AWS Native is in preview. AWS Classic is fully supported.
AWS Native v0.105.0 published on Thursday, May 2, 2024 by Pulumi
aws-native.ssm.getPatchBaseline
Explore with Pulumi AI
AWS Native is in preview. AWS Classic is fully supported.
AWS Native v0.105.0 published on Thursday, May 2, 2024 by Pulumi
Resource Type definition for AWS::SSM::PatchBaseline
Using getPatchBaseline
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getPatchBaseline(args: GetPatchBaselineArgs, opts?: InvokeOptions): Promise<GetPatchBaselineResult>
function getPatchBaselineOutput(args: GetPatchBaselineOutputArgs, opts?: InvokeOptions): Output<GetPatchBaselineResult>
def get_patch_baseline(id: Optional[str] = None,
opts: Optional[InvokeOptions] = None) -> GetPatchBaselineResult
def get_patch_baseline_output(id: Optional[pulumi.Input[str]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetPatchBaselineResult]
func LookupPatchBaseline(ctx *Context, args *LookupPatchBaselineArgs, opts ...InvokeOption) (*LookupPatchBaselineResult, error)
func LookupPatchBaselineOutput(ctx *Context, args *LookupPatchBaselineOutputArgs, opts ...InvokeOption) LookupPatchBaselineResultOutput
> Note: This function is named LookupPatchBaseline
in the Go SDK.
public static class GetPatchBaseline
{
public static Task<GetPatchBaselineResult> InvokeAsync(GetPatchBaselineArgs args, InvokeOptions? opts = null)
public static Output<GetPatchBaselineResult> Invoke(GetPatchBaselineInvokeArgs args, InvokeOptions? opts = null)
}
public static CompletableFuture<GetPatchBaselineResult> getPatchBaseline(GetPatchBaselineArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
fn::invoke:
function: aws-native:ssm:getPatchBaseline
arguments:
# arguments dictionary
The following arguments are supported:
- Id string
- The ID of the patch baseline.
- Id string
- The ID of the patch baseline.
- id String
- The ID of the patch baseline.
- id string
- The ID of the patch baseline.
- id str
- The ID of the patch baseline.
- id String
- The ID of the patch baseline.
getPatchBaseline Result
The following output properties are available:
- Approval
Rules Pulumi.Aws Native. Ssm. Outputs. Patch Baseline Rule Group - Approved
Patches List<string> - A list of explicitly approved patches for the baseline.
- Approved
Patches Pulumi.Compliance Level Aws Native. Ssm. Patch Baseline Approved Patches Compliance Level - Defines the compliance level for approved patches. This means that if an approved patch is reported as missing, this is the severity of the compliance violation. The default value is UNSPECIFIED.
- Approved
Patches boolEnable Non Security - Indicates whether the list of approved patches includes non-security updates that should be applied to the instances. The default value is 'false'. Applies to Linux instances only.
- Default
Baseline bool - Set the baseline as default baseline. Only registering to default patch baseline is allowed.
- Description string
- The description of the patch baseline.
- Global
Filters Pulumi.Aws Native. Ssm. Outputs. Patch Baseline Patch Filter Group - A set of global filters used to include patches in the baseline.
- Id string
- The ID of the patch baseline.
- Name string
- The name of the patch baseline.
- Patch
Groups List<string> - PatchGroups is used to associate instances with a specific patch baseline
- Rejected
Patches List<string> - A list of explicitly rejected patches for the baseline.
- Rejected
Patches Pulumi.Action Aws Native. Ssm. Patch Baseline Rejected Patches Action - The action for Patch Manager to take on patches included in the RejectedPackages list.
- Sources
List<Pulumi.
Aws Native. Ssm. Outputs. Patch Baseline Patch Source> - Information about the patches to use to update the instances, including target operating systems and source repository. Applies to Linux instances only.
- List<Pulumi.
Aws Native. Outputs. Tag> - Optional metadata that you assign to a resource. Tags enable you to categorize a resource in different ways.
- Approval
Rules PatchBaseline Rule Group - Approved
Patches []string - A list of explicitly approved patches for the baseline.
