gcp.securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModule
Explore with Pulumi AI
Represents an instance of a Security Health Analytics custom module, including its full module name, display name, enablement state, and last updated time. You can create a custom module at the organization, folder, or project level. Custom modules that you create at the organization or folder level are inherited by the child folders and projects.
To get more information about ProjectSecurityHealthAnalyticsCustomModule, see:
Example Usage
Scc Management Organization Project Security Health Analytics Custom Module Basic
import * as pulumi from "@pulumi/pulumi";
import * as gcp from "@pulumi/gcp";
const example = new gcp.securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModule("example", {
location: "global",
displayName: "basic_custom_module",
enablementState: "ENABLED",
customConfig: {
predicate: {
expression: "resource.rotationPeriod > duration(\"2592000s\")",
},
resourceSelector: {
resourceTypes: ["cloudkms.googleapis.com/CryptoKey"],
},
description: "The rotation period of the identified cryptokey resource exceeds 30 days.",
recommendation: "Set the rotation period to at most 30 days.",
severity: "MEDIUM",
},
});
import pulumi
import pulumi_gcp as gcp
example = gcp.securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModule("example",
location="global",
display_name="basic_custom_module",
enablement_state="ENABLED",
custom_config={
"predicate": {
"expression": "resource.rotationPeriod > duration(\"2592000s\")",
},
"resource_selector": {
"resource_types": ["cloudkms.googleapis.com/CryptoKey"],
},
"description": "The rotation period of the identified cryptokey resource exceeds 30 days.",
"recommendation": "Set the rotation period to at most 30 days.",
"severity": "MEDIUM",
})
package main
import (
"github.com/pulumi/pulumi-gcp/sdk/v8/go/gcp/securitycenter"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := securitycenter.NewManagementProjectSecurityHealthAnalyticsCustomModule(ctx, "example", &securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleArgs{
Location: pulumi.String("global"),
DisplayName: pulumi.String("basic_custom_module"),
EnablementState: pulumi.String("ENABLED"),
CustomConfig: &securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigArgs{
Predicate: &securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigPredicateArgs{
Expression: pulumi.String("resource.rotationPeriod > duration(\"2592000s\")"),
},
ResourceSelector: &securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigResourceSelectorArgs{
ResourceTypes: pulumi.StringArray{
pulumi.String("cloudkms.googleapis.com/CryptoKey"),
},
},
Description: pulumi.String("The rotation period of the identified cryptokey resource exceeds 30 days."),
Recommendation: pulumi.String("Set the rotation period to at most 30 days."),
Severity: pulumi.String("MEDIUM"),
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Gcp = Pulumi.Gcp;
return await Deployment.RunAsync(() =>
{
var example = new Gcp.SecurityCenter.ManagementProjectSecurityHealthAnalyticsCustomModule("example", new()
{
Location = "global",
DisplayName = "basic_custom_module",
EnablementState = "ENABLED",
CustomConfig = new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigArgs
{
Predicate = new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigPredicateArgs
{
Expression = "resource.rotationPeriod > duration(\"2592000s\")",
},
ResourceSelector = new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigResourceSelectorArgs
{
ResourceTypes = new[]
{
"cloudkms.googleapis.com/CryptoKey",
},
},
Description = "The rotation period of the identified cryptokey resource exceeds 30 days.",
Recommendation = "Set the rotation period to at most 30 days.",
Severity = "MEDIUM",
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.gcp.securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModule;
import com.pulumi.gcp.securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleArgs;
import com.pulumi.gcp.securitycenter.inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigArgs;
import com.pulumi.gcp.securitycenter.inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigPredicateArgs;
import com.pulumi.gcp.securitycenter.inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigResourceSelectorArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new ManagementProjectSecurityHealthAnalyticsCustomModule("example", ManagementProjectSecurityHealthAnalyticsCustomModuleArgs.builder()
.location("global")
.displayName("basic_custom_module")
.enablementState("ENABLED")
.customConfig(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigArgs.builder()
.predicate(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigPredicateArgs.builder()
.expression("resource.rotationPeriod > duration(\"2592000s\")")
.build())
.resourceSelector(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigResourceSelectorArgs.builder()
.resourceTypes("cloudkms.googleapis.com/CryptoKey")
.build())
.description("The rotation period of the identified cryptokey resource exceeds 30 days.")
.recommendation("Set the rotation period to at most 30 days.")
.severity("MEDIUM")
.build())
.build());
}
}
resources:
example:
type: gcp:securitycenter:ManagementProjectSecurityHealthAnalyticsCustomModule
properties:
location: global
displayName: basic_custom_module
enablementState: ENABLED
customConfig:
predicate:
expression: resource.rotationPeriod > duration("2592000s")
resourceSelector:
resourceTypes:
- cloudkms.googleapis.com/CryptoKey
description: The rotation period of the identified cryptokey resource exceeds 30 days.
recommendation: Set the rotation period to at most 30 days.
