Skip to content

Navigation Menu

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

GoogleCloudPlatform / java-docs-samples Public

Notifications You must be signed in to change notification settings
Fork 2.8k
Star 1.8k

Code
Issues 243
Pull requests 28
Actions
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Security
Insights

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(security-center): Add Resource v2 API Assets Security Marks Samples #9680

Open

vijaykanthm wants to merge 4 commits into main

base: main

Choose a base branch

Loading

Loading

from security-marks-assets-v2

Open

feat(security-center): Add Resource v2 API Assets Security Marks Samples #9680

vijaykanthm wants to merge 4 commits into main from security-marks-assets-v2

Conversation 20 Commits 4 Checks 8 Files changed

Conversation

Copy link

vijaykanthm commented Nov 12, 2024

Description

This PR adds v2 API Assets Security Marks Java client samples to Add Security Marks, Delete Security Marks, Add Delete Security Marks.

Note: Before submitting a pull request, please open an issue for discussion if you are not associated with Google.

Checklist

I have followed Sample Format Guide
pom.xml parent set to latest shared-configuration
Appropriate changes to README are included in PR
These samples need a new API enabled in testing projects to pass (let us know which ones)
These samples need a new/updated env vars in testing projects set to pass (let us know which ones)
Tests pass: mvn clean verify required
Lint passes: mvn -P lint checkstyle:check required
Static Analysis: mvn -P lint clean compile pmd:cpd-check spotbugs:check advisory only
This sample adds a new sample directory, and I updated the CODEOWNERS file with the codeowners for this sample
This sample adds a new Product API, and I updated the Blunderbuss issue/PR auto-assigner with the codeowners for this sample
Please merge this PR for me once it is approved

Sorry, something went wrong.

All reactions


          Add Resource v2 Assets Security Marks

c64abfb

vijaykanthm requested review from yoshi-approver and a team as code owners

November 12, 2024 20:33

Copy link

snippet-bot bot commented Nov 12, 2024 •

edited

Loading

Here is the summary of changes.

You are about to add 3 region tags.

security-command-center/snippets/src/main/java/vtwo/assets/AddDeleteSecurityMarks.java:25, tag securitycenter_add_delete_security_marks_assets_v2
security-command-center/snippets/src/main/java/vtwo/assets/AddSecurityMarksToAssets.java:19, tag securitycenter_add_security_marks_assets_v2
security-command-center/snippets/src/main/java/vtwo/assets/DeleteAssetsSecurityMarks.java:25, tag securitycenter_delete_security_marks_assets_v2

This comment is generated by snippet-bot.
If you find problems with this result, please file an issue at:
https://github.com/googleapis/repo-automation-bots/issues.
To update this comment, add snippet-bot:force-run label or use the checkbox below:

Refresh this comment

All reactions

Sorry, something went wrong.

product-auto-label bot added api: securitycenter

Issues related to the Security Command Center API.

samples Issues that are directly related to samples. labels

blunderbuss-gcf bot assigned Sita04

vijaykanthm added 3 commits

November 13, 2024 18:34


          lint fixes

8c76982


          refactor the imports order in test file:

1d4693b


          Lint being petty about variable declarations

406c411

vijaykanthm added kokoro:run

Add this label to force Kokoro to re-run the tests.

kokoro:force-run Add this label to force Kokoro to re-run the tests. and removed kokoro:run Add this label to force Kokoro to re-run the tests. labels

kokoro-team removed the kokoro:force-run Add this label to force Kokoro to re-run the tests. label

owenhuyn added the kokoro:force-run Add this label to force Kokoro to re-run the tests. label

kokoro-team removed the kokoro:force-run Add this label to force Kokoro to re-run the tests. label

vijaykanthm added the kokoro:force-run Add this label to force Kokoro to re-run the tests. label

kokoro-team removed the kokoro:force-run Add this label to force Kokoro to re-run the tests. label

minherz requested changes

View reviewed changes

security-command-center/snippets/src/main/java/vtwo/assets/AddDeleteSecurityMarks.java

+              import com.google.protobuf.FieldMask;
+              import java.io.IOException;
+              //[START securitycenter_add_delete_security_marks_assets_v2]

Copy link

Contributor

minherz Dec 12, 2024

There was a problem hiding this comment.

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

place region tags to enclose necessary imports and the code sample method. no need to leave space lines between the region tags and the code

Sorry, something went wrong.

All reactions

security-command-center/snippets/src/main/java/vtwo/assets/AddDeleteSecurityMarks.java

+              public class AddDeleteSecurityMarks {
+                public static void main(String[] args) throws IOException {
+                  // organizationId: Google Cloud Organization id.
+                  String organizationId = "{google-cloud-organization-id}";

Copy link

Contributor

minherz Dec 12, 2024

There was a problem hiding this comment.

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

please align the style of the ID with other code samples. No need for curly brackets. Most of code samples use capitalized expression like PROJECT_ID or ORGANIZATION_ID

Sorry, something went wrong.

