gcloud beta scc findings list-marks

Stay organized with collections Save and categorize content based on your preferences.

gcloud beta scc findings list-marks - list a finding's security marks

gcloud beta scc findings list-marks FINDING [--location=LOCATION; default="global"] [--page-token=PAGE_TOKEN] [--read-time=READ_TIME] [--source=SOURCE; default="-"] [--folder=FOLDER     | --organization=ORGANIZATION     | --project=PROJECT] [--filter=EXPRESSION] [--limit=LIMIT] [--page-size=PAGE_SIZE] [--sort-by=[FIELD,…]] [GCLOUD_WIDE_FLAG …]

gcloud beta scc findings list-marks `testFinding` --organization=123456 --source=5678

List all security marks for testFinding under project example-project and source 5678:

gcloud beta scc findings list-marks projects/example-project/sources/5678/findings/testFinding

List all security marks for testFinding under folder 456 and source 5678:

gcloud beta scc findings list-marks folders/456/sources/5678/findings/testFinding

List all security marks for testFinding under organization 123456, source 5678 and location=eu:

gcloud beta scc findings list-marks `testFinding` --organization=123456 --source=5678 --location=eu

FINDING

ID of the finding or fully qualified identifier for the finding.

--location=LOCATION; default="global"

When data residency controls are enabled, this attribute specifies the location in which the resource is located and applicable. The location attribute can be provided as part of the fully specified resource name or with the --location argument on the command line. The default location is global.

The default location on this command is unrelated to the default location that is specified when data residency controls are enabled for Security Command Center.

--page-token=PAGE_TOKEN

Response objects will return a non-null value for page-token to indicate that there is at least one additional page of data. User can either directly request that page by specifying the page-token explicitly or let gcloud fetch one-page-at-a-time.

--read-time=READ_TIME

(DEPRECATED) Time used as a reference point when filtering. Absence of this field will default to the API's version of NOW. See $ gcloud topic datetimes for information on supported time formats.

The --read-time option is deprecated. For more information, see the deprecation notice on the SCC release notes page.

--source=SOURCE; default="-"

Source id. Defaults to all sources.

At most one of these can be specified:

--folder=FOLDER

The folder ID (e.g., 456) that contains the finding.

--organization=ORGANIZATION

The organization ID (e.g., 123) that contains the finding.

--project=PROJECT

The project ID (e.g., example-project) that contains the finding.

--filter=EXPRESSION

Apply a Boolean filter EXPRESSION to each resource item to be listed. If the expression evaluates True, then that item is listed. For more details and examples of filter expressions, run $ gcloud topic filters. This flag interacts with other flags that are applied in this order: --flatten, --sort-by, --filter, --limit.

--limit=LIMIT

Maximum number of resources to list. The default is unlimited. This flag interacts with other flags that are applied in this order: --flatten, --sort-by, --filter, --limit.

--page-size=PAGE_SIZE

Some services group resource list output into pages. This flag specifies the maximum number of resources per page. The default is determined by the service if it supports paging, otherwise it is unlimited (no paging). Paging may be applied before or after --filter and --limit depending on the service.

--sort-by=[FIELD,…]

Comma-separated list of resource field key names to sort by. The default order is ascending. Prefix a field with ``~´´ for descending order on that field. This flag interacts with other flags that are applied in this order: --flatten, --sort-by, --filter, --limit.

Run $ gcloud help for details.