This document describes the features, configurations and APIs in Secure Source Manager that align with the controls for supported control packages. This document assumes that you're using Assured Workloads .
Data Boundary for FedRAMP High
Supported services
The following table lists the Secure Source Manager APIs and versions that meet the requirements of Data Boundary for FedRAMP High.
| Service | Version | Status |
|---|---|---|
|
securesourcemanager.googleapis.com
|
v1 | SUPPORTED |
Compliance supported regions
Secure Source Manager is available for Data Boundary for FedRAMP High in the following Google Cloud regions:
- us-central1
- us-east1
API fields for sensitive data
Resource: securesourcemanager.googleapis.com/Instance
The following table specifies the API resources and fields that are designed to handle data that is protected under Data Boundary for FedRAMP High.
Service: securesourcemanager.googleapis.com
REST API: GET
/v1/{parent=projects/*/locations/*}/instances
RPC methods:
-
google.cloud.securesourcemanager.v1.SecureSourceManager.ListInstances
-
filter -
orderBy
Resource: securesourcemanager.googleapis.com/Issue
The following table specifies the API resources and fields that are designed to handle data that is protected under Data Boundary for FedRAMP High.
Service: securesourcemanager.googleapis.com
REST API: GET
/v1/{parent=projects/*/locations/*/repositories/*}/issues
RPC methods:
-
google.cloud.securesourcemanager.v1.SecureSourceManager.ListIssues
-
filter
Service: securesourcemanager.googleapis.com
REST API: PATCH
/v1/{issue.name=projects/*/locations/*/repositories/*/issues/*}
RPC methods:
-
google.cloud.securesourcemanager.v1.SecureSourceManager.UpdateIssue
-
issue.body -
issue.title
Service: securesourcemanager.googleapis.com
REST API: POST
/v1/{parent=projects/*/locations/*/repositories/*}/issues
RPC methods:
-
google.cloud.securesourcemanager.v1.SecureSourceManager.CreateIssue
-
issue.body -
issue.title
Resource: securesourcemanager.googleapis.com/IssueComment
The following table specifies the API resources and fields that are designed to handle data that is protected under Data Boundary for FedRAMP High.
Service: securesourcemanager.googleapis.com
REST API: PATCH
/v1/{issue_comment.name=projects/*/locations/*/repositories/*/issues/*/issueComments/*}
RPC methods:
-
google.cloud.securesourcemanager.v1.SecureSourceManager.UpdateIssueComment
-
issueComment.body
Service: securesourcemanager.googleapis.com
REST API: POST
/v1/{parent=projects/*/locations/*/repositories/*/issues/*}/issueComments
RPC methods:
-
google.cloud.securesourcemanager.v1.SecureSourceManager.CreateIssueComment
-
issueComment.body
Resource: securesourcemanager.googleapis.com/PullRequest
The following table specifies the API resources and fields that are designed to handle data that is protected under Data Boundary for FedRAMP High.
Service: securesourcemanager.googleapis.com
REST API: PATCH
/v1/{pull_request.name=projects/*/locations/*/repositories/*/pullRequests/*}
RPC methods:
-
google.cloud.securesourcemanager.v1.SecureSourceManager.UpdatePullRequest
-
pullRequest.base.ref -
pullRequest.body -
pullRequest.head.ref -
pullRequest.title
Service: securesourcemanager.googleapis.com
REST API: POST
/v1/{parent=projects/*/locations/*/repositories/*}/pullRequests
RPC methods:
-
google.cloud.securesourcemanager.v1.SecureSourceManager.CreatePullRequest
-
pullRequest.base.ref -
pullRequest.body -
pullRequest.head.ref -
pullRequest.title
Resource: securesourcemanager.googleapis.com/PullRequestComment
The following table specifies the API resources and fields that are designed to handle data that is protected under Data Boundary for FedRAMP High.
Service: securesourcemanager.googleapis.com
REST API: PATCH
/v1/{pull_request_comment.name=projects/*/locations/*/repositories/*/pullRequests/*/pullRequestComments/*}
RPC methods:
-
google.cloud.securesourcemanager.v1.SecureSourceManager.UpdatePullRequestComment
-
pullRequestComment.code.body -
pullRequestComment.code.position.path -
pullRequestComment.comment.body -
pullRequestComment.review.body
Service: securesourcemanager.googleapis.com
REST API: POST
/v1/{parent=projects/*/locations/*/repositories/*/pullRequests/*}/pullRequestComments
RPC methods:
-
google.cloud.securesourcemanager.v1.SecureSourceManager.CreatePullRequestComment
-
pullRequestComment.code.body -
pullRequestComment.code.position.path -
pullRequestComment.comment.body -
pullRequestComment.review.body
Service: securesourcemanager.googleapis.com
REST API: POST
/v1/{parent=projects/*/locations/*/repositories/*/pullRequests/*}/pullRequestComments:batchCreate
RPC methods:
-
google.cloud.securesourcemanager.v1.SecureSourceManager.BatchCreatePullRequestComments
-
requests.pullRequestComment.code.body -
requests.pullRequestComment.code.position.path -
requests.pullRequestComment.comment.body -
requests.pullRequestComment.review.body
Resource: securesourcemanager.googleapis.com/Repository
The following table specifies the API resources and fields that are designed to handle data that is protected under Data Boundary for FedRAMP High.
Service: securesourcemanager.googleapis.com
REST API: GET
/v1/{parent=projects/*/locations/*}/repositories
RPC methods:
-
google.cloud.securesourcemanager.v1.SecureSourceManager.ListRepositories
-
filter
Service: securesourcemanager.googleapis.com
REST API: PATCH
/v1/{repository.name=projects/*/locations/*/repositories/*}
RPC methods:
-
google.cloud.securesourcemanager.v1.SecureSourceManager.UpdateRepository
-
repository.description
Service: securesourcemanager.googleapis.com
REST API: POST
/v1/{parent=projects/*/locations/*}/repositories
RPC methods:
-
google.cloud.securesourcemanager.v1.SecureSourceManager.CreateRepository
-
repository.description
What's next
- Learn more about compliance in Google Cloud .
