getFunctionRuntimePolicy

Example Usage

using System.Collections.Generic;
using Pulumi;
using Aquasec = Pulumi.Aquasec;

return await Deployment.RunAsync(() => 
{
    var functionRuntimePolicy = Aquasec.GetFunctionRuntimePolicy.Invoke(new()
    {
        Name = "FunctionRuntimePolicyName",
    });

    return new Dictionary<string, object?>
    {
        ["functionRuntimePolicyDetails"] = functionRuntimePolicy.Apply(getFunctionRuntimePolicyResult => getFunctionRuntimePolicyResult),
    };
});
package main

import (
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
	"github.com/pulumiverse/pulumi-aquasec/sdk/go/aquasec"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		functionRuntimePolicy, err := aquasec.LookupFunctionRuntimePolicy(ctx, &GetFunctionRuntimePolicyArgs{
			Name: "FunctionRuntimePolicyName",
		}, nil)
		if err != nil {
			return err
		}
		ctx.Export("functionRuntimePolicyDetails", functionRuntimePolicy)
		return nil
	})
}
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aquasec.AquasecFunctions;
import com.pulumi.aquasec.inputs.GetFunctionRuntimePolicyArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var functionRuntimePolicy = AquasecFunctions.getFunctionRuntimePolicy(GetFunctionRuntimePolicyArgs.builder()
            .name("FunctionRuntimePolicyName")
            .build());

        ctx.export("functionRuntimePolicyDetails", functionRuntimePolicy.applyValue(getFunctionRuntimePolicyResult -> getFunctionRuntimePolicyResult));
    }
}
import pulumi
import pulumi_aquasec as aquasec

function_runtime_policy = aquasec.get_function_runtime_policy(name="FunctionRuntimePolicyName")
pulumi.export("functionRuntimePolicyDetails", function_runtime_policy)
import * as pulumi from "@pulumi/pulumi";
import * as aquasec from "@pulumi/aquasec";

const functionRuntimePolicy = aquasec.getFunctionRuntimePolicy({
    name: "FunctionRuntimePolicyName",
});
export const functionRuntimePolicyDetails = functionRuntimePolicy;
variables:
  functionRuntimePolicy:
    fn::invoke:
      Function: aquasec:getFunctionRuntimePolicy
      Arguments:
        name: FunctionRuntimePolicyName
outputs:
  functionRuntimePolicyDetails: ${functionRuntimePolicy}

Using getFunctionRuntimePolicy

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getFunctionRuntimePolicy(args: GetFunctionRuntimePolicyArgs, opts?: InvokeOptions): Promise<GetFunctionRuntimePolicyResult>
function getFunctionRuntimePolicyOutput(args: GetFunctionRuntimePolicyOutputArgs, opts?: InvokeOptions): Output<GetFunctionRuntimePolicyResult>
def get_function_runtime_policy(name: Optional[str] = None,
                                opts: Optional[InvokeOptions] = None) -> GetFunctionRuntimePolicyResult
def get_function_runtime_policy_output(name: Optional[pulumi.Input[str]] = None,
                                opts: Optional[InvokeOptions] = None) -> Output[GetFunctionRuntimePolicyResult]
func LookupFunctionRuntimePolicy(ctx *Context, args *LookupFunctionRuntimePolicyArgs, opts ...InvokeOption) (*LookupFunctionRuntimePolicyResult, error)
func LookupFunctionRuntimePolicyOutput(ctx *Context, args *LookupFunctionRuntimePolicyOutputArgs, opts ...InvokeOption) LookupFunctionRuntimePolicyResultOutput

> Note: This function is named LookupFunctionRuntimePolicy in the Go SDK.

public static class GetFunctionRuntimePolicy 
{
    public static Task<GetFunctionRuntimePolicyResult> InvokeAsync(GetFunctionRuntimePolicyArgs args, InvokeOptions? opts = null)
    public static Output<GetFunctionRuntimePolicyResult> Invoke(GetFunctionRuntimePolicyInvokeArgs args, InvokeOptions? opts = null)
}
public static CompletableFuture<GetFunctionRuntimePolicyResult> getFunctionRuntimePolicy(GetFunctionRuntimePolicyArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
fn::invoke:
  function: aquasec:index/getFunctionRuntimePolicy:getFunctionRuntimePolicy
  arguments:
    # arguments dictionary

The following arguments are supported:

Name string

Name of the function runtime policy

Name string

Name of the function runtime policy

name String

Name of the function runtime policy

name string

Name of the function runtime policy

name str

Name of the function runtime policy

name String

Name of the function runtime policy

getFunctionRuntimePolicy Result

The following output properties are available:

ApplicationScopes List<string>

Indicates the application scope of the service.

