Docs Home
sysdig 1.59.0 published on Tuesday, Jul 29, 2025 by sysdiglabs
sysdig.SecureVulnerabilityRuleBundle
Explore with Pulumi AI
Example Usage
Example coming soon!
Example coming soon!
Example coming soon!
Example coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.sysdig.SecureVulnerabilityRuleBundle;
import com.pulumi.sysdig.SecureVulnerabilityRuleBundleArgs;
import com.pulumi.sysdig.inputs.SecureVulnerabilityRuleBundleRuleArgs;
import com.pulumi.sysdig.inputs.SecureVulnerabilityRuleBundleRuleImageLabelArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new SecureVulnerabilityRuleBundle("example", SecureVulnerabilityRuleBundleArgs.builder()
.rules(
SecureVulnerabilityRuleBundleRuleArgs.builder()
.imageLabel(SecureVulnerabilityRuleBundleRuleImageLabelArgs.builder()
.labelMustExist("required-label")
.build())
.build(),
SecureVulnerabilityRuleBundleRuleArgs.builder()
.imageLabel(SecureVulnerabilityRuleBundleRuleImageLabelArgs.builder()
.labelMustNotExist("forbidden-label")
.build())
.build(),
SecureVulnerabilityRuleBundleRuleArgs.builder()
.imageLabel(SecureVulnerabilityRuleBundleRuleImageLabelArgs.builder()
.labelMustExistAndContainValue(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
.build())
.build())
.build());
}
}
resources:
example:
type: sysdig:SecureVulnerabilityRuleBundle
properties:
rules:
- imageLabel:
labelMustExist: required-label
- imageLabel:
labelMustNotExist: forbidden-label
- imageLabel:
labelMustExistAndContainValue:
- requiredLabel: required-label
requiredValue: required-value
Create SecureVulnerabilityRuleBundle Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new SecureVulnerabilityRuleBundle(name: string, args: SecureVulnerabilityRuleBundleArgs, opts?: CustomResourceOptions);@overload
def SecureVulnerabilityRuleBundle(resource_name: str,
args: SecureVulnerabilityRuleBundleArgs,
opts: Optional[ResourceOptions] = None)
@overload
def SecureVulnerabilityRuleBundle(resource_name: str,
opts: Optional[ResourceOptions] = None,
rules: Optional[Sequence[SecureVulnerabilityRuleBundleRuleArgs]] = None,
description: Optional[str] = None,
name: Optional[str] = None,
secure_vulnerability_rule_bundle_id: Optional[str] = None,
timeouts: Optional[SecureVulnerabilityRuleBundleTimeoutsArgs] = None)func NewSecureVulnerabilityRuleBundle(ctx *Context, name string, args SecureVulnerabilityRuleBundleArgs, opts ...ResourceOption) (*SecureVulnerabilityRuleBundle, error)public SecureVulnerabilityRuleBundle(string name, SecureVulnerabilityRuleBundleArgs args, CustomResourceOptions? opts = null)
public SecureVulnerabilityRuleBundle(String name, SecureVulnerabilityRuleBundleArgs args)
public SecureVulnerabilityRuleBundle(String name, SecureVulnerabilityRuleBundleArgs args, CustomResourceOptions options)
type: sysdig:SecureVulnerabilityRuleBundle
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args SecureVulnerabilityRuleBundleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args SecureVulnerabilityRuleBundleArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args SecureVulnerabilityRuleBundleArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SecureVulnerabilityRuleBundleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args SecureVulnerabilityRuleBundleArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var secureVulnerabilityRuleBundleResource = new Sysdig.SecureVulnerabilityRuleBundle("secureVulnerabilityRuleBundleResource", new()
{
Rules = new[]
{
new Sysdig.Inputs.SecureVulnerabilityRuleBundleRuleArgs
{
ImageLabel = new Sysdig.Inputs.SecureVulnerabilityRuleBundleRuleImageLabelArgs
{
Id = "string",
LabelMustExist = "string",
LabelMustExistAndContainValues = new[]
{
new Sysdig.Inputs.SecureVulnerabilityRuleBundleRuleImageLabelLabelMustExistAndContainValueArgs
{
RequiredLabel = "string",
RequiredValue = "string",
},
},
LabelMustNotExist = "string",
},
