Docs Home
sysdig 1.56.1 published on Thursday, May 8, 2025 by sysdiglabs
sysdig.SecurePostureAcceptRisk
Explore with Pulumi AI
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as sysdig from "@pulumi/sysdig";
const acceptRiskGlobal = new sysdig.SecurePostureAcceptRisk("acceptRiskGlobal", {
controlName: "Network - Enabled Endpoint Private Access in Existing Clusters (EKS)",
description: "Accept risk for zone",
expiresIn: "30 Days",
reason: "Risk Transferred",
zoneName: "Entire Infrastructure",
});
const acceptRiskResource = new sysdig.SecurePostureAcceptRisk("acceptRiskResource", {
controlName: "Fargate - Untrusted Workloads",
description: "Accept risk for resource",
expiresIn: "30 Days",
filter: "name in (\"aws-int-01-cicd-aws-eks-workloads-shield\") and providerType in (\"AWS\") and kind in (\"AWS_EKS_CLUSTER\") and location in (\"us-east-1\")",
reason: "Risk Transferred",
});
const schedulerSetToLoopbackBindAddress = new sysdig.SecurePostureAcceptRisk("schedulerSetToLoopbackBindAddress", {
controlName: "Scheduler - Set to Loopback bind-address",
description: "This is custom risk acceptance for scheduler_set_to_loopback_bind_address",
endTime: "1730293523000",
expiresIn: "Custom",
reason: "Custom",
zoneName: "Entire Infrastructure",
});
import pulumi
import pulumi_sysdig as sysdig
accept_risk_global = sysdig.SecurePostureAcceptRisk("acceptRiskGlobal",
control_name="Network - Enabled Endpoint Private Access in Existing Clusters (EKS)",
description="Accept risk for zone",
expires_in="30 Days",
reason="Risk Transferred",
zone_name="Entire Infrastructure")
accept_risk_resource = sysdig.SecurePostureAcceptRisk("acceptRiskResource",
control_name="Fargate - Untrusted Workloads",
description="Accept risk for resource",
expires_in="30 Days",
filter="name in (\"aws-int-01-cicd-aws-eks-workloads-shield\") and providerType in (\"AWS\") and kind in (\"AWS_EKS_CLUSTER\") and location in (\"us-east-1\")",
reason="Risk Transferred")
scheduler_set_to_loopback_bind_address = sysdig.SecurePostureAcceptRisk("schedulerSetToLoopbackBindAddress",
control_name="Scheduler - Set to Loopback bind-address",
description="This is custom risk acceptance for scheduler_set_to_loopback_bind_address",
end_time="1730293523000",
expires_in="Custom",
reason="Custom",
zone_name="Entire Infrastructure")
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/sysdig/sysdig"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := sysdig.NewSecurePostureAcceptRisk(ctx, "acceptRiskGlobal", &sysdig.SecurePostureAcceptRiskArgs{
ControlName: pulumi.String("Network - Enabled Endpoint Private Access in Existing Clusters (EKS)"),
Description: pulumi.String("Accept risk for zone"),
ExpiresIn: pulumi.String("30 Days"),
Reason: pulumi.String("Risk Transferred"),
ZoneName: pulumi.String("Entire Infrastructure"),
})
if err != nil {
return err
}
_, err = sysdig.NewSecurePostureAcceptRisk(ctx, "acceptRiskResource", &sysdig.SecurePostureAcceptRiskArgs{
ControlName: pulumi.String("Fargate - Untrusted Workloads"),
Description: pulumi.String("Accept risk for resource"),
ExpiresIn: pulumi.String("30 Days"),
Filter: pulumi.String("name in (\"aws-int-01-cicd-aws-eks-workloads-shield\") and providerType in (\"AWS\") and kind in (\"AWS_EKS_CLUSTER\") and location in (\"us-east-1\")"),
Reason: pulumi.String("Risk Transferred"),
})
if err != nil {
return err
}
_, err = sysdig.NewSecurePostureAcceptRisk(ctx, "schedulerSetToLoopbackBindAddress", &sysdig.SecurePostureAcceptRiskArgs{
ControlName: pulumi.String("Scheduler - Set to Loopback bind-address"),
Description: pulumi.String("This is custom risk acceptance for scheduler_set_to_loopback_bind_address"),
EndTime: pulumi.String("1730293523000"),
