@cloud-copilot/iam-data
Version:
1,271 lines • 32.8 kB
JSON
{
"addartifact": {
"name": "AddArtifact",
"description": "Grants permission to add an Artifact for the given Agent Space",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"batchdeletecodereviews": {
"name": "BatchDeleteCodeReviews",
"description": "Grants permission to delete multiple code reviews in a single request",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"batchdeletepentests": {
"name": "BatchDeletePentests",
"description": "Grants permission to delete multiple penetration tests in a single request",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"batchgetagentspaces": {
"name": "BatchGetAgentSpaces",
"description": "Grants permission to retrieve multiple agent spaces in a single request",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"batchgetartifactmetadata": {
"name": "BatchGetArtifactMetadata",
"description": "Grants permission to retrieve one or more Artifact Metadata records for the given Agent Space",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"batchgetcodereviewjobtasks": {
"name": "BatchGetCodeReviewJobTasks",
"description": "Grants permission to retrieve multiple code review job tasks in a single request",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"batchgetcodereviewjobs": {
"name": "BatchGetCodeReviewJobs",
"description": "Grants permission to retrieve multiple code review jobs in a single request",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"batchgetcodereviews": {
"name": "BatchGetCodeReviews",
"description": "Grants permission to retrieve multiple code reviews in a single request",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"batchgetfindings": {
"name": "BatchGetFindings",
"description": "Grants permission to retrieve multiple security testing findings in a single request",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"batchgetpentestjobcontentmetadata": {
"name": "BatchGetPentestJobContentMetadata",
"description": "Grants permission to retrieve multiple pentest job contents metadata in a single request",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"batchgetpentestjobtasks": {
"name": "BatchGetPentestJobTasks",
"description": "Grants permission to retrieve multiple pentest job tasks in a single request",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"batchgetpentestjobs": {
"name": "BatchGetPentestJobs",
"description": "Grants permission to retrieve multiple security testing jobs in a single request",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"batchgetpentests": {
"name": "BatchGetPentests",
"description": "Grants permission to retrieve multiple penetration tests in a single request",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"batchgettargetdomains": {
"name": "BatchGetTargetDomains",
"description": "Grants permission to retrieve multiple target domains in a single request",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "TargetDomain",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createagentspace": {
"name": "CreateAgentSpace",
"description": "Grants permission to create an agent space record",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": [
"kms:Decrypt",
"kms:DescribeKey",
"kms:GenerateDataKeyWithoutPlaintext"
]
},
"createapplication": {
"name": "CreateApplication",
"description": "Grants permission to create a new application",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": [
"iam:PassRole",
"kms:DescribeKey",
"sso:CreateApplication"
]
},
"createcodereview": {
"name": "CreateCodeReview",
"description": "Grants permission to create a new code review configuration",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"createdesignreview": {
"name": "CreateDesignReview",
"description": "Grants permission to create a design review",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createintegration": {
"name": "CreateIntegration",
"description": "Grants permission to create a security testing integration",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
"createmembership": {
"name": "CreateMembership",
"description": "Grants permission to add a single member to a agent space with specified role",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createonetimeloginsession": {
"name": "CreateOneTimeLoginSession",
"description": "Grants permission to create a one time login session",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createpentest": {
"name": "CreatePentest",
"description": "Grants permission to create a new penetration test configuration",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"createsecurityrequirement": {
"name": "CreateSecurityRequirement",
"description": "Grants permission to add a customer managed Security Requirement",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "SecurityRequirementPack",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"createtargetdomain": {
"name": "CreateTargetDomain",
"description": "Grants permission to create a target domain record",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"deleteagentspace": {
"name": "DeleteAgentSpace",
"description": "Grants permission to delete an agent space record",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"deleteapplication": {
"name": "DeleteApplication",
"description": "Grants permission to delete application",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "Application",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deleteartifact": {
"name": "DeleteArtifact",
"description": "Grants permission to delete an Artifact",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deletedesignreview": {
"name": "DeleteDesignReview",
"description": "Grants permission to delete a design review",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deleteintegration": {
"name": "DeleteIntegration",
"description": "Grants permission to delete the integration of an application",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "Integration",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deletemembership": {