severity: MEDIUM
Scc Management Organization Project Security Health Analytics Custom Module Full
import * as pulumi from "@pulumi/pulumi";
import * as gcp from "@pulumi/gcp";
const example = new gcp.securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModule("example", {
location: "global",
displayName: "full_custom_module",
enablementState: "ENABLED",
customConfig: {
predicate: {
expression: "resource.rotationPeriod > duration(\"2592000s\")",
title: "Purpose of the expression",
description: "description of the expression",
location: "location of the expression",
},
customOutput: {
properties: [{
name: "duration",
valueExpression: {
expression: "resource.rotationPeriod",
title: "Purpose of the expression",
description: "description of the expression",
location: "location of the expression",
},
}],
},
resourceSelector: {
resourceTypes: ["cloudkms.googleapis.com/CryptoKey"],
},
severity: "LOW",
description: "Description of the custom module",
recommendation: "Steps to resolve violation",
},
});
import pulumi
import pulumi_gcp as gcp
example = gcp.securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModule("example",
location="global",
display_name="full_custom_module",
enablement_state="ENABLED",
custom_config={
"predicate": {
"expression": "resource.rotationPeriod > duration(\"2592000s\")",
"title": "Purpose of the expression",
"description": "description of the expression",
"location": "location of the expression",
},
"custom_output": {
"properties": [{
"name": "duration",
"value_expression": {
"expression": "resource.rotationPeriod",
"title": "Purpose of the expression",
"description": "description of the expression",
"location": "location of the expression",
},
}],
},
"resource_selector": {
"resource_types": ["cloudkms.googleapis.com/CryptoKey"],
},
"severity": "LOW",
"description": "Description of the custom module",
"recommendation": "Steps to resolve violation",
})
package main
import (
"github.com/pulumi/pulumi-gcp/sdk/v8/go/gcp/securitycenter"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := securitycenter.NewManagementProjectSecurityHealthAnalyticsCustomModule(ctx, "example", &securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleArgs{
Location: pulumi.String("global"),
DisplayName: pulumi.String("full_custom_module"),
EnablementState: pulumi.String("ENABLED"),
CustomConfig: &securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigArgs{
Predicate: &securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigPredicateArgs{
Expression: pulumi.String("resource.rotationPeriod > duration(\"2592000s\")"),
Title: pulumi.String("Purpose of the expression"),
Description: pulumi.String("description of the expression"),
Location: pulumi.String("location of the expression"),
},
CustomOutput: securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputArgs{
Properties: securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyArray{
&securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyArgs{
Name: pulumi.String("duration"),
ValueExpression: &securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyValueExpressionArgs{
Expression: pulumi.String("resource.rotationPeriod"),
Title: pulumi.String("Purpose of the expression"),
Description: pulumi.String("description of the expression"),
Location: pulumi.String("location of the expression"),
},
},
},
},
ResourceSelector: &securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigResourceSelectorArgs{
ResourceTypes: pulumi.StringArray{
pulumi.String("cloudkms.googleapis.com/CryptoKey"),
},
},
Severity: pulumi.String("LOW"),
Description: pulumi.String("Description of the custom module"),
Recommendation: pulumi.String("Steps to resolve violation"),
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Gcp = Pulumi.Gcp;
return await Deployment.RunAsync(() =>
{
var example = new Gcp.SecurityCenter.ManagementProjectSecurityHealthAnalyticsCustomModule("example", new()
{
Location = "global",
DisplayName = "full_custom_module",
EnablementState = "ENABLED",
CustomConfig = new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigArgs
{
Predicate = new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigPredicateArgs
{
Expression = "resource.rotationPeriod > duration(\"2592000s\")",
Title = "Purpose of the expression",
Description = "description of the expression",
Location = "location of the expression",
},
CustomOutput = new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputArgs
{
Properties = new[]
{
new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyArgs
{
Name = "duration",
ValueExpression = new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyValueExpressionArgs
{
Expression = "resource.rotationPeriod",
Title = "Purpose of the expression",
Description = "description of the expression",
Location = "location of the expression",
},
},
},
},
ResourceSelector = new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigResourceSelectorArgs
{
ResourceTypes = new[]
{
"cloudkms.googleapis.com/CryptoKey",
},
},
Severity = "LOW",
Description = "Description of the custom module",
Recommendation = "Steps to resolve violation",
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.gcp.securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModule;
import com.pulumi.gcp.securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleArgs;
import com.pulumi.gcp.securitycenter.inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigArgs;
import com.pulumi.gcp.securitycenter.inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigPredicateArgs;
import com.pulumi.gcp.securitycenter.inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputArgs;
import com.pulumi.gcp.securitycenter.inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigResourceSelectorArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new ManagementProjectSecurityHealthAnalyticsCustomModule("example", ManagementProjectSecurityHealthAnalyticsCustomModuleArgs.builder()
.location("global")
.displayName("full_custom_module")
.enablementState("ENABLED")
.customConfig(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigArgs.builder()
.predicate(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigPredicateArgs.builder()
.expression("resource.rotationPeriod > duration(\"2592000s\")")
.title("Purpose of the expression")
.description("description of the expression")
.location("location of the expression")
.build())
.customOutput(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputArgs.builder()
.properties(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyArgs.builder()
.name("duration")
.valueExpression(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyValueExpressionArgs.builder()
.expression("resource.rotationPeriod")
.title("Purpose of the expression")
.description("description of the expression")
.location("location of the expression")
.build())
.build())
.build())
.resourceSelector(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigResourceSelectorArgs.builder()
.resourceTypes("cloudkms.googleapis.com/CryptoKey")
.build())
.severity("LOW")
.description("Description of the custom module")
.recommendation("Steps to resolve violation")
.build())
.build());
}
}
resources:
example:
type: gcp:securitycenter:ManagementProjectSecurityHealthAnalyticsCustomModule
properties:
location: global
displayName: full_custom_module
enablementState: ENABLED
customConfig:
predicate:
expression: resource.rotationPeriod > duration("2592000s")
title: Purpose of the expression
description: description of the expression
location: location of the expression
customOutput:
properties:
- name: duration
valueExpression:
expression: resource.rotationPeriod
title: Purpose of the expression
description: description of the expression
location: location of the expression
resourceSelector:
resourceTypes:
- cloudkms.googleapis.com/CryptoKey
severity: LOW
description: Description of the custom module
recommendation: Steps to resolve violation
Create ManagementProjectSecurityHealthAnalyticsCustomModule Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new ManagementProjectSecurityHealthAnalyticsCustomModule(name: string, args?: ManagementProjectSecurityHealthAnalyticsCustomModuleArgs, opts?: CustomResourceOptions);
