Releasing version 65.56.0

Releasing version 65.56.0

CHANGELOG.md

@@ -4,6 +4,27 @@ All notable changes to this project will be documented in this file.
 
 The format is based on [Keep a Changelog](http://keepachangelog.com/)
 
+## 65.56.0 - 2024-01-16
+### Added
+- Support for resource id filter on the service work requests in the Container Instances service
+- Support for polyglot vulnerability audit in the Application Dependency Management service
+- Support for create, read, and update operations on peer databases in the Data Safe service
+- Support for dimension specific alarm suppressions in the Monitoring service
+- Support for calculating audit volume in the Data Safe service
+- Support for viewing schema accesses in data safe user assessments in the Data Safe service
+- Support for security feature usage in the Data Safe service
+- Support for viewing the top security findings in data safe security assessments in the Data Safe service
+- Support for additional filters in list findings operation in the Data Safe service
+- Support for updating risk level of the specified finding in the Data Safe service
+
+### Breaking Changes
+- The property `OpcWorkRequestId` was removed from the response model `CreateVulnerabilityAuditResponse.cs` in the Application Dependency Management service
+- The property `Gav` was changed from mandatory to optional in `ApplicationDependency` model
+- The property `MaxObservedCvssV2Score`, `MaxObservedCvssV2ScoreWithIgnored` and `MaxObservedCvssV3ScoreWithIgnored` were changed from mandatory to optional in `VulnerabilityAudit` and `VulnerabilityAuditSummary` model
+- The property `CvssV2Score` and `CvssV3Score` were changed from mantory to optional in Vulnerability model
+- The property `OpcWorkRequestId` was changed from mandatory to optional in `CreateVulnerabilityAuditResponse` model
+
+
 ## 65.55.1 - 2024-01-09
 ### Added
 - Support for calling Oracle Cloud Infrastructure services in the sa-valparaiso-1 region

adm/application_dependency.go

@@ -18,9 +18,6 @@ import (
 // ApplicationDependency An application dependency resource creates a vulnerability audit.
 type ApplicationDependency struct {
 
-	// Group Artifact Version (GAV) identifier (Group:Artifact:Version), e.g. org.graalvm.nativeimage:svm:21.1.0.
-	Gav *string `mandatory:"true" json:"gav"`
-
 	// Unique identifier of an application dependency, for example nodeId1.
 	// The nodeId can be generated by assigning a unique id to each application dependency
 	// in the tree of application dependencies.
@@ -32,6 +29,13 @@ type ApplicationDependency struct {
 	// a GAV can have multiple transitive dependencies.)
 	NodeId *string `mandatory:"true" json:"nodeId"`
 
+	// Group Artifact Version (GAV) identifier (Group:Artifact:Version). Example: org.graalvm.nativeimage:svm:21.1.0.
+	// "N/A" for non-maven artifacts.
+	Gav *string `mandatory:"false" json:"gav"`
+
+	// Package URL defined in https://github.com/package-url/purl-spec, e.g. pkg:maven/org.graalvm.nativeimage/[email protected]
+	Purl *string `mandatory:"false" json:"purl"`
+
 	// List of application dependencies on which this application dependency depends, each identified by its nodeId.
 	ApplicationDependencyNodeIds []string `mandatory:"false" json:"applicationDependencyNodeIds"`
 }

adm/application_dependency_recommendation_summary.go

@@ -28,8 +28,14 @@ type ApplicationDependencyRecommendationSummary struct {
 	// List of (application dependencies) node identifiers from which this node depends.
 	ApplicationDependencyNodeIds []string `mandatory:"true" json:"applicationDependencyNodeIds"`
 