"name": "DeleteMembership",
"description": "Grants permission to remove a single member associated to an agent space",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deletesecurityrequirement": {
"name": "DeleteSecurityRequirement",
"description": "Grants permission to delete a customer managed Security Requirement",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "SecurityRequirementPack",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"deletetargetdomain": {
"name": "DeleteTargetDomain",
"description": "Grants permission to delete a target domain record",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "TargetDomain",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getapplication": {
"name": "GetApplication",
"description": "Grants permission to get application details by application ID",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "Application",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getartifact": {
"name": "GetArtifact",
"description": "Grants permission to retrieve an Artifact for the given Agent Space",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getdesignreview": {
"name": "GetDesignReview",
"description": "Grants permission to get the status of the associated agent space design review",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getdesignreviewartifact": {
"name": "GetDesignReviewArtifact",
"description": "Grants permission to get design review artifact for a specific document",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getdesignreviewfeedback": {
"name": "GetDesignReviewFeedback",
"description": "Grants permission to get feedback for a design review comment",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getintegration": {
"name": "GetIntegration",
"description": "Grants permission to get the integration metadata by ID",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "Integration",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"getsecurityrequirement": {
"name": "GetSecurityRequirement",
"description": "Grants permission to retrieve a Security Requirement",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "SecurityRequirementPack",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"initiateproviderregistration": {
"name": "InitiateProviderRegistration",
"description": "Grants permission to initiate the registration of Security Agent App for the given provider (eg: GitHub)",
"accessLevel": "Write",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listagentspaces": {
"name": "ListAgentSpaces",
"description": "Grants permission to list agent spaces",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listapplications": {
"name": "ListApplications",
"description": "Grants permission to list all applications in the account",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listartifacts": {
"name": "ListArtifacts",
"description": "Grants permission to list all artifacts for the given agent space",
"accessLevel": "List",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listcodereviewjobtasks": {
"name": "ListCodeReviewJobTasks",
"description": "Grants permission to list tasks associated with a code review job",
"accessLevel": "List",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"listcodereviewjobsforcodereview": {
"name": "ListCodeReviewJobsForCodeReview",
"description": "Grants permission to list code review jobs associated with a code review",
"accessLevel": "List",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"listcodereviews": {
"name": "ListCodeReviews",
"description": "Grants permission to list code reviews with optional filtering by status",
"accessLevel": "List",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"listdesignreviewcomments": {
"name": "ListDesignReviewComments",
"description": "Grants permission to list design review comments",
"accessLevel": "List",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listdesignreviews": {
"name": "ListDesignReviews",
"description": "Grants permission to list all design reviews for the given agent space",
"accessLevel": "List",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listdiscoveredendpoints": {
"name": "ListDiscoveredEndpoints",
"description": "Grants permission to list discovered endpoints associated with a pentest job with optional URI prefix filtering",
"accessLevel": "List",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"listfindings": {
"name": "ListFindings",
"description": "Grants permission to list findings with filtering and pagination support",
"accessLevel": "List",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"listintegratedresources": {
"name": "ListIntegratedResources",
"description": "Grants permission to list integrated resources for an agent space",
"accessLevel": "List",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listintegrations": {
"name": "ListIntegrations",
"description": "Grants permission to get the integrations owned by the caller's AWS account",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"listmemberships": {
"name": "ListMemberships",
"description": "Grants permission to list all members associated to an agent space with pagination support",
"accessLevel": "List",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listpentestjobtasks": {
"name": "ListPentestJobTasks",
"description": "Grants permission to list pentest job tasks associated with a pentest job",
"accessLevel": "List",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"listpentestjobsforpentest": {
"name": "ListPentestJobsForPentest",
"description": "Grants permission to list penetration test jobs associated with a penetration test",
"accessLevel": "List",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"listpentests": {
"name": "ListPentests",
"description": "Grants permission to list penetration tests with optional filtering by status",
"accessLevel": "List",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"listresourcesfromintegration": {
"name": "ListResourcesFromIntegration",
"description": "Grants permission to list resources from Integration",
