We recommend new projects start with resources from the AWS provider.
Viewing docs for AWS Cloud Control v1.62.0
published on Monday, Apr 20, 2026 by Pulumi
published on Monday, Apr 20, 2026 by Pulumi
We recommend new projects start with resources from the AWS provider.
Viewing docs for AWS Cloud Control v1.62.0
published on Monday, Apr 20, 2026 by Pulumi
published on Monday, Apr 20, 2026 by Pulumi
Resource Type definition for AWS::SecurityAgent::AgentSpace
Create AgentSpace Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new AgentSpace(name: string, args?: AgentSpaceArgs, opts?: CustomResourceOptions);@overload
def AgentSpace(resource_name: str,
args: Optional[AgentSpaceArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def AgentSpace(resource_name: str,
opts: Optional[ResourceOptions] = None,
aws_resources: Optional[AgentSpaceAwsResourcesArgs] = None,
code_review_settings: Optional[AgentSpaceCodeReviewSettingsArgs] = None,
description: Optional[str] = None,
integrated_resources: Optional[Sequence[AgentSpaceIntegratedResourceArgs]] = None,
kms_key_id: Optional[str] = None,
name: Optional[str] = None,
tags: Optional[Sequence[_root_inputs.TagArgs]] = None,
target_domain_ids: Optional[Sequence[str]] = None)func NewAgentSpace(ctx *Context, name string, args *AgentSpaceArgs, opts ...ResourceOption) (*AgentSpace, error)public AgentSpace(string name, AgentSpaceArgs? args = null, CustomResourceOptions? opts = null)
public AgentSpace(String name, AgentSpaceArgs args)
public AgentSpace(String name, AgentSpaceArgs args, CustomResourceOptions options)
type: aws-native:securityagent:AgentSpace
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args AgentSpaceArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AgentSpaceArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AgentSpaceArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AgentSpaceArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AgentSpaceArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
AgentSpace Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The AgentSpace resource accepts the following input properties:
- Aws
Resources Pulumi.Aws Native. Security Agent. Inputs. Agent Space Aws Resources - Code
Review Pulumi.Settings Aws Native. Security Agent. Inputs. Agent Space Code Review Settings - Description string
- Description of the agent space
- Integrated
Resources List<Pulumi.Aws Native. Security Agent. Inputs. Agent Space Integrated Resource> - Kms
Key stringId - Identifier of the KMS key used to encrypt data. Can be a key ID, key ARN, alias name, or alias ARN. If not specified, an AWS managed key is used.
- Name string
- Name of the agent space
-
List<Pulumi.
Aws Native. Inputs. Tag> - Tags for the agent space
- Target
Domain List<string>Ids - List of target domain identifiers registered with the agent space
- Aws
Resources AgentSpace Aws Resources Args - Code
Review AgentSettings Space Code Review Settings Args - Description string
- Description of the agent space
- Integrated
Resources []AgentSpace Integrated Resource Args - Kms
Key stringId - Identifier of the KMS key used to encrypt data. Can be a key ID, key ARN, alias name, or alias ARN. If not specified, an AWS managed key is used.
- Name string
- Name of the agent space
-
Tag
Args - Tags for the agent space
- Target
Domain []stringIds - List of target domain identifiers registered with the agent space
- aws
Resources AgentSpace Aws Resources - code
Review AgentSettings Space Code Review Settings - description String
- Description of the agent space
- integrated
Resources List<AgentSpace Integrated Resource> - kms
Key StringId - Identifier of the KMS key used to encrypt data. Can be a key ID, key ARN, alias name, or alias ARN. If not specified, an AWS managed key is used.
- name String
- Name of the agent space
- List<Tag>
- Tags for the agent space
- target
Domain List<String>Ids - List of target domain identifiers registered with the agent space
- aws
Resources AgentSpace Aws Resources - code
Review AgentSettings Space Code Review Settings - description string
- Description of the agent space
- integrated
Resources AgentSpace Integrated Resource[] - kms
Key stringId - Identifier of the KMS key used to encrypt data. Can be a key ID, key ARN, alias name, or alias ARN. If not specified, an AWS managed key is used.
- name string
- Name of the agent space
- Tag[]
- Tags for the agent space
- target
Domain string[]Ids - List of target domain identifiers registered with the agent space
- aws_
resources AgentSpace Aws Resources Args - code_
review_ Agentsettings Space Code Review Settings Args - description str
- Description of the agent space
- integrated_
resources Sequence[AgentSpace Integrated Resource Args] - kms_
key_ strid - Identifier of the KMS key used to encrypt data. Can be a key ID, key ARN, alias name, or alias ARN. If not specified, an AWS managed key is used.