+	// Package URL defined in https://github.com/package-url/purl-spec, e.g. pkg:maven/org.graalvm.nativeimage/[email protected]
+	Purl *string `mandatory:"false" json:"purl"`
+
 	// Recommended application dependency in "group:artifact:version" (GAV) format, e.g. org.graalvm.nativeimage:svm:21.2.0.
 	RecommendedGav *string `mandatory:"false" json:"recommendedGav"`
+
+	// Recommended application dependency in PURL format, e.g. pkg:maven/org.graalvm.nativeimage/[email protected]
+	RecommendedPurl *string `mandatory:"false" json:"recommendedPurl"`
 }
 
 func (m ApplicationDependencyRecommendationSummary) String() string {

adm/application_dependency_vulnerability_summary.go

@@ -20,7 +20,8 @@ import (
 // Each application dependency is uniquely defined by a nodeId and lists eventual dependencies on which it depends.
 type ApplicationDependencyVulnerabilitySummary struct {
 
-	// Group Artifact Version (GAV) identifier (Group:Artifact:Version), for example org.graalvm.nativeimage:svm:21.1.0.
+	// Group Artifact Version (GAV) identifier (Group:Artifact:Version). Example: org.graalvm.nativeimage:svm:21.1.0.
+	// "N/A" for non-maven artifacts.
 	Gav *string `mandatory:"true" json:"gav"`
 
 	// Unique identifier of an application dependency, for example nodeId1.
@@ -34,6 +35,9 @@ type ApplicationDependencyVulnerabilitySummary struct {
 
 	// Indicates if the artifact is found in the knowledge base.
 	IsFoundInKnowledgeBase *bool `mandatory:"true" json:"isFoundInKnowledgeBase"`
+
+	// Package URL defined in https://github.com/package-url/purl-spec, e.g. pkg:maven/org.graalvm.nativeimage/[email protected]
+	Purl *string `mandatory:"false" json:"purl"`
 }
 
 func (m ApplicationDependencyVulnerabilitySummary) String() string {

adm/config_severity.go

@@ -0,0 +1,72 @@
+// Copyright (c) 2016, 2018, 2024, Oracle and/or its affiliates.  All rights reserved.
+// This software is dual-licensed to you under the Universal Permissive License (UPL) 1.0 as shown at https://oss.oracle.com/licenses/upl or Apache License 2.0 as shown at http://www.apache.org/licenses/LICENSE-2.0. You may choose either license.
+// Code generated. DO NOT EDIT.
+
+// Application Dependency Management API
+//
+// Use the Application Dependency Management API to create knowledge bases and vulnerability audits.  For more information, see ADM (https://docs.cloud.oracle.com/Content/application-dependency-management/home.htm).
+//
+
+package adm
+
+import (
+	"strings"
+)
+
+// ConfigSeverityEnum Enum with underlying type: string
+type ConfigSeverityEnum string
+
+// Set of constants representing the allowable values for ConfigSeverityEnum
+const (
+	ConfigSeverityUnset    ConfigSeverityEnum = "UNSET"
+	ConfigSeverityNone     ConfigSeverityEnum = "NONE"
+	ConfigSeverityLow      ConfigSeverityEnum = "LOW"
+	ConfigSeverityMedium   ConfigSeverityEnum = "MEDIUM"
+	ConfigSeverityHigh     ConfigSeverityEnum = "HIGH"
+	ConfigSeverityCritical ConfigSeverityEnum = "CRITICAL"
+)
+
+var mappingConfigSeverityEnum = map[string]ConfigSeverityEnum{
+	"UNSET":    ConfigSeverityUnset,
+	"NONE":     ConfigSeverityNone,
+	"LOW":      ConfigSeverityLow,
+	"MEDIUM":   ConfigSeverityMedium,
+	"HIGH":     ConfigSeverityHigh,
+	"CRITICAL": ConfigSeverityCritical,
+}
+
+var mappingConfigSeverityEnumLowerCase = map[string]ConfigSeverityEnum{
+	"unset":    ConfigSeverityUnset,
+	"none":     ConfigSeverityNone,
+	"low":      ConfigSeverityLow,
+	"medium":   ConfigSeverityMedium,
+	"high":     ConfigSeverityHigh,
+	"critical": ConfigSeverityCritical,
+}
+
+// GetConfigSeverityEnumValues Enumerates the set of values for ConfigSeverityEnum
+func GetConfigSeverityEnumValues() []ConfigSeverityEnum {
+	values := make([]ConfigSeverityEnum, 0)
+	for _, v := range mappingConfigSeverityEnum {
+		values = append(values, v)
+	}
+	return values
+}
+
+// GetConfigSeverityEnumStringValues Enumerates the set of values in String for ConfigSeverityEnum
+func GetConfigSeverityEnumStringValues() []string {
+	return []string{
+		"UNSET",
+		"NONE",
+		"LOW",
+		"MEDIUM",
+		"HIGH",
+		"CRITICAL",
+	}
+}
+
+// GetMappingConfigSeverityEnum performs case Insensitive comparison on enum value and return the desired enum
+func GetMappingConfigSeverityEnum(val string) (ConfigSeverityEnum, bool) {
+	enum, ok := mappingConfigSeverityEnumLowerCase[strings.ToLower(val)]
+	return enum, ok
+}

