chore: use gapic-generator-python 1.3.1 (#238)

- [ ] Regenerate this pull request now.

PiperOrigin-RevId: 472772457

Source-Link: googleapis/googleapis@855b74d

Source-Link: https://github.com/googleapis/googleapis-gen/commit/b64b1e7da3e138f15ca361552ef0545e54891b4f
Copy-Tag: eyJwIjoiLmdpdGh1Yi8uT3dsQm90LnlhbWwiLCJoIjoiYjY0YjFlN2RhM2UxMzhmMTVjYTM2MTU1MmVmMDU0NWU1NDg5MWI0ZiJ9

feat: added NO_STARTING_URL_FOUND_FOR_MANAGED_SCAN to ScanRunWarningTrace.Code
fix: Added fix to return a list of the endpoints that encountered errors during crawl, along with the specific error message when the starting URL returns Http errors
fix: GoogleAccount is deprecated

PiperOrigin-RevId: 472758119

Source-Link: googleapis/googleapis@4356ba6

Source-Link: https://github.com/googleapis/googleapis-gen/commit/237042023f108b14c042711845241fbb62cf2e08
Copy-Tag: eyJwIjoiLmdpdGh1Yi8uT3dsQm90LnlhbWwiLCJoIjoiMjM3MDQyMDIzZjEwOGIxNGMwNDI3MTE4NDUyNDFmYmI2MmNmMmUwOCJ9

Author: gcf-owl-bot[bot]

google/cloud/websecurityscanner/__init__.py

@@ -29,6 +29,7 @@
     VulnerableHeaders,
     VulnerableParameters,
     Xss,
+    Xxe,
 )
 from google.cloud.websecurityscanner_v1.types.finding_type_stats import FindingTypeStats
 from google.cloud.websecurityscanner_v1.types.scan_config import ScanConfig
@@ -73,6 +74,7 @@
     "VulnerableHeaders",
     "VulnerableParameters",
     "Xss",
+    "Xxe",
     "FindingTypeStats",
     "ScanConfig",
     "ScanConfigError",

google/cloud/websecurityscanner_v1/__init__.py

@@ -27,6 +27,7 @@
     VulnerableHeaders,
     VulnerableParameters,
     Xss,
+    Xxe,
 )
 from .types.finding_type_stats import FindingTypeStats
 from .types.scan_config import ScanConfig
@@ -92,4 +93,5 @@
     "VulnerableParameters",
     "WebSecurityScannerClient",
     "Xss",
+    "Xxe",
 )

google/cloud/websecurityscanner_v1/types/__init__.py

@@ -22,6 +22,7 @@
     VulnerableHeaders,
     VulnerableParameters,
     Xss,
+    Xxe,
 )
 from .finding_type_stats import FindingTypeStats
 from .scan_config import ScanConfig
@@ -60,6 +61,7 @@
     "VulnerableHeaders",
     "VulnerableParameters",
     "Xss",
+    "Xxe",
     "FindingTypeStats",
     "ScanConfig",
     "ScanConfigError",

google/cloud/websecurityscanner_v1/types/finding.py

@@ -93,6 +93,9 @@ class Finding(proto.Message):
         xss (google.cloud.websecurityscanner_v1.types.Xss):
             Output only. An addon containing information
             reported for an XSS, if any.
+        xxe (google.cloud.websecurityscanner_v1.types.Xxe):
+            Output only. An addon containing information
+            reported for an XXE, if any.
     """
 
     class Severity(proto.Enum):
@@ -178,6 +181,11 @@ class Severity(proto.Enum):
         number=14,
         message=finding_addon.Xss,
     )
+    xxe = proto.Field(
+        proto.MESSAGE,
+        number=18,
+        message=finding_addon.Xxe,
+    )
 
 
 __all__ = tuple(sorted(__protobuf__.manifest))

google/cloud/websecurityscanner_v1/types/finding_addon.py

@@ -24,6 +24,7 @@
         "VulnerableParameters",
         "VulnerableHeaders",
         "Xss",
+        "Xxe",
     },
 )
 
@@ -209,4 +210,33 @@ class AttackVector(proto.Enum):
     )
 
 
+class Xxe(proto.Message):
+    r"""Information reported for an XXE.
+
+    Attributes:
+        payload_value (str):
+            The XML string that triggered the XXE
+            vulnerability. Non-payload values might be
+            redacted.
+        payload_location (google.cloud.websecurityscanner_v1.types.Xxe.Location):
+            Location within the request where the payload
+            was placed.
+    """
+
+    class Location(proto.Enum):
+        r"""Locations within a request where XML was substituted."""
+        LOCATION_UNSPECIFIED = 0
+        COMPLETE_REQUEST_BODY = 1
+
+    payload_value = proto.Field(
+        proto.STRING,
+        number=1,
+    )
+    payload_location = proto.Field(
+        proto.ENUM,
+        number=2,
+        enum=Location,
+    )
+
+
 __all__ = tuple(sorted(__protobuf__.manifest))

google/cloud/websecurityscanner_v1/types/scan_config.py

@@ -69,6 +69,9 @@ class ScanConfig(proto.Message):
             static IP address scan feature. If enabled, the
             scanner will access applications from static IP
             addresses.
+        ignore_http_status_errors (bool):
+            Whether to keep scanning even if most
+            requests return HTTP error codes.
     """
 
     class UserAgent(proto.Enum):
@@ -313,6 +316,10 @@ class Schedule(proto.Message):
         proto.BOOL,
         number=14,
     )
+    ignore_http_status_errors = proto.Field(
+        proto.BOOL,
+        number=15,
+    )
 
