feat(securitycenter): Add Resource SCC Management API Org Security Center Service Custom Module samples (Get, List, Update) #9913
Conversation
|
Here is the summary of changes. You are about to add 3 region tags.
This comment is generated by snippet-bot.
|
There was a problem hiding this comment.
Hi @lovenishs04 and reviewers,
I'm currently reviewing this pull request and will post my detailed review in a few minutes. In the meantime, here's a quick summary to help everyone get up to speed:
This pull request adds Java samples for the Security Command Center Management API's Organization Security Center Service Custom Module. Specifically, it includes samples for:
- Get: Retrieving a Security Center service.
- List: Listing all Security Center services.
- Update: Updating a Security Center service.
The changes involve creating new Java classes (GetSecurityCenterService.java, ListSecurityCenterServices.java, UpdateSecurityCenterService.java) and corresponding unit tests (SecurityCenterServiceTest.java). These classes use the google-cloud-securitycentermanagement library to interact with the Security Command Center API. The code is well-documented and includes clear instructions and comments.
The intent is to provide developers with clear, concise, and readily usable code examples for common Security Command Center tasks. This will improve the developer experience and make it easier to integrate Security Command Center into their applications.
Here's a little haiku to lighten the mood:
Secure the cloud's keep,
Code samples guide the way clear,
Safety's code unfolds.
Looking forward to the discussion!
Best,
Gemini
product-auto-label
bot
added
api: securitycenter
There was a problem hiding this comment.
This pull request adds samples for the Security Command Center Management API's Organization Security Center Service Custom Module. The samples cover Get, List, and Update operations. The code generally looks good, but there are a few improvements that can be made regarding clarity, error handling, and documentation.
I've referenced the Sample Format Guide in this review, specifically the sections on TODO comments and placeholder values.
It's important to address the TODOs and ensure the README is updated before merging. The checklist in the PR description mentions several important items that need to be confirmed.
|
|
||
| public static void main(String[] args) throws IOException { | ||
| // https://cloud.google.com/security-command-center/docs/reference/security-center-management/rest/v1/organizations.locations.securityCenterServices/get | ||
| // TODO: Developer should replace project_id with a real project ID before running this code |
There was a problem hiding this comment.
The TODO comment should be more actionable. Instead of just stating what the developer needs to do, consider providing a more descriptive placeholder or example. Per the Sample Format Guide, placeholder values should be enclosed in angle brackets.
| // TODO: Developer should replace project_id with a real project ID before running this code | |
| // TODO: Replace <project-id> with your project ID | |
| String projectId = "<project-id>"; |
| public static void main(String[] args) throws IOException { | ||
| // https://cloud.google.com/security-command-center/docs/reference/security-center-management/rest/v1/organizations.locations.securityCenterServices/get | ||
| // TODO: Developer should replace project_id with a real project ID before running this code | ||
| String projectId = "project_id"; |
There was a problem hiding this comment.
Per the Sample Format Guide, use angle brackets for placeholders. This makes it clear what needs replacing and improves readability.
| String projectId = "project_id"; | |
| String projectId = "<project-id>"; |
| // Replace service with one of the valid values: | ||
| // container-threat-detection, event-threat-detection, security-health-analytics, | ||
| // vm-threat-detection, web-security-scanner | ||
| String service = "service"; |
There was a problem hiding this comment.
Use angle brackets for the placeholder to adhere to the Sample Format Guide.
| String service = "service"; | |
| String service = "<service>"; |
|
|
||
| public static void main(String[] args) throws IOException { | ||
| // https://cloud.google.com/security-command-center/docs/reference/security-center-management/rest/v1/organizations.locations.securityCenterServices/list | ||
| // TODO: Developer should replace project_id with a real project ID before running this code |
There was a problem hiding this comment.
Make this TODO comment more actionable and use angle brackets for the placeholder, as per the Sample Format Guide.
| // TODO: Developer should replace project_id with a real project ID before running this code | |
| // TODO: Replace <project-id> with your project ID | |
| String projectId = "<project-id>"; |
| public static void main(String[] args) throws IOException { | ||
| // https://cloud.google.com/security-command-center/docs/reference/security-center-management/rest/v1/organizations.locations.securityCenterServices/list | ||
| // TODO: Developer should replace project_id with a real project ID before running this code | ||
| String projectId = "project_id"; |
There was a problem hiding this comment.
Use angle brackets for placeholders to follow the Sample Format Guide.
| String projectId = "project_id"; | |
| String projectId = "<project-id>"; |
|
|
||
| public static void main(String[] args) throws IOException { | ||
| // https://cloud.google.com/security-command-center/docs/reference/security-center-management/rest/v1/organizations.locations.securityCenterServices/patch | ||
| // TODO: Developer should replace project_id with a real project ID before running this code |
There was a problem hiding this comment.
