Docs Home
Oracle Cloud Infrastructure v3.7.0 published on Saturday, Sep 13, 2025 by Pulumi
oci.DataSafe.SecurityAssessmentCheck
Explore with Pulumi AI
This resource provides the Security Assessment Check resource in Oracle Cloud Infrastructure Data Safe service.
Patches one or more checks in the specified template type security assessment. Use it to add or delete checks. To add check, use CreateCheckDetails as the patch value.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";
const testSecurityAssessmentCheck = new oci.datasafe.SecurityAssessmentCheck("test_security_assessment_check", {
securityAssessmentId: testSecurityAssessment.id,
patchOperations: [{
operation: securityAssessmentCheckPatchOperationsOperation,
selection: securityAssessmentCheckPatchOperationsSelection,
value: securityAssessmentCheckPatchOperationsValue,
}],
});
import pulumi
import pulumi_oci as oci
test_security_assessment_check = oci.datasafe.SecurityAssessmentCheck("test_security_assessment_check",
security_assessment_id=test_security_assessment["id"],
patch_operations=[{
"operation": security_assessment_check_patch_operations_operation,
"selection": security_assessment_check_patch_operations_selection,
"value": security_assessment_check_patch_operations_value,
}])
package main
import (
"github.com/pulumi/pulumi-oci/sdk/v3/go/oci/datasafe"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := datasafe.NewSecurityAssessmentCheck(ctx, "test_security_assessment_check", &datasafe.SecurityAssessmentCheckArgs{
SecurityAssessmentId: pulumi.Any(testSecurityAssessment.Id),
PatchOperations: datasafe.SecurityAssessmentCheckPatchOperationArray{
&datasafe.SecurityAssessmentCheckPatchOperationArgs{
Operation: pulumi.Any(securityAssessmentCheckPatchOperationsOperation),
Selection: pulumi.Any(securityAssessmentCheckPatchOperationsSelection),
Value: pulumi.Any(securityAssessmentCheckPatchOperationsValue),
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;
return await Deployment.RunAsync(() =>
{
var testSecurityAssessmentCheck = new Oci.DataSafe.SecurityAssessmentCheck("test_security_assessment_check", new()
{
SecurityAssessmentId = testSecurityAssessment.Id,
PatchOperations = new[]
{
new Oci.DataSafe.Inputs.SecurityAssessmentCheckPatchOperationArgs
{
Operation = securityAssessmentCheckPatchOperationsOperation,
Selection = securityAssessmentCheckPatchOperationsSelection,
Value = securityAssessmentCheckPatchOperationsValue,
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.DataSafe.SecurityAssessmentCheck;
import com.pulumi.oci.DataSafe.SecurityAssessmentCheckArgs;
import com.pulumi.oci.DataSafe.inputs.SecurityAssessmentCheckPatchOperationArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var testSecurityAssessmentCheck = new SecurityAssessmentCheck("testSecurityAssessmentCheck", SecurityAssessmentCheckArgs.builder()
.securityAssessmentId(testSecurityAssessment.id())
.patchOperations(SecurityAssessmentCheckPatchOperationArgs.builder()
.operation(securityAssessmentCheckPatchOperationsOperation)
.selection(securityAssessmentCheckPatchOperationsSelection)
.value(securityAssessmentCheckPatchOperationsValue)
.build())
.build());
}
}
resources:
testSecurityAssessmentCheck:
type: oci:DataSafe:SecurityAssessmentCheck
name: test_security_assessment_check
properties:
securityAssessmentId: ${testSecurityAssessment.id}
patchOperations:
- operation: ${securityAssessmentCheckPatchOperationsOperation}
selection: ${securityAssessmentCheckPatchOperationsSelection}
value: ${securityAssessmentCheckPatchOperationsValue}
Create SecurityAssessmentCheck Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new SecurityAssessmentCheck(name: string, args: SecurityAssessmentCheckArgs, opts?: CustomResourceOptions);@overload
def SecurityAssessmentCheck(resource_name: str,
args: SecurityAssessmentCheckInitArgs,
opts: Optional[ResourceOptions] = None)
@overload
def SecurityAssessmentCheck(resource_name: str,
opts: Optional[ResourceOptions] = None,
security_assessment_id: Optional[str] = None,
patch_operations: Optional[Sequence[SecurityAssessmentCheckPatchOperationArgs]] = None)func NewSecurityAssessmentCheck(ctx *Context, name string, args SecurityAssessmentCheckArgs, opts ...ResourceOption) (*SecurityAssessmentCheck, error)public SecurityAssessmentCheck(string name, SecurityAssessmentCheckArgs args, CustomResourceOptions? opts = null)
public SecurityAssessmentCheck(String name, SecurityAssessmentCheckArgs args)
public SecurityAssessmentCheck(String name, SecurityAssessmentCheckArgs args, CustomResourceOptions options)
type: oci:DataSafe:SecurityAssessmentCheck
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args SecurityAssessmentCheckArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args SecurityAssessmentCheckInitArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args SecurityAssessmentCheckArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SecurityAssessmentCheckArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args SecurityAssessmentCheckArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var securityAssessmentCheckResource = new Oci.DataSafe.SecurityAssessmentCheck("securityAssessmentCheckResource", new()
