We recommend new projects start with resources from the AWS provider.
Viewing docs for AWS Cloud Control v1.62.0
published on Monday, Apr 20, 2026 by Pulumi
published on Monday, Apr 20, 2026 by Pulumi
We recommend new projects start with resources from the AWS provider.
Viewing docs for AWS Cloud Control v1.62.0
published on Monday, Apr 20, 2026 by Pulumi
published on Monday, Apr 20, 2026 by Pulumi
Resource Type definition for AWS::SecurityAgent::Pentest
Using getPentest
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getPentest(args: GetPentestArgs, opts?: InvokeOptions): Promise<GetPentestResult>
function getPentestOutput(args: GetPentestOutputArgs, opts?: InvokeOptions): Output<GetPentestResult>def get_pentest(agent_space_id: Optional[str] = None,
pentest_id: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetPentestResult
def get_pentest_output(agent_space_id: Optional[pulumi.Input[str]] = None,
pentest_id: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetPentestResult]func LookupPentest(ctx *Context, args *LookupPentestArgs, opts ...InvokeOption) (*LookupPentestResult, error)
func LookupPentestOutput(ctx *Context, args *LookupPentestOutputArgs, opts ...InvokeOption) LookupPentestResultOutput> Note: This function is named LookupPentest in the Go SDK.
public static class GetPentest
{
public static Task<GetPentestResult> InvokeAsync(GetPentestArgs args, InvokeOptions? opts = null)
public static Output<GetPentestResult> Invoke(GetPentestInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetPentestResult> getPentest(GetPentestArgs args, InvokeOptions options)
public static Output<GetPentestResult> getPentest(GetPentestArgs args, InvokeOptions options)
fn::invoke:
function: aws-native:securityagent:getPentest
arguments:
# arguments dictionaryThe following arguments are supported:
- Agent
Space stringId - Identifier of agent space where the pentest should be created
- Pentest
Id string - Unique identifier of the pentest
- Agent
Space stringId - Identifier of agent space where the pentest should be created
- Pentest
Id string - Unique identifier of the pentest
- agent
Space StringId - Identifier of agent space where the pentest should be created
- pentest
Id String - Unique identifier of the pentest
- agent
Space stringId - Identifier of agent space where the pentest should be created
- pentest
Id string - Unique identifier of the pentest
- agent_
space_ strid - Identifier of agent space where the pentest should be created
- pentest_
id str - Unique identifier of the pentest
- agent
Space StringId - Identifier of agent space where the pentest should be created
- pentest
Id String - Unique identifier of the pentest
getPentest Result
The following output properties are available:
- Assets
Pulumi.
Aws Native. Security Agent. Outputs. Pentest Assets - Collection of assets to be tested or used during the penetration test
- Code
Remediation Pulumi.Strategy Aws Native. Security Agent. Pentest Code Remediation Strategy - Strategy for code remediation on findings
- Created
At string - Timestamp when the pentest was created
- Exclude
Risk List<Pulumi.Types Aws Native. Security Agent. Pentest Risk Type> - A list of risk types excluded from the pentest execution
- Log
Config Pulumi.Aws Native. Security Agent. Outputs. Pentest Cloud Watch Log - CloudWatch logs config
- Network
Traffic Pulumi.Config Aws Native. Security Agent. Outputs. Pentest Network Traffic Config - Configuration for network traffic filtering
- Pentest
Id string - Unique identifier of the pentest
- Service
Role string - Service role for accessing resources
- Title string
- Title of the penetration test
- Updated
At string - Timestamp when the pentest was last updated
- Vpc
Config Pulumi.Aws Native. Security Agent. Outputs. Pentest Vpc Config - VPC configuration that the security testing environment accesses
- Assets
Pentest
Assets - Collection of assets to be tested or used during the penetration test
- Code
Remediation PentestStrategy Code Remediation Strategy - Strategy for code remediation on findings
- Created
At string - Timestamp when the pentest was created
- Exclude
Risk []PentestTypes Risk Type - A list of risk types excluded from the pentest execution
- Log
Config PentestCloud Watch Log - CloudWatch logs config
- Network
Traffic PentestConfig Network Traffic Config - Configuration for network traffic filtering
- Pentest
