AWS Cloud Control v1.34.0, Sep 12 25

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.34.0 published on Friday, Sep 12, 2025 by Pulumi

pulumi/pulumi-aws-native

aws-native.inspectorv2.CodeSecurityScanConfiguration

Explore with Pulumi AI

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.34.0 published on Friday, Sep 12, 2025 by Pulumi

pulumi/pulumi-aws-native

Create CodeSecurityScanConfiguration Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new CodeSecurityScanConfiguration(name: string, args?: CodeSecurityScanConfigurationArgs, opts?: CustomResourceOptions);

@overload
def CodeSecurityScanConfiguration(resource_name: str,
                                  args: Optional[CodeSecurityScanConfigurationInitArgs] = None,
                                  opts: Optional[ResourceOptions] = None)

@overload
def CodeSecurityScanConfiguration(resource_name: str,
                                  opts: Optional[ResourceOptions] = None,
                                  configuration: Optional[CodeSecurityScanConfigurationArgs] = None,
                                  level: Optional[CodeSecurityScanConfigurationConfigurationLevel] = None,
                                  name: Optional[str] = None,
                                  scope_settings: Optional[CodeSecurityScanConfigurationScopeSettingsArgs] = None,
                                  tags: Optional[Mapping[str, str]] = None)

func NewCodeSecurityScanConfiguration(ctx *Context, name string, args *CodeSecurityScanConfigurationArgs, opts ...ResourceOption) (*CodeSecurityScanConfiguration, error)

public CodeSecurityScanConfiguration(string name, CodeSecurityScanConfigurationArgs? args = null, CustomResourceOptions? opts = null)

public CodeSecurityScanConfiguration(String name, CodeSecurityScanConfigurationArgs args)
public CodeSecurityScanConfiguration(String name, CodeSecurityScanConfigurationArgs args, CustomResourceOptions options)

type: aws-native:inspectorv2:CodeSecurityScanConfiguration
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args CodeSecurityScanConfigurationArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args CodeSecurityScanConfigurationInitArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args CodeSecurityScanConfigurationArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args CodeSecurityScanConfigurationArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args CodeSecurityScanConfigurationArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

CodeSecurityScanConfiguration Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The CodeSecurityScanConfiguration resource accepts the following input properties:

Configuration Pulumi.AwsNative.InspectorV2.Inputs.CodeSecurityScanConfiguration: Code Security Scan Configuration
Level Pulumi.AwsNative.InspectorV2.CodeSecurityScanConfigurationConfigurationLevel: Configuration Level
Name string: Code Security Scan Configuration name
ScopeSettings Pulumi.AwsNative.InspectorV2.Inputs.CodeSecurityScanConfigurationScopeSettings: Scope Settings
Tags Dictionary<string, string>: The tags to apply to the scan configuration.

Configuration CodeSecurityScanConfigurationTypeArgs: Code Security Scan Configuration
Level CodeSecurityScanConfigurationConfigurationLevel: Configuration Level
Name string: Code Security Scan Configuration name
ScopeSettings CodeSecurityScanConfigurationScopeSettingsArgs: Scope Settings
Tags map[string]string: The tags to apply to the scan configuration.

configuration CodeSecurityScanConfiguration: Code Security Scan Configuration
level CodeSecurityScanConfigurationConfigurationLevel: Configuration Level
name String: Code Security Scan Configuration name
scopeSettings CodeSecurityScanConfigurationScopeSettings: Scope Settings
tags Map<String,String>: The tags to apply to the scan configuration.

configuration CodeSecurityScanConfiguration: Code Security Scan Configuration
level CodeSecurityScanConfigurationConfigurationLevel: Configuration Level
name string: Code Security Scan Configuration name
scopeSettings CodeSecurityScanConfigurationScopeSettings: Scope Settings
tags {[key: string]: string}: The tags to apply to the scan configuration.

configuration CodeSecurityScanConfigurationArgs: Code Security Scan Configuration
level CodeSecurityScanConfigurationConfigurationLevel: Configuration Level
name str: Code Security Scan Configuration name
scope_settings CodeSecurityScanConfigurationScopeSettingsArgs: Scope Settings
tags Mapping[str, str]: The tags to apply to the scan configuration.

configuration Property Map: Code Security Scan Configuration
level "ORGANIZATION" | "ACCOUNT": Configuration Level
name String: Code Security Scan Configuration name
scopeSettings Property Map: Scope Settings
tags Map<String>: The tags to apply to the scan configuration.

Outputs

All input properties are implicitly available as output properties. Additionally, the CodeSecurityScanConfiguration resource produces the following output properties:

Arn string: Code Security Scan Configuration ARN
Id string: The provider-assigned unique ID for this managed resource.

Arn string: Code Security Scan Configuration ARN
Id string: The provider-assigned unique ID for this managed resource.

arn String: Code Security Scan Configuration ARN
id String: The provider-assigned unique ID for this managed resource.

arn string: Code Security Scan Configuration ARN
id string: The provider-assigned unique ID for this managed resource.

arn str: Code Security Scan Configuration ARN
id str: The provider-assigned unique ID for this managed resource.

arn String: Code Security Scan Configuration ARN
id String: The provider-assigned unique ID for this managed resource.

