SecureZone

sysdig 3.8.1, May 6 26

Viewing docs for sysdig 3.8.1
published on Wednesday, May 6, 2026 by sysdiglabs

Schema (JSON)

sysdiglabs/terraform-provider-sysdig

Viewing docs for sysdig 3.8.1
published on Wednesday, May 6, 2026 by sysdiglabs

Schema (JSON)

sysdiglabs/terraform-provider-sysdig

Import

Zone can be imported using the ID, e.g.

$ pulumi import sysdig:index/secureZone:SecureZone example 12345

~> Note: Imported zones are always represented using the rules string in initial state. If your configuration uses expression blocks, the first pulumi preview after import will show changes to converge to the expression-based representation. Apply once to align state with your config.

Create SecureZone Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new SecureZone(name: string, args: SecureZoneArgs, opts?: CustomResourceOptions);

@overload
def SecureZone(resource_name: str,
               args: SecureZoneArgs,
               opts: Optional[ResourceOptions] = None)

@overload
def SecureZone(resource_name: str,
               opts: Optional[ResourceOptions] = None,
               scopes: Optional[Sequence[SecureZoneScopeArgs]] = None,
               description: Optional[str] = None,
               name: Optional[str] = None,
               secure_zone_id: Optional[str] = None,
               timeouts: Optional[SecureZoneTimeoutsArgs] = None)

func NewSecureZone(ctx *Context, name string, args SecureZoneArgs, opts ...ResourceOption) (*SecureZone, error)

public SecureZone(string name, SecureZoneArgs args, CustomResourceOptions? opts = null)

public SecureZone(String name, SecureZoneArgs args)
public SecureZone(String name, SecureZoneArgs args, CustomResourceOptions options)

type: sysdig:SecureZone
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args SecureZoneArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args SecureZoneArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args SecureZoneArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args SecureZoneArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args SecureZoneArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var secureZoneResource = new Sysdig.SecureZone("secureZoneResource", new()
{
    Scopes = new[]
    {
        new Sysdig.Inputs.SecureZoneScopeArgs
        {
            TargetType = "string",
            Expressions = new[]
            {
                new Sysdig.Inputs.SecureZoneScopeExpressionArgs
                {
                    Field = "string",
                    Operator = "string",
                    Value = "string",
                    Values = new[]
                    {
                        "string",
                    },
                },
            },
            Id = 0,
            Rules = "string",
        },
    },
    Description = "string",
    Name = "string",
    SecureZoneId = "string",
    Timeouts = new Sysdig.Inputs.SecureZoneTimeoutsArgs
    {
        Create = "string",
        Delete = "string",
        Read = "string",
        Update = "string",
    },
});

example, err := sysdig.NewSecureZone(ctx, "secureZoneResource", &sysdig.SecureZoneArgs{
	Scopes: sysdig.SecureZoneScopeArray{
		&sysdig.SecureZoneScopeArgs{
			TargetType: pulumi.String("string"),
			Expressions: sysdig.SecureZoneScopeExpressionArray{
				&sysdig.SecureZoneScopeExpressionArgs{
					Field:    pulumi.String("string"),
					Operator: pulumi.String("string"),
					Value:    pulumi.String("string"),
					Values: pulumi.StringArray{
						pulumi.String("string"),
					},
				},
			},
			Id:    pulumi.Float64(0),
			Rules: pulumi.String("string"),
		},
	},
	Description:  pulumi.String("string"),
	Name:         pulumi.String("string"),
	SecureZoneId: pulumi.String("string"),
	Timeouts: &sysdig.SecureZoneTimeoutsArgs{
		Create: pulumi.String("string"),
		Delete: pulumi.String("string"),
		Read:   pulumi.String("string"),
		Update: pulumi.String("string"),
	},
})

var secureZoneResource = new SecureZone("secureZoneResource", SecureZoneArgs.builder()
    .scopes(SecureZoneScopeArgs.builder()
        .targetType("string")
        .expressions(SecureZoneScopeExpressionArgs.builder()
            .field("string")
            .operator("string")
            .value("string")
            .values("string")
            .build())
        .id(0.0)
        .rules("string")
        .build())
    .description("string")
    .name("string")
    .secureZoneId("string")
    .timeouts(SecureZoneTimeoutsArgs.builder()
        .create("string")
        .delete("string")
        .read("string")
        .update("string")
        .build())
    .build());