@overload
def ManagementProjectSecurityHealthAnalyticsCustomModule(resource_name: str,
args: Optional[ManagementProjectSecurityHealthAnalyticsCustomModuleArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def ManagementProjectSecurityHealthAnalyticsCustomModule(resource_name: str,
opts: Optional[ResourceOptions] = None,
custom_config: Optional[ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigArgs] = None,
display_name: Optional[str] = None,
enablement_state: Optional[str] = None,
location: Optional[str] = None,
project: Optional[str] = None)
func NewManagementProjectSecurityHealthAnalyticsCustomModule(ctx *Context, name string, args *ManagementProjectSecurityHealthAnalyticsCustomModuleArgs, opts ...ResourceOption) (*ManagementProjectSecurityHealthAnalyticsCustomModule, error)
public ManagementProjectSecurityHealthAnalyticsCustomModule(string name, ManagementProjectSecurityHealthAnalyticsCustomModuleArgs? args = null, CustomResourceOptions? opts = null)
public ManagementProjectSecurityHealthAnalyticsCustomModule(String name, ManagementProjectSecurityHealthAnalyticsCustomModuleArgs args)
public ManagementProjectSecurityHealthAnalyticsCustomModule(String name, ManagementProjectSecurityHealthAnalyticsCustomModuleArgs args, CustomResourceOptions options)
type: gcp:securitycenter:ManagementProjectSecurityHealthAnalyticsCustomModule
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ManagementProjectSecurityHealthAnalyticsCustomModuleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ManagementProjectSecurityHealthAnalyticsCustomModuleArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ManagementProjectSecurityHealthAnalyticsCustomModuleArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ManagementProjectSecurityHealthAnalyticsCustomModuleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ManagementProjectSecurityHealthAnalyticsCustomModuleArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var managementProjectSecurityHealthAnalyticsCustomModuleResource = new Gcp.SecurityCenter.ManagementProjectSecurityHealthAnalyticsCustomModule("managementProjectSecurityHealthAnalyticsCustomModuleResource", new()
{
CustomConfig = new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigArgs
{
Predicate = new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigPredicateArgs
{
Expression = "string",
Description = "string",
Location = "string",
Title = "string",
},
Recommendation = "string",
ResourceSelector = new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigResourceSelectorArgs
{
ResourceTypes = new[]
{
"string",
},
},
Severity = "string",
CustomOutput = new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputArgs
{
Properties = new[]
{
new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyArgs
{
Name = "string",
ValueExpression = new Gcp.SecurityCenter.Inputs.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyValueExpressionArgs
{
Expression = "string",
Description = "string",
Location = "string",
Title = "string",
},
},
},
},
Description = "string",
},
DisplayName = "string",
EnablementState = "string",
Location = "string",
Project = "string",
});
example, err := securitycenter.NewManagementProjectSecurityHealthAnalyticsCustomModule(ctx, "managementProjectSecurityHealthAnalyticsCustomModuleResource", &securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleArgs{
CustomConfig: &securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigArgs{
Predicate: &securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigPredicateArgs{
Expression: pulumi.String("string"),
Description: pulumi.String("string"),
Location: pulumi.String("string"),
Title: pulumi.String("string"),
},
Recommendation: pulumi.String("string"),
ResourceSelector: &securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigResourceSelectorArgs{
ResourceTypes: pulumi.StringArray{
pulumi.String("string"),
},
},
Severity: pulumi.String("string"),
CustomOutput: securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputArgs{
Properties: securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyArray{
&securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyArgs{
Name: pulumi.String("string"),
ValueExpression: &securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyValueExpressionArgs{
Expression: pulumi.String("string"),
Description: pulumi.String("string"),
Location: pulumi.String("string"),
Title: pulumi.String("string"),
},
},
},
},
Description: pulumi.String("string"),
},
DisplayName: pulumi.String("string"),
EnablementState: pulumi.String("string"),
Location: pulumi.String("string"),
Project: pulumi.String("string"),
})
var managementProjectSecurityHealthAnalyticsCustomModuleResource = new ManagementProjectSecurityHealthAnalyticsCustomModule("managementProjectSecurityHealthAnalyticsCustomModuleResource", ManagementProjectSecurityHealthAnalyticsCustomModuleArgs.builder()
.customConfig(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigArgs.builder()
.predicate(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigPredicateArgs.builder()
.expression("string")
.description("string")
.location("string")
.title("string")
.build())
.recommendation("string")
.resourceSelector(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigResourceSelectorArgs.builder()
.resourceTypes("string")
.build())
.severity("string")
.customOutput(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputArgs.builder()
.properties(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyArgs.builder()
.name("string")
.valueExpression(ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyValueExpressionArgs.builder()
.expression("string")
.description("string")
.location("string")
.title("string")
.build())
.build())
.build())
.description("string")
.build())
.displayName("string")
.enablementState("string")
.location("string")
.project("string")
.build());
management_project_security_health_analytics_custom_module_resource = gcp.securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModule("managementProjectSecurityHealthAnalyticsCustomModuleResource",
custom_config={
"predicate": {
"expression": "string",
"description": "string",
"location": "string",
"title": "string",
},
"recommendation": "string",
"resource_selector": {
"resource_types": ["string"],
},
"severity": "string",
"custom_output": {
"properties": [{
"name": "string",
"value_expression": {
"expression": "string",
"description": "string",
"location": "string",
"title": "string",
},
}],
},
"description": "string",
},
display_name="string",
enablement_state="string",
location="string",
project="string")
const managementProjectSecurityHealthAnalyticsCustomModuleResource = new gcp.securitycenter.ManagementProjectSecurityHealthAnalyticsCustomModule("managementProjectSecurityHealthAnalyticsCustomModuleResource", {
customConfig: {
predicate: {
expression: "string",
description: "string",
location: "string",
title: "string",
},
recommendation: "string",
resourceSelector: {
resourceTypes: ["string"],
},
severity: "string",
customOutput: {
properties: [{
name: "string",
valueExpression: {
expression: "string",
description: "string",
location: "string",
title: "string",
},
}],
},
description: "string",
},
displayName: "string",
enablementState: "string",
location: "string",
project: "string",
});
type: gcp:securitycenter:ManagementProjectSecurityHealthAnalyticsCustomModule
properties:
customConfig:
customOutput:
properties:
- name: string
valueExpression:
description: string
expression: string
location: string
title: string
description: string
predicate:
description: string
expression: string
location: string
title: string
recommendation: string
resourceSelector:
resourceTypes:
- string
severity: string
displayName: string
enablementState: string
location: string
project: string
ManagementProjectSecurityHealthAnalyticsCustomModule Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The ManagementProjectSecurityHealthAnalyticsCustomModule resource accepts the following input properties:
- Custom
Config ManagementProject Security Health Analytics Custom Module Custom Config - The user specified custom configuration for the module. Structure is documented below.