Supporting Types

CodeSecurityScanConfiguration, CodeSecurityScanConfigurationArgs

RuleSetCategories List<Pulumi.AwsNative.InspectorV2.CodeSecurityScanConfigurationRuleSetCategory>: The categories of security rules to be applied during the scan.
ContinuousIntegrationScanConfiguration Pulumi.AwsNative.InspectorV2.Inputs.CodeSecurityScanConfigurationContinuousIntegrationScanConfiguration: Configuration settings for continuous integration scans that run automatically when code changes are made.
PeriodicScanConfiguration Pulumi.AwsNative.InspectorV2.Inputs.CodeSecurityScanConfigurationPeriodicScanConfiguration: Configuration settings for periodic scans that run on a scheduled basis.

RuleSetCategories []CodeSecurityScanConfigurationRuleSetCategory: The categories of security rules to be applied during the scan.
ContinuousIntegrationScanConfiguration CodeSecurityScanConfigurationContinuousIntegrationScanConfiguration: Configuration settings for continuous integration scans that run automatically when code changes are made.
PeriodicScanConfiguration CodeSecurityScanConfigurationPeriodicScanConfiguration: Configuration settings for periodic scans that run on a scheduled basis.

ruleSetCategories List<CodeSecurityScanConfigurationRuleSetCategory>: The categories of security rules to be applied during the scan.
continuousIntegrationScanConfiguration CodeSecurityScanConfigurationContinuousIntegrationScanConfiguration: Configuration settings for continuous integration scans that run automatically when code changes are made.
periodicScanConfiguration CodeSecurityScanConfigurationPeriodicScanConfiguration: Configuration settings for periodic scans that run on a scheduled basis.

ruleSetCategories CodeSecurityScanConfigurationRuleSetCategory[]: The categories of security rules to be applied during the scan.
continuousIntegrationScanConfiguration CodeSecurityScanConfigurationContinuousIntegrationScanConfiguration: Configuration settings for continuous integration scans that run automatically when code changes are made.
periodicScanConfiguration CodeSecurityScanConfigurationPeriodicScanConfiguration: Configuration settings for periodic scans that run on a scheduled basis.

rule_set_categories Sequence[CodeSecurityScanConfigurationRuleSetCategory]: The categories of security rules to be applied during the scan.
continuous_integration_scan_configuration CodeSecurityScanConfigurationContinuousIntegrationScanConfiguration: Configuration settings for continuous integration scans that run automatically when code changes are made.
periodic_scan_configuration CodeSecurityScanConfigurationPeriodicScanConfiguration: Configuration settings for periodic scans that run on a scheduled basis.

ruleSetCategories List<"SAST" | "IAC" | "SCA">: The categories of security rules to be applied during the scan.
continuousIntegrationScanConfiguration Property Map: Configuration settings for continuous integration scans that run automatically when code changes are made.
periodicScanConfiguration Property Map: Configuration settings for periodic scans that run on a scheduled basis.

CodeSecurityScanConfigurationConfigurationLevel, CodeSecurityScanConfigurationConfigurationLevelArgs

Organization: ORGANIZATION
Account: ACCOUNT

CodeSecurityScanConfigurationConfigurationLevelOrganization: ORGANIZATION
CodeSecurityScanConfigurationConfigurationLevelAccount: ACCOUNT

Organization: ORGANIZATION
Account: ACCOUNT

Organization: ORGANIZATION
Account: ACCOUNT

ORGANIZATION: ORGANIZATION
ACCOUNT: ACCOUNT

"ORGANIZATION": ORGANIZATION
"ACCOUNT": ACCOUNT

CodeSecurityScanConfigurationContinuousIntegrationScanConfiguration, CodeSecurityScanConfigurationContinuousIntegrationScanConfigurationArgs

SupportedEvents List<Pulumi.AwsNative.InspectorV2.CodeSecurityScanConfigurationContinuousIntegrationScanEvent>: The repository events that trigger continuous integration scans, such as pull requests or commits.

SupportedEvents []CodeSecurityScanConfigurationContinuousIntegrationScanEvent: The repository events that trigger continuous integration scans, such as pull requests or commits.

supportedEvents List<CodeSecurityScanConfigurationContinuousIntegrationScanEvent>: The repository events that trigger continuous integration scans, such as pull requests or commits.

supportedEvents CodeSecurityScanConfigurationContinuousIntegrationScanEvent[]: The repository events that trigger continuous integration scans, such as pull requests or commits.

supported_events Sequence[CodeSecurityScanConfigurationContinuousIntegrationScanEvent]: The repository events that trigger continuous integration scans, such as pull requests or commits.

supportedEvents List<"PULL_REQUEST" | "PUSH">: The repository events that trigger continuous integration scans, such as pull requests or commits.

CodeSecurityScanConfigurationContinuousIntegrationScanEvent, CodeSecurityScanConfigurationContinuousIntegrationScanEventArgs

PullRequest: PULL_REQUEST
Push: PUSH

CodeSecurityScanConfigurationContinuousIntegrationScanEventPullRequest: PULL_REQUEST
CodeSecurityScanConfigurationContinuousIntegrationScanEventPush: PUSH

PullRequest: PULL_REQUEST
Push: PUSH

PullRequest: PULL_REQUEST
Push: PUSH

PULL_REQUEST: PULL_REQUEST
PUSH: PUSH

"PULL_REQUEST": PULL_REQUEST
"PUSH": PUSH

CodeSecurityScanConfigurationPeriodicScanConfiguration, CodeSecurityScanConfigurationPeriodicScanConfigurationArgs

Frequency Pulumi.AwsNative.InspectorV2.CodeSecurityScanConfigurationPeriodicScanFrequency

The frequency at which periodic scans are performed (such as weekly or monthly).

If you don't provide the frequencyExpression Amazon Inspector chooses day for the scan to run. If you provide the frequencyExpression , the schedule must match the specified frequency .

FrequencyExpression string