Id string - Unique identifier of the pentest
- Service
Role string - Service role for accessing resources
- Title string
- Title of the penetration test
- Updated
At string - Timestamp when the pentest was last updated
- Vpc
Config PentestVpc Config - VPC configuration that the security testing environment accesses
- assets
Pentest
Assets - Collection of assets to be tested or used during the penetration test
- code
Remediation PentestStrategy Code Remediation Strategy - Strategy for code remediation on findings
- created
At String - Timestamp when the pentest was created
- exclude
Risk List<PentestTypes Risk Type> - A list of risk types excluded from the pentest execution
- log
Config PentestCloud Watch Log - CloudWatch logs config
- network
Traffic PentestConfig Network Traffic Config - Configuration for network traffic filtering
- pentest
Id String - Unique identifier of the pentest
- service
Role String - Service role for accessing resources
- title String
- Title of the penetration test
- updated
At String - Timestamp when the pentest was last updated
- vpc
Config PentestVpc Config - VPC configuration that the security testing environment accesses
- assets
Pentest
Assets - Collection of assets to be tested or used during the penetration test
- code
Remediation PentestStrategy Code Remediation Strategy - Strategy for code remediation on findings
- created
At string - Timestamp when the pentest was created
- exclude
Risk PentestTypes Risk Type[] - A list of risk types excluded from the pentest execution
- log
Config PentestCloud Watch Log - CloudWatch logs config
- network
Traffic PentestConfig Network Traffic Config - Configuration for network traffic filtering
- pentest
Id string - Unique identifier of the pentest
- service
Role string - Service role for accessing resources
- title string
- Title of the penetration test
- updated
At string - Timestamp when the pentest was last updated
- vpc
Config PentestVpc Config - VPC configuration that the security testing environment accesses
- assets
Pentest
Assets - Collection of assets to be tested or used during the penetration test
- code_
remediation_ Penteststrategy Code Remediation Strategy - Strategy for code remediation on findings
- created_
at str - Timestamp when the pentest was created
- exclude_
risk_ Sequence[Pentesttypes Risk Type] - A list of risk types excluded from the pentest execution
- log_
config PentestCloud Watch Log - CloudWatch logs config
- network_
traffic_ Pentestconfig Network Traffic Config - Configuration for network traffic filtering
- pentest_
id str - Unique identifier of the pentest
- service_
role str - Service role for accessing resources
- title str
- Title of the penetration test
- updated_
at str - Timestamp when the pentest was last updated
- vpc_
config PentestVpc Config - VPC configuration that the security testing environment accesses
- assets Property Map
- Collection of assets to be tested or used during the penetration test
- code
Remediation "AUTOMATIC" | "DISABLED"Strategy - Strategy for code remediation on findings
- created
At String - Timestamp when the pentest was created
- exclude
Risk List<"CROSS_SITE_SCRIPTING" | "DEFAULT_CREDENTIALS" | "INSECURE_DIRECT_OBJECT_REFERENCE" | "PRIVILEGE_ESCALATION" | "SERVER_SIDE_TEMPLATE_INJECTION" | "COMMAND_INJECTION" | "CODE_INJECTION" | "SQL_INJECTION" | "ARBITRARY_FILE_UPLOAD" | "INSECURE_DESERIALIZATION" | "LOCAL_FILE_INCLUSION" | "INFORMATION_DISCLOSURE" | "PATH_TRAVERSAL" | "SERVER_SIDE_REQUEST_FORGERY" | "JSON_WEB_TOKEN_VULNERABILITIES" | "XML_EXTERNAL_ENTITY" | "FILE_DELETION" | "OTHER" | "GRAPHQL_VULNERABILITIES" | "BUSINESS_LOGIC_VULNERABILITIES" | "CRYPTOGRAPHIC_VULNERABILITIES" | "DENIAL_OF_SERVICE" | "FILE_ACCESS" | "FILE_CREATION" | "DATABASE_MODIFICATION" | "DATABASE_ACCESS" | "OUTBOUND_SERVICE_REQUEST" | "UNKNOWN">Types - A list of risk types excluded from the pentest execution
- log
Config Property Map - CloudWatch logs config
- network
Traffic Property MapConfig - Configuration for network traffic filtering
- pentest
Id String - Unique identifier of the pentest
- service
Role String - Service role for accessing resources
- title String
- Title of the penetration test
- updated
At String - Timestamp when the pentest was last updated
- vpc
Config Property Map - VPC configuration that the security testing environment accesses
Supporting Types
PentestActor
- Authentication
Pulumi.