All reactions

security-command-center/snippets/src/main/java/vtwo/assets/AddDeleteSecurityMarks.java

+                  String organizationId = "{google-cloud-organization-id}";
+                  // Specify the finding-id.
+                  String assetId = "{asset-id}";

Copy link

Contributor

minherz Dec 12, 2024

There was a problem hiding this comment.

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

same here. note that "finding-id" is not used anywhere. consider to refactor the comment

Sorry, something went wrong.

All reactions

security-command-center/snippets/src/main/java/vtwo/assets/AddDeleteSecurityMarks.java

Comment on lines +35 to +36

		// Specify the location.
		String location = "global";

Copy link

Contributor

minherz Dec 12, 2024

There was a problem hiding this comment.

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

does your code sample support other locations? if not, please use this literal inside the code sample method instead of using it as parameter. if a user can use different locations, provide a link to documentation that enumerates these locations in the comment for this argument.

Sorry, something went wrong.

All reactions

security-command-center/snippets/src/main/java/vtwo/assets/AddDeleteSecurityMarks.java

Comment on lines +41 to +43

+                // Demonstrates adding/updating at the same time as deleting security
+                // marks from an asset.
+                // To add or change security marks, you must have an IAM role that includes permission:

Copy link

Contributor

minherz Dec 12, 2024

There was a problem hiding this comment.

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

no need for comments here.

Sorry, something went wrong.

All reactions

security-command-center/snippets/src/test/java/vtwo/AssetSecurityMarksIT.java

Comment on lines +80 to +82

+                  final PrintStream out = System.out;
+                  stdOut = new ByteArrayOutputStream();
+                  System.setOut(new PrintStream(stdOut));

Copy link

Contributor

minherz Dec 12, 2024

There was a problem hiding this comment.

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

please use return values instead of capturing and parsing stdout.

Sorry, something went wrong.

All reactions

security-command-center/snippets/src/test/java/vtwo/AssetSecurityMarksIT.java

+                  stdOut = new ByteArrayOutputStream();
+                  System.setOut(new PrintStream(stdOut));
+                  requireEnvVar("GOOGLE_APPLICATION_CREDENTIALS");

Copy link

Contributor

minherz Dec 12, 2024

There was a problem hiding this comment.

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

nit: you can skip this check

Sorry, something went wrong.

All reactions

security-command-center/snippets/src/test/java/vtwo/AssetSecurityMarksIT.java

Comment on lines +86 to +98

+                  // Fetch a valid asset ID dynamically
+                  try (SecurityCenterClient client = SecurityCenterClient.create()) {
+                    OrganizationName orgName = OrganizationName.of(ORGANIZATION_ID);
+                    ListAssetsRequest request =
+                        ListAssetsRequest.newBuilder().setParent(orgName.toString()).setPageSize(1).build();
+                    Asset asset = client.listAssets(request).iterateAll().iterator().next().getAsset();
+                    assetName = asset.getName(); // Get the full resource name for the asset
+                    assetId = extractAssetId(assetName);
+                  } catch (InvalidArgumentException e) {
+                    System.err.println("Error retrieving asset ID: " + e.getMessage());
+                    throw e;
+                  }

Copy link

Contributor

minherz Dec 12, 2024

There was a problem hiding this comment.

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

setup method is used to create resources. you cannot assume that a resource exists before the tests are executed. in rare occasions when tests use pre-provisioned resources (e.g. because provisioning a resource takes too long), all required attributes of the resource are hardcoded and expressed via environment variables in the testing environment.

Sorry, something went wrong.

All reactions

security-command-center/snippets/src/test/java/vtwo/AssetSecurityMarksIT.java

+                  stdOut = null;
+                  System.setOut(out);
+                  TimeUnit.MINUTES.sleep(1);

Copy link

Contributor

minherz Dec 12, 2024

There was a problem hiding this comment.

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

remove this delay

Sorry, something went wrong.

All reactions

security-command-center/snippets/src/test/java/vtwo/AssetSecurityMarksIT.java

Comment on lines +107 to +108

		stdOut = new ByteArrayOutputStream();
		System.setOut(new PrintStream(stdOut));

Copy link

Contributor

minherz Dec 12, 2024

There was a problem hiding this comment.

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

do not capture stdout stream

Sorry, something went wrong.

All reactions

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

minherz minherz requested changes

yoshi-approver Awaiting requested review from yoshi-approver yoshi-approver is a code owner

Requested changes must be addressed to merge this pull request.

Assignees

Labels

api: securitycenter

Issues related to the Security Command Center API.

Issues that are directly related to samples.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

Add this suggestion to a batch that can be applied as a single commit. This suggestion is invalid because no changes were made to the code. Suggestions cannot be applied while the pull request is closed. Suggestions cannot be applied while viewing a subset of changes. Only one suggestion per line can be applied in a batch. Add this suggestion to a batch that can be applied as a single commit. Applying suggestions on deleted lines is not supported. You must change the existing code in this line in order to create a valid suggestion. Outdated suggestions cannot be applied. This suggestion has been applied or marked resolved. Suggestions cannot be applied from pending reviews. Suggestions cannot be applied on multi-line comments. Suggestions cannot be applied while the pull request is queued to merge. Suggestion cannot be applied right now. Please check back later.

Footer

© 2025 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.