package grafeas.v1beta1.provenance

Get desktop application:
View/edit binary Protocol Buffers messages

Artifact describes a build product.

Used in: BuildProvenance

• string checksum = 1

  Hash or checksum value of a binary, or Docker Registry 2.0 digest of a container.

• string id = 2

  Artifact ID, if any; for container images, this will be a URL by digest like `gcr.io/projectID/imagename@sha256:123456`.

• repeated string names = 3

  Related artifact names. This may be the path to a binary or jar file, or in the case of a container build, the name used to push the container image to Google Container Registry, as presented to `docker push`. Note that a single Artifact ID can have multiple names, for example if two tags are applied to one image.

Provenance of a build. Contains all information needed to verify the full details about the build from source to completion.

Used in: build.Details

• string id = 1

  Unique identifier of the build.

• string project_id = 2

  ID of the project.

• repeated Command commands = 3

  Commands requested by the build.

• repeated Artifact built_artifacts = 4

  Output of the build.

• optional google.protobuf.Timestamp create_time = 5

  Time at which the build was created.

• optional google.protobuf.Timestamp start_time = 6

  Time at which execution of the build was started.

• optional google.protobuf.Timestamp end_time = 7

  Time at which execution of the build was finished.

• string creator = 8

  E-mail address of the user who initiated this build. Note that this was the user's e-mail address at the time the build was initiated; this address may not represent the same end-user for all time.

• string logs_uri = 9

  URI where any logs for this provenance were written.

• optional Source source_provenance = 10

  Details of the Source input to the build.

• string trigger_id = 11

  Trigger identifier if the build was triggered automatically; empty if not.

• map<string, string> build_options = 12

  Special options applied to this build. This is a catch-all field where build providers can enter any desired additional details.

• string builder_version = 13

  Version string of the builder at the time this build was executed.

Command describes a step performed as part of the build pipeline.

Used in: BuildProvenance

• string name = 1

  Name of the command, as presented on the command line, or if the command is packaged as a Docker container, as presented to `docker pull`.

• repeated string env = 2

  Environment variables set before running this command.

• repeated string args = 3

  Command-line arguments used when executing this command.

• string dir = 4

  Working directory (relative to project source root) used when running this command.

• string id = 5

  Optional unique identifier for this command, used in wait_for to reference this command as a dependency.

• repeated string wait_for = 6

  The ID(s) of the command(s) that this command depends on.

Container message for hashes of byte content of files, used in Source messages to verify integrity of source input to the build.

Used in: Source

• repeated Hash file_hash = 1

  Collection of file hashes.

Container message for hash values.

Used in: Resource, FileHashes

• Hash.HashType type = 1

  The type of hash that was performed.

• bytes value = 2

  The hash value.

Specifies the hash algorithm, if any.

Used in: Hash

• HASH_TYPE_UNSPECIFIED = 0

  Unknown.

• SHA256 = 1

  A SHA-256 hash.

Source describes the location of the source used for the build.

Used in: BuildProvenance

• string artifact_storage_source_uri = 1

  If provided, the input binary artifacts for the build came from this location.

• map<string, FileHashes> file_hashes = 2

  Hash(es) of the build source, which can be used to verify that the original source integrity was maintained in the build. The keys to this map are file paths used as build source and the values contain the hash values for those files. If the build source came in a single package such as a gzipped tarfile (.tar.gz), the FileHash will be for the single path to that file.

• optional source.SourceContext context = 3

  If provided, the source code used for the build came from this location.

• repeated source.SourceContext additional_contexts = 4

  If provided, some of the source code used for the build may be found in these locations, in the case where the source repository had multiple remotes or submodules. This list will not include the context specified in the context field.