ExpiresIn: pulumi.String("Custom"),
Reason: pulumi.String("Custom"),
ZoneName: pulumi.String("Entire Infrastructure"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Sysdig = Pulumi.Sysdig;
return await Deployment.RunAsync(() =>
{
var acceptRiskGlobal = new Sysdig.SecurePostureAcceptRisk("acceptRiskGlobal", new()
{
ControlName = "Network - Enabled Endpoint Private Access in Existing Clusters (EKS)",
Description = "Accept risk for zone",
ExpiresIn = "30 Days",
Reason = "Risk Transferred",
ZoneName = "Entire Infrastructure",
});
var acceptRiskResource = new Sysdig.SecurePostureAcceptRisk("acceptRiskResource", new()
{
ControlName = "Fargate - Untrusted Workloads",
Description = "Accept risk for resource",
ExpiresIn = "30 Days",
Filter = "name in (\"aws-int-01-cicd-aws-eks-workloads-shield\") and providerType in (\"AWS\") and kind in (\"AWS_EKS_CLUSTER\") and location in (\"us-east-1\")",
Reason = "Risk Transferred",
});
var schedulerSetToLoopbackBindAddress = new Sysdig.SecurePostureAcceptRisk("schedulerSetToLoopbackBindAddress", new()
{
ControlName = "Scheduler - Set to Loopback bind-address",
Description = "This is custom risk acceptance for scheduler_set_to_loopback_bind_address",
EndTime = "1730293523000",
ExpiresIn = "Custom",
Reason = "Custom",
ZoneName = "Entire Infrastructure",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.sysdig.SecurePostureAcceptRisk;
import com.pulumi.sysdig.SecurePostureAcceptRiskArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var acceptRiskGlobal = new SecurePostureAcceptRisk("acceptRiskGlobal", SecurePostureAcceptRiskArgs.builder()
.controlName("Network - Enabled Endpoint Private Access in Existing Clusters (EKS)")
.description("Accept risk for zone")
.expiresIn("30 Days")
.reason("Risk Transferred")
.zoneName("Entire Infrastructure")
.build());
var acceptRiskResource = new SecurePostureAcceptRisk("acceptRiskResource", SecurePostureAcceptRiskArgs.builder()
.controlName("Fargate - Untrusted Workloads")
.description("Accept risk for resource")
.expiresIn("30 Days")
.filter("name in (\"aws-int-01-cicd-aws-eks-workloads-shield\") and providerType in (\"AWS\") and kind in (\"AWS_EKS_CLUSTER\") and location in (\"us-east-1\")")
.reason("Risk Transferred")
.build());
var schedulerSetToLoopbackBindAddress = new SecurePostureAcceptRisk("schedulerSetToLoopbackBindAddress", SecurePostureAcceptRiskArgs.builder()
.controlName("Scheduler - Set to Loopback bind-address")
.description("This is custom risk acceptance for scheduler_set_to_loopback_bind_address")
.endTime("1730293523000")
.expiresIn("Custom")
.reason("Custom")
.zoneName("Entire Infrastructure")
.build());
}
}
resources:
acceptRiskGlobal:
type: sysdig:SecurePostureAcceptRisk
properties:
controlName: Network - Enabled Endpoint Private Access in Existing Clusters (EKS)
description: Accept risk for zone
expiresIn: 30 Days
reason: Risk Transferred
zoneName: Entire Infrastructure
acceptRiskResource:
type: sysdig:SecurePostureAcceptRisk
properties:
controlName: Fargate - Untrusted Workloads
description: Accept risk for resource
expiresIn: 30 Days
filter: name in ("aws-int-01-cicd-aws-eks-workloads-shield") and providerType in ("AWS") and kind in ("AWS_EKS_CLUSTER") and location in ("us-east-1")
reason: Risk Transferred
schedulerSetToLoopbackBindAddress:
type: sysdig:SecurePostureAcceptRisk
properties:
controlName: Scheduler - Set to Loopback bind-address
description: This is custom risk acceptance for scheduler_set_to_loopback_bind_address
endTime: '1730293523000'
expiresIn: Custom
reason: Custom
zoneName: Entire Infrastructure
Create SecurePostureAcceptRisk Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new SecurePostureAcceptRisk(name: string, args: SecurePostureAcceptRiskArgs, opts?: CustomResourceOptions);@overload
