feat: [SecurityCompliance] add Audit API surface (#8697)

* feat: add Audit API surface
docs: Changes to few fields are also made

PiperOrigin-RevId: 824893251

Source-Link: googleapis/googleapis@0654a03

Source-Link: googleapis/googleapis-gen@2a18f43
Copy-Tag: eyJwIjoiU2VjdXJpdHlDb21wbGlhbmNlLy5Pd2xCb3QueWFtbCIsImgiOiIyYTE4ZjQzNGRmYmMyYzEwOWUyY2YwNTI1M2Y3Mjg4ZDBkMjdlZWVkIn0=

* 🦉 Updates from OwlBot post-processor

See https://github.com/googleapis/repo-automation-bots/blob/main/packages/owl-bot/README.md

---------

Co-authored-by: Owl Bot <gcf-owl-bot[bot]@users.noreply.github.com>

Author: gcf-owl-bot[bot]

SecurityCompliance/metadata/V1/Audit.php

@@ -0,0 +1,94 @@
+<?php
+/*
+ * Copyright 2025 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+/*
+ * GENERATED CODE WARNING
+ * This file was automatically generated - do not edit!
+ */
+
+require_once __DIR__ . '/../../../vendor/autoload.php';
+
+// [START cloudsecuritycompliance_v1_generated_Audit_CreateFrameworkAudit_sync]
+use Google\ApiCore\ApiException;
+use Google\ApiCore\OperationResponse;
+use Google\Cloud\CloudSecurityCompliance\V1\Client\AuditClient;
+use Google\Cloud\CloudSecurityCompliance\V1\CreateFrameworkAuditRequest;
+use Google\Cloud\CloudSecurityCompliance\V1\FrameworkAudit;
+use Google\Cloud\CloudSecurityCompliance\V1\FrameworkAuditDestination;
+use Google\Rpc\Status;
+
+/**
+ * Creates an audit scope report for a framework.
+ *
+ * @param string $formattedParent The parent resource where this framework audit is created.
+ *
+ *                                Supported formats are the following:
+ *
+ *                                * `organizations/{organization_id}/locations/{location}`
+ *                                * `folders/{folder_id}/locations/{location}`
+ *                                * `projects/{project_id}/locations/{location}`
+ *                                Please see {@see AuditClient::organizationLocationName()} for help formatting this field.
+ */
+function create_framework_audit_sample(string $formattedParent): void
+{
+    // Create a client.
+    $auditClient = new AuditClient();
+
+    // Prepare the request message.
+    $frameworkAuditFrameworkAuditDestination = new FrameworkAuditDestination();
+    $frameworkAudit = (new FrameworkAudit())
+        ->setFrameworkAuditDestination($frameworkAuditFrameworkAuditDestination);
+    $request = (new CreateFrameworkAuditRequest())
+        ->setParent($formattedParent)
+        ->setFrameworkAudit($frameworkAudit);
+
+    // Call the API and handle any network failures.
+    try {
+        /** @var OperationResponse $response */
+        $response = $auditClient->createFrameworkAudit($request);
+        $response->pollUntilComplete();
+
+        if ($response->operationSucceeded()) {
+            /** @var FrameworkAudit $result */
+            $result = $response->getResult();
+            printf('Operation successful with response data: %s' . PHP_EOL, $result->serializeToJsonString());
+        } else {
+            /** @var Status $error */
+            $error = $response->getError();
+            printf('Operation failed with error data: %s' . PHP_EOL, $error->serializeToJsonString());
+        }
+    } catch (ApiException $ex) {
+        printf('Call failed with message: %s' . PHP_EOL, $ex->getMessage());
+    }
+}
+
+/**
+ * Helper to execute the sample.
+ *
+ * This sample has been automatically generated and should be regarded as a code
+ * template only. It will require modifications to work:
+ *  - It may require correct/in-range values for request initialization.
+ *  - It may require specifying regional endpoints when creating the service client,
+ *    please see the apiEndpoint client configuration option for more details.
+ */
+function callSample(): void
+{
+    $formattedParent = AuditClient::organizationLocationName('[ORGANIZATION]', '[LOCATION]');
+
+    create_framework_audit_sample($formattedParent);
+}
+// [END cloudsecuritycompliance_v1_generated_Audit_CreateFrameworkAudit_sync]

