the exact number. If the number of objects that violated the policy is greater than or equal to 1,000, then the value of this field is 1000.
774
+
"eventDetectionTime": "A String", # Timestamp indicating when the event was detected.
775
+
"eventType": "A String", # Type of the DRD event.
776
+
"maxRetentionAllowed": "A String", # Maximum duration of retention allowed from the DRD control. This comes from the DRD control where users set a max TTL for their data. For example, suppose that a user set the max TTL for a Cloud Storage bucket to 90 days. However, an object in that bucket is 100 days old. In this case, a DataRetentionDeletionEvent will be generated for that Cloud Storage bucket, and the max_retention_allowed is 90 days.
777
+
},
778
+
],
771
779
"database": { # Represents database access information, such as queries. A database may be a sub-resource of an instance (as in the case of Cloud SQL instances or Cloud Spanner instances), or the database instance itself. Some database resources might not have the [full resource name](https://google.aip.dev/122#full-resource-names) populated because these resource types, such as Cloud SQL databases, are not yet supported by Cloud Asset Inventory. In these cases only the display name is provided. # Database associated with the finding.
772
780
"displayName": "A String", # The human-readable name of the database that the user connected to.
773
781
"grantees": [ # The target usernames, roles, or groups of an SQL privilege grant, which is not an IAM policy change.
0 commit comments