feat(securitycenter): Add Resource SCC Management API Org ETD Custom Module code samples (Update, Get Eff, List Eff, List Desc, Validate) (GoogleCloudPlatform#9912)

* sample codes for event threat detection custom modules

* fixed lint

* addressed comments

* lint fix

* addressed comments

Author: lovenishs04

security-command-center/snippets/src/main/java/management/api/CreateEventThreatDetectionCustomModule.java

@@ -50,6 +50,8 @@ public static EventThreatDetectionCustomModule createEventThreatDetectionCustomM
     // once, and can be reused for multiple requests.
     try (SecurityCenterManagementClient client = SecurityCenterManagementClient.create()) {
 
+      String parent = String.format("projects/%s/locations/global", projectId);
+
       // define the metadata and other config parameters severity, description,
       // recommendation and ips below
       Map<String, Value> metadata = new HashMap<>();
@@ -83,7 +85,7 @@ public static EventThreatDetectionCustomModule createEventThreatDetectionCustomM
 
       CreateEventThreatDetectionCustomModuleRequest request =
           CreateEventThreatDetectionCustomModuleRequest.newBuilder()
-              .setParent(String.format("projects/%s/locations/global", projectId))
+              .setParent(parent)
               .setEventThreatDetectionCustomModule(eventThreatDetectionCustomModule)
               .build();
 

security-command-center/snippets/src/main/java/management/api/DeleteEventThreatDetectionCustomModule.java

@@ -41,13 +41,15 @@ public static boolean deleteEventThreatDetectionCustomModule(
     // once, and can be reused for multiple requests.
     try (SecurityCenterManagementClient client = SecurityCenterManagementClient.create()) {
 
-      String name =
+      String qualifiedModuleName =
           String.format(
               "projects/%s/locations/global/eventThreatDetectionCustomModules/%s",
               projectId, customModuleId);
 
       DeleteEventThreatDetectionCustomModuleRequest request =
-          DeleteEventThreatDetectionCustomModuleRequest.newBuilder().setName(name).build();
+          DeleteEventThreatDetectionCustomModuleRequest.newBuilder()
+              .setName(qualifiedModuleName)
+              .build();
 
       client.deleteEventThreatDetectionCustomModule(request);
 

security-command-center/snippets/src/main/java/management/api/GetEffectiveEventThreatDetectionCustomModule.java

@@ -0,0 +1,62 @@
+/*
+ * Copyright 2025 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *       http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package management.api;
+
+// [START securitycenter_get_effective_event_threat_detection_custom_module]
+import com.google.cloud.securitycentermanagement.v1.EffectiveEventThreatDetectionCustomModule;
+import com.google.cloud.securitycentermanagement.v1.GetEffectiveEventThreatDetectionCustomModuleRequest;
+import com.google.cloud.securitycentermanagement.v1.SecurityCenterManagementClient;
+import java.io.IOException;
+
+public class GetEffectiveEventThreatDetectionCustomModule {
+
+  public static void main(String[] args) throws IOException {
+    // TODO: Developer should replace project_id with a real project ID before running this code
+    String projectId = "project_id";
+
+    String customModuleId = "custom_module_id";
+
+    getEffectiveEventThreatDetectionCustomModule(projectId, customModuleId);
+  }
+
+  public static EffectiveEventThreatDetectionCustomModule
+      getEffectiveEventThreatDetectionCustomModule(String projectId, String customModuleId)
+          throws IOException {
+
+    // Initialize client that will be used to send requests. This client only needs
+    // to be created
+    // once, and can be reused for multiple requests.
+    try (SecurityCenterManagementClient client = SecurityCenterManagementClient.create()) {
+
+      String qualifiedModuleName =
+          String.format(
+              "projects/%s/locations/global/effectiveEventThreatDetectionCustomModules/%s",
+              projectId, customModuleId);
+
+      GetEffectiveEventThreatDetectionCustomModuleRequest request =
+          GetEffectiveEventThreatDetectionCustomModuleRequest.newBuilder()
+              .setName(qualifiedModuleName)
+              .build();
+
+      EffectiveEventThreatDetectionCustomModule response =
+          client.getEffectiveEventThreatDetectionCustomModule(request);
+
+      return response;
+    }
+  }
+}
+// [END securitycenter_get_effective_event_threat_detection_custom_module]

security-command-center/snippets/src/main/java/management/api/GetEventThreatDetectionCustomModule.java