def SecurePostureAcceptRisk(resource_name: str,
args: SecurePostureAcceptRiskArgs,
opts: Optional[ResourceOptions] = None)
@overload
def SecurePostureAcceptRisk(resource_name: str,
opts: Optional[ResourceOptions] = None,
control_name: Optional[str] = None,
description: Optional[str] = None,
expires_in: Optional[str] = None,
reason: Optional[str] = None,
end_time: Optional[str] = None,
filter: Optional[str] = None,
timeouts: Optional[SecurePostureAcceptRiskTimeoutsArgs] = None,
zone_name: Optional[str] = None)func NewSecurePostureAcceptRisk(ctx *Context, name string, args SecurePostureAcceptRiskArgs, opts ...ResourceOption) (*SecurePostureAcceptRisk, error)public SecurePostureAcceptRisk(string name, SecurePostureAcceptRiskArgs args, CustomResourceOptions? opts = null)
public SecurePostureAcceptRisk(String name, SecurePostureAcceptRiskArgs args)
public SecurePostureAcceptRisk(String name, SecurePostureAcceptRiskArgs args, CustomResourceOptions options)
type: sysdig:SecurePostureAcceptRisk
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args SecurePostureAcceptRiskArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args SecurePostureAcceptRiskArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args SecurePostureAcceptRiskArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SecurePostureAcceptRiskArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args SecurePostureAcceptRiskArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var securePostureAcceptRiskResource = new Sysdig.SecurePostureAcceptRisk("securePostureAcceptRiskResource", new()
{
ControlName = "string",
Description = "string",
ExpiresIn = "string",
Reason = "string",
EndTime = "string",
Filter = "string",
Timeouts = new Sysdig.Inputs.SecurePostureAcceptRiskTimeoutsArgs
{
Create = "string",
},
ZoneName = "string",
});
example, err := sysdig.NewSecurePostureAcceptRisk(ctx, "securePostureAcceptRiskResource", &sysdig.SecurePostureAcceptRiskArgs{
ControlName: pulumi.String("string"),
Description: pulumi.String("string"),
ExpiresIn: pulumi.String("string"),
Reason: pulumi.String("string"),
EndTime: pulumi.String("string"),
Filter: pulumi.String("string"),
Timeouts: &sysdig.SecurePostureAcceptRiskTimeoutsArgs{
Create: pulumi.String("string"),
},
ZoneName: pulumi.String("string"),
})
var securePostureAcceptRiskResource = new SecurePostureAcceptRisk("securePostureAcceptRiskResource", SecurePostureAcceptRiskArgs.builder()
.controlName("string")
.description("string")
.expiresIn("string")
.reason("string")
.endTime("string")
.filter("string")
.timeouts(SecurePostureAcceptRiskTimeoutsArgs.builder()
.create("string")
.build())
.zoneName("string")
.build());
secure_posture_accept_risk_resource = sysdig.SecurePostureAcceptRisk("securePostureAcceptRiskResource",
control_name="string",
description="string",
expires_in="string",
reason="string",
end_time="string",
filter="string",
timeouts={
"create": "string",
},
zone_name="string")
const securePostureAcceptRiskResource = new sysdig.SecurePostureAcceptRisk("securePostureAcceptRiskResource", {
controlName: "string",
description: "string",
expiresIn: "string",
reason: "string",
endTime: "string",
filter: "string",
timeouts: {
create: "string",
},
zoneName: "string",
});
type: sysdig:SecurePostureAcceptRisk
properties:
controlName: string
description: string
endTime: string
expiresIn: string
filter: string
reason: string
timeouts:
create: string
zoneName: string
SecurePostureAcceptRisk Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The SecurePostureAcceptRisk resource accepts the following input properties:
- Control
Name string - The name of the posture control being accepted.