Author string

Username of the account that created the service.

BlockMaliciousExecutables bool

If true, prevent creation of malicious executables in functions during their runtime post invocation.

BlockMaliciousExecutablesAllowedProcesses List<string>

List of processes that will be allowed

BlockRunningExecutablesInTmpFolder bool

If true, prevent running of executables in functions locate in /tmp folder during their runtime post invocation.

BlockedExecutables List<string>

List of executables that are prevented from running in containers.

Description string

The description of the function runtime policy

Enabled bool

Indicates if the runtime policy is enabled or not.

Enforce bool

Indicates that policy should effect container execution (not just for audit).

HoneypotAccessKey string

Honeypot User ID (Access Key)

HoneypotApplyOns List<string>

List of options to apply the honeypot on (Environment Vairable, Layer, File)

HoneypotSecretKey string

Honeypot User Password (Secret Key)

HoneypotServerlessAppName string

Serverless application name

Id string

The provider-assigned unique ID for this managed resource.

Name string

Name of the function runtime policy

ScopeExpression string

Logical expression of how to compute the dependency of the scope variables.

ScopeVariables List<Pulumiverse.Aquasec.Outputs.GetFunctionRuntimePolicyScopeVariable>

List of scope attributes.

ApplicationScopes []string

Indicates the application scope of the service.

Author string

Username of the account that created the service.

BlockMaliciousExecutables bool

If true, prevent creation of malicious executables in functions during their runtime post invocation.

BlockMaliciousExecutablesAllowedProcesses []string

List of processes that will be allowed

BlockRunningExecutablesInTmpFolder bool

If true, prevent running of executables in functions locate in /tmp folder during their runtime post invocation.

BlockedExecutables []string

List of executables that are prevented from running in containers.

Description string

The description of the function runtime policy

Enabled bool

Indicates if the runtime policy is enabled or not.

Enforce bool

Indicates that policy should effect container execution (not just for audit).

HoneypotAccessKey string

Honeypot User ID (Access Key)

HoneypotApplyOns []string

List of options to apply the honeypot on (Environment Vairable, Layer, File)

HoneypotSecretKey string

Honeypot User Password (Secret Key)

HoneypotServerlessAppName string

Serverless application name

Id string

The provider-assigned unique ID for this managed resource.

Name string

Name of the function runtime policy

ScopeExpression string

Logical expression of how to compute the dependency of the scope variables.

ScopeVariables []GetFunctionRuntimePolicyScopeVariable

List of scope attributes.

applicationScopes List<String>

Indicates the application scope of the service.

author String

Username of the account that created the service.

blockMaliciousExecutables Boolean

If true, prevent creation of malicious executables in functions during their runtime post invocation.

blockMaliciousExecutablesAllowedProcesses List<String>

List of processes that will be allowed

blockRunningExecutablesInTmpFolder Boolean

If true, prevent running of executables in functions locate in /tmp folder during their runtime post invocation.

blockedExecutables List<String>

List of executables that are prevented from running in containers.

description String

The description of the function runtime policy

enabled Boolean

Indicates if the runtime policy is enabled or not.

enforce Boolean

Indicates that policy should effect container execution (not just for audit).

honeypotAccessKey String

Honeypot User ID (Access Key)

honeypotApplyOns List<String>

List of options to apply the honeypot on (Environment Vairable, Layer, File)

honeypotSecretKey String

Honeypot User Password (Secret Key)

honeypotServerlessAppName String

Serverless application name

id String

The provider-assigned unique ID for this managed resource.

name String

Name of the function runtime policy

scopeExpression String

Logical expression of how to compute the dependency of the scope variables.

scopeVariables List<GetFunctionRuntimePolicyScopeVariable>

List of scope attributes.

