Docs Home
castai 7.52.0 published on Friday, May 9, 2025 by castai
castai.SecurityRuntimeRule
Explore with Pulumi AI
Manages a CAST AI security runtime rule.
Create SecurityRuntimeRule Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new SecurityRuntimeRule(name: string, args: SecurityRuntimeRuleArgs, opts?: CustomResourceOptions);@overload
def SecurityRuntimeRule(resource_name: str,
args: SecurityRuntimeRuleArgs,
opts: Optional[ResourceOptions] = None)
@overload
def SecurityRuntimeRule(resource_name: str,
opts: Optional[ResourceOptions] = None,
rule_text: Optional[str] = None,
severity: Optional[str] = None,
category: Optional[str] = None,
enabled: Optional[bool] = None,
labels: Optional[Mapping[str, str]] = None,
name: Optional[str] = None,
resource_selector: Optional[str] = None,
rule_engine_type: Optional[str] = None,
security_runtime_rule_id: Optional[str] = None,
timeouts: Optional[SecurityRuntimeRuleTimeoutsArgs] = None)func NewSecurityRuntimeRule(ctx *Context, name string, args SecurityRuntimeRuleArgs, opts ...ResourceOption) (*SecurityRuntimeRule, error)public SecurityRuntimeRule(string name, SecurityRuntimeRuleArgs args, CustomResourceOptions? opts = null)
public SecurityRuntimeRule(String name, SecurityRuntimeRuleArgs args)
public SecurityRuntimeRule(String name, SecurityRuntimeRuleArgs args, CustomResourceOptions options)
type: castai:SecurityRuntimeRule
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args SecurityRuntimeRuleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args SecurityRuntimeRuleArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args SecurityRuntimeRuleArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SecurityRuntimeRuleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args SecurityRuntimeRuleArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var securityRuntimeRuleResource = new Castai.SecurityRuntimeRule("securityRuntimeRuleResource", new()
{
RuleText = "string",
Severity = "string",
Category = "string",
Enabled = false,
Labels =
{
{ "string", "string" },
},
Name = "string",
ResourceSelector = "string",
RuleEngineType = "string",
SecurityRuntimeRuleId = "string",
Timeouts = new Castai.Inputs.SecurityRuntimeRuleTimeoutsArgs
{
Create = "string",
Delete = "string",
Read = "string",
},
});
example, err := castai.NewSecurityRuntimeRule(ctx, "securityRuntimeRuleResource", &castai.SecurityRuntimeRuleArgs{
RuleText: pulumi.String("string"),
Severity: pulumi.String("string"),
Category: pulumi.String("string"),
Enabled: pulumi.Bool(false),
Labels: pulumi.StringMap{
"string": pulumi.String("string"),
},
Name: pulumi.String("string"),
ResourceSelector: pulumi.String("string"),
RuleEngineType: pulumi.String("string"),
SecurityRuntimeRuleId: pulumi.String("string"),
Timeouts: &castai.SecurityRuntimeRuleTimeoutsArgs{
Create: pulumi.String("string"),
Delete: pulumi.String("string"),
Read: pulumi.String("string"),
},
})
var securityRuntimeRuleResource = new SecurityRuntimeRule("securityRuntimeRuleResource", SecurityRuntimeRuleArgs.builder()
.ruleText("string")
.severity("string")
.category("string")
.enabled(false)
.labels(Map.of("string", "string"))
.name("string")
.resourceSelector("string")
.ruleEngineType("string")
.securityRuntimeRuleId("string")
.timeouts(SecurityRuntimeRuleTimeoutsArgs.builder()
.create("string")
.delete("string")
.read("string")
.build())
.build());
security_runtime_rule_resource = castai.SecurityRuntimeRule("securityRuntimeRuleResource",
rule_text="string",
severity="string",
category="string",
enabled=False,
labels={
"string": "string",
},
name="string",
resource_selector="string",
rule_engine_type="string",
security_runtime_rule_id="string",
timeouts={
"create": "string",
"delete": "string",
"read": "string",
})
const securityRuntimeRuleResource = new castai.SecurityRuntimeRule("securityRuntimeRuleResource", {
ruleText: "string",
severity: "string",
category: "string",
enabled: false,
labels: {
string: "string",
},
name: "string",
resourceSelector: "string",
ruleEngineType: "string",
securityRuntimeRuleId: "string",
timeouts: {
create: "string",
"delete": "string",
read: "string",
},
});
type: castai:SecurityRuntimeRule
properties:
category: string
enabled: false
labels:
string: string
name: string
resourceSelector: string
ruleEngineType: string
ruleText: string
securityRuntimeRuleId: string
severity: string
timeouts:
create: string
delete: string
read: string
SecurityRuntimeRule Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The SecurityRuntimeRule resource accepts the following input properties:
- Rule
Text string - CEL rule expression text.