Aws Native. Security Agent. Inputs. Pentest Authentication - Authentication credentials for this actor
- Description string
- Description of the actor
- Identifier string
- Identifier for the actor
- Uris List<string>
- List of URIs this actor is authorized to access
- Authentication
Pentest
Authentication - Authentication credentials for this actor
- Description string
- Description of the actor
- Identifier string
- Identifier for the actor
- Uris []string
- List of URIs this actor is authorized to access
- authentication
Pentest
Authentication - Authentication credentials for this actor
- description String
- Description of the actor
- identifier String
- Identifier for the actor
- uris List<String>
- List of URIs this actor is authorized to access
- authentication
Pentest
Authentication - Authentication credentials for this actor
- description string
- Description of the actor
- identifier string
- Identifier for the actor
- uris string[]
- List of URIs this actor is authorized to access
- authentication
Pentest
Authentication - Authentication credentials for this actor
- description str
- Description of the actor
- identifier str
- Identifier for the actor
- uris Sequence[str]
- List of URIs this actor is authorized to access
- authentication Property Map
- Authentication credentials for this actor
- description String
- Description of the actor
- identifier String
- Identifier for the actor
- uris List<String>
- List of URIs this actor is authorized to access
PentestAssets
- Actors
List<Pulumi.
Aws Native. Security Agent. Inputs. Pentest Actor> - List of actors used during testing
- Documents
List<Pulumi.
Aws Native. Security Agent. Inputs. Pentest Document Info> - List of documents providing additional context for the pentest
- Endpoints
List<Pulumi.
Aws Native. Security Agent. Inputs. Pentest Endpoint> - List of endpoints to test
- Integrated
Repositories List<Pulumi.Aws Native. Security Agent. Inputs. Pentest Integrated Repository> - List of repositories connected via provider integrations
- Source
Code List<Pulumi.Aws Native. Security Agent. Inputs. Pentest Source Code Repository> - List of source code repositories to analyze
- Actors
[]Pentest
Actor - List of actors used during testing
- Documents
[]Pentest
Document Info - List of documents providing additional context for the pentest
- Endpoints
[]Pentest
Endpoint - List of endpoints to test
- Integrated
Repositories []PentestIntegrated Repository - List of repositories connected via provider integrations
- Source
Code []PentestSource Code Repository - List of source code repositories to analyze
- actors
List<Pentest
Actor> - List of actors used during testing
- documents
List<Pentest
Document Info> - List of documents providing additional context for the pentest
- endpoints
List<Pentest
Endpoint> - List of endpoints to test
- integrated
Repositories List<PentestIntegrated Repository> - List of repositories connected via provider integrations
- source
Code List<PentestSource Code Repository> - List of source code repositories to analyze
- actors
Pentest
Actor[] - List of actors used during testing
- documents
Pentest
Document Info[] - List of documents providing additional context for the pentest
- endpoints
Pentest
Endpoint[] - List of endpoints to test
- integrated
Repositories PentestIntegrated Repository[] - List of repositories connected via provider integrations
- source
Code PentestSource Code Repository[] - List of source code repositories to analyze
- actors
Sequence[Pentest
Actor] - List of actors used during testing
- documents
Sequence[Pentest
Document Info] - List of documents providing additional context for the pentest
- endpoints
Sequence[Pentest
Endpoint] - List of endpoints to test
- integrated_
repositories Sequence[PentestIntegrated Repository] - List of repositories connected via provider integrations
- source_