- Display
Name string - The display name of the Security Health Analytics custom module. This display name becomes the finding category for all findings that are returned by this custom module. The display name must be between 1 and 128 characters, start with a lowercase letter, and contain alphanumeric characters or underscores only.
- Enablement
State string - The enablement state of the custom module.
Possible values are:
ENABLED
,DISABLED
. - Location string
- Location ID of the parent organization. If not provided, 'global' will be used as the default location.
- Project string
- The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- Custom
Config ManagementProject Security Health Analytics Custom Module Custom Config Args - The user specified custom configuration for the module. Structure is documented below.
- Display
Name string - The display name of the Security Health Analytics custom module. This display name becomes the finding category for all findings that are returned by this custom module. The display name must be between 1 and 128 characters, start with a lowercase letter, and contain alphanumeric characters or underscores only.
- Enablement
State string - The enablement state of the custom module.
Possible values are:
ENABLED
,DISABLED
. - Location string
- Location ID of the parent organization. If not provided, 'global' will be used as the default location.
- Project string
- The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- custom
Config ManagementProject Security Health Analytics Custom Module Custom Config - The user specified custom configuration for the module. Structure is documented below.
- display
Name String - The display name of the Security Health Analytics custom module. This display name becomes the finding category for all findings that are returned by this custom module. The display name must be between 1 and 128 characters, start with a lowercase letter, and contain alphanumeric characters or underscores only.
- enablement
State String - The enablement state of the custom module.
Possible values are:
ENABLED
,DISABLED
. - location String
- Location ID of the parent organization. If not provided, 'global' will be used as the default location.
- project String
- The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- custom
Config ManagementProject Security Health Analytics Custom Module Custom Config - The user specified custom configuration for the module. Structure is documented below.
- display
Name string - The display name of the Security Health Analytics custom module. This display name becomes the finding category for all findings that are returned by this custom module. The display name must be between 1 and 128 characters, start with a lowercase letter, and contain alphanumeric characters or underscores only.
- enablement
State string - The enablement state of the custom module.
Possible values are:
ENABLED
,DISABLED
. - location string
- Location ID of the parent organization. If not provided, 'global' will be used as the default location.
- project string
- The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- custom_
config ManagementProject Security Health Analytics Custom Module Custom Config Args - The user specified custom configuration for the module. Structure is documented below.
- display_
name str - The display name of the Security Health Analytics custom module. This display name becomes the finding category for all findings that are returned by this custom module. The display name must be between 1 and 128 characters, start with a lowercase letter, and contain alphanumeric characters or underscores only.
- enablement_
state str - The enablement state of the custom module.
Possible values are:
ENABLED
,DISABLED
. - location str
- Location ID of the parent organization. If not provided, 'global' will be used as the default location.
- project str
- The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- custom
Config Property Map - The user specified custom configuration for the module. Structure is documented below.
- display
Name String - The display name of the Security Health Analytics custom module. This display name becomes the finding category for all findings that are returned by this custom module. The display name must be between 1 and 128 characters, start with a lowercase letter, and contain alphanumeric characters or underscores only.
- enablement
State String - The enablement state of the custom module.
Possible values are:
ENABLED
,DISABLED
. - location String
- Location ID of the parent organization. If not provided, 'global' will be used as the default location.
- project String
- The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
Outputs
All input properties are implicitly available as output properties. Additionally, the ManagementProjectSecurityHealthAnalyticsCustomModule resource produces the following output properties:
- Ancestor
Module string - If empty, indicates that the custom module was created in the organization,folder, or project in which you are viewing the custom module. Otherwise, ancestor_module specifies the organization or folder from which the custom module is inherited.
- Id string
- The provider-assigned unique ID for this managed resource.
- Last
Editor string - The editor that last updated the custom module.
- Name string
- The resource name of the custom module. Its format is "projects/{project}/locations/{location}/securityHealthAnalyticsCustomModules/{securityHealthAnalyticsCustomModule}". The id {securityHealthAnalyticsCustomModule} is server-generated and is not user settable. It will be a numeric id containing 1-20 digits.
- Update
Time string - The time at which the custom module was last updated. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
- Ancestor
Module string - If empty, indicates that the custom module was created in the organization,folder, or project in which you are viewing the custom module. Otherwise, ancestor_module specifies the organization or folder from which the custom module is inherited.
- Id string
- The provider-assigned unique ID for this managed resource.
- Last
Editor string - The editor that last updated the custom module.
- Name string
- The resource name of the custom module. Its format is "projects/{project}/locations/{location}/securityHealthAnalyticsCustomModules/{securityHealthAnalyticsCustomModule}". The id {securityHealthAnalyticsCustomModule} is server-generated and is not user settable. It will be a numeric id containing 1-20 digits.