- Severity string
- Severity of the rule. One of SEVERITYCRITICAL, SEVERITYHIGH, SEVERITYMEDIUM, SEVERITYLOW, SEVERITY_NONE.
- Category string
- Category of the rule.
- Enabled bool
- Whether the rule is enabled.
- Labels Dictionary<string, string>
- Key-value labels attached to the rule.
- Name string
- Resource
Selector string - Optional CEL expression for resource selection.
- Rule
Engine stringType - The engine type used to evaluate the rule. Only RULEENGINETYPE_CEL is currently supported.
- Security
Runtime stringRule Id - The ID of this resource.
- Timeouts
Security
Runtime Rule Timeouts
- Rule
Text string - CEL rule expression text.
- Severity string
- Severity of the rule. One of SEVERITYCRITICAL, SEVERITYHIGH, SEVERITYMEDIUM, SEVERITYLOW, SEVERITY_NONE.
- Category string
- Category of the rule.
- Enabled bool
- Whether the rule is enabled.
- Labels map[string]string
- Key-value labels attached to the rule.
- Name string
- Resource
Selector string - Optional CEL expression for resource selection.
- Rule
Engine stringType - The engine type used to evaluate the rule. Only RULEENGINETYPE_CEL is currently supported.
- Security
Runtime stringRule Id - The ID of this resource.
- Timeouts
Security
Runtime Rule Timeouts Args
- rule
Text String - CEL rule expression text.
- severity String
- Severity of the rule. One of SEVERITYCRITICAL, SEVERITYHIGH, SEVERITYMEDIUM, SEVERITYLOW, SEVERITY_NONE.
- category String
- Category of the rule.
- enabled Boolean
- Whether the rule is enabled.
- labels Map<String,String>
- Key-value labels attached to the rule.
- name String
- resource
Selector String - Optional CEL expression for resource selection.
- rule
Engine StringType - The engine type used to evaluate the rule. Only RULEENGINETYPE_CEL is currently supported.
- security
Runtime StringRule Id - The ID of this resource.
- timeouts
Security
Runtime Rule Timeouts
- rule
Text string - CEL rule expression text.
- severity string
- Severity of the rule. One of SEVERITYCRITICAL, SEVERITYHIGH, SEVERITYMEDIUM, SEVERITYLOW, SEVERITY_NONE.
- category string
- Category of the rule.
- enabled boolean
- Whether the rule is enabled.
- labels {[key: string]: string}
- Key-value labels attached to the rule.
- name string
- resource
Selector string - Optional CEL expression for resource selection.
- rule
Engine stringType - The engine type used to evaluate the rule. Only RULEENGINETYPE_CEL is currently supported.
- security
Runtime stringRule Id - The ID of this resource.
- timeouts
Security
Runtime Rule Timeouts
- rule_
text str - CEL rule expression text.
- severity str
- Severity of the rule. One of SEVERITYCRITICAL, SEVERITYHIGH, SEVERITYMEDIUM, SEVERITYLOW, SEVERITY_NONE.
- category str
- Category of the rule.
- enabled bool
- Whether the rule is enabled.
- labels Mapping[str, str]
- Key-value labels attached to the rule.
- name str
- resource_
selector str - Optional CEL expression for resource selection.
- rule_
engine_ strtype - The engine type used to evaluate the rule. Only RULEENGINETYPE_CEL is currently supported.
- security_
runtime_ strrule_ id - The ID of this resource.
- timeouts
Security
Runtime Rule Timeouts Args
- rule
Text String - CEL rule expression text.
- severity String
- Severity of the rule. One of SEVERITYCRITICAL, SEVERITYHIGH, SEVERITYMEDIUM, SEVERITYLOW, SEVERITY_NONE.
- category String
- Category of the rule.
- enabled Boolean
- Whether the rule is enabled.
- labels Map<String>
- Key-value labels attached to the rule.
- name String
- resource
Selector String - Optional CEL expression for resource selection.
- rule
Engine StringType - The engine type used to evaluate the rule. Only RULEENGINETYPE_CEL is currently supported.
- security
Runtime StringRule Id - The ID of this resource.
- timeouts Property Map
Outputs
All input properties are implicitly available as output properties. Additionally, the SecurityRuntimeRule resource produces the following output properties:
- Anomalies
Count double - Number of anomalies detected using this rule.