code Sequence[PentestSource Code Repository] - List of source code repositories to analyze
- actors List<Property Map>
- List of actors used during testing
- documents List<Property Map>
- List of documents providing additional context for the pentest
- endpoints List<Property Map>
- List of endpoints to test
- integrated
Repositories List<Property Map> - List of repositories connected via provider integrations
- source
Code List<Property Map> - List of source code repositories to analyze
PentestAuthentication
- Provider
Type Pulumi.Aws Native. Security Agent. Pentest Authentication Provider Type - Type of authentication provider
- Value string
- Reference value for the authentication provider, such as a secret ARN or Lambda ARN
- Provider
Type PentestAuthentication Provider Type - Type of authentication provider
- Value string
- Reference value for the authentication provider, such as a secret ARN or Lambda ARN
- provider
Type PentestAuthentication Provider Type - Type of authentication provider
- value String
- Reference value for the authentication provider, such as a secret ARN or Lambda ARN
- provider
Type PentestAuthentication Provider Type - Type of authentication provider
- value string
- Reference value for the authentication provider, such as a secret ARN or Lambda ARN
- provider_
type PentestAuthentication Provider Type - Type of authentication provider
- value str
- Reference value for the authentication provider, such as a secret ARN or Lambda ARN
- provider
Type "SECRETS_MANAGER" | "AWS_LAMBDA" | "AWS_IAM_ROLE" | "AWS_INTERNAL" - Type of authentication provider
- value String
- Reference value for the authentication provider, such as a secret ARN or Lambda ARN
PentestAuthenticationProviderType
PentestCloudWatchLog
- log_
group str - CloudWatch log group
- log_
stream str - CloudWatch log stream
PentestCodeRemediationStrategy
PentestCustomHeader
PentestDocumentInfo
- Artifact
Id string - Artifact identifier
- S3Location string
- S3 document location
- Artifact
Id string - Artifact identifier
- S3Location string
- S3 document location
- artifact
Id String - Artifact identifier
- s3Location String
- S3 document location
- artifact
Id string - Artifact identifier
- s3Location string
- S3 document location
- artifact_
id str - Artifact identifier
- s3_
location str - S3 document location
- artifact
Id String - Artifact identifier
- s3Location String
- S3 document location
PentestEndpoint
- Uri string
- URI of the endpoint to test
- Uri string
- URI of the endpoint to test
- uri String
- URI of the endpoint to test
- uri string
- URI of the endpoint to test
- uri str
- URI of the endpoint to test
- uri String
- URI of the endpoint to test
PentestIntegratedRepository
- Integration
Id string - Unique identifier of the provider integration
- Provider
Resource stringId - Identifier of the resource within the provider integration
- Integration
Id string - Unique identifier of the provider integration
- Provider
Resource stringId - Identifier of the resource within the provider integration
- integration
Id String - Unique identifier of the provider integration
- provider
Resource StringId - Identifier of the resource within the provider integration
- integration
Id string - Unique identifier of the provider integration
- provider
Resource stringId - Identifier of the resource within the provider integration
- integration_
id str - Unique identifier of the provider integration
- provider_
resource_ strid - Identifier of the resource within the provider integration
- integration
Id String - Unique identifier of the provider integration
- provider
Resource StringId - Identifier of the resource within the provider integration
PentestNetworkTrafficConfig
- Custom
Headers List<Pulumi.Aws Native. Security Agent. Inputs. Pentest Custom Header> - Custom headers to include in outbound requests
- Rules
List<Pulumi.