- Update
Time string - The time at which the custom module was last updated. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
- ancestor
Module String - If empty, indicates that the custom module was created in the organization,folder, or project in which you are viewing the custom module. Otherwise, ancestor_module specifies the organization or folder from which the custom module is inherited.
- id String
- The provider-assigned unique ID for this managed resource.
- last
Editor String - The editor that last updated the custom module.
- name String
- The resource name of the custom module. Its format is "projects/{project}/locations/{location}/securityHealthAnalyticsCustomModules/{securityHealthAnalyticsCustomModule}". The id {securityHealthAnalyticsCustomModule} is server-generated and is not user settable. It will be a numeric id containing 1-20 digits.
- update
Time String - The time at which the custom module was last updated. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
- ancestor
Module string - If empty, indicates that the custom module was created in the organization,folder, or project in which you are viewing the custom module. Otherwise, ancestor_module specifies the organization or folder from which the custom module is inherited.
- id string
- The provider-assigned unique ID for this managed resource.
- last
Editor string - The editor that last updated the custom module.
- name string
- The resource name of the custom module. Its format is "projects/{project}/locations/{location}/securityHealthAnalyticsCustomModules/{securityHealthAnalyticsCustomModule}". The id {securityHealthAnalyticsCustomModule} is server-generated and is not user settable. It will be a numeric id containing 1-20 digits.
- update
Time string - The time at which the custom module was last updated. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
- ancestor_
module str - If empty, indicates that the custom module was created in the organization,folder, or project in which you are viewing the custom module. Otherwise, ancestor_module specifies the organization or folder from which the custom module is inherited.
- id str
- The provider-assigned unique ID for this managed resource.
- last_
editor str - The editor that last updated the custom module.
- name str
- The resource name of the custom module. Its format is "projects/{project}/locations/{location}/securityHealthAnalyticsCustomModules/{securityHealthAnalyticsCustomModule}". The id {securityHealthAnalyticsCustomModule} is server-generated and is not user settable. It will be a numeric id containing 1-20 digits.
- update_
time str - The time at which the custom module was last updated. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
- ancestor
Module String - If empty, indicates that the custom module was created in the organization,folder, or project in which you are viewing the custom module. Otherwise, ancestor_module specifies the organization or folder from which the custom module is inherited.
- id String
- The provider-assigned unique ID for this managed resource.
- last
Editor String - The editor that last updated the custom module.
- name String
- The resource name of the custom module. Its format is "projects/{project}/locations/{location}/securityHealthAnalyticsCustomModules/{securityHealthAnalyticsCustomModule}". The id {securityHealthAnalyticsCustomModule} is server-generated and is not user settable. It will be a numeric id containing 1-20 digits.
- update
Time String - The time at which the custom module was last updated. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
Look up Existing ManagementProjectSecurityHealthAnalyticsCustomModule Resource
Get an existing ManagementProjectSecurityHealthAnalyticsCustomModule resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: ManagementProjectSecurityHealthAnalyticsCustomModuleState, opts?: CustomResourceOptions): ManagementProjectSecurityHealthAnalyticsCustomModule
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
ancestor_module: Optional[str] = None,
custom_config: Optional[ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigArgs] = None,
display_name: Optional[str] = None,
enablement_state: Optional[str] = None,
last_editor: Optional[str] = None,
location: Optional[str] = None,
name: Optional[str] = None,
project: Optional[str] = None,
update_time: Optional[str] = None) -> ManagementProjectSecurityHealthAnalyticsCustomModule
func GetManagementProjectSecurityHealthAnalyticsCustomModule(ctx *Context, name string, id IDInput, state *ManagementProjectSecurityHealthAnalyticsCustomModuleState, opts ...ResourceOption) (*ManagementProjectSecurityHealthAnalyticsCustomModule, error)
public static ManagementProjectSecurityHealthAnalyticsCustomModule Get(string name, Input<string> id, ManagementProjectSecurityHealthAnalyticsCustomModuleState? state, CustomResourceOptions? opts = null)
public static ManagementProjectSecurityHealthAnalyticsCustomModule get(String name, Output<String> id, ManagementProjectSecurityHealthAnalyticsCustomModuleState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Ancestor
Module string - If empty, indicates that the custom module was created in the organization,folder, or project in which you are viewing the custom module. Otherwise, ancestor_module specifies the organization or folder from which the custom module is inherited.
- Custom
Config ManagementProject Security Health Analytics Custom Module Custom Config - The user specified custom configuration for the module. Structure is documented below.
- Display
Name string - The display name of the Security Health Analytics custom module. This display name becomes the finding category for all findings that are returned by this custom module. The display name must be between 1 and 128 characters, start with a lowercase letter, and contain alphanumeric characters or underscores only.
- Enablement
State string - The enablement state of the custom module.
Possible values are:
ENABLED
,DISABLED
. - Last
Editor string - The editor that last updated the custom module.
- Location string
- Location ID of the parent organization. If not provided, 'global' will be used as the default location.
- Name string
- The resource name of the custom module. Its format is "projects/{project}/locations/{location}/securityHealthAnalyticsCustomModules/{securityHealthAnalyticsCustomModule}". The id {securityHealthAnalyticsCustomModule} is server-generated and is not user settable. It will be a numeric id containing 1-20 digits.
- Project string
- The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- Update
Time string - The time at which the custom module was last updated. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
- Ancestor
Module string - If empty, indicates that the custom module was created in the organization,folder, or project in which you are viewing the custom module. Otherwise, ancestor_module specifies the organization or folder from which the custom module is inherited.
- Custom
Config ManagementProject Security Health Analytics Custom Module Custom Config Args - The user specified custom configuration for the module. Structure is documented below.
- Display
Name string - The display name of the Security Health Analytics custom module. This display name becomes the finding category for all findings that are returned by this custom module. The display name must be between 1 and 128 characters, start with a lowercase letter, and contain alphanumeric characters or underscores only.