{
SecurityAssessmentId = "string",
PatchOperations = new[]
{
new Oci.DataSafe.Inputs.SecurityAssessmentCheckPatchOperationArgs
{
Operation = "string",
Selection = "string",
Value =
{
{ "string", "string" },
},
},
},
});
example, err := datasafe.NewSecurityAssessmentCheck(ctx, "securityAssessmentCheckResource", &datasafe.SecurityAssessmentCheckArgs{
SecurityAssessmentId: pulumi.String("string"),
PatchOperations: datasafe.SecurityAssessmentCheckPatchOperationArray{
&datasafe.SecurityAssessmentCheckPatchOperationArgs{
Operation: pulumi.String("string"),
Selection: pulumi.String("string"),
Value: pulumi.StringMap{
"string": pulumi.String("string"),
},
},
},
})
var securityAssessmentCheckResource = new SecurityAssessmentCheck("securityAssessmentCheckResource", SecurityAssessmentCheckArgs.builder()
.securityAssessmentId("string")
.patchOperations(SecurityAssessmentCheckPatchOperationArgs.builder()
.operation("string")
.selection("string")
.value(Map.of("string", "string"))
.build())
.build());
security_assessment_check_resource = oci.datasafe.SecurityAssessmentCheck("securityAssessmentCheckResource",
security_assessment_id="string",
patch_operations=[{
"operation": "string",
"selection": "string",
"value": {
"string": "string",
},
}])
const securityAssessmentCheckResource = new oci.datasafe.SecurityAssessmentCheck("securityAssessmentCheckResource", {
securityAssessmentId: "string",
patchOperations: [{
operation: "string",
selection: "string",
value: {
string: "string",
},
}],
});
type: oci:DataSafe:SecurityAssessmentCheck
properties:
patchOperations:
- operation: string
selection: string
value:
string: string
securityAssessmentId: string
SecurityAssessmentCheck Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The SecurityAssessmentCheck resource accepts the following input properties:
- Security
Assessment stringId - ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Patch
Operations List<SecurityAssessment Check Patch Operation> - (Updatable)
- Security
Assessment stringId - ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Patch
Operations []SecurityAssessment Check Patch Operation Args - (Updatable)
- security
Assessment StringId - ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- patch
Operations List<SecurityAssessment Check Patch Operation> - (Updatable)
- security
Assessment stringId - ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- patch
Operations SecurityAssessment Check Patch Operation[] - (Updatable)
- security_
assessment_ strid - ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- patch_
operations Sequence[SecurityAssessment Check Patch Operation Args] - (Updatable)
- security
Assessment StringId - ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- patch
Operations List<Property Map> - (Updatable)
Outputs
All input properties are implicitly available as output properties. Additionally, the SecurityAssessmentCheck resource produces the following output properties:
- Category string
- The category to which the check belongs to.
- Id string
- The provider-assigned unique ID for this managed resource.
- Key string
- A unique identifier for the check.
- Oneline string
- Provides a recommended approach to take to remediate the check reported.
- References
List<Security
Assessment Check Reference> - Provides information on whether the check is related to a CIS Oracle Database Benchmark recommendation, STIG rule, GDPR Article/Recital or related to the Oracle Best Practice.
- Remarks string
- The explanation of the issue in this check. It explains the reason for the rule and, if a risk is reported, it may also explain the recommended actions for remediation.
- Suggested
Severity string - The severity of the check as suggested by Data Safe security assessment. This will be the default severity in the template baseline security assessment.
- Title string
- The short title for the check.
- Category string
- The category to which the check belongs to.
- Id string
- The provider-assigned unique ID for this managed resource.
- Key string
- A unique identifier for the check.
- Oneline string
- Provides a recommended approach to take to remediate the check reported.
- References
[]Security
Assessment Check Reference - Provides information on whether the check is related to a CIS Oracle Database Benchmark recommendation, STIG rule, GDPR Article/Recital or related to the Oracle Best Practice.
- Remarks string
- The explanation of the issue in this check. It explains the reason for the rule and, if a risk is reported, it may also explain the recommended actions for remediation.
- Suggested
Severity string - The severity of the check as suggested by Data Safe security assessment. This will be the default severity in the template baseline security assessment.