- Id string
- The provider-assigned unique ID for this managed resource.
- Is
Built boolIn - Indicates whether the rule is a built-in rule.
- Type string
- Type of the rule (internal value).
- Used
Custom List<string>Lists - Custom lists used in this rule, if any.
- Anomalies
Count float64 - Number of anomalies detected using this rule.
- Id string
- The provider-assigned unique ID for this managed resource.
- Is
Built boolIn - Indicates whether the rule is a built-in rule.
- Type string
- Type of the rule (internal value).
- Used
Custom []stringLists - Custom lists used in this rule, if any.
- anomalies
Count Double - Number of anomalies detected using this rule.
- id String
- The provider-assigned unique ID for this managed resource.
- is
Built BooleanIn - Indicates whether the rule is a built-in rule.
- type String
- Type of the rule (internal value).
- used
Custom List<String>Lists - Custom lists used in this rule, if any.
- anomalies
Count number - Number of anomalies detected using this rule.
- id string
- The provider-assigned unique ID for this managed resource.
- is
Built booleanIn - Indicates whether the rule is a built-in rule.
- type string
- Type of the rule (internal value).
- used
Custom string[]Lists - Custom lists used in this rule, if any.
- anomalies_
count float - Number of anomalies detected using this rule.
- id str
- The provider-assigned unique ID for this managed resource.
- is_
built_ boolin - Indicates whether the rule is a built-in rule.
- type str
- Type of the rule (internal value).
- used_
custom_ Sequence[str]lists - Custom lists used in this rule, if any.
- anomalies
Count Number - Number of anomalies detected using this rule.
- id String
- The provider-assigned unique ID for this managed resource.
- is
Built BooleanIn - Indicates whether the rule is a built-in rule.
- type String
- Type of the rule (internal value).
- used
Custom List<String>Lists - Custom lists used in this rule, if any.
Look up Existing SecurityRuntimeRule Resource
Get an existing SecurityRuntimeRule resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SecurityRuntimeRuleState, opts?: CustomResourceOptions): SecurityRuntimeRule@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
anomalies_count: Optional[float] = None,
category: Optional[str] = None,
enabled: Optional[bool] = None,
is_built_in: Optional[bool] = None,
labels: Optional[Mapping[str, str]] = None,
name: Optional[str] = None,
resource_selector: Optional[str] = None,
rule_engine_type: Optional[str] = None,
rule_text: Optional[str] = None,
security_runtime_rule_id: Optional[str] = None,
severity: Optional[str] = None,
timeouts: Optional[SecurityRuntimeRuleTimeoutsArgs] = None,
type: Optional[str] = None,
used_custom_lists: Optional[Sequence[str]] = None) -> SecurityRuntimeRulefunc GetSecurityRuntimeRule(ctx *Context, name string, id IDInput, state *SecurityRuntimeRuleState, opts ...ResourceOption) (*SecurityRuntimeRule, error)public static SecurityRuntimeRule Get(string name, Input<string> id, SecurityRuntimeRuleState? state, CustomResourceOptions? opts = null)public static SecurityRuntimeRule get(String name, Output<String> id, SecurityRuntimeRuleState state, CustomResourceOptions options)resources: _: type: castai:SecurityRuntimeRule get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Anomalies
Count double - Number of anomalies detected using this rule.
- Category string
- Category of the rule.
- Enabled bool
- Whether the rule is enabled.
- Is
Built boolIn - Indicates whether the rule is a built-in rule.
- Labels Dictionary<string, string>
- Key-value labels attached to the rule.
- Name string
- Resource
Selector string - Optional CEL expression for resource selection.
- Rule
Engine stringType - The engine type used to evaluate the rule. Only RULEENGINETYPE_CEL is currently supported.
- Rule
Text string - CEL rule expression text.
- Security
Runtime stringRule Id - The ID of this resource.
- Severity string
- Severity of the rule. One of SEVERITYCRITICAL, SEVERITYHIGH, SEVERITYMEDIUM, SEVERITYLOW, SEVERITY_NONE.
- Timeouts
Security
Runtime Rule Timeouts - Type string
- Type of the rule (internal value).
- Used
Custom List<string>Lists - Custom lists used in this rule, if any.
- Anomalies
Count float64 - Number of anomalies detected using this rule.
- Category string
- Category of the rule.
- Enabled bool
- Whether the rule is enabled.
- Is
Built boolIn - Indicates whether the rule is a built-in rule.
- Labels map[string]string
- Key-value labels attached to the rule.
- Name string
- Resource
Selector string - Optional CEL expression for resource selection.
