pulumi-google-native-kotlin/com.pulumi.googlenative.containeranalysis.v1.kotlin.inputs/BuildOccurrenceArgs

BuildOccurrenceArgs

data class BuildOccurrenceArgs(val intotoProvenance: Output<InTotoProvenanceArgs>? = null, val intotoStatement: Output<InTotoStatementArgs>? = null, val provenance: Output<BuildProvenanceArgs>? = null, val provenanceBytes: Output<String>? = null) : ConvertibleToJava<BuildOccurrenceArgs>

Details of a build occurrence.

Constructors

BuildOccurrenceArgs

constructor(intotoProvenance: Output<InTotoProvenanceArgs>? = null, intotoStatement: Output<InTotoStatementArgs>? = null, provenance: Output<BuildProvenanceArgs>? = null, provenanceBytes: Output<String>? = null)

Properties

intotoProvenance

val ~~intotoProvenance~~: Output<InTotoProvenanceArgs>? = null

Deprecated. See InTotoStatement for the replacement. In-toto Provenance representation as defined in spec.

intotoStatement

val intotoStatement: Output<InTotoStatementArgs>? = null

In-toto Statement representation as defined in spec. The intoto_statement can contain any type of provenance. The serialized payload of the statement can be stored and signed in the Occurrence's envelope.

provenance

val provenance: Output<BuildProvenanceArgs>? = null

The actual provenance for the build.

provenanceBytes

val provenanceBytes: Output<String>? = null

Serialized JSON representation of the provenance, used in generating the build signature in the corresponding build note. After verifying the signature, provenance_bytes can be unmarshalled and compared to the provenance to confirm that it is unchanged. A base64-encoded string representation of the provenance bytes is used for the signature in order to interoperate with openssl which expects this format for signature verification. The serialized form is captured both to avoid ambiguity in how the provenance is marshalled to json as well to prevent incompatibilities with future changes.

Functions

toJava

open override fun toJava(): BuildOccurrenceArgs