secure_zone_resource = sysdig.SecureZone("secureZoneResource",
    scopes=[{
        "target_type": "string",
        "expressions": [{
            "field": "string",
            "operator": "string",
            "value": "string",
            "values": ["string"],
        }],
        "id": float(0),
        "rules": "string",
    }],
    description="string",
    name="string",
    secure_zone_id="string",
    timeouts={
        "create": "string",
        "delete": "string",
        "read": "string",
        "update": "string",
    })

const secureZoneResource = new sysdig.SecureZone("secureZoneResource", {
    scopes: [{
        targetType: "string",
        expressions: [{
            field: "string",
            operator: "string",
            value: "string",
            values: ["string"],
        }],
        id: 0,
        rules: "string",
    }],
    description: "string",
    name: "string",
    secureZoneId: "string",
    timeouts: {
        create: "string",
        "delete": "string",
        read: "string",
        update: "string",
    },
});

type: sysdig:SecureZone
properties:
    description: string
    name: string
    scopes:
        - expressions:
            - field: string
              operator: string
              value: string
              values:
                - string
          id: 0
          rules: string
          targetType: string
    secureZoneId: string
    timeouts:
        create: string
        delete: string
        read: string
        update: string

SecureZone Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The SecureZone resource accepts the following input properties:

Scopes List<SecureZoneScope>: One or more scope blocks attached to the Zone.
Description string: The description of the Zone.
Name string: The name of the Zone.
SecureZoneId string: (Computed) The ID of the Zone.
Timeouts SecureZoneTimeouts

Scopes []SecureZoneScopeArgs: One or more scope blocks attached to the Zone.
Description string: The description of the Zone.
Name string: The name of the Zone.
SecureZoneId string: (Computed) The ID of the Zone.
Timeouts SecureZoneTimeoutsArgs

scopes List<SecureZoneScope>: One or more scope blocks attached to the Zone.
description String: The description of the Zone.
name String: The name of the Zone.
secureZoneId String: (Computed) The ID of the Zone.
timeouts SecureZoneTimeouts

scopes SecureZoneScope[]: One or more scope blocks attached to the Zone.
description string: The description of the Zone.
name string: The name of the Zone.
secureZoneId string: (Computed) The ID of the Zone.
timeouts SecureZoneTimeouts

scopes Sequence[SecureZoneScopeArgs]: One or more scope blocks attached to the Zone.
description str: The description of the Zone.
name str: The name of the Zone.
secure_zone_id str: (Computed) The ID of the Zone.
timeouts SecureZoneTimeoutsArgs

scopes List<Property Map>: One or more scope blocks attached to the Zone.
description String: The description of the Zone.
name String: The name of the Zone.
secureZoneId String: (Computed) The ID of the Zone.
timeouts Property Map

Outputs

All input properties are implicitly available as output properties. Additionally, the SecureZone resource produces the following output properties:

Author string: (Computed) The zone author.
Id string: The provider-assigned unique ID for this managed resource.
IsSystem bool: (Computed) Whether the Zone is a system zone.
LastModifiedBy string: (Computed) By whom is last modification made.
LastUpdated string: (Computed) Timestamp of last modification of zone.

Author string: (Computed) The zone author.
Id string: The provider-assigned unique ID for this managed resource.
IsSystem bool: (Computed) Whether the Zone is a system zone.
LastModifiedBy string: (Computed) By whom is last modification made.
LastUpdated string: (Computed) Timestamp of last modification of zone.

author String: (Computed) The zone author.
id String: The provider-assigned unique ID for this managed resource.
isSystem Boolean: (Computed) Whether the Zone is a system zone.
lastModifiedBy String: (Computed) By whom is last modification made.
lastUpdated String: (Computed) Timestamp of last modification of zone.

author string: (Computed) The zone author.
id string: The provider-assigned unique ID for this managed resource.
isSystem boolean: (Computed) Whether the Zone is a system zone.
lastModifiedBy string: (Computed) By whom is last modification made.
lastUpdated string: (Computed) Timestamp of last modification of zone.

