Strata Cloud Manager v0.3.1, Mar 13 25

Strata Cloud Manager v0.3.1 published on Thursday, Mar 13, 2025 by Pulumi

scm.VulnerabilityProtectionProfile

Explore with Pulumi AI

Strata Cloud Manager v0.3.1 published on Thursday, Mar 13, 2025 by Pulumi

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as scm from "@pulumi/scm";

const example = new scm.VulnerabilityProtectionProfile("example", {folder: "Shared"});

import pulumi
import pulumi_scm as scm

example = scm.VulnerabilityProtectionProfile("example", folder="Shared")

package main

import (
	"github.com/pulumi/pulumi-scm/sdk/go/scm"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := scm.NewVulnerabilityProtectionProfile(ctx, "example", &scm.VulnerabilityProtectionProfileArgs{
			Folder: pulumi.String("Shared"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Scm = Pulumi.Scm;

return await Deployment.RunAsync(() => 
{
    var example = new Scm.VulnerabilityProtectionProfile("example", new()
    {
        Folder = "Shared",
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.scm.VulnerabilityProtectionProfile;
import com.pulumi.scm.VulnerabilityProtectionProfileArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var example = new VulnerabilityProtectionProfile("example", VulnerabilityProtectionProfileArgs.builder()
            .folder("Shared")
            .build());

    }
}

resources:
  example:
    type: scm:VulnerabilityProtectionProfile
    properties:
      folder: Shared

Create VulnerabilityProtectionProfile Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new VulnerabilityProtectionProfile(name: string, args?: VulnerabilityProtectionProfileArgs, opts?: CustomResourceOptions);

@overload
def VulnerabilityProtectionProfile(resource_name: str,
                                   args: Optional[VulnerabilityProtectionProfileArgs] = None,
                                   opts: Optional[ResourceOptions] = None)

@overload
def VulnerabilityProtectionProfile(resource_name: str,
                                   opts: Optional[ResourceOptions] = None,
                                   description: Optional[str] = None,
                                   device: Optional[str] = None,
                                   folder: Optional[str] = None,
                                   name: Optional[str] = None,
                                   rules: Optional[Sequence[VulnerabilityProtectionProfileRuleArgs]] = None,
                                   snippet: Optional[str] = None,
                                   threat_exceptions: Optional[Sequence[VulnerabilityProtectionProfileThreatExceptionArgs]] = None)

func NewVulnerabilityProtectionProfile(ctx *Context, name string, args *VulnerabilityProtectionProfileArgs, opts ...ResourceOption) (*VulnerabilityProtectionProfile, error)

public VulnerabilityProtectionProfile(string name, VulnerabilityProtectionProfileArgs? args = null, CustomResourceOptions? opts = null)

public VulnerabilityProtectionProfile(String name, VulnerabilityProtectionProfileArgs args)
public VulnerabilityProtectionProfile(String name, VulnerabilityProtectionProfileArgs args, CustomResourceOptions options)

type: scm:VulnerabilityProtectionProfile
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args VulnerabilityProtectionProfileArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args VulnerabilityProtectionProfileArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args VulnerabilityProtectionProfileArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args VulnerabilityProtectionProfileArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args VulnerabilityProtectionProfileArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var vulnerabilityProtectionProfileResource = new Scm.VulnerabilityProtectionProfile("vulnerabilityProtectionProfileResource", new()
{
    Description = "string",
    Device = "string",
    Folder = "string",
    Name = "string",
    Rules = new[]
    {
        new Scm.Inputs.VulnerabilityProtectionProfileRuleArgs
        {
            Action = new Scm.Inputs.VulnerabilityProtectionProfileRuleActionArgs
            {
                Alert = false,
                Allow = false,
                BlockIp = new Scm.Inputs.VulnerabilityProtectionProfileRuleActionBlockIpArgs
                {
                    Duration = 0,
                    TrackBy = "string",
                },
                Default = false,
                Drop = false,
                ResetBoth = false,
                ResetClient = false,
                ResetServer = false,
            },
            Category = "string",
            Cves = new[]
            {
                "string",
            },
            Host = "string",
            Name = "string",
            PacketCapture = "string",
            Severities = new[]
            {
                "string",
            },
            ThreatName = "string",
            VendorIds = new[]
            {
                "string",
            },
        },
    },
    Snippet = "string",
    ThreatExceptions = new[]
    {
        new Scm.Inputs.VulnerabilityProtectionProfileThreatExceptionArgs
        {
            Action = new Scm.Inputs.VulnerabilityProtectionProfileThreatExceptionActionArgs
            {
                Alert = false,
                Allow = false,
                BlockIp = new Scm.Inputs.VulnerabilityProtectionProfileThreatExceptionActionBlockIpArgs
                {
                    Duration = 0,
                    TrackBy = "string",
                },
                Default = false,
                Drop = false,
                ResetBoth = false,
                ResetClient = false,
                ResetServer = false,
            },
            ExemptIps = new[]
            {
                new Scm.Inputs.VulnerabilityProtectionProfileThreatExceptionExemptIpArgs
                {
                    Name = "string",
                },
            },
            Name = "string",
            Notes = "string",
            PacketCapture = "string",
            TimeAttribute = new Scm.Inputs.VulnerabilityProtectionProfileThreatExceptionTimeAttributeArgs
            {
                Interval = 0,
                Threshold = 0,
                TrackBy = "string",
            },
        },
    },
});