- Enablement
State string - The enablement state of the custom module.
Possible values are:
ENABLED
,DISABLED
. - Last
Editor string - The editor that last updated the custom module.
- Location string
- Location ID of the parent organization. If not provided, 'global' will be used as the default location.
- Name string
- The resource name of the custom module. Its format is "projects/{project}/locations/{location}/securityHealthAnalyticsCustomModules/{securityHealthAnalyticsCustomModule}". The id {securityHealthAnalyticsCustomModule} is server-generated and is not user settable. It will be a numeric id containing 1-20 digits.
- Project string
- The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- Update
Time string - The time at which the custom module was last updated. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
- ancestor
Module String - If empty, indicates that the custom module was created in the organization,folder, or project in which you are viewing the custom module. Otherwise, ancestor_module specifies the organization or folder from which the custom module is inherited.
- custom
Config ManagementProject Security Health Analytics Custom Module Custom Config - The user specified custom configuration for the module. Structure is documented below.
- display
Name String - The display name of the Security Health Analytics custom module. This display name becomes the finding category for all findings that are returned by this custom module. The display name must be between 1 and 128 characters, start with a lowercase letter, and contain alphanumeric characters or underscores only.
- enablement
State String - The enablement state of the custom module.
Possible values are:
ENABLED
,DISABLED
. - last
Editor String - The editor that last updated the custom module.
- location String
- Location ID of the parent organization. If not provided, 'global' will be used as the default location.
- name String
- The resource name of the custom module. Its format is "projects/{project}/locations/{location}/securityHealthAnalyticsCustomModules/{securityHealthAnalyticsCustomModule}". The id {securityHealthAnalyticsCustomModule} is server-generated and is not user settable. It will be a numeric id containing 1-20 digits.
- project String
- The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- update
Time String - The time at which the custom module was last updated. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
- ancestor
Module string - If empty, indicates that the custom module was created in the organization,folder, or project in which you are viewing the custom module. Otherwise, ancestor_module specifies the organization or folder from which the custom module is inherited.
- custom
Config ManagementProject Security Health Analytics Custom Module Custom Config - The user specified custom configuration for the module. Structure is documented below.
- display
Name string - The display name of the Security Health Analytics custom module. This display name becomes the finding category for all findings that are returned by this custom module. The display name must be between 1 and 128 characters, start with a lowercase letter, and contain alphanumeric characters or underscores only.
- enablement
State string - The enablement state of the custom module.
Possible values are:
ENABLED
,DISABLED
. - last
Editor string - The editor that last updated the custom module.
- location string
- Location ID of the parent organization. If not provided, 'global' will be used as the default location.
- name string
- The resource name of the custom module. Its format is "projects/{project}/locations/{location}/securityHealthAnalyticsCustomModules/{securityHealthAnalyticsCustomModule}". The id {securityHealthAnalyticsCustomModule} is server-generated and is not user settable. It will be a numeric id containing 1-20 digits.
- project string
- The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- update
Time string - The time at which the custom module was last updated. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
- ancestor_
module str - If empty, indicates that the custom module was created in the organization,folder, or project in which you are viewing the custom module. Otherwise, ancestor_module specifies the organization or folder from which the custom module is inherited.
- custom_
config ManagementProject Security Health Analytics Custom Module Custom Config Args - The user specified custom configuration for the module. Structure is documented below.
- display_
name str - The display name of the Security Health Analytics custom module. This display name becomes the finding category for all findings that are returned by this custom module. The display name must be between 1 and 128 characters, start with a lowercase letter, and contain alphanumeric characters or underscores only.
- enablement_
state str - The enablement state of the custom module.
Possible values are:
ENABLED
,DISABLED
. - last_
editor str - The editor that last updated the custom module.
- location str
- Location ID of the parent organization. If not provided, 'global' will be used as the default location.
- name str
- The resource name of the custom module. Its format is "projects/{project}/locations/{location}/securityHealthAnalyticsCustomModules/{securityHealthAnalyticsCustomModule}". The id {securityHealthAnalyticsCustomModule} is server-generated and is not user settable. It will be a numeric id containing 1-20 digits.
- project str
- The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- update_
time str - The time at which the custom module was last updated. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
- ancestor
Module String - If empty, indicates that the custom module was created in the organization,folder, or project in which you are viewing the custom module. Otherwise, ancestor_module specifies the organization or folder from which the custom module is inherited.
- custom
Config Property Map - The user specified custom configuration for the module. Structure is documented below.
- display
Name String - The display name of the Security Health Analytics custom module. This display name becomes the finding category for all findings that are returned by this custom module. The display name must be between 1 and 128 characters, start with a lowercase letter, and contain alphanumeric characters or underscores only.
- enablement
State String - The enablement state of the custom module.
Possible values are:
ENABLED
,DISABLED
. - last
Editor String - The editor that last updated the custom module.
- location String
- Location ID of the parent organization. If not provided, 'global' will be used as the default location.
- name String
- The resource name of the custom module. Its format is "projects/{project}/locations/{location}/securityHealthAnalyticsCustomModules/{securityHealthAnalyticsCustomModule}". The id {securityHealthAnalyticsCustomModule} is server-generated and is not user settable. It will be a numeric id containing 1-20 digits.
- project String
- The ID of the project in which the resource belongs. If it is not provided, the provider project is used.
- update
Time String - The time at which the custom module was last updated. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
Supporting Types
ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfig, ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigArgs
- Predicate
Management
Project Security Health Analytics Custom Module Custom Config Predicate - The CEL expression to evaluate to produce findings. When the expression evaluates to true against a resource, a finding is generated. Structure is documented below.
- Recommendation string
- An explanation of the recommended steps that security teams can take to resolve the detected issue. This explanation is returned with each finding generated by this module in the nextSteps property of the finding JSON.