adm/create_vulnerability_audit_details.go

@@ -22,16 +22,16 @@ type CreateVulnerabilityAuditDetails struct {
 	// The Oracle Cloud identifier (OCID (https://docs.cloud.oracle.com/Content/General/Concepts/identifiers.htm)) of the knowledge base.
 	KnowledgeBaseId *string `mandatory:"true" json:"knowledgeBaseId"`
 
-	// The type of the build tool.
-	BuildType VulnerabilityAuditBuildTypeEnum `mandatory:"true" json:"buildType"`
-
 	// The compartment Oracle Cloud identifier (OCID (https://docs.cloud.oracle.com/Content/General/Concepts/identifiers.htm)) of the vulnerability audit.
 	// If compartment identifier is not provided the compartment of the associated knowledge base will be used instead.
 	CompartmentId *string `mandatory:"false" json:"compartmentId"`
 
 	// List of application dependencies (without vulnerabilities).
 	ApplicationDependencies []ApplicationDependency `mandatory:"false" json:"applicationDependencies"`
 
+	// The type of the build tool is restricted to only two values MAVEN or UNSET. Use UNSET when the list of application dependencies is not Maven-related or is a mix of Maven and other ecosystems. This option is soon to be deprecated.
+	BuildType VulnerabilityAuditBuildTypeEnum `mandatory:"false" json:"buildType,omitempty"`
+
 	Configuration *VulnerabilityAuditConfiguration `mandatory:"false" json:"configuration"`
 
 	UsageData UsageDataDetails `mandatory:"false" json:"usageData"`
@@ -59,10 +59,10 @@ func (m CreateVulnerabilityAuditDetails) String() string {
 // Not recommended for calling this function directly
 func (m CreateVulnerabilityAuditDetails) ValidateEnumValue() (bool, error) {
 	errMessage := []string{}
+
 	if _, ok := GetMappingVulnerabilityAuditBuildTypeEnum(string(m.BuildType)); !ok && m.BuildType != "" {
 		errMessage = append(errMessage, fmt.Sprintf("unsupported enum value for BuildType: %s. Supported values are: %s.", m.BuildType, strings.Join(GetVulnerabilityAuditBuildTypeEnumStringValues(), ",")))
 	}
-
 	if len(errMessage) > 0 {
 		return true, fmt.Errorf(strings.Join(errMessage, "\n"))
 	}
@@ -74,14 +74,14 @@ func (m *CreateVulnerabilityAuditDetails) UnmarshalJSON(data []byte) (e error) {
 	model := struct {
 		CompartmentId           *string                           `json:"compartmentId"`
 		ApplicationDependencies []ApplicationDependency           `json:"applicationDependencies"`
+		BuildType               VulnerabilityAuditBuildTypeEnum   `json:"buildType"`
 		Configuration           *VulnerabilityAuditConfiguration  `json:"configuration"`
 		UsageData               usagedatadetails                  `json:"usageData"`
 		DisplayName             *string                           `json:"displayName"`
 		Source                  vulnerabilityauditsource          `json:"source"`
 		FreeformTags            map[string]string                 `json:"freeformTags"`
 		DefinedTags             map[string]map[string]interface{} `json:"definedTags"`
 		KnowledgeBaseId         *string                           `json:"knowledgeBaseId"`
-		BuildType               VulnerabilityAuditBuildTypeEnum   `json:"buildType"`
 	}{}
 