applicationScopes string[]

Indicates the application scope of the service.

author string

Username of the account that created the service.

blockMaliciousExecutables boolean

If true, prevent creation of malicious executables in functions during their runtime post invocation.

blockMaliciousExecutablesAllowedProcesses string[]

List of processes that will be allowed

blockRunningExecutablesInTmpFolder boolean

If true, prevent running of executables in functions locate in /tmp folder during their runtime post invocation.

blockedExecutables string[]

List of executables that are prevented from running in containers.

description string

The description of the function runtime policy

enabled boolean

Indicates if the runtime policy is enabled or not.

enforce boolean

Indicates that policy should effect container execution (not just for audit).

honeypotAccessKey string

Honeypot User ID (Access Key)

honeypotApplyOns string[]

List of options to apply the honeypot on (Environment Vairable, Layer, File)

honeypotSecretKey string

Honeypot User Password (Secret Key)

honeypotServerlessAppName string

Serverless application name

id string

The provider-assigned unique ID for this managed resource.

name string

Name of the function runtime policy

scopeExpression string

Logical expression of how to compute the dependency of the scope variables.

scopeVariables GetFunctionRuntimePolicyScopeVariable[]

List of scope attributes.

application_scopes Sequence[str]

Indicates the application scope of the service.

author str

Username of the account that created the service.

block_malicious_executables bool

If true, prevent creation of malicious executables in functions during their runtime post invocation.

block_malicious_executables_allowed_processes Sequence[str]

List of processes that will be allowed

block_running_executables_in_tmp_folder bool

If true, prevent running of executables in functions locate in /tmp folder during their runtime post invocation.

blocked_executables Sequence[str]

List of executables that are prevented from running in containers.

description str

The description of the function runtime policy

enabled bool

Indicates if the runtime policy is enabled or not.

enforce bool

Indicates that policy should effect container execution (not just for audit).

honeypot_access_key str

Honeypot User ID (Access Key)

honeypot_apply_ons Sequence[str]

List of options to apply the honeypot on (Environment Vairable, Layer, File)

honeypot_secret_key str

Honeypot User Password (Secret Key)

honeypot_serverless_app_name str

Serverless application name

id str

The provider-assigned unique ID for this managed resource.

name str

Name of the function runtime policy

scope_expression str

Logical expression of how to compute the dependency of the scope variables.

scope_variables Sequence[GetFunctionRuntimePolicyScopeVariable]

List of scope attributes.

applicationScopes List<String>

Indicates the application scope of the service.

author String

Username of the account that created the service.

blockMaliciousExecutables Boolean

If true, prevent creation of malicious executables in functions during their runtime post invocation.

blockMaliciousExecutablesAllowedProcesses List<String>

List of processes that will be allowed

blockRunningExecutablesInTmpFolder Boolean

If true, prevent running of executables in functions locate in /tmp folder during their runtime post invocation.

blockedExecutables List<String>

List of executables that are prevented from running in containers.

description String

The description of the function runtime policy

enabled Boolean

Indicates if the runtime policy is enabled or not.

enforce Boolean

Indicates that policy should effect container execution (not just for audit).

honeypotAccessKey String

Honeypot User ID (Access Key)

honeypotApplyOns List<String>

List of options to apply the honeypot on (Environment Vairable, Layer, File)

honeypotSecretKey String

Honeypot User Password (Secret Key)

honeypotServerlessAppName String

Serverless application name

id String

The provider-assigned unique ID for this managed resource.

name String

Name of the function runtime policy

scopeExpression String

Logical expression of how to compute the dependency of the scope variables.

scopeVariables List<Property Map>

List of scope attributes.

Supporting Types

GetFunctionRuntimePolicyScopeVariable

Attribute string
Name string

Name of the function runtime policy

Value string
Attribute string
Name string

Name of the function runtime policy

Value string
attribute String
name String

Name of the function runtime policy

value String
attribute string
name string

Name of the function runtime policy

value string
attribute str
name str

Name of the function runtime policy

value str
attribute String
name String

Name of the function runtime policy

value String

Package Details

Repository
https://github.com/pulumiverse/pulumi-aquasec
License
Apache-2.0
Notes

This Pulumi package is based on the aquasec Terraform Provider.