author str: (Computed) The zone author.
id str: The provider-assigned unique ID for this managed resource.
is_system bool: (Computed) Whether the Zone is a system zone.
last_modified_by str: (Computed) By whom is last modification made.
last_updated str: (Computed) Timestamp of last modification of zone.

author String: (Computed) The zone author.
id String: The provider-assigned unique ID for this managed resource.
isSystem Boolean: (Computed) Whether the Zone is a system zone.
lastModifiedBy String: (Computed) By whom is last modification made.
lastUpdated String: (Computed) Timestamp of last modification of zone.

Look up Existing SecureZone Resource

Get an existing SecureZone resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: SecureZoneState, opts?: CustomResourceOptions): SecureZone

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        author: Optional[str] = None,
        description: Optional[str] = None,
        is_system: Optional[bool] = None,
        last_modified_by: Optional[str] = None,
        last_updated: Optional[str] = None,
        name: Optional[str] = None,
        scopes: Optional[Sequence[SecureZoneScopeArgs]] = None,
        secure_zone_id: Optional[str] = None,
        timeouts: Optional[SecureZoneTimeoutsArgs] = None) -> SecureZone

func GetSecureZone(ctx *Context, name string, id IDInput, state *SecureZoneState, opts ...ResourceOption) (*SecureZone, error)

public static SecureZone Get(string name, Input<string> id, SecureZoneState? state, CustomResourceOptions? opts = null)

public static SecureZone get(String name, Output<String> id, SecureZoneState state, CustomResourceOptions options)

resources:  _:    type: sysdig:SecureZone    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Author string: (Computed) The zone author.
Description string: The description of the Zone.
IsSystem bool: (Computed) Whether the Zone is a system zone.
LastModifiedBy string: (Computed) By whom is last modification made.
LastUpdated string: (Computed) Timestamp of last modification of zone.
Name string: The name of the Zone.
Scopes List<SecureZoneScope>: One or more scope blocks attached to the Zone.
SecureZoneId string: (Computed) The ID of the Zone.
Timeouts SecureZoneTimeouts

Author string: (Computed) The zone author.
Description string: The description of the Zone.
IsSystem bool: (Computed) Whether the Zone is a system zone.
LastModifiedBy string: (Computed) By whom is last modification made.
LastUpdated string: (Computed) Timestamp of last modification of zone.
Name string: The name of the Zone.
Scopes []SecureZoneScopeArgs: One or more scope blocks attached to the Zone.
SecureZoneId string: (Computed) The ID of the Zone.
Timeouts SecureZoneTimeoutsArgs

author String: (Computed) The zone author.
description String: The description of the Zone.
isSystem Boolean: (Computed) Whether the Zone is a system zone.
lastModifiedBy String: (Computed) By whom is last modification made.
lastUpdated String: (Computed) Timestamp of last modification of zone.
name String: The name of the Zone.
scopes List<SecureZoneScope>: One or more scope blocks attached to the Zone.
secureZoneId String: (Computed) The ID of the Zone.
timeouts SecureZoneTimeouts

author string: (Computed) The zone author.
description string: The description of the Zone.
isSystem boolean: (Computed) Whether the Zone is a system zone.
lastModifiedBy string: (Computed) By whom is last modification made.
lastUpdated string: (Computed) Timestamp of last modification of zone.
name string: The name of the Zone.
scopes SecureZoneScope[]: One or more scope blocks attached to the Zone.
secureZoneId string: (Computed) The ID of the Zone.
timeouts SecureZoneTimeouts

author str: (Computed) The zone author.
description str: The description of the Zone.
is_system bool: (Computed) Whether the Zone is a system zone.
last_modified_by str: (Computed) By whom is last modification made.
last_updated str: (Computed) Timestamp of last modification of zone.
name str: The name of the Zone.
scopes Sequence[SecureZoneScopeArgs]: One or more scope blocks attached to the Zone.
secure_zone_id str: (Computed) The ID of the Zone.
timeouts SecureZoneTimeoutsArgs

author String: (Computed) The zone author.
description String: The description of the Zone.
isSystem Boolean: (Computed) Whether the Zone is a system zone.
lastModifiedBy String: (Computed) By whom is last modification made.
lastUpdated String: (Computed) Timestamp of last modification of zone.
name String: The name of the Zone.
scopes List<Property Map>: One or more scope blocks attached to the Zone.
secureZoneId String: (Computed) The ID of the Zone.
timeouts Property Map