- Approved
Patches PatchCompliance Level Baseline Approved Patches Compliance Level - Defines the compliance level for approved patches. This means that if an approved patch is reported as missing, this is the severity of the compliance violation. The default value is UNSPECIFIED.
- Approved
Patches boolEnable Non Security - Indicates whether the list of approved patches includes non-security updates that should be applied to the instances. The default value is 'false'. Applies to Linux instances only.
- Default
Baseline bool - Set the baseline as default baseline. Only registering to default patch baseline is allowed.
- Description string
- The description of the patch baseline.
- Global
Filters PatchBaseline Patch Filter Group - A set of global filters used to include patches in the baseline.
- Id string
- The ID of the patch baseline.
- Name string
- The name of the patch baseline.
- Patch
Groups []string - PatchGroups is used to associate instances with a specific patch baseline
- Rejected
Patches []string - A list of explicitly rejected patches for the baseline.
- Rejected
Patches PatchAction Baseline Rejected Patches Action - The action for Patch Manager to take on patches included in the RejectedPackages list.
- Sources
[]Patch
Baseline Patch Source - Information about the patches to use to update the instances, including target operating systems and source repository. Applies to Linux instances only.
- Tag
- Optional metadata that you assign to a resource. Tags enable you to categorize a resource in different ways.
- approval
Rules PatchBaseline Rule Group - approved
Patches List<String> - A list of explicitly approved patches for the baseline.
- approved
Patches PatchCompliance Level Baseline Approved Patches Compliance Level - Defines the compliance level for approved patches. This means that if an approved patch is reported as missing, this is the severity of the compliance violation. The default value is UNSPECIFIED.
- approved
Patches BooleanEnable Non Security - Indicates whether the list of approved patches includes non-security updates that should be applied to the instances. The default value is 'false'. Applies to Linux instances only.
- default
Baseline Boolean - Set the baseline as default baseline. Only registering to default patch baseline is allowed.
- description String
- The description of the patch baseline.
- global
Filters PatchBaseline Patch Filter Group - A set of global filters used to include patches in the baseline.
- id String
- The ID of the patch baseline.
- name String
- The name of the patch baseline.
- patch
Groups List<String> - PatchGroups is used to associate instances with a specific patch baseline
- rejected
Patches List<String> - A list of explicitly rejected patches for the baseline.
- rejected
Patches PatchAction Baseline Rejected Patches Action - The action for Patch Manager to take on patches included in the RejectedPackages list.
- sources
List<Patch
Baseline Patch Source> - Information about the patches to use to update the instances, including target operating systems and source repository. Applies to Linux instances only.
- List<Tag>
- Optional metadata that you assign to a resource. Tags enable you to categorize a resource in different ways.
- approval
Rules PatchBaseline Rule Group - approved
Patches string[] - A list of explicitly approved patches for the baseline.
- approved
Patches PatchCompliance Level Baseline Approved Patches Compliance Level - Defines the compliance level for approved patches. This means that if an approved patch is reported as missing, this is the severity of the compliance violation. The default value is UNSPECIFIED.
- approved
Patches booleanEnable Non Security - Indicates whether the list of approved patches includes non-security updates that should be applied to the instances. The default value is 'false'. Applies to Linux instances only.
- default
Baseline boolean - Set the baseline as default baseline. Only registering to default patch baseline is allowed.
- description string
- The description of the patch baseline.
- global
Filters PatchBaseline Patch Filter Group - A set of global filters used to include patches in the baseline.
- id string
- The ID of the patch baseline.
- name string
- The name of the patch baseline.
- patch
Groups string[] - PatchGroups is used to associate instances with a specific patch baseline
- rejected
Patches string[] - A list of explicitly rejected patches for the baseline.
- rejected
Patches PatchAction Baseline Rejected Patches Action - The action for Patch Manager to take on patches included in the RejectedPackages list.
- sources
Patch
Baseline Patch Source[] - Information about the patches to use to update the instances, including target operating systems and source repository. Applies to Linux instances only.
- Tag[]
- Optional metadata that you assign to a resource. Tags enable you to categorize a resource in different ways.