Ensure the TODO comment is actionable and uses angle brackets for placeholders, consistent with the Sample Format Guide.
| // TODO: Developer should replace project_id with a real project ID before running this code | |
| // TODO: Replace <project-id> with your project ID | |
| String projectId = "<project-id>"; |
| public static void main(String[] args) throws IOException { | ||
| // https://cloud.google.com/security-command-center/docs/reference/security-center-management/rest/v1/organizations.locations.securityCenterServices/patch | ||
| // TODO: Developer should replace project_id with a real project ID before running this code | ||
| String projectId = "project_id"; |
There was a problem hiding this comment.
Use angle brackets for placeholders as per the Sample Format Guide.
| String projectId = "project_id"; | |
| String projectId = "<project-id>"; |
| // Replace service with one of the valid values: | ||
| // container-threat-detection, event-threat-detection, security-health-analytics, | ||
| // vm-threat-detection, web-security-scanner | ||
| String service = "service"; |
There was a problem hiding this comment.
Use angle brackets for the placeholder to be consistent with the Sample Format Guide.
| String service = "service"; | |
| String service = "<service>"; |
|
|
||
| @RunWith(JUnit4.class) | ||
| public class SecurityCenterServiceTest { | ||
| // TODO(Developer): Replace the below variable |
There was a problem hiding this comment.
Instead of a TODO, provide clear instructions on setting the environment variable. This improves the clarity and usability of the test code. For example:
// Set the SCC_PROJECT_ID environment variable. See https://cloud.google.com/docs/authentication/getting-started for more details.
private static final String PROJECT_ID = System.getenv("SCC_PROJECT_ID");| // TODO(Developer): Replace the below variable | |
| // Set the SCC_PROJECT_ID environment variable. See https://cloud.google.com/docs/authentication/getting-started for more details. | |
| private static final String PROJECT_ID = System.getenv("SCC_PROJECT_ID"); |
There was a problem hiding this comment.
nit: I think this comment should be removed. There is no point in TODO comment such this in the test code.
There was a problem hiding this comment.
nit: in this and other files consider to remove unnecessary new lines
There was a problem hiding this comment.
nit: security-command-center/snippets/src/main/java/management/api/UpdateSecurityCenterService.java still has empty lines
|
|
||
| @RunWith(JUnit4.class) | ||
| public class SecurityCenterServiceTest { | ||
| // TODO(Developer): Replace the below variable |
There was a problem hiding this comment.
nit: I think this comment should be removed. There is no point in TODO comment such this in the test code.
security-command-center/snippets/src/test/java/management/api/SecurityCenterServiceTest.java
Show resolved
Hide resolved
| public class SecurityCenterServiceTest { | ||
| // TODO(Developer): Replace the below variable | ||
| private static final String PROJECT_ID = System.getenv("SCC_PROJECT_ID"); | ||
| private static final String SERVICE = "EVENT_THREAT_DETECTION"; |
There was a problem hiding this comment.
what guarantee that this service exists?
There was a problem hiding this comment.
Actually there are multiple services mentioned in the documentation. https://cloud.google.com/security-command-center/docs/reference/security-center-management/rest/v1/organizations.locations.securityCenterServices/get
Out of these services I have picked up one and also ensured that it is available in the security command center console and also tested this in my local machine.
There was a problem hiding this comment.
nit: please add a comment explaining this. Also the documentation that I see shows the following list:
container-threat-detectionevent-threat-detectionsecurity-health-analyticsvm-threat-detectionweb-security-scanner
The service in the test isEVENT_THREAT_DETECTION. The documentation should explain the value.
lovenishs04
added
the
kokoro:force-run
kokoro-team
removed
the
kokoro:force-run
There was a problem hiding this comment.
nit: security-command-center/snippets/src/main/java/management/api/UpdateSecurityCenterService.java still has empty lines
| public class SecurityCenterServiceTest { | ||
| // TODO(Developer): Replace the below variable | ||
| private static final String PROJECT_ID = System.getenv("SCC_PROJECT_ID"); | ||
| private static final String SERVICE = "EVENT_THREAT_DETECTION"; |
There was a problem hiding this comment.
nit: please add a comment explaining this. Also the documentation that I see shows the following list:
container-threat-detectionevent-threat-detectionsecurity-health-analyticsvm-threat-detectionweb-security-scanner
The service in the test isEVENT_THREAT_DETECTION. The documentation should explain the value.
security-command-center/snippets/src/test/java/management/api/SecurityCenterServiceTest.java
Show resolved
Hide resolved
Description
Fixes # b/347346449, b/347346682, b/347346802
This PR adds SCC Managament API Org Security Center Service Custom Module Samples for Get, List and Update.
Note: Before submitting a pull request, please open an issue for discussion if you are not associated with Google.
Checklist
pom.xmlparent set to latestshared-configurationmvn clean verifyrequiredmvn -P lint checkstyle:checkrequiredmvn -P lint clean compile pmd:cpd-check spotbugs:checkadvisory only