Supporting Types

SecureZoneScope, SecureZoneScopeArgs

TargetType string

The resource type this scope applies to. Supported types:

AWS - aws
GCP - gcp
Azure - azure
Kubernetes - kubernetes
Image - image
Host - host
Git - git
IBM - ibm
OCI - oci

Expressions List<SecureZoneScopeExpression>

One or more blocks that define the scope as a list of filter expressions.

A scope must specify either rules or at least one expression block.

Id double

(Computed) The ID of the Zone.

Rules string

Query language expression for filtering results.

Note: The rules field supports both v2 and legacy (v1) syntax. When using legacy v1 attributes (labels, labelValues, agentTags), a deprecation warning will be shown — migrate to expression blocks with v2 field names (label.<key>, agent.tag.<key>). Rules using v2-compatible syntax (e.g., organization, account, cluster) are fully supported and produce no warning. rules and expression cannot be used together within the same scope.

TargetType string

The resource type this scope applies to. Supported types:

AWS - aws
GCP - gcp
Azure - azure
Kubernetes - kubernetes
Image - image
Host - host
Git - git
IBM - ibm
OCI - oci

Expressions []SecureZoneScopeExpression

One or more blocks that define the scope as a list of filter expressions.

A scope must specify either rules or at least one expression block.

Id float64

(Computed) The ID of the Zone.

Rules string

Query language expression for filtering results.

Note: The rules field supports both v2 and legacy (v1) syntax. When using legacy v1 attributes (labels, labelValues, agentTags), a deprecation warning will be shown — migrate to expression blocks with v2 field names (label.<key>, agent.tag.<key>). Rules using v2-compatible syntax (e.g., organization, account, cluster) are fully supported and produce no warning. rules and expression cannot be used together within the same scope.

targetType String

The resource type this scope applies to. Supported types:

AWS - aws
GCP - gcp
Azure - azure
Kubernetes - kubernetes
Image - image
Host - host
Git - git
IBM - ibm
OCI - oci

expressions List<SecureZoneScopeExpression>

One or more blocks that define the scope as a list of filter expressions.

A scope must specify either rules or at least one expression block.

id Double

(Computed) The ID of the Zone.

rules String

Query language expression for filtering results.

Note: The rules field supports both v2 and legacy (v1) syntax. When using legacy v1 attributes (labels, labelValues, agentTags), a deprecation warning will be shown — migrate to expression blocks with v2 field names (label.<key>, agent.tag.<key>). Rules using v2-compatible syntax (e.g., organization, account, cluster) are fully supported and produce no warning. rules and expression cannot be used together within the same scope.

targetType string

The resource type this scope applies to. Supported types:

AWS - aws
GCP - gcp
Azure - azure
Kubernetes - kubernetes
Image - image
Host - host
Git - git
IBM - ibm
OCI - oci

expressions SecureZoneScopeExpression[]

One or more blocks that define the scope as a list of filter expressions.

A scope must specify either rules or at least one expression block.

id number

(Computed) The ID of the Zone.

rules string

Query language expression for filtering results.

Note: The rules field supports both v2 and legacy (v1) syntax. When using legacy v1 attributes (labels, labelValues, agentTags), a deprecation warning will be shown — migrate to expression blocks with v2 field names (label.<key>, agent.tag.<key>). Rules using v2-compatible syntax (e.g., organization, account, cluster) are fully supported and produce no warning. rules and expression cannot be used together within the same scope.

target_type str

The resource type this scope applies to. Supported types:

AWS - aws
GCP - gcp
Azure - azure
Kubernetes - kubernetes
Image - image
Host - host
Git - git
IBM - ibm
OCI - oci

expressions Sequence[SecureZoneScopeExpression]

One or more blocks that define the scope as a list of filter expressions.

