import * as cdk from "../../core/lib"; import * as constructs from "constructs"; import * as cfn_parse from "../../core/lib/helpers-internal"; import { CisScanConfigurationReference, CodeSecurityIntegrationReference, CodeSecurityScanConfigurationReference, FilterReference, ICisScanConfigurationRef, ICodeSecurityIntegrationRef, ICodeSecurityScanConfigurationRef, IFilterRef } from "../../interfaces/generated/aws-inspectorv2-interfaces.generated"; /** * Details about a filter. * * @cloudformationResource AWS::InspectorV2::Filter * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-filter.html */ export declare class CfnFilter extends cdk.CfnResource implements cdk.IInspectable, IFilterRef, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnFilter from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnFilter; /** * Checks whether the given object is a CfnFilter */ static isCfnFilter(x: any): x is CfnFilter; static arnForFilter(resource: IFilterRef): string; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * A description of the filter. */ private _description?; /** * The action that is to be applied to the findings that match the filter. */ private _filterAction; /** * Details on the filter criteria associated with this filter. */ private _filterCriteria; /** * The name of the filter. */ private _name; /** * The tags attached to the filter. */ private _tags?; protected readonly cfnPropertyNames: Record; /** * Create a new `AWS::InspectorV2::Filter`. * * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnFilterProps); get filterRef(): FilterReference; /** * A description of the filter. */ get description(): string | undefined; /** * A description of the filter. */ set description(value: string | undefined); /** * The action that is to be applied to the findings that match the filter. */ get filterAction(): string; /** * The action that is to be applied to the findings that match the filter. */ set filterAction(value: string); /** * Details on the filter criteria associated with this filter. */ get filterCriteria(): CfnFilter.FilterCriteriaProperty | cdk.IResolvable; /** * Details on the filter criteria associated with this filter. */ set filterCriteria(value: CfnFilter.FilterCriteriaProperty | cdk.IResolvable); /** * The name of the filter. */ get name(): string; /** * The name of the filter. */ set name(value: string); /** * The tags attached to the filter. */ get tags(): Record | undefined; /** * The tags attached to the filter. */ set tags(value: Record | undefined); /** * The Amazon Resource Number (ARN) associated with this filter. * * @cloudformationAttribute Arn */ get attrArn(): string; protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnFilter { /** * Details on the criteria used to define the filter. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html */ interface FilterCriteriaProperty { /** * Details of the AWS account IDs used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-awsaccountid */ readonly awsAccountId?: Array | cdk.IResolvable; /** * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-codevulnerabilitydetectorname */ readonly codeVulnerabilityDetectorName?: Array | cdk.IResolvable; /** * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-codevulnerabilitydetectortags */ readonly codeVulnerabilityDetectorTags?: Array | cdk.IResolvable; /** * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-codevulnerabilityfilepath */ readonly codeVulnerabilityFilePath?: Array | cdk.IResolvable; /** * Details of the component IDs used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-componentid */ readonly componentId?: Array | cdk.IResolvable; /** * Details of the component types used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-componenttype */ readonly componentType?: Array | cdk.IResolvable; /** * Details of the Amazon EC2 instance image IDs used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-ec2instanceimageid */ readonly ec2InstanceImageId?: Array | cdk.IResolvable; /** * Details of the Amazon EC2 instance subnet IDs used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-ec2instancesubnetid */ readonly ec2InstanceSubnetId?: Array | cdk.IResolvable; /** * Details of the Amazon EC2 instance VPC IDs used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-ec2instancevpcid */ readonly ec2InstanceVpcId?: Array | cdk.IResolvable; /** * Details of the Amazon ECR image architecture types used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-ecrimagearchitecture */ readonly ecrImageArchitecture?: Array | cdk.IResolvable; /** * Details of the Amazon ECR image hashes used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-ecrimagehash */ readonly ecrImageHash?: Array | cdk.IResolvable; /** * Details on the Amazon ECR image push date and time used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-ecrimagepushedat */ readonly ecrImagePushedAt?: Array | cdk.IResolvable; /** * Details on the Amazon ECR registry used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-ecrimageregistry */ readonly ecrImageRegistry?: Array | cdk.IResolvable; /** * Details on the name of the Amazon ECR repository used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-ecrimagerepositoryname */ readonly ecrImageRepositoryName?: Array | cdk.IResolvable; /** * The tags attached to the Amazon ECR container image. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-ecrimagetags */ readonly ecrImageTags?: Array | cdk.IResolvable; /** * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-epssscore */ readonly epssScore?: Array | cdk.IResolvable; /** * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-exploitavailable */ readonly exploitAvailable?: Array | cdk.IResolvable; /** * Details on the finding ARNs used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-findingarn */ readonly findingArn?: Array | cdk.IResolvable; /** * Details on the finding status types used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-findingstatus */ readonly findingStatus?: Array | cdk.IResolvable; /** * Details on the finding types used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-findingtype */ readonly findingType?: Array | cdk.IResolvable; /** * Details on the date and time a finding was first seen used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-firstobservedat */ readonly firstObservedAt?: Array | cdk.IResolvable; /** * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-fixavailable */ readonly fixAvailable?: Array | cdk.IResolvable; /** * The Amazon Inspector score to filter on. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-inspectorscore */ readonly inspectorScore?: Array | cdk.IResolvable; /** * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-lambdafunctionexecutionrolearn */ readonly lambdaFunctionExecutionRoleArn?: Array | cdk.IResolvable; /** * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-lambdafunctionlastmodifiedat */ readonly lambdaFunctionLastModifiedAt?: Array | cdk.IResolvable; /** * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-lambdafunctionlayers */ readonly lambdaFunctionLayers?: Array | cdk.IResolvable; /** * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-lambdafunctionname */ readonly lambdaFunctionName?: Array | cdk.IResolvable; /** * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-lambdafunctionruntime */ readonly lambdaFunctionRuntime?: Array | cdk.IResolvable; /** * Details on the date and time a finding was last seen used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-lastobservedat */ readonly lastObservedAt?: Array | cdk.IResolvable; /** * Details on network protocol used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-networkprotocol */ readonly networkProtocol?: Array | cdk.IResolvable; /** * Details on the port ranges used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-portrange */ readonly portRange?: Array | cdk.IResolvable; /** * Details on the related vulnerabilities used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-relatedvulnerabilities */ readonly relatedVulnerabilities?: Array | cdk.IResolvable; /** * Details on the resource IDs used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-resourceid */ readonly resourceId?: Array | cdk.IResolvable; /** * Details on the resource tags used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-resourcetags */ readonly resourceTags?: Array | cdk.IResolvable; /** * Details on the resource types used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-resourcetype */ readonly resourceType?: Array | cdk.IResolvable; /** * Details on the severity used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-severity */ readonly severity?: Array | cdk.IResolvable; /** * Details on the finding title used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-title */ readonly title?: Array | cdk.IResolvable; /** * Details on the date and time a finding was last updated at used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-updatedat */ readonly updatedAt?: Array | cdk.IResolvable; /** * Details on the vendor severity used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-vendorseverity */ readonly vendorSeverity?: Array | cdk.IResolvable; /** * Details on the vulnerability ID used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-vulnerabilityid */ readonly vulnerabilityId?: Array | cdk.IResolvable; /** * Details on the vulnerability score to filter findings by. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-vulnerabilitysource */ readonly vulnerabilitySource?: Array | cdk.IResolvable; /** * Details on the vulnerable packages used to filter findings. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-filtercriteria.html#cfn-inspectorv2-filter-filtercriteria-vulnerablepackages */ readonly vulnerablePackages?: Array | cdk.IResolvable; } /** * An object that describes details of a map filter. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-mapfilter.html */ interface MapFilterProperty { /** * The operator to use when comparing values in the filter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-mapfilter.html#cfn-inspectorv2-filter-mapfilter-comparison */ readonly comparison: string; /** * The tag key used in the filter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-mapfilter.html#cfn-inspectorv2-filter-mapfilter-key */ readonly key?: string; /** * The tag value used in the filter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-mapfilter.html#cfn-inspectorv2-filter-mapfilter-value */ readonly value?: string; } /** * An object that describes the details of a string filter. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-stringfilter.html */ interface StringFilterProperty { /** * The operator to use when comparing values in the filter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-stringfilter.html#cfn-inspectorv2-filter-stringfilter-comparison */ readonly comparison: string; /** * The value to filter on. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-stringfilter.html#cfn-inspectorv2-filter-stringfilter-value */ readonly value: string; } /** * Contains details on the time range used to filter findings. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-datefilter.html */ interface DateFilterProperty { /** * A timestamp representing the end of the time period filtered on. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-datefilter.html#cfn-inspectorv2-filter-datefilter-endinclusive */ readonly endInclusive?: number; /** * A timestamp representing the start of the time period filtered on. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-datefilter.html#cfn-inspectorv2-filter-datefilter-startinclusive */ readonly startInclusive?: number; } /** * An object that describes the details of a number filter. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-numberfilter.html */ interface NumberFilterProperty { /** * The lowest number to be included in the filter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-numberfilter.html#cfn-inspectorv2-filter-numberfilter-lowerinclusive */ readonly lowerInclusive?: number; /** * The highest number to be included in the filter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-numberfilter.html#cfn-inspectorv2-filter-numberfilter-upperinclusive */ readonly upperInclusive?: number; } /** * An object that describes the details of a port range filter. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-portrangefilter.html */ interface PortRangeFilterProperty { /** * The port number the port range begins at. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-portrangefilter.html#cfn-inspectorv2-filter-portrangefilter-begininclusive */ readonly beginInclusive?: number; /** * The port number the port range ends at. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-portrangefilter.html#cfn-inspectorv2-filter-portrangefilter-endinclusive */ readonly endInclusive?: number; } /** * Contains information on the details of a package filter. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-packagefilter.html */ interface PackageFilterProperty { /** * An object that contains details on the package architecture type to filter on. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-packagefilter.html#cfn-inspectorv2-filter-packagefilter-architecture */ readonly architecture?: cdk.IResolvable | CfnFilter.StringFilterProperty; /** * An object that contains details on the package epoch to filter on. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-packagefilter.html#cfn-inspectorv2-filter-packagefilter-epoch */ readonly epoch?: cdk.IResolvable | CfnFilter.NumberFilterProperty; /** * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-packagefilter.html#cfn-inspectorv2-filter-packagefilter-filepath */ readonly filePath?: cdk.IResolvable | CfnFilter.StringFilterProperty; /** * An object that contains details on the name of the package to filter on. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-packagefilter.html#cfn-inspectorv2-filter-packagefilter-name */ readonly name?: cdk.IResolvable | CfnFilter.StringFilterProperty; /** * An object that contains details on the package release to filter on. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-packagefilter.html#cfn-inspectorv2-filter-packagefilter-release */ readonly release?: cdk.IResolvable | CfnFilter.StringFilterProperty; /** * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-packagefilter.html#cfn-inspectorv2-filter-packagefilter-sourcelambdalayerarn */ readonly sourceLambdaLayerArn?: cdk.IResolvable | CfnFilter.StringFilterProperty; /** * An object that contains details on the source layer hash to filter on. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-packagefilter.html#cfn-inspectorv2-filter-packagefilter-sourcelayerhash */ readonly sourceLayerHash?: cdk.IResolvable | CfnFilter.StringFilterProperty; /** * The package version to filter on. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-filter-packagefilter.html#cfn-inspectorv2-filter-packagefilter-version */ readonly version?: cdk.IResolvable | CfnFilter.StringFilterProperty; } } /** * Properties for defining a `CfnFilter` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-filter.html */ export interface CfnFilterProps { /** * A description of the filter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-filter.html#cfn-inspectorv2-filter-description */ readonly description?: string; /** * The action that is to be applied to the findings that match the filter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-filter.html#cfn-inspectorv2-filter-filteraction */ readonly filterAction: string; /** * Details on the filter criteria associated with this filter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-filter.html#cfn-inspectorv2-filter-filtercriteria */ readonly filterCriteria: CfnFilter.FilterCriteriaProperty | cdk.IResolvable; /** * The name of the filter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-filter.html#cfn-inspectorv2-filter-name */ readonly name: string; /** * The tags attached to the filter. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-filter.html#cfn-inspectorv2-filter-tags */ readonly tags?: Record; } /** * The CIS scan configuration. * * @cloudformationResource AWS::InspectorV2::CisScanConfiguration * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-cisscanconfiguration.html */ export declare class CfnCisScanConfiguration extends cdk.CfnResource implements cdk.IInspectable, ICisScanConfigurationRef, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnCisScanConfiguration from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnCisScanConfiguration; /** * Checks whether the given object is a CfnCisScanConfiguration */ static isCfnCisScanConfiguration(x: any): x is CfnCisScanConfiguration; static arnForCisScanConfiguration(resource: ICisScanConfigurationRef): string; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * The name of the CIS scan configuration. */ private _scanName; /** * The CIS scan configuration's schedule. */ private _schedule; /** * The CIS scan configuration's CIS Benchmark level. */ private _securityLevel; /** * The CIS scan configuration's tags. */ private _tags?; /** * The CIS scan configuration's targets. */ private _targets; protected readonly cfnPropertyNames: Record; /** * Create a new `AWS::InspectorV2::CisScanConfiguration`. * * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props: CfnCisScanConfigurationProps); get cisScanConfigurationRef(): CisScanConfigurationReference; /** * The name of the CIS scan configuration. */ get scanName(): string; /** * The name of the CIS scan configuration. */ set scanName(value: string); /** * The CIS scan configuration's schedule. */ get schedule(): cdk.IResolvable | CfnCisScanConfiguration.ScheduleProperty; /** * The CIS scan configuration's schedule. */ set schedule(value: cdk.IResolvable | CfnCisScanConfiguration.ScheduleProperty); /** * The CIS scan configuration's CIS Benchmark level. */ get securityLevel(): string; /** * The CIS scan configuration's CIS Benchmark level. */ set securityLevel(value: string); /** * The CIS scan configuration's tags. */ get tags(): Record | undefined; /** * The CIS scan configuration's tags. */ set tags(value: Record | undefined); /** * The CIS scan configuration's targets. */ get targets(): CfnCisScanConfiguration.CisTargetsProperty | cdk.IResolvable; /** * The CIS scan configuration's targets. */ set targets(value: CfnCisScanConfiguration.CisTargetsProperty | cdk.IResolvable); /** * The CIS scan configuration's scan configuration ARN. * * @cloudformationAttribute Arn */ get attrArn(): string; protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnCisScanConfiguration { /** * The schedule the CIS scan configuration runs on. * * Each CIS scan configuration has exactly one type of schedule. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-schedule.html */ interface ScheduleProperty { /** * A daily schedule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-schedule.html#cfn-inspectorv2-cisscanconfiguration-schedule-daily */ readonly daily?: CfnCisScanConfiguration.DailyScheduleProperty | cdk.IResolvable; /** * A monthly schedule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-schedule.html#cfn-inspectorv2-cisscanconfiguration-schedule-monthly */ readonly monthly?: cdk.IResolvable | CfnCisScanConfiguration.MonthlyScheduleProperty; /** * A one time schedule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-schedule.html#cfn-inspectorv2-cisscanconfiguration-schedule-onetime */ readonly oneTime?: any | cdk.IResolvable; /** * A weekly schedule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-schedule.html#cfn-inspectorv2-cisscanconfiguration-schedule-weekly */ readonly weekly?: cdk.IResolvable | CfnCisScanConfiguration.WeeklyScheduleProperty; } /** * A daily schedule. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-dailyschedule.html */ interface DailyScheduleProperty { /** * The schedule start time. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-dailyschedule.html#cfn-inspectorv2-cisscanconfiguration-dailyschedule-starttime */ readonly startTime: cdk.IResolvable | CfnCisScanConfiguration.TimeProperty; } /** * The time. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-time.html */ interface TimeProperty { /** * The time of day in 24-hour format (00:00). * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-time.html#cfn-inspectorv2-cisscanconfiguration-time-timeofday */ readonly timeOfDay: string; /** * The timezone. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-time.html#cfn-inspectorv2-cisscanconfiguration-time-timezone */ readonly timeZone: string; } /** * A weekly schedule. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-weeklyschedule.html */ interface WeeklyScheduleProperty { /** * The weekly schedule's days. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-weeklyschedule.html#cfn-inspectorv2-cisscanconfiguration-weeklyschedule-days */ readonly days: Array; /** * The weekly schedule's start time. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-weeklyschedule.html#cfn-inspectorv2-cisscanconfiguration-weeklyschedule-starttime */ readonly startTime: cdk.IResolvable | CfnCisScanConfiguration.TimeProperty; } /** * A monthly schedule. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-monthlyschedule.html */ interface MonthlyScheduleProperty { /** * The monthly schedule's day. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-monthlyschedule.html#cfn-inspectorv2-cisscanconfiguration-monthlyschedule-day */ readonly day: string; /** * The monthly schedule's start time. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-monthlyschedule.html#cfn-inspectorv2-cisscanconfiguration-monthlyschedule-starttime */ readonly startTime: cdk.IResolvable | CfnCisScanConfiguration.TimeProperty; } /** * The CIS targets. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-cistargets.html */ interface CisTargetsProperty { /** * The CIS target account ids. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-cistargets.html#cfn-inspectorv2-cisscanconfiguration-cistargets-accountids */ readonly accountIds: Array; /** * The CIS target resource tags. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-cisscanconfiguration-cistargets.html#cfn-inspectorv2-cisscanconfiguration-cistargets-targetresourcetags */ readonly targetResourceTags: cdk.IResolvable | Record>; } } /** * Properties for defining a `CfnCisScanConfiguration` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-cisscanconfiguration.html */ export interface CfnCisScanConfigurationProps { /** * The name of the CIS scan configuration. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-cisscanconfiguration.html#cfn-inspectorv2-cisscanconfiguration-scanname */ readonly scanName: string; /** * The CIS scan configuration's schedule. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-cisscanconfiguration.html#cfn-inspectorv2-cisscanconfiguration-schedule */ readonly schedule: cdk.IResolvable | CfnCisScanConfiguration.ScheduleProperty; /** * The CIS scan configuration's CIS Benchmark level. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-cisscanconfiguration.html#cfn-inspectorv2-cisscanconfiguration-securitylevel */ readonly securityLevel: string; /** * The CIS scan configuration's tags. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-cisscanconfiguration.html#cfn-inspectorv2-cisscanconfiguration-tags */ readonly tags?: Record; /** * The CIS scan configuration's targets. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-cisscanconfiguration.html#cfn-inspectorv2-cisscanconfiguration-targets */ readonly targets: CfnCisScanConfiguration.CisTargetsProperty | cdk.IResolvable; } /** * Creates a code security integration with a source code repository provider. * * @cloudformationResource AWS::InspectorV2::CodeSecurityIntegration * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-codesecurityintegration.html */ export declare class CfnCodeSecurityIntegration extends cdk.CfnResource implements cdk.IInspectable, ICodeSecurityIntegrationRef, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnCodeSecurityIntegration from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnCodeSecurityIntegration; /** * Checks whether the given object is a CfnCodeSecurityIntegration */ static isCfnCodeSecurityIntegration(x: any): x is CfnCodeSecurityIntegration; static arnForCodeSecurityIntegration(resource: ICodeSecurityIntegrationRef): string; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * Contains details required to create a code security integration with a specific repository provider. */ private _createIntegrationDetails?; /** * The name of the code security integration. */ private _name?; /** * The tags to apply to the code security integration. */ private _tags?; /** * The type of repository provider for the integration. */ private _type?; /** * The updated integration details specific to the repository provider type. */ private _updateIntegrationDetails?; protected readonly cfnPropertyNames: Record; /** * Create a new `AWS::InspectorV2::CodeSecurityIntegration`. * * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnCodeSecurityIntegrationProps); get codeSecurityIntegrationRef(): CodeSecurityIntegrationReference; /** * Contains details required to create a code security integration with a specific repository provider. */ get createIntegrationDetails(): CfnCodeSecurityIntegration.CreateDetailsProperty | cdk.IResolvable | undefined; /** * Contains details required to create a code security integration with a specific repository provider. */ set createIntegrationDetails(value: CfnCodeSecurityIntegration.CreateDetailsProperty | cdk.IResolvable | undefined); /** * The name of the code security integration. */ get name(): string | undefined; /** * The name of the code security integration. */ set name(value: string | undefined); /** * The tags to apply to the code security integration. */ get tags(): Record | undefined; /** * The tags to apply to the code security integration. */ set tags(value: Record | undefined); /** * The type of repository provider for the integration. */ get type(): string | undefined; /** * The type of repository provider for the integration. */ set type(value: string | undefined); /** * The updated integration details specific to the repository provider type. */ get updateIntegrationDetails(): cdk.IResolvable | CfnCodeSecurityIntegration.UpdateDetailsProperty | undefined; /** * The updated integration details specific to the repository provider type. */ set updateIntegrationDetails(value: cdk.IResolvable | CfnCodeSecurityIntegration.UpdateDetailsProperty | undefined); /** * The Amazon Resource Name (ARN) of the code security integration. * * @cloudformationAttribute Arn */ get attrArn(): string; /** * The URL used to authorize the integration with the repository provider. * * @cloudformationAttribute AuthorizationUrl */ get attrAuthorizationUrl(): string; /** * The timestamp when the code security integration was created. * * @cloudformationAttribute CreatedAt */ get attrCreatedAt(): string; /** * The timestamp when the code security integration was last updated. * * @cloudformationAttribute LastUpdatedAt */ get attrLastUpdatedAt(): string; /** * The current status of the integration. * * @cloudformationAttribute Status */ get attrStatus(): string; /** * The reason for the current status of the code security integration. * * @cloudformationAttribute StatusReason */ get attrStatusReason(): string; protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnCodeSecurityIntegration { /** * Contains details required to create a code security integration with a specific repository provider. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityintegration-createdetails.html */ interface CreateDetailsProperty { /** * Details specific to creating an integration with a self-managed GitLab instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityintegration-createdetails.html#cfn-inspectorv2-codesecurityintegration-createdetails-gitlabselfmanaged */ readonly gitlabSelfManaged: CfnCodeSecurityIntegration.CreateGitLabSelfManagedIntegrationDetailProperty | cdk.IResolvable; } /** * Contains details required to create an integration with a self-managed GitLab instance. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityintegration-creategitlabselfmanagedintegrationdetail.html */ interface CreateGitLabSelfManagedIntegrationDetailProperty { /** * The personal access token used to authenticate with the self-managed GitLab instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityintegration-creategitlabselfmanagedintegrationdetail.html#cfn-inspectorv2-codesecurityintegration-creategitlabselfmanagedintegrationdetail-accesstoken */ readonly accessToken: string; /** * The URL of the self-managed GitLab instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityintegration-creategitlabselfmanagedintegrationdetail.html#cfn-inspectorv2-codesecurityintegration-creategitlabselfmanagedintegrationdetail-instanceurl */ readonly instanceUrl: string; } /** * Contains details required to update a code security integration with a specific repository provider. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityintegration-updatedetails.html */ interface UpdateDetailsProperty { /** * Details specific to updating an integration with GitHub. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityintegration-updatedetails.html#cfn-inspectorv2-codesecurityintegration-updatedetails-github */ readonly github?: cdk.IResolvable | CfnCodeSecurityIntegration.UpdateGitHubIntegrationDetailProperty; /** * Details specific to updating an integration with a self-managed GitLab instance. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityintegration-updatedetails.html#cfn-inspectorv2-codesecurityintegration-updatedetails-gitlabselfmanaged */ readonly gitlabSelfManaged?: cdk.IResolvable | CfnCodeSecurityIntegration.UpdateGitLabSelfManagedIntegrationDetailProperty; } /** * Contains details required to update an integration with a self-managed GitLab instance. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityintegration-updategitlabselfmanagedintegrationdetail.html */ interface UpdateGitLabSelfManagedIntegrationDetailProperty { /** * The authorization code received from the self-managed GitLab instance to update the integration. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityintegration-updategitlabselfmanagedintegrationdetail.html#cfn-inspectorv2-codesecurityintegration-updategitlabselfmanagedintegrationdetail-authcode */ readonly authCode: string; } /** * Contains details required to update an integration with GitHub. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityintegration-updategithubintegrationdetail.html */ interface UpdateGitHubIntegrationDetailProperty { /** * The authorization code received from GitHub to update the integration. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityintegration-updategithubintegrationdetail.html#cfn-inspectorv2-codesecurityintegration-updategithubintegrationdetail-code */ readonly code: string; /** * The installation ID of the GitHub App associated with the integration. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityintegration-updategithubintegrationdetail.html#cfn-inspectorv2-codesecurityintegration-updategithubintegrationdetail-installationid */ readonly installationId: string; } } /** * Properties for defining a `CfnCodeSecurityIntegration` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-codesecurityintegration.html */ export interface CfnCodeSecurityIntegrationProps { /** * Contains details required to create a code security integration with a specific repository provider. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-codesecurityintegration.html#cfn-inspectorv2-codesecurityintegration-createintegrationdetails */ readonly createIntegrationDetails?: CfnCodeSecurityIntegration.CreateDetailsProperty | cdk.IResolvable; /** * The name of the code security integration. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-codesecurityintegration.html#cfn-inspectorv2-codesecurityintegration-name */ readonly name?: string; /** * The tags to apply to the code security integration. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-codesecurityintegration.html#cfn-inspectorv2-codesecurityintegration-tags */ readonly tags?: Record; /** * The type of repository provider for the integration. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-codesecurityintegration.html#cfn-inspectorv2-codesecurityintegration-type */ readonly type?: string; /** * The updated integration details specific to the repository provider type. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-codesecurityintegration.html#cfn-inspectorv2-codesecurityintegration-updateintegrationdetails */ readonly updateIntegrationDetails?: cdk.IResolvable | CfnCodeSecurityIntegration.UpdateDetailsProperty; } /** * Creates a scan configuration for code security scanning. * * @cloudformationResource AWS::InspectorV2::CodeSecurityScanConfiguration * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-codesecurityscanconfiguration.html */ export declare class CfnCodeSecurityScanConfiguration extends cdk.CfnResource implements cdk.IInspectable, ICodeSecurityScanConfigurationRef, cdk.ITaggableV2 { /** * The CloudFormation resource type name for this resource class. */ static readonly CFN_RESOURCE_TYPE_NAME: string; /** * Build a CfnCodeSecurityScanConfiguration from CloudFormation properties * * A factory method that creates a new instance of this class from an object * containing the CloudFormation properties of this resource. * Used in the @aws-cdk/cloudformation-include module. * * @internal */ static _fromCloudFormation(scope: constructs.Construct, id: string, resourceAttributes: any, options: cfn_parse.FromCloudFormationOptions): CfnCodeSecurityScanConfiguration; /** * Checks whether the given object is a CfnCodeSecurityScanConfiguration */ static isCfnCodeSecurityScanConfiguration(x: any): x is CfnCodeSecurityScanConfiguration; static arnForCodeSecurityScanConfiguration(resource: ICodeSecurityScanConfigurationRef): string; /** * Tag Manager which manages the tags for this resource */ readonly cdkTagManager: cdk.TagManager; /** * The configuration settings for the code security scan. */ private _configuration?; /** * The security level for the scan configuration. */ private _level?; /** * The name of the scan configuration. */ private _name?; /** * The scope settings that define which repositories will be scanned. */ private _scopeSettings?; /** * The tags to apply to the scan configuration. */ private _tags?; protected readonly cfnPropertyNames: Record; /** * Create a new `AWS::InspectorV2::CodeSecurityScanConfiguration`. * * @param scope Scope in which this resource is defined * @param id Construct identifier for this resource (unique in its scope) * @param props Resource properties */ constructor(scope: constructs.Construct, id: string, props?: CfnCodeSecurityScanConfigurationProps); get codeSecurityScanConfigurationRef(): CodeSecurityScanConfigurationReference; /** * The configuration settings for the code security scan. */ get configuration(): CfnCodeSecurityScanConfiguration.CodeSecurityScanConfigurationProperty | cdk.IResolvable | undefined; /** * The configuration settings for the code security scan. */ set configuration(value: CfnCodeSecurityScanConfiguration.CodeSecurityScanConfigurationProperty | cdk.IResolvable | undefined); /** * The security level for the scan configuration. */ get level(): string | undefined; /** * The security level for the scan configuration. */ set level(value: string | undefined); /** * The name of the scan configuration. */ get name(): string | undefined; /** * The name of the scan configuration. */ set name(value: string | undefined); /** * The scope settings that define which repositories will be scanned. */ get scopeSettings(): cdk.IResolvable | CfnCodeSecurityScanConfiguration.ScopeSettingsProperty | undefined; /** * The scope settings that define which repositories will be scanned. */ set scopeSettings(value: cdk.IResolvable | CfnCodeSecurityScanConfiguration.ScopeSettingsProperty | undefined); /** * The tags to apply to the scan configuration. */ get tags(): Record | undefined; /** * The tags to apply to the scan configuration. */ set tags(value: Record | undefined); /** * The Amazon Resource Name (ARN) of the scan configuration. * * @cloudformationAttribute Arn */ get attrArn(): string; protected get cfnProperties(): Record; /** * Examines the CloudFormation resource and discloses attributes * * @param inspector tree inspector to collect and process attributes */ inspect(inspector: cdk.TreeInspector): void; protected renderProperties(props: Record): Record; } export declare namespace CfnCodeSecurityScanConfiguration { /** * Contains the configuration settings for code security scans. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityscanconfiguration-codesecurityscanconfiguration.html */ interface CodeSecurityScanConfigurationProperty { /** * Configuration settings for continuous integration scans that run automatically when code changes are made. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityscanconfiguration-codesecurityscanconfiguration.html#cfn-inspectorv2-codesecurityscanconfiguration-codesecurityscanconfiguration-continuousintegrationscanconfiguration */ readonly continuousIntegrationScanConfiguration?: CfnCodeSecurityScanConfiguration.ContinuousIntegrationScanConfigurationProperty | cdk.IResolvable; /** * Configuration settings for periodic scans that run on a scheduled basis. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityscanconfiguration-codesecurityscanconfiguration.html#cfn-inspectorv2-codesecurityscanconfiguration-codesecurityscanconfiguration-periodicscanconfiguration */ readonly periodicScanConfiguration?: cdk.IResolvable | CfnCodeSecurityScanConfiguration.PeriodicScanConfigurationProperty; /** * The categories of security rules to be applied during the scan. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityscanconfiguration-codesecurityscanconfiguration.html#cfn-inspectorv2-codesecurityscanconfiguration-codesecurityscanconfiguration-rulesetcategories */ readonly ruleSetCategories: Array; } /** * Configuration settings for periodic scans that run on a scheduled basis. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityscanconfiguration-periodicscanconfiguration.html */ interface PeriodicScanConfigurationProperty { /** * The frequency at which periodic scans are performed (such as weekly or monthly). * * If you don't provide the `frequencyExpression` Amazon Inspector chooses day for the scan to run. If you provide the `frequencyExpression` , the schedule must match the specified `frequency` . * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityscanconfiguration-periodicscanconfiguration.html#cfn-inspectorv2-codesecurityscanconfiguration-periodicscanconfiguration-frequency */ readonly frequency?: string; /** * The schedule expression for periodic scans, in cron format. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityscanconfiguration-periodicscanconfiguration.html#cfn-inspectorv2-codesecurityscanconfiguration-periodicscanconfiguration-frequencyexpression */ readonly frequencyExpression?: string; } /** * Configuration settings for continuous integration scans that run automatically when code changes are made. * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityscanconfiguration-continuousintegrationscanconfiguration.html */ interface ContinuousIntegrationScanConfigurationProperty { /** * The repository events that trigger continuous integration scans, such as pull requests or commits. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityscanconfiguration-continuousintegrationscanconfiguration.html#cfn-inspectorv2-codesecurityscanconfiguration-continuousintegrationscanconfiguration-supportedevents */ readonly supportedEvents: Array; } /** * The scope settings that define which repositories will be scanned. * * If the `ScopeSetting` parameter is `ALL` the scan configuration applies to all existing and future projects imported into Amazon Inspector . * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityscanconfiguration-scopesettings.html */ interface ScopeSettingsProperty { /** * The scope of projects to be selected for scanning within the integrated repositories. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-inspectorv2-codesecurityscanconfiguration-scopesettings.html#cfn-inspectorv2-codesecurityscanconfiguration-scopesettings-projectselectionscope */ readonly projectSelectionScope?: string; } } /** * Properties for defining a `CfnCodeSecurityScanConfiguration` * * @struct * @stability external * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-codesecurityscanconfiguration.html */ export interface CfnCodeSecurityScanConfigurationProps { /** * The configuration settings for the code security scan. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-codesecurityscanconfiguration.html#cfn-inspectorv2-codesecurityscanconfiguration-configuration */ readonly configuration?: CfnCodeSecurityScanConfiguration.CodeSecurityScanConfigurationProperty | cdk.IResolvable; /** * The security level for the scan configuration. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-codesecurityscanconfiguration.html#cfn-inspectorv2-codesecurityscanconfiguration-level */ readonly level?: string; /** * The name of the scan configuration. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-codesecurityscanconfiguration.html#cfn-inspectorv2-codesecurityscanconfiguration-name */ readonly name?: string; /** * The scope settings that define which repositories will be scanned. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-codesecurityscanconfiguration.html#cfn-inspectorv2-codesecurityscanconfiguration-scopesettings */ readonly scopeSettings?: cdk.IResolvable | CfnCodeSecurityScanConfiguration.ScopeSettingsProperty; /** * The tags to apply to the scan configuration. * * @see http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-inspectorv2-codesecurityscanconfiguration.html#cfn-inspectorv2-codesecurityscanconfiguration-tags */ readonly tags?: Record; } export type { IFilterRef, FilterReference }; export type { ICisScanConfigurationRef, CisScanConfigurationReference }; export type { ICodeSecurityIntegrationRef, CodeSecurityIntegrationReference }; export type { ICodeSecurityScanConfigurationRef, CodeSecurityScanConfigurationReference };