- Description string
- A description of the risk acceptance.
- Expires
In string - Reason string
- End
Time string - Filter string
- A filter for identifying the resources affected by the acceptance.
- Timeouts
Secure
Posture Accept Risk Timeouts - Zone
Name string - The zone associated with the risk acceptance.
- Control
Name string - The name of the posture control being accepted.
- Description string
- A description of the risk acceptance.
- Expires
In string - Reason string
- End
Time string - Filter string
- A filter for identifying the resources affected by the acceptance.
- Timeouts
Secure
Posture Accept Risk Timeouts Args - Zone
Name string - The zone associated with the risk acceptance.
- control
Name String - The name of the posture control being accepted.
- description String
- A description of the risk acceptance.
- expires
In String - reason String
- end
Time String - filter String
- A filter for identifying the resources affected by the acceptance.
- timeouts
Secure
Posture Accept Risk Timeouts - zone
Name String - The zone associated with the risk acceptance.
- control
Name string - The name of the posture control being accepted.
- description string
- A description of the risk acceptance.
- expires
In string - reason string
- end
Time string - filter string
- A filter for identifying the resources affected by the acceptance.
- timeouts
Secure
Posture Accept Risk Timeouts - zone
Name string - The zone associated with the risk acceptance.
- control_
name str - The name of the posture control being accepted.
- description str
- A description of the risk acceptance.
- expires_
in str - reason str
- end_
time str - filter str
- A filter for identifying the resources affected by the acceptance.
- timeouts
Secure
Posture Accept Risk Timeouts Args - zone_
name str - The zone associated with the risk acceptance.
- control
Name String - The name of the posture control being accepted.
- description String
- A description of the risk acceptance.
- expires
In String - reason String
- end
Time String - filter String
- A filter for identifying the resources affected by the acceptance.
- timeouts Property Map
- zone
Name String - The zone associated with the risk acceptance.
Outputs
All input properties are implicitly available as output properties. Additionally, the SecurePostureAcceptRisk resource produces the following output properties:
- Accept
Period string - Acceptance
Date double - Expires
At string - Id string
- The provider-assigned unique ID for this managed resource.
- Is
Expired bool - Is
System bool - Type string
- Username string
- Accept
Period string - Acceptance
Date float64 - Expires
At string - Id string
- The provider-assigned unique ID for this managed resource.
- Is
Expired bool - Is
System bool - Type string
- Username string
- accept
Period String - acceptance
Date Double - expires
At String - id String
- The provider-assigned unique ID for this managed resource.
- is
Expired Boolean - is
System Boolean - type String
- username String
- accept
Period string - acceptance
Date number - expires
At string - id string
- The provider-assigned unique ID for this managed resource.
- is
Expired boolean - is
System boolean - type string
- username string
- accept_
period str - acceptance_
date float - expires_
at str - id str
- The provider-assigned unique ID for this managed resource.
- is_
expired bool - is_
system bool - type str
- username str
- accept
Period String - acceptance
Date Number - expires
At String - id String
- The provider-assigned unique ID for this managed resource.