- name str
- Name of the agent space
-
Sequence[Tag
Args] - Tags for the agent space
- target_
domain_ Sequence[str]ids - List of target domain identifiers registered with the agent space
- aws
Resources Property Map - code
Review Property MapSettings - description String
- Description of the agent space
- integrated
Resources List<Property Map> - kms
Key StringId - Identifier of the KMS key used to encrypt data. Can be a key ID, key ARN, alias name, or alias ARN. If not specified, an AWS managed key is used.
- name String
- Name of the agent space
- List<Property Map>
- Tags for the agent space
- target
Domain List<String>Ids - List of target domain identifiers registered with the agent space
Outputs
All input properties are implicitly available as output properties. Additionally, the AgentSpace resource produces the following output properties:
- Agent
Space stringId - Unique identifier of the agent space
- Created
At string - Timestamp when the agent space was created
- Id string
- The provider-assigned unique ID for this managed resource.
- Updated
At string - Timestamp when the agent space was last updated
- Agent
Space stringId - Unique identifier of the agent space
- Created
At string - Timestamp when the agent space was created
- Id string
- The provider-assigned unique ID for this managed resource.
- Updated
At string - Timestamp when the agent space was last updated
- agent
Space StringId - Unique identifier of the agent space
- created
At String - Timestamp when the agent space was created
- id String
- The provider-assigned unique ID for this managed resource.
- updated
At String - Timestamp when the agent space was last updated
- agent
Space stringId - Unique identifier of the agent space
- created
At string - Timestamp when the agent space was created
- id string
- The provider-assigned unique ID for this managed resource.
- updated
At string - Timestamp when the agent space was last updated
- agent_
space_ strid - Unique identifier of the agent space
- created_
at str - Timestamp when the agent space was created
- id str
- The provider-assigned unique ID for this managed resource.
- updated_
at str - Timestamp when the agent space was last updated
- agent
Space StringId - Unique identifier of the agent space
- created
At String - Timestamp when the agent space was created
- id String
- The provider-assigned unique ID for this managed resource.
- updated
At String - Timestamp when the agent space was last updated
Supporting Types
AgentSpaceAwsResources, AgentSpaceAwsResourcesArgs
AWS resource configuration- Iam
Roles List<string> - IAM role ARNs
- Lambda
Function List<string>Arns - Lambda function ARNs used to retrieve tester credentials for pentests
- Log
Groups List<string> - CloudWatch log group ARNs
- S3Buckets List<string>
- S3 bucket ARNs
- Secret
Arns List<string> - SecretsManager secret ARNs used to store tester credentials for pentests
- Vpcs
List<Pulumi.
Aws Native. Security Agent. Inputs. Agent Space Vpc Config> - VPC configurations
- Iam
Roles []string - IAM role ARNs
- Lambda
Function []stringArns - Lambda function ARNs used to retrieve tester credentials for pentests
- Log
Groups []string - CloudWatch log group ARNs
- S3Buckets []string
- S3 bucket ARNs
- Secret
Arns []string - SecretsManager secret ARNs used to store tester credentials for pentests
- Vpcs
[]Agent
Space Vpc Config - VPC configurations
- iam
Roles List<String> - IAM role ARNs
- lambda
Function List<String>Arns - Lambda function ARNs used to retrieve tester credentials for pentests
- log
Groups List<String> - CloudWatch log group ARNs
- s3Buckets List<String>
- S3 bucket ARNs
- secret
Arns List<String> - SecretsManager secret ARNs used to store tester credentials for pentests
- vpcs
List<Agent
Space Vpc Config> - VPC configurations
- iam
Roles string[] - IAM role ARNs
- lambda
Function string[]Arns - Lambda function ARNs used to retrieve tester credentials for pentests
- log
Groups string[] - CloudWatch log group ARNs
- s3Buckets string[]
- S3 bucket ARNs
- secret
Arns string[] - SecretsManager secret ARNs used to store tester credentials for pentests
- vpcs
Agent
Space Vpc Config[] - VPC configurations
- iam_
roles Sequence[str] - IAM role ARNs
- lambda_
function_ Sequence[str]arns - Lambda function ARNs used to retrieve tester credentials for pentests
- log_
groups Sequence[str] - CloudWatch log group ARNs
- s3_
buckets Sequence[str] - S3 bucket ARNs
- secret_
arns Sequence[str] - SecretsManager secret ARNs used to store tester credentials for pentests
- vpcs
Sequence[Agent
Space Vpc Config] - VPC configurations
- iam
Roles List<String> - IAM role ARNs
- lambda
Function List<String>Arns - Lambda function ARNs used to retrieve tester credentials for pentests
- log
Groups List<String> - CloudWatch log group ARNs
- s3Buckets List<String>
- S3 bucket ARNs
- secret
Arns List<String> - SecretsManager secret ARNs used to store tester credentials for pentests
- vpcs List<Property Map>
- VPC configurations
AgentSpaceCodeReviewSettings, AgentSpaceCodeReviewSettingsArgs
Details of code review settings- Controls
