Google Cloud Security Command Center · Capability

Google Cloud Security Command Center API

The Security Command Center API provides programmatic access to manage security findings, assets, sources, and notification configurations across an organization's Google Cloud resources. It enables security teams to detect threats, identify vulnerabilities, and manage compliance posture.

Run with Naftiko GoogleCloudSecurityCommandCenterAPI

What You Can Do

GET
Listsources — Google Cloud Security Command Center List sources
/organizations/{organizationId}/sources
POST
Createsource — Google Cloud Security Command Center Create a source
/organizations/{organizationId}/sources
GET
Listfindings — Google Cloud Security Command Center List findings
/organizations/{organizationId}/sources/{sourceId}/findings
POST
Createfinding — Google Cloud Security Command Center Create a finding
/organizations/{organizationId}/sources/{sourceId}/findings
GET
Listassets — Google Cloud Security Command Center List assets
/organizations/{organizationId}/assets
GET
Listnotificationconfigs — Google Cloud Security Command Center List notification configs
/organizations/{organizationId}/notificationConfigs
POST
Createnotificationconfig — Google Cloud Security Command Center Create a notification config
/organizations/{organizationId}/notificationConfigs

MCP Tools

listsources

Google Cloud Security Command Center List sources

read-only idempotent
createsource

Google Cloud Security Command Center Create a source

listfindings

Google Cloud Security Command Center List findings

read-only idempotent
createfinding

Google Cloud Security Command Center Create a finding

listassets

Google Cloud Security Command Center List assets

read-only idempotent
listnotificationconfigs

Google Cloud Security Command Center List notification configs

read-only idempotent
createnotificationconfig

Google Cloud Security Command Center Create a notification config

Capability Spec

google-cloud-security-command-center-capability.yaml Raw ↑ 
naftiko: 1.0.0-alpha2
info:
  label: Google Cloud Security Command Center API
  description: The Security Command Center API provides programmatic access to manage security findings, assets, sources,
    and notification configurations across an organization's Google Cloud resources. It enables security teams to detect threats,
    identify vulnerabilities, and manage compliance posture.
  tags:
  - Google
  - Cloud
  - Security
  - Command
  - Center
  - API
  created: '2026-05-06'
  modified: '2026-05-06'
capability:
  consumes:
  - type: http
    namespace: google-cloud-security-command-center
    baseUri: https://securitycenter.googleapis.com/v1
    description: Google Cloud Security Command Center API HTTP API.
    authentication:
      type: bearer
      token: '{{GOOGLE_CLOUD_SECURITY_COMMAND_CENTER_TOKEN}}'
    resources:
    - name: organizations-organizationid-sources
      path: /organizations/{organizationId}/sources
      operations:
      - name: listsources
        method: GET
        description: Google Cloud Security Command Center List sources
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
      - name: createsource
        method: POST
        description: Google Cloud Security Command Center Create a source
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
    - name: organizations-organizationid-sources-sourceid-fi
      path: /organizations/{organizationId}/sources/{sourceId}/findings
      operations:
      - name: listfindings
        method: GET
        description: Google Cloud Security Command Center List findings
        inputParameters:
        - name: filter
          in: query
          type: string
          description: Expression that defines the filter to apply across findings
        - name: orderBy
          in: query
          type: string
          description: Expression that defines what fields and order to use for sorting
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
      - name: createfinding
        method: POST
        description: Google Cloud Security Command Center Create a finding
        inputParameters:
        - name: findingId
          in: query
          type: string
          required: true
          description: Unique identifier for the finding
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
    - name: organizations-organizationid-assets
      path: /organizations/{organizationId}/assets
      operations:
      - name: listassets
        method: GET
        description: Google Cloud Security Command Center List assets
        inputParameters:
        - name: filter
          in: query
          type: string
          description: Expression that defines the filter to apply across assets
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
    - name: organizations-organizationid-notificationconfigs
      path: /organizations/{organizationId}/notificationConfigs
      operations:
      - name: listnotificationconfigs
        method: GET
        description: Google Cloud Security Command Center List notification configs
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
      - name: createnotificationconfig
        method: POST
        description: Google Cloud Security Command Center Create a notification config
        inputParameters:
        - name: configId
          in: query
          type: string
          required: true
          description: Unique identifier for the notification config
        outputRawFormat: json
        outputParameters:
        - name: result
          type: object
          value: $.
  exposes:
  - type: rest
    port: 8080
    namespace: google-cloud-security-command-center-rest
    description: REST adapter for Google Cloud Security Command Center API.
    resources:
    - path: /organizations/{organizationId}/sources