SecurityCompliance/metadata/V1/CmEnrollmentService.php

@@ -0,0 +1,86 @@
+<?php
+/*
+ * Copyright 2025 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+/*
+ * GENERATED CODE WARNING
+ * This file was automatically generated - do not edit!
+ */
+
+require_once __DIR__ . '/../../../vendor/autoload.php';
+
+// [START cloudsecuritycompliance_v1_generated_Audit_GenerateFrameworkAuditScopeReport_sync]
+use Google\ApiCore\ApiException;
+use Google\Cloud\CloudSecurityCompliance\V1\Client\AuditClient;
+use Google\Cloud\CloudSecurityCompliance\V1\GenerateFrameworkAuditScopeReportRequest;
+use Google\Cloud\CloudSecurityCompliance\V1\GenerateFrameworkAuditScopeReportRequest\Format;
+use Google\Cloud\CloudSecurityCompliance\V1\GenerateFrameworkAuditScopeReportResponse;
+
+/**
+ * Generates an audit scope report for a framework.
+ *
+ * @param string $scope               The organization, folder or project for the audit report.
+ *
+ *                                    Supported formats are the following:
+ *
+ *                                    * `projects/{project_id}/locations/{location}`
+ *                                    * `folders/{folder_id}/locations/{location}`
+ *                                    * `organizations/{organization_id}/locations/{location}`
+ * @param int    $reportFormat        The format that the scope report bytes is returned in.
+ * @param string $complianceFramework The compliance framework that the scope report is generated for.
+ */
+function generate_framework_audit_scope_report_sample(
+    string $scope,
+    int $reportFormat,
+    string $complianceFramework
+): void {
+    // Create a client.
+    $auditClient = new AuditClient();
+
+    // Prepare the request message.
+    $request = (new GenerateFrameworkAuditScopeReportRequest())
+        ->setScope($scope)
+        ->setReportFormat($reportFormat)
+        ->setComplianceFramework($complianceFramework);
+
+    // Call the API and handle any network failures.
+    try {
+        /** @var GenerateFrameworkAuditScopeReportResponse $response */
+        $response = $auditClient->generateFrameworkAuditScopeReport($request);
+        printf('Response data: %s' . PHP_EOL, $response->serializeToJsonString());
+    } catch (ApiException $ex) {
+        printf('Call failed with message: %s' . PHP_EOL, $ex->getMessage());
+    }
+}
+
+/**
+ * Helper to execute the sample.
+ *
+ * This sample has been automatically generated and should be regarded as a code
+ * template only. It will require modifications to work:
+ *  - It may require correct/in-range values for request initialization.
+ *  - It may require specifying regional endpoints when creating the service client,
+ *    please see the apiEndpoint client configuration option for more details.
+ */
+function callSample(): void
+{
+    $scope = '[SCOPE]';
+    $reportFormat = Format::FORMAT_UNSPECIFIED;
+    $complianceFramework = '[COMPLIANCE_FRAMEWORK]';
+
+    generate_framework_audit_scope_report_sample($scope, $reportFormat, $complianceFramework);
+}
+// [END cloudsecuritycompliance_v1_generated_Audit_GenerateFrameworkAuditScopeReport_sync]