A scope must specify either rules or at least one expression block.

id float

(Computed) The ID of the Zone.

rules str

Query language expression for filtering results.

Note: The rules field supports both v2 and legacy (v1) syntax. When using legacy v1 attributes (labels, labelValues, agentTags), a deprecation warning will be shown — migrate to expression blocks with v2 field names (label.<key>, agent.tag.<key>). Rules using v2-compatible syntax (e.g., organization, account, cluster) are fully supported and produce no warning. rules and expression cannot be used together within the same scope.

targetType String

The resource type this scope applies to. Supported types:

AWS - aws
GCP - gcp
Azure - azure
Kubernetes - kubernetes
Image - image
Host - host
Git - git
IBM - ibm
OCI - oci

expressions List<Property Map>

One or more blocks that define the scope as a list of filter expressions.

A scope must specify either rules or at least one expression block.

id Number

(Computed) The ID of the Zone.

rules String

Query language expression for filtering results.

Note: The rules field supports both v2 and legacy (v1) syntax. When using legacy v1 attributes (labels, labelValues, agentTags), a deprecation warning will be shown — migrate to expression blocks with v2 field names (label.<key>, agent.tag.<key>). Rules using v2-compatible syntax (e.g., organization, account, cluster) are fully supported and produce no warning. rules and expression cannot be used together within the same scope.

SecureZoneScopeExpression, SecureZoneScopeExpressionArgs

Field string: Field name to filter on. See the "Supported fields" section below.
Operator string: Operator to apply.
Value string: Single value for operators that take one argument.
Values List<string>: List of values for operators such as in.
Note: Provide either value or values for an expression block (depending on the operator). If both are set, values takes precedence.

Field string: Field name to filter on. See the "Supported fields" section below.
Operator string: Operator to apply.
Value string: Single value for operators that take one argument.
Values []string: List of values for operators such as in.
Note: Provide either value or values for an expression block (depending on the operator). If both are set, values takes precedence.

field String: Field name to filter on. See the "Supported fields" section below.
operator String: Operator to apply.
value String: Single value for operators that take one argument.
values List<String>: List of values for operators such as in.
Note: Provide either value or values for an expression block (depending on the operator). If both are set, values takes precedence.

field string: Field name to filter on. See the "Supported fields" section below.
operator string: Operator to apply.
value string: Single value for operators that take one argument.
values string[]: List of values for operators such as in.
Note: Provide either value or values for an expression block (depending on the operator). If both are set, values takes precedence.

field str: Field name to filter on. See the "Supported fields" section below.
operator str: Operator to apply.
value str: Single value for operators that take one argument.
values Sequence[str]: List of values for operators such as in.
Note: Provide either value or values for an expression block (depending on the operator). If both are set, values takes precedence.

field String: Field name to filter on. See the "Supported fields" section below.
operator String: Operator to apply.
value String: Single value for operators that take one argument.
values List<String>: List of values for operators such as in.
Note: Provide either value or values for an expression block (depending on the operator). If both are set, values takes precedence.

SecureZoneTimeouts, SecureZoneTimeoutsArgs

Create string
Delete string
Read string
Update string

Create string
Delete string
Read string
Update string

create String
delete String
read String
update String

create string
delete string
read string
update string

create str
delete str
read str
update str

create String
delete String
read String
update String

Package Details

Repository: sysdig sysdiglabs/terraform-provider-sysdig
License
Notes: This Pulumi package is based on the sysdig Terraform Provider.

Viewing docs for sysdig 3.8.1
published on Wednesday, May 6, 2026 by sysdiglabs

Schema (JSON)

sysdiglabs/terraform-provider-sysdig

sysdig.SecureZone

On this page

On this page

Import

Create SecureZone Resource

Constructor syntax

Parameters

Constructor example

SecureZone Resource Properties

Inputs

Outputs

Look up Existing SecureZone Resource

Supporting Types

SecureZoneScope, SecureZoneScopeArgs

SecureZoneScopeExpression, SecureZoneScopeExpressionArgs

SecureZoneTimeouts, SecureZoneTimeoutsArgs

Package Details

On this page

On this page