- Rule
Engine stringType - The engine type used to evaluate the rule. Only RULEENGINETYPE_CEL is currently supported.
- Rule
Text string - CEL rule expression text.
- Security
Runtime stringRule Id - The ID of this resource.
- Severity string
- Severity of the rule. One of SEVERITYCRITICAL, SEVERITYHIGH, SEVERITYMEDIUM, SEVERITYLOW, SEVERITY_NONE.
- Timeouts
Security
Runtime Rule Timeouts Args - Type string
- Type of the rule (internal value).
- Used
Custom []stringLists - Custom lists used in this rule, if any.
- anomalies
Count Double - Number of anomalies detected using this rule.
- category String
- Category of the rule.
- enabled Boolean
- Whether the rule is enabled.
- is
Built BooleanIn - Indicates whether the rule is a built-in rule.
- labels Map<String,String>
- Key-value labels attached to the rule.
- name String
- resource
Selector String - Optional CEL expression for resource selection.
- rule
Engine StringType - The engine type used to evaluate the rule. Only RULEENGINETYPE_CEL is currently supported.
- rule
Text String - CEL rule expression text.
- security
Runtime StringRule Id - The ID of this resource.
- severity String
- Severity of the rule. One of SEVERITYCRITICAL, SEVERITYHIGH, SEVERITYMEDIUM, SEVERITYLOW, SEVERITY_NONE.
- timeouts
Security
Runtime Rule Timeouts - type String
- Type of the rule (internal value).
- used
Custom List<String>Lists - Custom lists used in this rule, if any.
- anomalies
Count number - Number of anomalies detected using this rule.
- category string
- Category of the rule.
- enabled boolean
- Whether the rule is enabled.
- is
Built booleanIn - Indicates whether the rule is a built-in rule.
- labels {[key: string]: string}
- Key-value labels attached to the rule.
- name string
- resource
Selector string - Optional CEL expression for resource selection.
- rule
Engine stringType - The engine type used to evaluate the rule. Only RULEENGINETYPE_CEL is currently supported.
- rule
Text string - CEL rule expression text.
- security
Runtime stringRule Id - The ID of this resource.
- severity string
- Severity of the rule. One of SEVERITYCRITICAL, SEVERITYHIGH, SEVERITYMEDIUM, SEVERITYLOW, SEVERITY_NONE.
- timeouts
Security
Runtime Rule Timeouts - type string
- Type of the rule (internal value).
- used
Custom string[]Lists - Custom lists used in this rule, if any.
- anomalies_
count float - Number of anomalies detected using this rule.
- category str
- Category of the rule.
- enabled bool
- Whether the rule is enabled.
- is_
built_ boolin - Indicates whether the rule is a built-in rule.
- labels Mapping[str, str]
- Key-value labels attached to the rule.
- name str
- resource_
selector str - Optional CEL expression for resource selection.
- rule_
engine_ strtype - The engine type used to evaluate the rule. Only RULEENGINETYPE_CEL is currently supported.
- rule_
text str - CEL rule expression text.
- security_
runtime_ strrule_ id - The ID of this resource.
- severity str
- Severity of the rule. One of SEVERITYCRITICAL, SEVERITYHIGH, SEVERITYMEDIUM, SEVERITYLOW, SEVERITY_NONE.
- timeouts
Security
Runtime Rule Timeouts Args - type str
- Type of the rule (internal value).
- used_
custom_ Sequence[str]lists - Custom lists used in this rule, if any.
- anomalies
Count Number - Number of anomalies detected using this rule.
- category String
- Category of the rule.
- enabled Boolean
- Whether the rule is enabled.
- is
Built BooleanIn - Indicates whether the rule is a built-in rule.
- labels Map<String>
- Key-value labels attached to the rule.
- name String
- resource
Selector String - Optional CEL expression for resource selection.
- rule
Engine StringType - The engine type used to evaluate the rule. Only RULEENGINETYPE_CEL is currently supported.
- rule
Text String - CEL rule expression text.
- security
Runtime StringRule Id - The ID of this resource.
- severity String
- Severity of the rule. One of SEVERITYCRITICAL, SEVERITYHIGH, SEVERITYMEDIUM, SEVERITYLOW, SEVERITY_NONE.
- timeouts Property Map
- type String
- Type of the rule (internal value).
- used
Custom List<String>Lists - Custom lists used in this rule, if any.
Supporting Types
SecurityRuntimeRuleTimeouts, SecurityRuntimeRuleTimeoutsArgs
Package Details
- Repository
- castai castai/terraform-provider-castai
- License
- Notes
- This Pulumi package is based on the
castaiTerraform Provider.