},
},
Description = "string",
Name = "string",
SecureVulnerabilityRuleBundleId = "string",
Timeouts = new Sysdig.Inputs.SecureVulnerabilityRuleBundleTimeoutsArgs
{
Create = "string",
Delete = "string",
Read = "string",
Update = "string",
},
});
example, err := sysdig.NewSecureVulnerabilityRuleBundle(ctx, "secureVulnerabilityRuleBundleResource", &sysdig.SecureVulnerabilityRuleBundleArgs{
Rules: sysdig.SecureVulnerabilityRuleBundleRuleArray{
&sysdig.SecureVulnerabilityRuleBundleRuleArgs{
ImageLabel: &sysdig.SecureVulnerabilityRuleBundleRuleImageLabelArgs{
Id: pulumi.String("string"),
LabelMustExist: pulumi.String("string"),
LabelMustExistAndContainValues: sysdig.SecureVulnerabilityRuleBundleRuleImageLabelLabelMustExistAndContainValueArray{
&sysdig.SecureVulnerabilityRuleBundleRuleImageLabelLabelMustExistAndContainValueArgs{
RequiredLabel: pulumi.String("string"),
RequiredValue: pulumi.String("string"),
},
},
LabelMustNotExist: pulumi.String("string"),
},
},
},
Description: pulumi.String("string"),
Name: pulumi.String("string"),
SecureVulnerabilityRuleBundleId: pulumi.String("string"),
Timeouts: &sysdig.SecureVulnerabilityRuleBundleTimeoutsArgs{
Create: pulumi.String("string"),
Delete: pulumi.String("string"),
Read: pulumi.String("string"),
Update: pulumi.String("string"),
},
})
var secureVulnerabilityRuleBundleResource = new SecureVulnerabilityRuleBundle("secureVulnerabilityRuleBundleResource", SecureVulnerabilityRuleBundleArgs.builder()
.rules(SecureVulnerabilityRuleBundleRuleArgs.builder()
.imageLabel(SecureVulnerabilityRuleBundleRuleImageLabelArgs.builder()
.id("string")
.labelMustExist("string")
.labelMustExistAndContainValues(SecureVulnerabilityRuleBundleRuleImageLabelLabelMustExistAndContainValueArgs.builder()
.requiredLabel("string")
.requiredValue("string")
.build())
.labelMustNotExist("string")
.build())
.build())
.description("string")
.name("string")
.secureVulnerabilityRuleBundleId("string")
.timeouts(SecureVulnerabilityRuleBundleTimeoutsArgs.builder()
.create("string")
.delete("string")
.read("string")
.update("string")
.build())
.build());
secure_vulnerability_rule_bundle_resource = sysdig.SecureVulnerabilityRuleBundle("secureVulnerabilityRuleBundleResource",
rules=[{
"image_label": {
"id": "string",
"label_must_exist": "string",
"label_must_exist_and_contain_values": [{
"required_label": "string",
"required_value": "string",
}],
"label_must_not_exist": "string",
},
}],
description="string",
name="string",
secure_vulnerability_rule_bundle_id="string",
timeouts={
"create": "string",
"delete": "string",
"read": "string",
"update": "string",
})
const secureVulnerabilityRuleBundleResource = new sysdig.SecureVulnerabilityRuleBundle("secureVulnerabilityRuleBundleResource", {
rules: [{
imageLabel: {
id: "string",
labelMustExist: "string",
labelMustExistAndContainValues: [{
requiredLabel: "string",
requiredValue: "string",
}],
labelMustNotExist: "string",
},
}],
description: "string",
name: "string",
secureVulnerabilityRuleBundleId: "string",
timeouts: {
create: "string",
"delete": "string",
read: "string",
update: "string",
},
});
type: sysdig:SecureVulnerabilityRuleBundle
properties:
description: string
name: string
rules:
- imageLabel:
id: string
labelMustExist: string
labelMustExistAndContainValues:
- requiredLabel: string
requiredValue: string
labelMustNotExist: string
secureVulnerabilityRuleBundleId: string
timeouts:
create: string
delete: string
read: string
update: string
SecureVulnerabilityRuleBundle Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The SecureVulnerabilityRuleBundle resource accepts the following input properties:
- Rules
List<Secure
Vulnerability Rule Bundle Rule> - List of rule definitions. Each rule supports multiple types (e.g.,
image_label). Each type may have different required attributes: - Description string
- A description for the rule bundle.