"accessLevel": "List",
"resourceTypes": [
{
"name": "Integration",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listsecurityrequirements": {
"name": "ListSecurityRequirements",
"description": "Grants permission to list all Security Requirements",
"accessLevel": "List",
"resourceTypes": [
{
"name": "SecurityRequirementPack",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listtagsforresource": {
"name": "ListTagsForResource",
"description": "Grants permission to list the tags for a resource",
"accessLevel": "Read",
"resourceTypes": [
{
"name": "AgentSpace",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "Application",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "Integration",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "SecurityRequirementPack",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "TargetDomain",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"listtargetdomains": {
"name": "ListTargetDomains",
"description": "Grants permission to list target domains",
"accessLevel": "List",
"resourceTypes": [],
"conditionKeys": [],
"dependentActions": []
},
"putdesignreviewfeedback": {
"name": "PutDesignReviewFeedback",
"description": "Grants permission to submit feedback for a design review comment",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"startcoderemediation": {
"name": "StartCodeRemediation",
"description": "Grants permission to start code remediation for the findings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt",
"kms:GenerateDataKey"
]
},
"startcodereviewjob": {
"name": "StartCodeReviewJob",
"description": "Grants permission to initiate the execution of a code review",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt",
"kms:GenerateDataKey"
]
},
"startpentestjob": {
"name": "StartPentestJob",
"description": "Grants permission to initiate the execution of a penetration test",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt",
"kms:GenerateDataKey"
]
},
"stopcodereviewjob": {
"name": "StopCodeReviewJob",
"description": "Grants permission to stop the execution of a running code review",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"stoppentestjob": {
"name": "StopPentestJob",
"description": "Grants permission to stop the execution of a running penetration test",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"tagresource": {
"name": "TagResource",
"description": "Grants permission to add tags to a resource",
"accessLevel": "Tagging",
"resourceTypes": [
{
"name": "AgentSpace",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "Application",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "Integration",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "SecurityRequirementPack",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "TargetDomain",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:RequestTag/${TagKey}",
"aws:TagKeys"
],
"dependentActions": []
},
"togglemanagedsecurityrequirement": {
"name": "ToggleManagedSecurityRequirement",
"description": "Grants permission to toggle the status of a managed Security Requirement",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "SecurityRequirementPack",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"untagresource": {
"name": "UntagResource",
"description": "Grants permission to remove tags from a resource",
"accessLevel": "Tagging",
"resourceTypes": [
{
"name": "AgentSpace",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "Application",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "Integration",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "SecurityRequirementPack",
"required": false,
"conditionKeys": [],
"dependentActions": []
},
{
"name": "TargetDomain",
"required": false,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [
"aws:TagKeys"
],
"dependentActions": []
},
"updateagentspace": {
"name": "UpdateAgentSpace",
"description": "Grants permission to update an agent space record",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"updateapplication": {
"name": "UpdateApplication",
"description": "Grants permission to update application configuration",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "Application",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"iam:PassRole",
"kms:DescribeKey"
]
},
"updatecodereview": {
"name": "UpdateCodeReview",
"description": "Grants permission to update an existing code review with new configuration or settings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"updatefinding": {
"name": "UpdateFinding",
"description": "Grants permission to update an existing security finding with new details or status",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"updateintegratedresources": {
"name": "UpdateIntegratedResources",
"description": "Grants permission to update integrated resources for an agent space",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updatepentest": {
"name": "UpdatePentest",
"description": "Grants permission to update an existing penetration test with new configuration or settings",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "AgentSpace",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": [
"kms:Decrypt"
]
},
"updatesecurityrequirement": {
"name": "UpdateSecurityRequirement",
"description": "Grants permission to update a customer managed Security Requirement",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "SecurityRequirementPack",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"updatetargetdomain": {
"name": "UpdateTargetDomain",
"description": "Grants permission to update a target domain record",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "TargetDomain",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
},
"verifytargetdomain": {
"name": "VerifyTargetDomain",
"description": "Grants permission to verify ownership for a registered target domain",
"accessLevel": "Write",
"resourceTypes": [
{
"name": "TargetDomain",
"required": true,
"conditionKeys": [],
"dependentActions": []
}
],
"conditionKeys": [],
"dependentActions": []
}
}