@@ -42,13 +42,15 @@ public static EventThreatDetectionCustomModule getEventThreatDetectionCustomModu
     // once, and can be reused for multiple requests.
     try (SecurityCenterManagementClient client = SecurityCenterManagementClient.create()) {
 
-      String name =
+      String qualifiedModuleName =
           String.format(
               "projects/%s/locations/global/eventThreatDetectionCustomModules/%s",
               projectId, customModuleId);
 
       GetEventThreatDetectionCustomModuleRequest request =
-          GetEventThreatDetectionCustomModuleRequest.newBuilder().setName(name).build();
+          GetEventThreatDetectionCustomModuleRequest.newBuilder()
+              .setName(qualifiedModuleName)
+              .build();
 
       EventThreatDetectionCustomModule response =
           client.getEventThreatDetectionCustomModule(request);

security-command-center/snippets/src/main/java/management/api/ListDescendantEventThreatDetectionCustomModules.java

@@ -0,0 +1,56 @@
+/*
+ * Copyright 2025 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *       http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package management.api;
+
+// [START securitycenter_list_descendant_event_threat_detection_custom_module]
+import com.google.cloud.securitycentermanagement.v1.ListDescendantEventThreatDetectionCustomModulesRequest;
+import com.google.cloud.securitycentermanagement.v1.SecurityCenterManagementClient;
+import com.google.cloud.securitycentermanagement.v1.SecurityCenterManagementClient.ListDescendantEventThreatDetectionCustomModulesPagedResponse;
+import java.io.IOException;
+
+public class ListDescendantEventThreatDetectionCustomModules {
+
+  public static void main(String[] args) throws IOException {
+    // TODO: Developer should replace project_id with a real project ID before running this code
+    String projectId = "project_id";
+
+    listDescendantEventThreatDetectionCustomModules(projectId);
+  }
+
+  public static ListDescendantEventThreatDetectionCustomModulesPagedResponse
+      listDescendantEventThreatDetectionCustomModules(String projectId) throws IOException {
+
+    // Initialize client that will be used to send requests. This client only needs
+    // to be created
+    // once, and can be reused for multiple requests.
+    try (SecurityCenterManagementClient client = SecurityCenterManagementClient.create()) {
+
+      String parent = String.format("projects/%s/locations/global", projectId);
+
+      ListDescendantEventThreatDetectionCustomModulesRequest request =
+          ListDescendantEventThreatDetectionCustomModulesRequest.newBuilder()
+              .setParent(parent)
+              .build();
+
+      ListDescendantEventThreatDetectionCustomModulesPagedResponse response =
+          client.listDescendantEventThreatDetectionCustomModules(request);
+
+      return response;
+    }
+  }
+}
+// [END securitycenter_list_descendant_event_threat_detection_custom_module]

security-command-center/snippets/src/main/java/management/api/ListEffectiveEventThreatDetectionCustomModules.java

@@ -0,0 +1,56 @@
+/*
+ * Copyright 2025 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *       http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package management.api;
+
+// [START securitycenter_list_effective_event_threat_detection_custom_module]
+import com.google.cloud.securitycentermanagement.v1.ListEffectiveEventThreatDetectionCustomModulesRequest;
+import com.google.cloud.securitycentermanagement.v1.SecurityCenterManagementClient;
+import com.google.cloud.securitycentermanagement.v1.SecurityCenterManagementClient.ListEffectiveEventThreatDetectionCustomModulesPagedResponse;
+import java.io.IOException;
+
+public class ListEffectiveEventThreatDetectionCustomModules {
+
+  public static void main(String[] args) throws IOException {
+    // TODO: Developer should replace project_id with a real project ID before running this code
+    String projectId = "project_id";
+
+    listEffectiveEventThreatDetectionCustomModules(projectId);
+  }
+
+  public static ListEffectiveEventThreatDetectionCustomModulesPagedResponse
+      listEffectiveEventThreatDetectionCustomModules(String projectId) throws IOException {
+
+    // Initialize client that will be used to send requests. This client only needs
+    // to be created
+    // once, and can be reused for multiple requests.
+    try (SecurityCenterManagementClient client = SecurityCenterManagementClient.create()) {
+
+      String parent = String.format("projects/%s/locations/global", projectId);
+
+      ListEffectiveEventThreatDetectionCustomModulesRequest request =
+          ListEffectiveEventThreatDetectionCustomModulesRequest.newBuilder()
+              .setParent(parent)
+              .build();
+
+      ListEffectiveEventThreatDetectionCustomModulesPagedResponse response =
+          client.listEffectiveEventThreatDetectionCustomModules(request);
+
+      return response;
+    }
+  }
+}
+// [END securitycenter_list_effective_event_threat_detection_custom_module]

security-command-center/snippets/src/main/java/management/api/ListEventThreatDetectionCustomModules.java