- Name string
- The name of the vulnerability rule bundle.
- Secure
Vulnerability stringRule Bundle Id - Timeouts
Secure
Vulnerability Rule Bundle Timeouts
- Rules
[]Secure
Vulnerability Rule Bundle Rule Args - List of rule definitions. Each rule supports multiple types (e.g.,
image_label). Each type may have different required attributes: - Description string
- A description for the rule bundle.
- Name string
- The name of the vulnerability rule bundle.
- Secure
Vulnerability stringRule Bundle Id - Timeouts
Secure
Vulnerability Rule Bundle Timeouts Args
- rules
List<Secure
Vulnerability Rule Bundle Rule> - List of rule definitions. Each rule supports multiple types (e.g.,
image_label). Each type may have different required attributes: - description String
- A description for the rule bundle.
- name String
- The name of the vulnerability rule bundle.
- secure
Vulnerability StringRule Bundle Id - timeouts
Secure
Vulnerability Rule Bundle Timeouts
- rules
Secure
Vulnerability Rule Bundle Rule[] - List of rule definitions. Each rule supports multiple types (e.g.,
image_label). Each type may have different required attributes: - description string
- A description for the rule bundle.
- name string
- The name of the vulnerability rule bundle.
- secure
Vulnerability stringRule Bundle Id - timeouts
Secure
Vulnerability Rule Bundle Timeouts
- rules
Sequence[Secure
Vulnerability Rule Bundle Rule Args] - List of rule definitions. Each rule supports multiple types (e.g.,
image_label). Each type may have different required attributes: - description str
- A description for the rule bundle.
- name str
- The name of the vulnerability rule bundle.
- secure_
vulnerability_ strrule_ bundle_ id - timeouts
Secure
Vulnerability Rule Bundle Timeouts Args
- rules List<Property Map>
- List of rule definitions. Each rule supports multiple types (e.g.,
image_label). Each type may have different required attributes: - description String
- A description for the rule bundle.
- name String
- The name of the vulnerability rule bundle.
- secure
Vulnerability StringRule Bundle Id - timeouts Property Map
Outputs
All input properties are implicitly available as output properties. Additionally, the SecureVulnerabilityRuleBundle resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Identifier string
- External identifier computed after creation. Not to be used with the
secure_vulnerability_policy.bundlesfield, useidfor that.
- Id string
- The provider-assigned unique ID for this managed resource.
- Identifier string
- External identifier computed after creation. Not to be used with the
secure_vulnerability_policy.bundlesfield, useidfor that.
- id String
- The provider-assigned unique ID for this managed resource.
- identifier String
- External identifier computed after creation. Not to be used with the
secure_vulnerability_policy.bundlesfield, useidfor that.
- id string
- The provider-assigned unique ID for this managed resource.
- identifier string
- External identifier computed after creation. Not to be used with the
secure_vulnerability_policy.bundlesfield, useidfor that.
- id str
- The provider-assigned unique ID for this managed resource.
- identifier str
- External identifier computed after creation. Not to be used with the
secure_vulnerability_policy.bundlesfield, useidfor that.
- id String
- The provider-assigned unique ID for this managed resource.
- identifier String
- External identifier computed after creation. Not to be used with the
secure_vulnerability_policy.bundlesfield, useidfor that.