- Resource
Selector ManagementProject Security Health Analytics Custom Module Custom Config Resource Selector - The resource types that the custom module operates on. Each custom module can specify up to 5 resource types. Structure is documented below.
- Severity string
- The severity to assign to findings generated by the module.
Possible values are:
CRITICAL
,HIGH
,MEDIUM
,LOW
. - Custom
Output ManagementProject Security Health Analytics Custom Module Custom Config Custom Output - Custom output properties. Structure is documented below.
- Description string
- Text that describes the vulnerability or misconfiguration that the custom module detects. This explanation is returned with each finding instance to help investigators understand the detected issue. The text must be enclosed in quotation marks.
- Predicate
Management
Project Security Health Analytics Custom Module Custom Config Predicate - The CEL expression to evaluate to produce findings. When the expression evaluates to true against a resource, a finding is generated. Structure is documented below.
- Recommendation string
- An explanation of the recommended steps that security teams can take to resolve the detected issue. This explanation is returned with each finding generated by this module in the nextSteps property of the finding JSON.
- Resource
Selector ManagementProject Security Health Analytics Custom Module Custom Config Resource Selector - The resource types that the custom module operates on. Each custom module can specify up to 5 resource types. Structure is documented below.
- Severity string
- The severity to assign to findings generated by the module.
Possible values are:
CRITICAL
,HIGH
,MEDIUM
,LOW
. - Custom
Output ManagementProject Security Health Analytics Custom Module Custom Config Custom Output - Custom output properties. Structure is documented below.
- Description string
- Text that describes the vulnerability or misconfiguration that the custom module detects. This explanation is returned with each finding instance to help investigators understand the detected issue. The text must be enclosed in quotation marks.
- predicate
Management
Project Security Health Analytics Custom Module Custom Config Predicate - The CEL expression to evaluate to produce findings. When the expression evaluates to true against a resource, a finding is generated. Structure is documented below.
- recommendation String
- An explanation of the recommended steps that security teams can take to resolve the detected issue. This explanation is returned with each finding generated by this module in the nextSteps property of the finding JSON.
- resource
Selector ManagementProject Security Health Analytics Custom Module Custom Config Resource Selector - The resource types that the custom module operates on. Each custom module can specify up to 5 resource types. Structure is documented below.
- severity String
- The severity to assign to findings generated by the module.
Possible values are:
CRITICAL
,HIGH
,MEDIUM
,LOW
. - custom
Output ManagementProject Security Health Analytics Custom Module Custom Config Custom Output - Custom output properties. Structure is documented below.
- description String
- Text that describes the vulnerability or misconfiguration that the custom module detects. This explanation is returned with each finding instance to help investigators understand the detected issue. The text must be enclosed in quotation marks.
- predicate
Management
Project Security Health Analytics Custom Module Custom Config Predicate - The CEL expression to evaluate to produce findings. When the expression evaluates to true against a resource, a finding is generated. Structure is documented below.
- recommendation string
- An explanation of the recommended steps that security teams can take to resolve the detected issue. This explanation is returned with each finding generated by this module in the nextSteps property of the finding JSON.
- resource
Selector ManagementProject Security Health Analytics Custom Module Custom Config Resource Selector - The resource types that the custom module operates on. Each custom module can specify up to 5 resource types. Structure is documented below.
- severity string
- The severity to assign to findings generated by the module.
Possible values are:
CRITICAL
,HIGH
,MEDIUM
,LOW
. - custom
Output ManagementProject Security Health Analytics Custom Module Custom Config Custom Output - Custom output properties. Structure is documented below.
- description string
- Text that describes the vulnerability or misconfiguration that the custom module detects. This explanation is returned with each finding instance to help investigators understand the detected issue. The text must be enclosed in quotation marks.
- predicate
Management
Project Security Health Analytics Custom Module Custom Config Predicate - The CEL expression to evaluate to produce findings. When the expression evaluates to true against a resource, a finding is generated. Structure is documented below.
- recommendation str
- An explanation of the recommended steps that security teams can take to resolve the detected issue. This explanation is returned with each finding generated by this module in the nextSteps property of the finding JSON.
- resource_
selector ManagementProject Security Health Analytics Custom Module Custom Config Resource Selector - The resource types that the custom module operates on. Each custom module can specify up to 5 resource types. Structure is documented below.
- severity str
- The severity to assign to findings generated by the module.
Possible values are:
CRITICAL
,HIGH
,MEDIUM
,LOW
. - custom_
output ManagementProject Security Health Analytics Custom Module Custom Config Custom Output - Custom output properties. Structure is documented below.
- description str
- Text that describes the vulnerability or misconfiguration that the custom module detects. This explanation is returned with each finding instance to help investigators understand the detected issue. The text must be enclosed in quotation marks.
- predicate Property Map
- The CEL expression to evaluate to produce findings. When the expression evaluates to true against a resource, a finding is generated. Structure is documented below.
- recommendation String
- An explanation of the recommended steps that security teams can take to resolve the detected issue. This explanation is returned with each finding generated by this module in the nextSteps property of the finding JSON.
- resource
Selector Property Map - The resource types that the custom module operates on. Each custom module can specify up to 5 resource types. Structure is documented below.
- severity String
- The severity to assign to findings generated by the module.
Possible values are:
CRITICAL
,HIGH
,MEDIUM
,LOW
. - custom
Output Property Map - Custom output properties. Structure is documented below.
- description String
- Text that describes the vulnerability or misconfiguration that the custom module detects. This explanation is returned with each finding instance to help investigators understand the detected issue. The text must be enclosed in quotation marks.
ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutput, ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputArgs
- Properties
List<Management
Project Security Health Analytics Custom Module Custom Config Custom Output Property> - A list of custom output properties to add to the finding. Structure is documented below.
- Properties
[]Management
Project Security Health Analytics Custom Module Custom Config Custom Output Property - A list of custom output properties to add to the finding. Structure is documented below.