- Title string
- The short title for the check.
- category String
- The category to which the check belongs to.
- id String
- The provider-assigned unique ID for this managed resource.
- key String
- A unique identifier for the check.
- oneline String
- Provides a recommended approach to take to remediate the check reported.
- references
List<Security
Assessment Check Reference> - Provides information on whether the check is related to a CIS Oracle Database Benchmark recommendation, STIG rule, GDPR Article/Recital or related to the Oracle Best Practice.
- remarks String
- The explanation of the issue in this check. It explains the reason for the rule and, if a risk is reported, it may also explain the recommended actions for remediation.
- suggested
Severity String - The severity of the check as suggested by Data Safe security assessment. This will be the default severity in the template baseline security assessment.
- title String
- The short title for the check.
- category string
- The category to which the check belongs to.
- id string
- The provider-assigned unique ID for this managed resource.
- key string
- A unique identifier for the check.
- oneline string
- Provides a recommended approach to take to remediate the check reported.
- references
Security
Assessment Check Reference[] - Provides information on whether the check is related to a CIS Oracle Database Benchmark recommendation, STIG rule, GDPR Article/Recital or related to the Oracle Best Practice.
- remarks string
- The explanation of the issue in this check. It explains the reason for the rule and, if a risk is reported, it may also explain the recommended actions for remediation.
- suggested
Severity string - The severity of the check as suggested by Data Safe security assessment. This will be the default severity in the template baseline security assessment.
- title string
- The short title for the check.
- category str
- The category to which the check belongs to.
- id str
- The provider-assigned unique ID for this managed resource.
- key str
- A unique identifier for the check.
- oneline str
- Provides a recommended approach to take to remediate the check reported.
- references
Sequence[Security
Assessment Check Reference] - Provides information on whether the check is related to a CIS Oracle Database Benchmark recommendation, STIG rule, GDPR Article/Recital or related to the Oracle Best Practice.
- remarks str
- The explanation of the issue in this check. It explains the reason for the rule and, if a risk is reported, it may also explain the recommended actions for remediation.
- suggested_
severity str - The severity of the check as suggested by Data Safe security assessment. This will be the default severity in the template baseline security assessment.
- title str
- The short title for the check.
- category String
- The category to which the check belongs to.
- id String
- The provider-assigned unique ID for this managed resource.
- key String
- A unique identifier for the check.
- oneline String
- Provides a recommended approach to take to remediate the check reported.
- references List<Property Map>
- Provides information on whether the check is related to a CIS Oracle Database Benchmark recommendation, STIG rule, GDPR Article/Recital or related to the Oracle Best Practice.
- remarks String
- The explanation of the issue in this check. It explains the reason for the rule and, if a risk is reported, it may also explain the recommended actions for remediation.
- suggested
Severity String - The severity of the check as suggested by Data Safe security assessment. This will be the default severity in the template baseline security assessment.
- title String
- The short title for the check.
Look up Existing SecurityAssessmentCheck Resource
Get an existing SecurityAssessmentCheck resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SecurityAssessmentCheckState, opts?: CustomResourceOptions): SecurityAssessmentCheck@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
category: Optional[str] = None,
key: Optional[str] = None,
oneline: Optional[str] = None,
patch_operations: Optional[Sequence[SecurityAssessmentCheckPatchOperationArgs]] = None,
references: Optional[Sequence[SecurityAssessmentCheckReferenceArgs]] = None,
remarks: Optional[str] = None,
security_assessment_id: Optional[str] = None,
suggested_severity: Optional[str] = None,
title: Optional[str] = None) -> SecurityAssessmentCheckfunc GetSecurityAssessmentCheck(ctx *Context, name string, id IDInput, state *SecurityAssessmentCheckState, opts ...ResourceOption) (*SecurityAssessmentCheck, error)public static SecurityAssessmentCheck Get(string name, Input<string> id, SecurityAssessmentCheckState? state, CustomResourceOptions? opts = null)public static SecurityAssessmentCheck get(String name, Output<String> id, SecurityAssessmentCheckState state, CustomResourceOptions options)resources: _: type: oci:DataSafe:SecurityAssessmentCheck get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Category string
- The category to which the check belongs to.
- Key string
- A unique identifier for the check.
- Oneline string
- Provides a recommended approach to take to remediate the check reported.
- Patch
Operations List<SecurityAssessment Check Patch Operation> - (Updatable)
- References
List<Security
Assessment Check Reference> - Provides information on whether the check is related to a CIS Oracle Database Benchmark recommendation, STIG rule, GDPR Article/Recital or related to the Oracle Best Practice.
- Remarks string
- The explanation of the issue in this check. It explains the reason for the rule and, if a risk is reported, it may also explain the recommended actions for remediation.