Look up Existing SecureVulnerabilityRuleBundle Resource
Get an existing SecureVulnerabilityRuleBundle resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SecureVulnerabilityRuleBundleState, opts?: CustomResourceOptions): SecureVulnerabilityRuleBundle@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
description: Optional[str] = None,
identifier: Optional[str] = None,
name: Optional[str] = None,
rules: Optional[Sequence[SecureVulnerabilityRuleBundleRuleArgs]] = None,
secure_vulnerability_rule_bundle_id: Optional[str] = None,
timeouts: Optional[SecureVulnerabilityRuleBundleTimeoutsArgs] = None) -> SecureVulnerabilityRuleBundlefunc GetSecureVulnerabilityRuleBundle(ctx *Context, name string, id IDInput, state *SecureVulnerabilityRuleBundleState, opts ...ResourceOption) (*SecureVulnerabilityRuleBundle, error)public static SecureVulnerabilityRuleBundle Get(string name, Input<string> id, SecureVulnerabilityRuleBundleState? state, CustomResourceOptions? opts = null)public static SecureVulnerabilityRuleBundle get(String name, Output<String> id, SecureVulnerabilityRuleBundleState state, CustomResourceOptions options)resources: _: type: sysdig:SecureVulnerabilityRuleBundle get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Description string
- A description for the rule bundle.
- Identifier string
- External identifier computed after creation. Not to be used with the
secure_vulnerability_policy.bundlesfield, useidfor that. - Name string
- The name of the vulnerability rule bundle.
- Rules
List<Secure
Vulnerability Rule Bundle Rule> - List of rule definitions. Each rule supports multiple types (e.g.,
image_label). Each type may have different required attributes: - Secure
Vulnerability stringRule Bundle Id - Timeouts
Secure
Vulnerability Rule Bundle Timeouts
- Description string
- A description for the rule bundle.
- Identifier string
- External identifier computed after creation. Not to be used with the
secure_vulnerability_policy.bundlesfield, useidfor that. - Name string
- The name of the vulnerability rule bundle.
- Rules
[]Secure
Vulnerability Rule Bundle Rule Args - List of rule definitions. Each rule supports multiple types (e.g.,
image_label). Each type may have different required attributes: - Secure
Vulnerability stringRule Bundle Id - Timeouts
Secure
Vulnerability Rule Bundle Timeouts Args
- description String
- A description for the rule bundle.
- identifier String
- External identifier computed after creation. Not to be used with the
secure_vulnerability_policy.bundlesfield, useidfor that. - name String
- The name of the vulnerability rule bundle.
- rules
List<Secure
Vulnerability Rule Bundle Rule> - List of rule definitions. Each rule supports multiple types (e.g.,
image_label). Each type may have different required attributes: - secure
Vulnerability StringRule Bundle Id - timeouts
Secure
Vulnerability Rule Bundle Timeouts
- description string
- A description for the rule bundle.
- identifier string
- External identifier computed after creation. Not to be used with the
secure_vulnerability_policy.bundlesfield, useidfor that. - name string
- The name of the vulnerability rule bundle.
- rules
Secure
Vulnerability Rule Bundle Rule[] - List of rule definitions. Each rule supports multiple types (e.g.,
image_label). Each type may have different required attributes: - secure
Vulnerability stringRule Bundle Id - timeouts
Secure
Vulnerability Rule Bundle Timeouts
- description str
- A description for the rule bundle.
- identifier str
- External identifier computed after creation. Not to be used with the
secure_vulnerability_policy.bundlesfield, useidfor that. - name str
- The name of the vulnerability rule bundle.
- rules
Sequence[Secure
Vulnerability Rule Bundle Rule Args] - List of rule definitions. Each rule supports multiple types (e.g.,
image_label). Each type may have different required attributes: - secure_
vulnerability_ strrule_ bundle_ id - timeouts
Secure
Vulnerability Rule Bundle Timeouts Args
- description String
- A description for the rule bundle.
- identifier String
- External identifier computed after creation. Not to be used with the
secure_vulnerability_policy.bundlesfield, useidfor that. - name String
- The name of the vulnerability rule bundle.
- rules List<Property Map>
- List of rule definitions. Each rule supports multiple types (e.g.,
image_label). Each type may have different required attributes: - secure
Vulnerability StringRule Bundle Id - timeouts Property Map
Supporting Types
SecureVulnerabilityRuleBundleRule, SecureVulnerabilityRuleBundleRuleArgs
- Image
Label SecureVulnerability Rule Bundle Rule Image Label - Defines label-based matching rules for image configuration.