Scanning bool - Whether Controls are utilized for code review analysis
- General
Purpose boolScanning - Whether general purpose analysis is performed for code review
- Controls
Scanning bool - Whether Controls are utilized for code review analysis
- General
Purpose boolScanning - Whether general purpose analysis is performed for code review
- controls
Scanning Boolean - Whether Controls are utilized for code review analysis
- general
Purpose BooleanScanning - Whether general purpose analysis is performed for code review
- controls
Scanning boolean - Whether Controls are utilized for code review analysis
- general
Purpose booleanScanning - Whether general purpose analysis is performed for code review
- controls_
scanning bool - Whether Controls are utilized for code review analysis
- general_
purpose_ boolscanning - Whether general purpose analysis is performed for code review
- controls
Scanning Boolean - Whether Controls are utilized for code review analysis
- general
Purpose BooleanScanning - Whether general purpose analysis is performed for code review
AgentSpaceGitHubCapabilitiesResource, AgentSpaceGitHubCapabilitiesResourceArgs
GitHub repository capabilities- Leave
Comments bool - Enables Code Review in the repository
- Remediate
Code bool - Enables creation of pull requests with automated fixes
- Leave
Comments bool - Enables Code Review in the repository
- Remediate
Code bool - Enables creation of pull requests with automated fixes
- leave
Comments Boolean - Enables Code Review in the repository
- remediate
Code Boolean - Enables creation of pull requests with automated fixes
- leave
Comments boolean - Enables Code Review in the repository
- remediate
Code boolean - Enables creation of pull requests with automated fixes
- leave_
comments bool - Enables Code Review in the repository
- remediate_
code bool - Enables creation of pull requests with automated fixes
- leave
Comments Boolean - Enables Code Review in the repository
- remediate
Code Boolean - Enables creation of pull requests with automated fixes
AgentSpaceGitHubRepositoryResource, AgentSpaceGitHubRepositoryResourceArgs
GitHub repository detailsAgentSpaceIntegratedResource, AgentSpaceIntegratedResourceArgs
Integrated Resource details- Integration string
- Unique identifier of the Provider Integration
- Provider
Resources List<Pulumi.Aws Native. Security Agent. Inputs. Agent Space Provider Resource> - List of selected Resources from the Integration
- Integration string
- Unique identifier of the Provider Integration
- Provider
Resources []AgentSpace Provider Resource - List of selected Resources from the Integration
- integration String
- Unique identifier of the Provider Integration
- provider
Resources List<AgentSpace Provider Resource> - List of selected Resources from the Integration
- integration string
- Unique identifier of the Provider Integration
- provider
Resources AgentSpace Provider Resource[] - List of selected Resources from the Integration
- integration str
- Unique identifier of the Provider Integration
- provider_
resources Sequence[AgentSpace Provider Resource] - List of selected Resources from the Integration
- integration String
- Unique identifier of the Provider Integration
- provider
Resources List<Property Map> - List of selected Resources from the Integration
AgentSpaceProviderResource, AgentSpaceProviderResourceArgs
Selected Resource (eg: Code Repository) from an IntegrationAgentSpaceVpcConfig, AgentSpaceVpcConfigArgs
Customer VPC configuration that the security testing environment accesses- Security
Group List<string>Arns - List of security group ARNs in the customer VPC
- Subnet
Arns List<string> - List of subnet ARNs in the customer VPC
- Vpc
Arn string - ARN of the customer VPC
- Security
Group []stringArns - List of security group ARNs in the customer VPC
- Subnet
Arns []string - List of subnet ARNs in the customer VPC
- Vpc
Arn string - ARN of the customer VPC
- security
Group List<String>Arns - List of security group ARNs in the customer VPC
- subnet
Arns List<String> - List of subnet ARNs in the customer VPC
- vpc
Arn String - ARN of the customer VPC
- security
Group string[]Arns - List of security group ARNs in the customer VPC
- subnet
Arns string[] - List of subnet ARNs in the customer VPC
- vpc
Arn string - ARN of the customer VPC
- security_
group_ Sequence[str]arns - List of security group ARNs in the customer VPC
- subnet_
arns Sequence[str] - List of subnet ARNs in the customer VPC
- vpc_
arn str - ARN of the customer VPC
- security
Group List<String>Arns - List of security group ARNs in the customer VPC
- subnet
Arns List<String> - List of subnet ARNs in the customer VPC
- vpc
Arn String - ARN of the customer VPC
Tag, TagArgs
A set of tags to apply to the resource.Package Details
- Repository
- AWS Native pulumi/pulumi-aws-native
- License
- Apache-2.0
We recommend new projects start with resources from the AWS provider.
Viewing docs for AWS Cloud Control v1.62.0
published on Monday, Apr 20, 2026 by Pulumi
published on Monday, Apr 20, 2026 by Pulumi