SecurityCompliance/metadata/V1/Common.php

@@ -0,0 +1,77 @@
+<?php
+/*
+ * Copyright 2025 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+/*
+ * GENERATED CODE WARNING
+ * This file was automatically generated - do not edit!
+ */
+
+require_once __DIR__ . '/../../../vendor/autoload.php';
+
+// [START cloudsecuritycompliance_v1_generated_Audit_GetFrameworkAudit_sync]
+use Google\ApiCore\ApiException;
+use Google\Cloud\CloudSecurityCompliance\V1\Client\AuditClient;
+use Google\Cloud\CloudSecurityCompliance\V1\FrameworkAudit;
+use Google\Cloud\CloudSecurityCompliance\V1\GetFrameworkAuditRequest;
+
+/**
+ * Gets the details for a framework audit.
+ *
+ * @param string $formattedName The name of the framework audit to retrieve.
+ *
+ *                              Supported formats are the following:
+ *
+ *                              * `organizations/{organization_id}/locations/{location}/frameworkAudits/{frameworkAuditName}`
+ *                              * `folders/{folder_id}/locations/{location}/frameworkAudits/{frameworkAuditName}`
+ *                              * `projects/{project_id}/locations/{location}/frameworkAudits/{frameworkAuditName}`
+ *                              Please see {@see AuditClient::frameworkAuditName()} for help formatting this field.
+ */
+function get_framework_audit_sample(string $formattedName): void
+{
+    // Create a client.
+    $auditClient = new AuditClient();
+
+    // Prepare the request message.
+    $request = (new GetFrameworkAuditRequest())
+        ->setName($formattedName);
+
+    // Call the API and handle any network failures.
+    try {
+        /** @var FrameworkAudit $response */
+        $response = $auditClient->getFrameworkAudit($request);
+        printf('Response data: %s' . PHP_EOL, $response->serializeToJsonString());
+    } catch (ApiException $ex) {
+        printf('Call failed with message: %s' . PHP_EOL, $ex->getMessage());
+    }
+}
+
+/**
+ * Helper to execute the sample.
+ *
+ * This sample has been automatically generated and should be regarded as a code
+ * template only. It will require modifications to work:
+ *  - It may require correct/in-range values for request initialization.
+ *  - It may require specifying regional endpoints when creating the service client,
+ *    please see the apiEndpoint client configuration option for more details.
+ */
+function callSample(): void
+{
+    $formattedName = AuditClient::frameworkAuditName('[PROJECT]', '[LOCATION]', '[FRAMEWORK_AUDIT]');
+
+    get_framework_audit_sample($formattedName);
+}
+// [END cloudsecuritycompliance_v1_generated_Audit_GetFrameworkAudit_sync]

SecurityCompliance/metadata/V1/Config.php

@@ -0,0 +1,57 @@
+<?php
+/*
+ * Copyright 2025 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+/*
+ * GENERATED CODE WARNING
+ * This file was automatically generated - do not edit!
+ */
+
+require_once __DIR__ . '/../../../vendor/autoload.php';
+
+// [START cloudsecuritycompliance_v1_generated_Audit_GetLocation_sync]
+use Google\ApiCore\ApiException;
+use Google\Cloud\CloudSecurityCompliance\V1\Client\AuditClient;
+use Google\Cloud\Location\GetLocationRequest;
+use Google\Cloud\Location\Location;
+
+/**
+ * Gets information about a location.
+ *
+ * This sample has been automatically generated and should be regarded as a code
+ * template only. It will require modifications to work:
+ *  - It may require correct/in-range values for request initialization.
+ *  - It may require specifying regional endpoints when creating the service client,
+ *    please see the apiEndpoint client configuration option for more details.
+ */
+function get_location_sample(): void
+{
+    // Create a client.
+    $auditClient = new AuditClient();
+
+    // Prepare the request message.
+    $request = new GetLocationRequest();
+
+    // Call the API and handle any network failures.
+    try {
+        /** @var Location $response */
+        $response = $auditClient->getLocation($request);
+        printf('Response data: %s' . PHP_EOL, $response->serializeToJsonString());
+    } catch (ApiException $ex) {
+        printf('Call failed with message: %s' . PHP_EOL, $ex->getMessage());
+    }
+}
+// [END cloudsecuritycompliance_v1_generated_Audit_GetLocation_sync]