- is
Expired Boolean - is
System Boolean - type String
- username String
Look up Existing SecurePostureAcceptRisk Resource
Get an existing SecurePostureAcceptRisk resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SecurePostureAcceptRiskState, opts?: CustomResourceOptions): SecurePostureAcceptRisk@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
accept_period: Optional[str] = None,
acceptance_date: Optional[float] = None,
control_name: Optional[str] = None,
description: Optional[str] = None,
end_time: Optional[str] = None,
expires_at: Optional[str] = None,
expires_in: Optional[str] = None,
filter: Optional[str] = None,
is_expired: Optional[bool] = None,
is_system: Optional[bool] = None,
reason: Optional[str] = None,
timeouts: Optional[SecurePostureAcceptRiskTimeoutsArgs] = None,
type: Optional[str] = None,
username: Optional[str] = None,
zone_name: Optional[str] = None) -> SecurePostureAcceptRiskfunc GetSecurePostureAcceptRisk(ctx *Context, name string, id IDInput, state *SecurePostureAcceptRiskState, opts ...ResourceOption) (*SecurePostureAcceptRisk, error)public static SecurePostureAcceptRisk Get(string name, Input<string> id, SecurePostureAcceptRiskState? state, CustomResourceOptions? opts = null)public static SecurePostureAcceptRisk get(String name, Output<String> id, SecurePostureAcceptRiskState state, CustomResourceOptions options)resources: _: type: sysdig:SecurePostureAcceptRisk get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Accept
Period string - Acceptance
Date double - Control
Name string - The name of the posture control being accepted.
- Description string
- A description of the risk acceptance.
- End
Time string - Expires
At string - Expires
In string - Filter string
- A filter for identifying the resources affected by the acceptance.
- Is
Expired bool - Is
System bool - Reason string
- Timeouts
Secure
Posture Accept Risk Timeouts - Type string
- Username string
- Zone
Name string - The zone associated with the risk acceptance.
- Accept
Period string - Acceptance
Date float64 - Control
Name string - The name of the posture control being accepted.
- Description string
- A description of the risk acceptance.
- End
Time string - Expires
At string - Expires
In string - Filter string
- A filter for identifying the resources affected by the acceptance.
- Is
Expired bool - Is
System bool - Reason string
- Timeouts
Secure
Posture Accept Risk Timeouts Args - Type string
- Username string
- Zone
Name string - The zone associated with the risk acceptance.
- accept
Period String - acceptance
Date Double - control
Name String - The name of the posture control being accepted.
- description String
- A description of the risk acceptance.
- end
Time String - expires
At String - expires
In String - filter String
- A filter for identifying the resources affected by the acceptance.
- is
Expired Boolean - is
System Boolean - reason String
- timeouts
Secure
Posture Accept Risk Timeouts - type String
- username String
- zone
Name String - The zone associated with the risk acceptance.
- accept
Period string - acceptance
Date number - control
Name string - The name of the posture control being accepted.
- description string
- A description of the risk acceptance.
- end
Time string - expires
At string - expires
In string - filter string
- A filter for identifying the resources affected by the acceptance.
- is
Expired boolean - is
System boolean - reason string
- timeouts
Secure
Posture Accept Risk Timeouts - type string
- username string
- zone
Name string - The zone associated with the risk acceptance.
- accept_
period str - acceptance_
date float - control_
name str - The name of the posture control being accepted.
- description str
- A description of the risk acceptance.
- end_
time str - expires_
at str - expires_
in str - filter str
- A filter for identifying the resources affected by the acceptance.
- is_
expired bool - is_
system bool - reason str
- timeouts
Secure
Posture Accept Risk Timeouts Args - type str
- username str
- zone_
name str - The zone associated with the risk acceptance.
- accept
Period String - acceptance
Date Number - control
Name String - The name of the posture control being accepted.
- description String
- A description of the risk acceptance.
- end
Time String - expires
At String - expires
In String - filter String
- A filter for identifying the resources affected by the acceptance.
- is
Expired Boolean - is
System Boolean - reason String
- timeouts Property Map
- type String
- username String
- zone
Name String - The zone associated with the risk acceptance.
Supporting Types
SecurePostureAcceptRiskTimeouts, SecurePostureAcceptRiskTimeoutsArgs
- Create string
- Create string
- create String
- create string
- create str
- create String
Import
Posture accept risk can be imported using the ID, e.g.
$ pulumi import sysdig:index/securePostureAcceptRisk:SecurePostureAcceptRisk example c 12345
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- sysdig sysdiglabs/terraform-provider-sysdig
- License
- Notes
- This Pulumi package is based on the
sysdigTerraform Provider.