- approval_
rules PatchBaseline Rule Group - approved_
patches Sequence[str] - A list of explicitly approved patches for the baseline.
- approved_
patches_ Patchcompliance_ level Baseline Approved Patches Compliance Level - Defines the compliance level for approved patches. This means that if an approved patch is reported as missing, this is the severity of the compliance violation. The default value is UNSPECIFIED.
- approved_
patches_ boolenable_ non_ security - Indicates whether the list of approved patches includes non-security updates that should be applied to the instances. The default value is 'false'. Applies to Linux instances only.
- default_
baseline bool - Set the baseline as default baseline. Only registering to default patch baseline is allowed.
- description str
- The description of the patch baseline.
- global_
filters PatchBaseline Patch Filter Group - A set of global filters used to include patches in the baseline.
- id str
- The ID of the patch baseline.
- name str
- The name of the patch baseline.
- patch_
groups Sequence[str] - PatchGroups is used to associate instances with a specific patch baseline
- rejected_
patches Sequence[str] - A list of explicitly rejected patches for the baseline.
- rejected_
patches_ Patchaction Baseline Rejected Patches Action - The action for Patch Manager to take on patches included in the RejectedPackages list.
- sources
Sequence[Patch
Baseline Patch Source] - Information about the patches to use to update the instances, including target operating systems and source repository. Applies to Linux instances only.
- Sequence[root_Tag]
- Optional metadata that you assign to a resource. Tags enable you to categorize a resource in different ways.
- approval
Rules Property Map - approved
Patches List<String> - A list of explicitly approved patches for the baseline.
- approved
Patches "CRITICAL" | "HIGH" | "MEDIUM" | "LOW" | "INFORMATIONAL" | "UNSPECIFIED"Compliance Level - Defines the compliance level for approved patches. This means that if an approved patch is reported as missing, this is the severity of the compliance violation. The default value is UNSPECIFIED.
- approved
Patches BooleanEnable Non Security - Indicates whether the list of approved patches includes non-security updates that should be applied to the instances. The default value is 'false'. Applies to Linux instances only.
- default
Baseline Boolean - Set the baseline as default baseline. Only registering to default patch baseline is allowed.
- description String
- The description of the patch baseline.
- global
Filters Property Map - A set of global filters used to include patches in the baseline.
- id String
- The ID of the patch baseline.
- name String
- The name of the patch baseline.
- patch
Groups List<String> - PatchGroups is used to associate instances with a specific patch baseline
- rejected
Patches List<String> - A list of explicitly rejected patches for the baseline.
- rejected
Patches "ALLOW_AS_DEPENDENCY" | "BLOCK"Action - The action for Patch Manager to take on patches included in the RejectedPackages list.
- sources List<Property Map>
- Information about the patches to use to update the instances, including target operating systems and source repository. Applies to Linux instances only.
- List<Property Map>
- Optional metadata that you assign to a resource. Tags enable you to categorize a resource in different ways.
Supporting Types
PatchBaselineApprovedPatchesComplianceLevel
PatchBaselinePatchFilter
- Key
Patch
Baseline Patch Filter Key - Values []string
- key
Patch
Baseline Patch Filter Key - values List<String>
- key
Patch
Baseline Patch Filter Key - values string[]
- key
Patch
Baseline Patch Filter Key - values Sequence[str]
PatchBaselinePatchFilterGroup
PatchBaselinePatchFilterKey
PatchBaselinePatchSource
- Configuration string
- Name string
- Products List<string>
- Configuration string
- Name string
- Products []string
- configuration String
- name String
- products List<String>
- configuration string
- name string
- products string[]
- configuration str
- name str
- products Sequence[str]
- configuration String
- name String
- products List<String>
PatchBaselineRejectedPatchesAction
PatchBaselineRule
PatchBaselineRuleComplianceLevel
PatchBaselineRuleGroup
Tag
Package Details
- Repository
- AWS Native pulumi/pulumi-aws-native
- License
- Apache-2.0
AWS Native is in preview. AWS Classic is fully supported.
AWS Native v0.105.0 published on Thursday, May 2, 2024 by Pulumi