 	e = json.Unmarshal(data, &model)
@@ -93,6 +93,8 @@ func (m *CreateVulnerabilityAuditDetails) UnmarshalJSON(data []byte) (e error) {
 
 	m.ApplicationDependencies = make([]ApplicationDependency, len(model.ApplicationDependencies))
 	copy(m.ApplicationDependencies, model.ApplicationDependencies)
+	m.BuildType = model.BuildType
+
 	m.Configuration = model.Configuration
 
 	nn, e = model.UsageData.UnmarshalPolymorphicJSON(model.UsageData.JsonData)
@@ -123,7 +125,5 @@ func (m *CreateVulnerabilityAuditDetails) UnmarshalJSON(data []byte) (e error) {
 
 	m.KnowledgeBaseId = model.KnowledgeBaseId
 
-	m.BuildType = model.BuildType
-
 	return
 }

adm/create_vulnerability_audit_request_response.go

@@ -92,9 +92,6 @@ type CreateVulnerabilityAuditResponse struct {
 	// For optimistic concurrency control. See `if-match`.
 	Etag *string `presentIn:"header" name:"etag"`
 
-	// Unique Oracle-assigned identifier for the asynchronous request. You can use this to query status of the asynchronous operation.
-	OpcWorkRequestId *string `presentIn:"header" name:"opc-work-request-id"`
-
 	// Unique Oracle-assigned identifier for the request. If you need to contact
 	// Oracle about a particular request, please provide the request ID.
 	OpcRequestId *string `presentIn:"header" name:"opc-request-id"`

adm/detect_configuration.go

@@ -31,6 +31,9 @@ type DetectConfiguration struct {
 
 	// The maximum Common Vulnerability Scoring System Version 3 (CVSS V3) score. An artifact with a CVSS V3 score below this value is not considered for patching.
 	MaxPermissibleCvssV3Score *float32 `mandatory:"false" json:"maxPermissibleCvssV3Score"`
+
+	// The maximum ADM Severity. An artifact with an ADM Severity below this value is not considered for patching.
+	MaxPermissibleSeverity ConfigSeverityEnum `mandatory:"false" json:"maxPermissibleSeverity,omitempty"`
 }
 
 func (m DetectConfiguration) String() string {
@@ -46,6 +49,9 @@ func (m DetectConfiguration) ValidateEnumValue() (bool, error) {
 	if _, ok := GetMappingDetectConfigurationUpgradePolicyEnum(string(m.UpgradePolicy)); !ok && m.UpgradePolicy != "" {
 		errMessage = append(errMessage, fmt.Sprintf("unsupported enum value for UpgradePolicy: %s. Supported values are: %s.", m.UpgradePolicy, strings.Join(GetDetectConfigurationUpgradePolicyEnumStringValues(), ",")))
 	}
+	if _, ok := GetMappingConfigSeverityEnum(string(m.MaxPermissibleSeverity)); !ok && m.MaxPermissibleSeverity != "" {
+		errMessage = append(errMessage, fmt.Sprintf("unsupported enum value for MaxPermissibleSeverity: %s. Supported values are: %s.", m.MaxPermissibleSeverity, strings.Join(GetConfigSeverityEnumStringValues(), ",")))
+	}
 	if len(errMessage) > 0 {
 		return true, fmt.Errorf(strings.Join(errMessage, "\n"))
 	}

adm/list_application_dependency_recommendations_request_response.go

@@ -36,10 +36,14 @@ type ListApplicationDependencyRecommendationsRequest struct {
 	// A filter to return only resources that match the entire GAV (Group Artifact Version) identifier given.
 	Gav *string `mandatory:"false" contributesTo:"query" name:"gav"`
 