@@ -40,10 +40,10 @@ public static void main(String[] args) throws IOException {
     // once, and can be reused for multiple requests.
     try (SecurityCenterManagementClient client = SecurityCenterManagementClient.create()) {
 
+      String parent = String.format("projects/%s/locations/global", projectId);
+
       ListEventThreatDetectionCustomModulesRequest request =
-          ListEventThreatDetectionCustomModulesRequest.newBuilder()
-              .setParent(String.format("projects/%s/locations/global", projectId))
-              .build();
+          ListEventThreatDetectionCustomModulesRequest.newBuilder().setParent(parent).build();
 
       ListEventThreatDetectionCustomModulesPagedResponse response =
           client.listEventThreatDetectionCustomModules(request);

security-command-center/snippets/src/main/java/management/api/UpdateEventThreatDetectionCustomModule.java

@@ -0,0 +1,80 @@
+/*
+ * Copyright 2025 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *       http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package management.api;
+
+// [START securitycenter_update_event_threat_detection_custom_module]
+import com.google.cloud.securitycentermanagement.v1.EventThreatDetectionCustomModule;
+import com.google.cloud.securitycentermanagement.v1.EventThreatDetectionCustomModule.EnablementState;
+import com.google.cloud.securitycentermanagement.v1.SecurityCenterManagementClient;
+import com.google.cloud.securitycentermanagement.v1.UpdateEventThreatDetectionCustomModuleRequest;
+import com.google.protobuf.FieldMask;
+import java.io.IOException;
+
+public class UpdateEventThreatDetectionCustomModule {
+
+  public static void main(String[] args) throws IOException {
+    // TODO: Developer should replace project_id with a real project ID before running this code
+    String projectId = "project_id";
+
+    String customModuleId = "custom_module_id";
+
+    updateEventThreatDetectionCustomModule(projectId, customModuleId);
+  }
+
+  public static EventThreatDetectionCustomModule updateEventThreatDetectionCustomModule(
+      String projectId, String customModuleId) throws IOException {
+
+    // Initialize client that will be used to send requests. This client only needs
+    // to be created
+    // once, and can be reused for multiple requests.
+    try (SecurityCenterManagementClient client = SecurityCenterManagementClient.create()) {
+
+      String qualifiedModuleName =
+          String.format(
+              "projects/%s/locations/global/eventThreatDetectionCustomModules/%s",
+              projectId, customModuleId);
+
+      // Define the event threat detection custom module configuration, update the
+      // DisplayName and EnablementState accordingly.
+      EventThreatDetectionCustomModule eventThreatDetectionCustomModule =
+          EventThreatDetectionCustomModule.newBuilder()
+              .setName(qualifiedModuleName)
+              .setDisplayName("updated_custom_module_name")
+              .setEnablementState(EnablementState.DISABLED)
+              .build();
+
+      // Set the field mask to specify which properties should be updated. In the below example we
+      // are updating displayName and EnablementState
+      // https://cloud.google.com/security-command-center/docs/reference/security-center-management/rest/v1/organizations.locations.eventThreatDetectionCustomModules/patch#query-parameters
+      // https://protobuf.dev/reference/protobuf/google.protobuf/#field-mask
+      FieldMask fieldMask =
+          FieldMask.newBuilder().addPaths("display_name").addPaths("enablement_state").build();
+
+      UpdateEventThreatDetectionCustomModuleRequest request =
+          UpdateEventThreatDetectionCustomModuleRequest.newBuilder()
+              .setEventThreatDetectionCustomModule(eventThreatDetectionCustomModule)
+              .setUpdateMask(fieldMask)
+              .build();
+
+      EventThreatDetectionCustomModule response =
+          client.updateEventThreatDetectionCustomModule(request);
+
+      return response;
+    }
+  }
+}
+// [END securitycenter_update_event_threat_detection_custom_module]