- properties
List<Management
Project Security Health Analytics Custom Module Custom Config Custom Output Property> - A list of custom output properties to add to the finding. Structure is documented below.
- properties
Management
Project Security Health Analytics Custom Module Custom Config Custom Output Property[] - A list of custom output properties to add to the finding. Structure is documented below.
- properties
Sequence[Management
Project Security Health Analytics Custom Module Custom Config Custom Output Property] - A list of custom output properties to add to the finding. Structure is documented below.
- properties List<Property Map>
- A list of custom output properties to add to the finding. Structure is documented below.
ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputProperty, ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyArgs
- Name string
- Name of the property for the custom output.
- Value
Expression ManagementProject Security Health Analytics Custom Module Custom Config Custom Output Property Value Expression - The CEL expression for the custom output. A resource property can be specified to return the value of the property or a text string enclosed in quotation marks. Structure is documented below.
- Name string
- Name of the property for the custom output.
- Value
Expression ManagementProject Security Health Analytics Custom Module Custom Config Custom Output Property Value Expression - The CEL expression for the custom output. A resource property can be specified to return the value of the property or a text string enclosed in quotation marks. Structure is documented below.
- name String
- Name of the property for the custom output.
- value
Expression ManagementProject Security Health Analytics Custom Module Custom Config Custom Output Property Value Expression - The CEL expression for the custom output. A resource property can be specified to return the value of the property or a text string enclosed in quotation marks. Structure is documented below.
- name string
- Name of the property for the custom output.
- value
Expression ManagementProject Security Health Analytics Custom Module Custom Config Custom Output Property Value Expression - The CEL expression for the custom output. A resource property can be specified to return the value of the property or a text string enclosed in quotation marks. Structure is documented below.
- name str
- Name of the property for the custom output.
- value_
expression ManagementProject Security Health Analytics Custom Module Custom Config Custom Output Property Value Expression - The CEL expression for the custom output. A resource property can be specified to return the value of the property or a text string enclosed in quotation marks. Structure is documented below.
- name String
- Name of the property for the custom output.
- value
Expression Property Map - The CEL expression for the custom output. A resource property can be specified to return the value of the property or a text string enclosed in quotation marks. Structure is documented below.
ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyValueExpression, ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigCustomOutputPropertyValueExpressionArgs
- Expression string
- Textual representation of an expression in Common Expression Language syntax.
- Description string
- Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
- Location string
- String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
- Title string
- Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
- Expression string
- Textual representation of an expression in Common Expression Language syntax.
- Description string
- Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
- Location string
- String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
- Title string
- Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
- expression String
- Textual representation of an expression in Common Expression Language syntax.
- description String
- Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
- location String
- String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
- title String
- Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
- expression string
- Textual representation of an expression in Common Expression Language syntax.
- description string
- Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
- location string
- String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
- title string
- Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
- expression str
- Textual representation of an expression in Common Expression Language syntax.
- description str
- Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
- location str
- String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
- title str
- Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
- expression String
- Textual representation of an expression in Common Expression Language syntax.
- description String
- Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
- location String
- String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
- title String
- Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigPredicate, ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigPredicateArgs
- Expression string
- Textual representation of an expression in Common Expression Language syntax.
- Description string
- Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
- Location string
- String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
- Title string
- Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
- Expression string
- Textual representation of an expression in Common Expression Language syntax.
- Description string
- Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
- Location string
- String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
- Title string
- Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
- expression String
- Textual representation of an expression in Common Expression Language syntax.
- description String
- Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
- location String
- String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
- title String
- Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
- expression string
- Textual representation of an expression in Common Expression Language syntax.
- description string
- Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
- location string
- String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
- title string
- Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
- expression str
- Textual representation of an expression in Common Expression Language syntax.
- description str
- Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
- location str
- String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
- title str
- Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
- expression String
- Textual representation of an expression in Common Expression Language syntax.
- description String
- Description of the expression. This is a longer text which describes the expression, e.g. when hovered over it in a UI.
- location String
- String indicating the location of the expression for error reporting, e.g. a file name and a position in the file.
- title String
- Title for the expression, i.e. a short string describing its purpose. This can be used e.g. in UIs which allow to enter the expression.
ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigResourceSelector, ManagementProjectSecurityHealthAnalyticsCustomModuleCustomConfigResourceSelectorArgs
- Resource
Types List<string> - The resource types to run the detector on.
- Resource
Types []string - The resource types to run the detector on.
- resource
Types List<String> - The resource types to run the detector on.
- resource
Types string[] - The resource types to run the detector on.
- resource_
types Sequence[str] - The resource types to run the detector on.
- resource
Types List<String> - The resource types to run the detector on.
Import
ProjectSecurityHealthAnalyticsCustomModule can be imported using any of these accepted formats:
projects/{{project}}/locations/{{location}}/securityHealthAnalyticsCustomModules/{{name}}
{{project}}/{{location}}/{{name}}
{{location}}/{{name}}
When using the pulumi import
command, ProjectSecurityHealthAnalyticsCustomModule can be imported using one of the formats above. For example:
$ pulumi import gcp:securitycenter/managementProjectSecurityHealthAnalyticsCustomModule:ManagementProjectSecurityHealthAnalyticsCustomModule default projects/{{project}}/locations/{{location}}/securityHealthAnalyticsCustomModules/{{name}}
$ pulumi import gcp:securitycenter/managementProjectSecurityHealthAnalyticsCustomModule:ManagementProjectSecurityHealthAnalyticsCustomModule default {{project}}/{{location}}/{{name}}
$ pulumi import gcp:securitycenter/managementProjectSecurityHealthAnalyticsCustomModule:ManagementProjectSecurityHealthAnalyticsCustomModule default {{location}}/{{name}}
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Google Cloud (GCP) Classic pulumi/pulumi-gcp
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
google-beta
Terraform Provider.