 
 __all__ = tuple(sorted(__protobuf__.manifest))

google/cloud/websecurityscanner_v1/types/scan_run_error_trace.py

@@ -49,7 +49,7 @@ class ScanRunErrorTrace(proto.Message):
     class Code(proto.Enum):
         r"""Output only.
         Defines an error reason code.
-        Next id: 7
+        Next id: 8
         """
         CODE_UNSPECIFIED = 0
         INTERNAL_ERROR = 1

google/cloud/websecurityscanner_v1/types/scan_run_warning_trace.py

@@ -44,6 +44,7 @@ class Code(proto.Enum):
         TOO_MANY_CRAWL_RESULTS = 2
         TOO_MANY_FUZZ_TASKS = 3
         BLOCKED_BY_IAP = 4
+        NO_STARTING_URL_FOUND_FOR_MANAGED_SCAN = 5
 
     code = proto.Field(
         proto.ENUM,

tests/unit/gapic/websecurityscanner_v1/test_web_security_scanner.py

@@ -18,8 +18,8 @@
 # try/except added for compatibility with python < 3.8
 try:
     from unittest import mock
-    from unittest.mock import AsyncMock
-except ImportError:
+    from unittest.mock import AsyncMock  # pragma: NO COVER
+except ImportError:  # pragma: NO COVER
     import mock
 
 import math
@@ -739,6 +739,7 @@ def test_create_scan_config(request_type, transport: str = "grpc"):
             risk_level=scan_config.ScanConfig.RiskLevel.NORMAL,
             managed_scan=True,
             static_ip_scan=True,
+            ignore_http_status_errors=True,
         )
         response = client.create_scan_config(request)
 
@@ -762,6 +763,7 @@ def test_create_scan_config(request_type, transport: str = "grpc"):
     assert response.risk_level == scan_config.ScanConfig.RiskLevel.NORMAL
     assert response.managed_scan is True
     assert response.static_ip_scan is True
+    assert response.ignore_http_status_errors is True
 
 
 def test_create_scan_config_empty_call():
@@ -813,6 +815,7 @@ async def test_create_scan_config_async(
                 risk_level=scan_config.ScanConfig.RiskLevel.NORMAL,
                 managed_scan=True,
                 static_ip_scan=True,
+                ignore_http_status_errors=True,
             )
         )
         response = await client.create_scan_config(request)
@@ -837,6 +840,7 @@ async def test_create_scan_config_async(
     assert response.risk_level == scan_config.ScanConfig.RiskLevel.NORMAL
     assert response.managed_scan is True
     assert response.static_ip_scan is True
+    assert response.ignore_http_status_errors is True
 
 
 @pytest.mark.asyncio
@@ -1091,6 +1095,7 @@ def test_get_scan_config(request_type, transport: str = "grpc"):
             risk_level=scan_config.ScanConfig.RiskLevel.NORMAL,
             managed_scan=True,
             static_ip_scan=True,
+            ignore_http_status_errors=True,
         )
         response = client.get_scan_config(request)
 
@@ -1114,6 +1119,7 @@ def test_get_scan_config(request_type, transport: str = "grpc"):
     assert response.risk_level == scan_config.ScanConfig.RiskLevel.NORMAL
     assert response.managed_scan is True
     assert response.static_ip_scan is True
+    assert response.ignore_http_status_errors is True
 
 
 def test_get_scan_config_empty_call():
@@ -1161,6 +1167,7 @@ async def test_get_scan_config_async(
                 risk_level=scan_config.ScanConfig.RiskLevel.NORMAL,
                 managed_scan=True,
                 static_ip_scan=True,
+                ignore_http_status_errors=True,
             )
         )
         response = await client.get_scan_config(request)
@@ -1185,6 +1192,7 @@ async def test_get_scan_config_async(
     assert response.risk_level == scan_config.ScanConfig.RiskLevel.NORMAL
     assert response.managed_scan is True
     assert response.static_ip_scan is True
+    assert response.ignore_http_status_errors is True
 
 
 @pytest.mark.asyncio
@@ -1643,6 +1651,7 @@ def test_update_scan_config(request_type, transport: str = "grpc"):
             risk_level=scan_config.ScanConfig.RiskLevel.NORMAL,
             managed_scan=True,
             static_ip_scan=True,
+            ignore_http_status_errors=True,
         )
         response = client.update_scan_config(request)
 
@@ -1666,6 +1675,7 @@ def test_update_scan_config(request_type, transport: str = "grpc"):
     assert response.risk_level == scan_config.ScanConfig.RiskLevel.NORMAL
     assert response.managed_scan is True
     assert response.static_ip_scan is True
+    assert response.ignore_http_status_errors is True
 
 
 def test_update_scan_config_empty_call():
@@ -1717,6 +1727,7 @@ async def test_update_scan_config_async(
                 risk_level=scan_config.ScanConfig.RiskLevel.NORMAL,
                 managed_scan=True,
                 static_ip_scan=True,
+                ignore_http_status_errors=True,
             )
         )
         response = await client.update_scan_config(request)
@@ -1741,6 +1752,7 @@ async def test_update_scan_config_async(
     assert response.risk_level == scan_config.ScanConfig.RiskLevel.NORMAL
     assert response.managed_scan is True
     assert response.static_ip_scan is True
+    assert response.ignore_http_status_errors is True
 
 
 @pytest.mark.asyncio

tests/unit/gapic/websecurityscanner_v1alpha/test_web_security_scanner.py

@@ -18,8 +18,8 @@
 # try/except added for compatibility with python < 3.8
 try:
     from unittest import mock
-    from unittest.mock import AsyncMock
-except ImportError:
+    from unittest.mock import AsyncMock  # pragma: NO COVER
+except ImportError:  # pragma: NO COVER
     import mock
 
 import math