Aws Native. Security Agent. Inputs. Pentest Network Traffic Rule> - Ordered list of network traffic rules
- Custom
Headers []PentestCustom Header - Custom headers to include in outbound requests
- Rules
[]Pentest
Network Traffic Rule - Ordered list of network traffic rules
- custom
Headers List<PentestCustom Header> - Custom headers to include in outbound requests
- rules
List<Pentest
Network Traffic Rule> - Ordered list of network traffic rules
- custom
Headers PentestCustom Header[] - Custom headers to include in outbound requests
- rules
Pentest
Network Traffic Rule[] - Ordered list of network traffic rules
- custom_
headers Sequence[PentestCustom Header] - Custom headers to include in outbound requests
- rules
Sequence[Pentest
Network Traffic Rule] - Ordered list of network traffic rules
- custom
Headers List<Property Map> - Custom headers to include in outbound requests
- rules List<Property Map>
- Ordered list of network traffic rules
PentestNetworkTrafficRule
- Effect
Pulumi.
Aws Native. Security Agent. Pentest Network Traffic Rule Effect - Whether to allow or deny traffic matching this rule
- Network
Traffic Pulumi.Rule Type Aws Native. Security Agent. Pentest Network Traffic Rule Network Traffic Rule Type - Type of pattern matching for this rule
- Pattern string
- URL pattern this rule applies to
- Effect
Pentest
Network Traffic Rule Effect - Whether to allow or deny traffic matching this rule
- Network
Traffic PentestRule Type Network Traffic Rule Network Traffic Rule Type - Type of pattern matching for this rule
- Pattern string
- URL pattern this rule applies to
- effect
Pentest
Network Traffic Rule Effect - Whether to allow or deny traffic matching this rule
- network
Traffic PentestRule Type Network Traffic Rule Network Traffic Rule Type - Type of pattern matching for this rule
- pattern String
- URL pattern this rule applies to
- effect
Pentest
Network Traffic Rule Effect - Whether to allow or deny traffic matching this rule
- network
Traffic PentestRule Type Network Traffic Rule Network Traffic Rule Type - Type of pattern matching for this rule
- pattern string
- URL pattern this rule applies to
- effect
Pentest
Network Traffic Rule Effect - Whether to allow or deny traffic matching this rule
- network_
traffic_ Pentestrule_ type Network Traffic Rule Network Traffic Rule Type - Type of pattern matching for this rule
- pattern str
- URL pattern this rule applies to
- effect "ALLOW" | "DENY"
- Whether to allow or deny traffic matching this rule
- network
Traffic "URL"Rule Type - Type of pattern matching for this rule
- pattern String
- URL pattern this rule applies to
PentestNetworkTrafficRuleEffect
PentestNetworkTrafficRuleNetworkTrafficRuleType
PentestRiskType
PentestSourceCodeRepository
- S3Location string
- S3 source code location
- S3Location string
- S3 source code location
- s3Location String
- S3 source code location
- s3Location string
- S3 source code location
- s3_
location str - S3 source code location
- s3Location String
- S3 source code location
PentestVpcConfig
- Security
Group List<string>Arns - List of security groups in the VPC
- Subnet
Arns List<string> - List of subnets in the VPC
- Vpc
Arn string
- Security
Group []stringArns - List of security groups in the VPC
- Subnet
Arns []string - List of subnets in the VPC
- Vpc
Arn string
- security
Group List<String>Arns - List of security groups in the VPC
- subnet
Arns List<String> - List of subnets in the VPC
- vpc
Arn String
- security
Group string[]Arns - List of security groups in the VPC
- subnet
Arns string[] - List of subnets in the VPC
- vpc
Arn string
- security_
group_ Sequence[str]arns - List of security groups in the VPC
- subnet_
arns Sequence[str] - List of subnets in the VPC
- vpc_
arn str
- security
Group List<String>Arns - List of security groups in the VPC
- subnet
Arns List<String> - List of subnets in the VPC
- vpc
Arn String
Package Details
- Repository
- AWS Native pulumi/pulumi-aws-native
- License
- Apache-2.0
We recommend new projects start with resources from the AWS provider.
Viewing docs for AWS Cloud Control v1.62.0
published on Monday, Apr 20, 2026 by Pulumi
published on Monday, Apr 20, 2026 by Pulumi