+	// A filter to return only resources that match the entire PURL given (https://github.com/package-url/purl-spec/).
+	Purl *string `mandatory:"false" contributesTo:"query" name:"purl"`
+
 	// The field to sort by. Only one sort order may be provided.
 	// If sort order is dfs, the nodes are returned by going through the application dependency tree in a depth-first manner. Children are sorted based on their GAV property alphabetically (either ascending or descending, depending on the order parameter). Default order is ascending.
 	// If sort order is bfs, the nodes are returned by going through the application dependency tree in a breadth-first manner. Children are sorted based on their GAV property alphabetically (either ascending or descending, depending on the order parameter). Default order is ascending.
 	// Default order for gav is ascending where ascending corresponds to alphanumerical order.
+	// Default order for purl is ascending where ascending corresponds to alphabetical order
 	// Default order for nodeId is ascending where ascending corresponds to alphanumerical order.
 	// Sorting by DFS or BFS cannot be used in conjunction with the following query parameters: "gav", "cvssV2GreaterThanOrEqual", "cvssV3GreaterThanOrEqual" and "vulnerabilityId".
 	SortBy ListApplicationDependencyRecommendationsSortByEnum `mandatory:"false" contributesTo:"query" name:"sortBy" omitEmpty:"true"`
@@ -168,20 +172,23 @@ type ListApplicationDependencyRecommendationsSortByEnum string
 // Set of constants representing the allowable values for ListApplicationDependencyRecommendationsSortByEnum
 const (
 	ListApplicationDependencyRecommendationsSortByGav    ListApplicationDependencyRecommendationsSortByEnum = "gav"
+	ListApplicationDependencyRecommendationsSortByPurl   ListApplicationDependencyRecommendationsSortByEnum = "purl"
 	ListApplicationDependencyRecommendationsSortByNodeid ListApplicationDependencyRecommendationsSortByEnum = "nodeId"
 	ListApplicationDependencyRecommendationsSortByDfs    ListApplicationDependencyRecommendationsSortByEnum = "dfs"
 	ListApplicationDependencyRecommendationsSortByBfs    ListApplicationDependencyRecommendationsSortByEnum = "bfs"
 )
 
 var mappingListApplicationDependencyRecommendationsSortByEnum = map[string]ListApplicationDependencyRecommendationsSortByEnum{
 	"gav":    ListApplicationDependencyRecommendationsSortByGav,
+	"purl":   ListApplicationDependencyRecommendationsSortByPurl,
 	"nodeId": ListApplicationDependencyRecommendationsSortByNodeid,
 	"dfs":    ListApplicationDependencyRecommendationsSortByDfs,
 	"bfs":    ListApplicationDependencyRecommendationsSortByBfs,
 }
 
 var mappingListApplicationDependencyRecommendationsSortByEnumLowerCase = map[string]ListApplicationDependencyRecommendationsSortByEnum{
 	"gav":    ListApplicationDependencyRecommendationsSortByGav,
+	"purl":   ListApplicationDependencyRecommendationsSortByPurl,
 	"nodeid": ListApplicationDependencyRecommendationsSortByNodeid,
 	"dfs":    ListApplicationDependencyRecommendationsSortByDfs,
 	"bfs":    ListApplicationDependencyRecommendationsSortByBfs,
@@ -200,6 +207,7 @@ func GetListApplicationDependencyRecommendationsSortByEnumValues() []ListApplica
 func GetListApplicationDependencyRecommendationsSortByEnumStringValues() []string {
 	return []string{
 		"gav",
+		"purl",
 		"nodeId",
 		"dfs",
 		"bfs",