- Security
Assessment stringId - ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Suggested
Severity string - The severity of the check as suggested by Data Safe security assessment. This will be the default severity in the template baseline security assessment.
- Title string
- The short title for the check.
- Category string
- The category to which the check belongs to.
- Key string
- A unique identifier for the check.
- Oneline string
- Provides a recommended approach to take to remediate the check reported.
- Patch
Operations []SecurityAssessment Check Patch Operation Args - (Updatable)
- References
[]Security
Assessment Check Reference Args - Provides information on whether the check is related to a CIS Oracle Database Benchmark recommendation, STIG rule, GDPR Article/Recital or related to the Oracle Best Practice.
- Remarks string
- The explanation of the issue in this check. It explains the reason for the rule and, if a risk is reported, it may also explain the recommended actions for remediation.
- Security
Assessment stringId - ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- Suggested
Severity string - The severity of the check as suggested by Data Safe security assessment. This will be the default severity in the template baseline security assessment.
- Title string
- The short title for the check.
- category String
- The category to which the check belongs to.
- key String
- A unique identifier for the check.
- oneline String
- Provides a recommended approach to take to remediate the check reported.
- patch
Operations List<SecurityAssessment Check Patch Operation> - (Updatable)
- references
List<Security
Assessment Check Reference> - Provides information on whether the check is related to a CIS Oracle Database Benchmark recommendation, STIG rule, GDPR Article/Recital or related to the Oracle Best Practice.
- remarks String
- The explanation of the issue in this check. It explains the reason for the rule and, if a risk is reported, it may also explain the recommended actions for remediation.
- security
Assessment StringId - ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- suggested
Severity String - The severity of the check as suggested by Data Safe security assessment. This will be the default severity in the template baseline security assessment.
- title String
- The short title for the check.
- category string
- The category to which the check belongs to.
- key string
- A unique identifier for the check.
- oneline string
- Provides a recommended approach to take to remediate the check reported.
- patch
Operations SecurityAssessment Check Patch Operation[] - (Updatable)
- references
Security
Assessment Check Reference[] - Provides information on whether the check is related to a CIS Oracle Database Benchmark recommendation, STIG rule, GDPR Article/Recital or related to the Oracle Best Practice.
- remarks string
- The explanation of the issue in this check. It explains the reason for the rule and, if a risk is reported, it may also explain the recommended actions for remediation.
- security
Assessment stringId - ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- suggested
Severity string - The severity of the check as suggested by Data Safe security assessment. This will be the default severity in the template baseline security assessment.
- title string
- The short title for the check.
- category str
- The category to which the check belongs to.
- key str
- A unique identifier for the check.
- oneline str
- Provides a recommended approach to take to remediate the check reported.
- patch_
operations Sequence[SecurityAssessment Check Patch Operation Args] - (Updatable)
- references
Sequence[Security
Assessment Check Reference Args] - Provides information on whether the check is related to a CIS Oracle Database Benchmark recommendation, STIG rule, GDPR Article/Recital or related to the Oracle Best Practice.
- remarks str
- The explanation of the issue in this check. It explains the reason for the rule and, if a risk is reported, it may also explain the recommended actions for remediation.
- security_
assessment_ strid - ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- suggested_
severity str - The severity of the check as suggested by Data Safe security assessment. This will be the default severity in the template baseline security assessment.
- title str
- The short title for the check.
- category String
- The category to which the check belongs to.
- key String
- A unique identifier for the check.
- oneline String
- Provides a recommended approach to take to remediate the check reported.
- patch
Operations List<Property Map> - (Updatable)
- references List<Property Map>
- Provides information on whether the check is related to a CIS Oracle Database Benchmark recommendation, STIG rule, GDPR Article/Recital or related to the Oracle Best Practice.
- remarks String
- The explanation of the issue in this check. It explains the reason for the rule and, if a risk is reported, it may also explain the recommended actions for remediation.
- security
Assessment StringId - ** IMPORTANT ** Any change to a property that does not support update will force the destruction and recreation of the resource with the new property values
- suggested
Severity String - The severity of the check as suggested by Data Safe security assessment. This will be the default severity in the template baseline security assessment.
- title String
- The short title for the check.
Supporting Types
SecurityAssessmentCheckPatchOperation, SecurityAssessmentCheckPatchOperationArgs
SecurityAssessmentCheckReference, SecurityAssessmentCheckReferenceArgs
Import
SecurityAssessmentChecks can be imported using the id, e.g.
$ pulumi import oci:DataSafe/securityAssessmentCheck:SecurityAssessmentCheck test_security_assessment_check "securityAssessments/{securityAssessmentId}/checks"
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- oci pulumi/pulumi-oci
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
ociTerraform Provider.