example, err := scm.NewVulnerabilityProtectionProfile(ctx, "vulnerabilityProtectionProfileResource", &scm.VulnerabilityProtectionProfileArgs{
	Description: pulumi.String("string"),
	Device:      pulumi.String("string"),
	Folder:      pulumi.String("string"),
	Name:        pulumi.String("string"),
	Rules: scm.VulnerabilityProtectionProfileRuleArray{
		&scm.VulnerabilityProtectionProfileRuleArgs{
			Action: &scm.VulnerabilityProtectionProfileRuleActionArgs{
				Alert: pulumi.Bool(false),
				Allow: pulumi.Bool(false),
				BlockIp: &scm.VulnerabilityProtectionProfileRuleActionBlockIpArgs{
					Duration: pulumi.Int(0),
					TrackBy:  pulumi.String("string"),
				},
				Default:     pulumi.Bool(false),
				Drop:        pulumi.Bool(false),
				ResetBoth:   pulumi.Bool(false),
				ResetClient: pulumi.Bool(false),
				ResetServer: pulumi.Bool(false),
			},
			Category: pulumi.String("string"),
			Cves: pulumi.StringArray{
				pulumi.String("string"),
			},
			Host:          pulumi.String("string"),
			Name:          pulumi.String("string"),
			PacketCapture: pulumi.String("string"),
			Severities: pulumi.StringArray{
				pulumi.String("string"),
			},
			ThreatName: pulumi.String("string"),
			VendorIds: pulumi.StringArray{
				pulumi.String("string"),
			},
		},
	},
	Snippet: pulumi.String("string"),
	ThreatExceptions: scm.VulnerabilityProtectionProfileThreatExceptionArray{
		&scm.VulnerabilityProtectionProfileThreatExceptionArgs{
			Action: &scm.VulnerabilityProtectionProfileThreatExceptionActionArgs{
				Alert: pulumi.Bool(false),
				Allow: pulumi.Bool(false),
				BlockIp: &scm.VulnerabilityProtectionProfileThreatExceptionActionBlockIpArgs{
					Duration: pulumi.Int(0),
					TrackBy:  pulumi.String("string"),
				},
				Default:     pulumi.Bool(false),
				Drop:        pulumi.Bool(false),
				ResetBoth:   pulumi.Bool(false),
				ResetClient: pulumi.Bool(false),
				ResetServer: pulumi.Bool(false),
			},
			ExemptIps: scm.VulnerabilityProtectionProfileThreatExceptionExemptIpArray{
				&scm.VulnerabilityProtectionProfileThreatExceptionExemptIpArgs{
					Name: pulumi.String("string"),
				},
			},
			Name:          pulumi.String("string"),
			Notes:         pulumi.String("string"),
			PacketCapture: pulumi.String("string"),
			TimeAttribute: &scm.VulnerabilityProtectionProfileThreatExceptionTimeAttributeArgs{
				Interval:  pulumi.Int(0),
				Threshold: pulumi.Int(0),
				TrackBy:   pulumi.String("string"),
			},
		},
	},
})

