UNPKG

@pulumi/aws-native

Version:

The Pulumi AWS Cloud Control Provider enables you to build, deploy, and manage [any AWS resource that's supported by the AWS Cloud Control API](https://github.com/pulumi/pulumi-aws-native/blob/master/provider/cmd/pulumi-gen-aws-native/supported-types.txt)

pulumi.com

pulumi/pulumi-aws-native

86 lines (85 loc) 3.35 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
import * as pulumi from "@pulumi/pulumi"; import * as outputs from "../types/output"; import * as enums from "../types/enums"; /** * Resource Type definition for AWS::SSM::PatchBaseline */ export declare function getPatchBaseline(args: GetPatchBaselineArgs, opts?: pulumi.InvokeOptions): Promise<GetPatchBaselineResult>; export interface GetPatchBaselineArgs { /** * The ID of the patch baseline. */ id: string; } export interface GetPatchBaselineResult { /** * A set of rules used to include patches in the baseline. */ readonly approvalRules?: outputs.ssm.PatchBaselineRuleGroup; /** * A list of explicitly approved patches for the baseline. */ readonly approvedPatches?: string[]; /** * Defines the compliance level for approved patches. This means that if an approved patch is reported as missing, this is the severity of the compliance violation. The default value is UNSPECIFIED. */ readonly approvedPatchesComplianceLevel?: enums.ssm.PatchBaselineApprovedPatchesComplianceLevel; /** * Indicates whether the list of approved patches includes non-security updates that should be applied to the instances. The default value is 'false'. Applies to Linux instances only. */ readonly approvedPatchesEnableNonSecurity?: boolean; /** * The compliance status for vendor recommended security updates that are not approved by this patch baseline. */ readonly availableSecurityUpdatesComplianceStatus?: enums.ssm.PatchBaselineAvailableSecurityUpdatesComplianceStatus; /** * Set the baseline as default baseline. Only registering to default patch baseline is allowed. */ readonly defaultBaseline?: boolean; /** * The description of the patch baseline. */ readonly description?: string; /** * A set of global filters used to include patches in the baseline. */ readonly globalFilters?: outputs.ssm.PatchBaselinePatchFilterGroup; /** * The ID of the patch baseline. */ readonly id?: string; /** * The name of the patch baseline. */ readonly name?: string; /** * PatchGroups is used to associate instances with a specific patch baseline */ readonly patchGroups?: string[]; /** * A list of explicitly rejected patches for the baseline. */ readonly rejectedPatches?: string[]; /** * The action for Patch Manager to take on patches included in the RejectedPackages list. */ readonly rejectedPatchesAction?: enums.ssm.PatchBaselineRejectedPatchesAction; /** * Information about the patches to use to update the instances, including target operating systems and source repository. Applies to Linux instances only. */ readonly sources?: outputs.ssm.PatchBaselinePatchSource[]; /** * Optional metadata that you assign to a resource. Tags enable you to categorize a resource in different ways. */ readonly tags?: outputs.Tag[]; } /** * Resource Type definition for AWS::SSM::PatchBaseline */ export declare function getPatchBaselineOutput(args: GetPatchBaselineOutputArgs, opts?: pulumi.InvokeOutputOptions): pulumi.Output<GetPatchBaselineResult>; export interface GetPatchBaselineOutputArgs { /** * The ID of the patch baseline. */ id: pulumi.Input<string>; }