- Image
Label SecureVulnerability Rule Bundle Rule Image Label - Defines label-based matching rules for image configuration.
- image
Label SecureVulnerability Rule Bundle Rule Image Label - Defines label-based matching rules for image configuration.
- image
Label SecureVulnerability Rule Bundle Rule Image Label - Defines label-based matching rules for image configuration.
- image_
label SecureVulnerability Rule Bundle Rule Image Label - Defines label-based matching rules for image configuration.
- image
Label Property Map - Defines label-based matching rules for image configuration.
SecureVulnerabilityRuleBundleRuleImageLabel, SecureVulnerabilityRuleBundleRuleImageLabelArgs
- Id string
- Internal identifier for the label rule block.
- Label
Must stringExist - Label key that must exist in the image configuration.
- Label
Must List<SecureExist And Contain Values Vulnerability Rule Bundle Rule Image Label Label Must Exist And Contain Value> - List of required label-value pairs, each containing:
- Label
Must stringNot Exist - Label key that must not exist in the image configuration.
- Id string
- Internal identifier for the label rule block.
- Label
Must stringExist - Label key that must exist in the image configuration.
- Label
Must []SecureExist And Contain Values Vulnerability Rule Bundle Rule Image Label Label Must Exist And Contain Value - List of required label-value pairs, each containing:
- Label
Must stringNot Exist - Label key that must not exist in the image configuration.
- id String
- Internal identifier for the label rule block.
- label
Must StringExist - Label key that must exist in the image configuration.
- label
Must List<SecureExist And Contain Values Vulnerability Rule Bundle Rule Image Label Label Must Exist And Contain Value> - List of required label-value pairs, each containing:
- label
Must StringNot Exist - Label key that must not exist in the image configuration.
- id string
- Internal identifier for the label rule block.
- label
Must stringExist - Label key that must exist in the image configuration.
- label
Must SecureExist And Contain Values Vulnerability Rule Bundle Rule Image Label Label Must Exist And Contain Value[] - List of required label-value pairs, each containing:
- label
Must stringNot Exist - Label key that must not exist in the image configuration.
- id str
- Internal identifier for the label rule block.
- label_
must_ strexist - Label key that must exist in the image configuration.
- label_
must_ Sequence[Secureexist_ and_ contain_ values Vulnerability Rule Bundle Rule Image Label Label Must Exist And Contain Value] - List of required label-value pairs, each containing:
- label_
must_ strnot_ exist - Label key that must not exist in the image configuration.
- id String
- Internal identifier for the label rule block.
- label
Must StringExist - Label key that must exist in the image configuration.
- label
Must List<Property Map>Exist And Contain Values - List of required label-value pairs, each containing:
- label
Must StringNot Exist - Label key that must not exist in the image configuration.
SecureVulnerabilityRuleBundleRuleImageLabelLabelMustExistAndContainValue, SecureVulnerabilityRuleBundleRuleImageLabelLabelMustExistAndContainValueArgs
- Required
Label string - Label key required in the image configuration.
- Required
Value string - Value that the label must contain.
- Required
Label string - Label key required in the image configuration.
- Required
Value string - Value that the label must contain.
- required
Label String - Label key required in the image configuration.
- required
Value String - Value that the label must contain.
- required
Label string - Label key required in the image configuration.
- required
Value string - Value that the label must contain.
- required_
label str - Label key required in the image configuration.
- required_
value str - Value that the label must contain.
- required
Label String - Label key required in the image configuration.
- required
Value String - Value that the label must contain.
SecureVulnerabilityRuleBundleTimeouts, SecureVulnerabilityRuleBundleTimeoutsArgs
Import
Vulnerability rule bundles can be imported using their bundle ID, for example:
$ pulumi import sysdig:index/secureVulnerabilityRuleBundle:SecureVulnerabilityRuleBundle example bundle_123456
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- sysdig sysdiglabs/terraform-provider-sysdig
- License
- Notes
- This Pulumi package is based on the
sysdigTerraform Provider.