      name: listsources
      operations:
      - method: GET
        name: listsources
        description: Google Cloud Security Command Center List sources
        call: google-cloud-security-command-center.listsources
        outputParameters:
        - type: object
          mapping: $.
    - path: /organizations/{organizationId}/sources
      name: createsource
      operations:
      - method: POST
        name: createsource
        description: Google Cloud Security Command Center Create a source
        call: google-cloud-security-command-center.createsource
        outputParameters:
        - type: object
          mapping: $.
    - path: /organizations/{organizationId}/sources/{sourceId}/findings
      name: listfindings
      operations:
      - method: GET
        name: listfindings
        description: Google Cloud Security Command Center List findings
        call: google-cloud-security-command-center.listfindings
        outputParameters:
        - type: object
          mapping: $.
    - path: /organizations/{organizationId}/sources/{sourceId}/findings
      name: createfinding
      operations:
      - method: POST
        name: createfinding
        description: Google Cloud Security Command Center Create a finding
        call: google-cloud-security-command-center.createfinding
        outputParameters:
        - type: object
          mapping: $.
    - path: /organizations/{organizationId}/assets
      name: listassets
      operations:
      - method: GET
        name: listassets
        description: Google Cloud Security Command Center List assets
        call: google-cloud-security-command-center.listassets
        outputParameters:
        - type: object
          mapping: $.
    - path: /organizations/{organizationId}/notificationConfigs
      name: listnotificationconfigs
      operations:
      - method: GET
        name: listnotificationconfigs
        description: Google Cloud Security Command Center List notification configs
        call: google-cloud-security-command-center.listnotificationconfigs
        outputParameters:
        - type: object
          mapping: $.
    - path: /organizations/{organizationId}/notificationConfigs
      name: createnotificationconfig
      operations:
      - method: POST
        name: createnotificationconfig
        description: Google Cloud Security Command Center Create a notification config
        call: google-cloud-security-command-center.createnotificationconfig
        outputParameters:
        - type: object
          mapping: $.
  - type: mcp
    port: 9090
    namespace: google-cloud-security-command-center-mcp
    transport: http
    description: MCP adapter for Google Cloud Security Command Center API for AI agent use.
    tools:
    - name: listsources
      description: Google Cloud Security Command Center List sources
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: google-cloud-security-command-center.listsources
      outputParameters:
      - type: object
        mapping: $.
    - name: createsource
      description: Google Cloud Security Command Center Create a source
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: google-cloud-security-command-center.createsource
      outputParameters:
      - type: object
        mapping: $.
    - name: listfindings
      description: Google Cloud Security Command Center List findings
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: google-cloud-security-command-center.listfindings
      with:
        filter: tools.filter
        orderBy: tools.orderBy
      inputParameters:
      - name: filter
        type: string
        description: Expression that defines the filter to apply across findings
      - name: orderBy
        type: string
        description: Expression that defines what fields and order to use for sorting
      outputParameters:
      - type: object
        mapping: $.
    - name: createfinding
      description: Google Cloud Security Command Center Create a finding
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: google-cloud-security-command-center.createfinding
      with:
        findingId: tools.findingId
      inputParameters:
      - name: findingId
        type: string
        description: Unique identifier for the finding
        required: true
      outputParameters:
      - type: object
        mapping: $.
    - name: listassets
      description: Google Cloud Security Command Center List assets
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: google-cloud-security-command-center.listassets
      with:
        filter: tools.filter
      inputParameters:
      - name: filter
        type: string
        description: Expression that defines the filter to apply across assets
      outputParameters:
      - type: object
        mapping: $.
    - name: listnotificationconfigs
      description: Google Cloud Security Command Center List notification configs
      hints:
        readOnly: true
        destructive: false
        idempotent: true
      call: google-cloud-security-command-center.listnotificationconfigs
      outputParameters:
      - type: object
        mapping: $.
    - name: createnotificationconfig
      description: Google Cloud Security Command Center Create a notification config
      hints:
        readOnly: false
        destructive: false
        idempotent: false
      call: google-cloud-security-command-center.createnotificationconfig
      with:
        configId: tools.configId
      inputParameters:
      - name: configId
        type: string
        description: Unique identifier for the notification config
        required: true
      outputParameters:
      - type: object
        mapping: $.
binds:
- namespace: env
  keys:
    GOOGLE_CLOUD_SECURITY_COMMAND_CENTER_TOKEN: GOOGLE_CLOUD_SECURITY_COMMAND_CENTER_TOKEN