var vulnerabilityProtectionProfileResource = new VulnerabilityProtectionProfile("vulnerabilityProtectionProfileResource", VulnerabilityProtectionProfileArgs.builder()
    .description("string")
    .device("string")
    .folder("string")
    .name("string")
    .rules(VulnerabilityProtectionProfileRuleArgs.builder()
        .action(VulnerabilityProtectionProfileRuleActionArgs.builder()
            .alert(false)
            .allow(false)
            .blockIp(VulnerabilityProtectionProfileRuleActionBlockIpArgs.builder()
                .duration(0)
                .trackBy("string")
                .build())
            .default_(false)
            .drop(false)
            .resetBoth(false)
            .resetClient(false)
            .resetServer(false)
            .build())
        .category("string")
        .cves("string")
        .host("string")
        .name("string")
        .packetCapture("string")
        .severities("string")
        .threatName("string")
        .vendorIds("string")
        .build())
    .snippet("string")
    .threatExceptions(VulnerabilityProtectionProfileThreatExceptionArgs.builder()
        .action(VulnerabilityProtectionProfileThreatExceptionActionArgs.builder()
            .alert(false)
            .allow(false)
            .blockIp(VulnerabilityProtectionProfileThreatExceptionActionBlockIpArgs.builder()
                .duration(0)
                .trackBy("string")
                .build())
            .default_(false)
            .drop(false)
            .resetBoth(false)
            .resetClient(false)
            .resetServer(false)
            .build())
        .exemptIps(VulnerabilityProtectionProfileThreatExceptionExemptIpArgs.builder()
            .name("string")
            .build())
        .name("string")
        .notes("string")
        .packetCapture("string")
        .timeAttribute(VulnerabilityProtectionProfileThreatExceptionTimeAttributeArgs.builder()
            .interval(0)
            .threshold(0)
            .trackBy("string")
            .build())
        .build())
    .build());

vulnerability_protection_profile_resource = scm.VulnerabilityProtectionProfile("vulnerabilityProtectionProfileResource",
    description="string",
    device="string",
    folder="string",
    name="string",
    rules=[{
        "action": {
            "alert": False,
            "allow": False,
            "block_ip": {
                "duration": 0,
                "track_by": "string",
            },
            "default": False,
            "drop": False,
            "reset_both": False,
            "reset_client": False,
            "reset_server": False,
        },
        "category": "string",
        "cves": ["string"],
        "host": "string",
        "name": "string",
        "packet_capture": "string",
        "severities": ["string"],
        "threat_name": "string",
        "vendor_ids": ["string"],
    }],
    snippet="string",
    threat_exceptions=[{
        "action": {
            "alert": False,
            "allow": False,
            "block_ip": {
                "duration": 0,
                "track_by": "string",
            },
            "default": False,
            "drop": False,
            "reset_both": False,
            "reset_client": False,
            "reset_server": False,
        },
        "exempt_ips": [{
            "name": "string",
        }],
        "name": "string",
        "notes": "string",
        "packet_capture": "string",
        "time_attribute": {
            "interval": 0,
            "threshold": 0,
            "track_by": "string",
        },
    }])

const vulnerabilityProtectionProfileResource = new scm.VulnerabilityProtectionProfile("vulnerabilityProtectionProfileResource", {
    description: "string",
    device: "string",
    folder: "string",
    name: "string",
    rules: [{
        action: {
            alert: false,
            allow: false,
            blockIp: {
                duration: 0,
                trackBy: "string",
            },
            "default": false,
            drop: false,
            resetBoth: false,
            resetClient: false,
            resetServer: false,
        },
        category: "string",
        cves: ["string"],
        host: "string",
        name: "string",
        packetCapture: "string",
        severities: ["string"],
        threatName: "string",
        vendorIds: ["string"],
    }],
    snippet: "string",
    threatExceptions: [{
        action: {
            alert: false,
            allow: false,
            blockIp: {
                duration: 0,
                trackBy: "string",
            },
            "default": false,
            drop: false,
            resetBoth: false,
            resetClient: false,
            resetServer: false,
        },
        exemptIps: [{
            name: "string",
        }],
        name: "string",
        notes: "string",
        packetCapture: "string",
        timeAttribute: {
            interval: 0,
            threshold: 0,
            trackBy: "string",
        },
    }],
});

type: scm:VulnerabilityProtectionProfile
properties:
    description: string
    device: string
    folder: string
    name: string
    rules:
        - action:
            alert: false
            allow: false
            blockIp:
                duration: 0
                trackBy: string
            default: false
            drop: false
            resetBoth: false
            resetClient: false
            resetServer: false
          category: string
          cves:
            - string
          host: string
          name: string
          packetCapture: string
          severities:
            - string
          threatName: string
          vendorIds:
            - string
    snippet: string
    threatExceptions:
        - action:
            alert: false
            allow: false
            blockIp:
                duration: 0
                trackBy: string
            default: false
            drop: false
            resetBoth: false
            resetClient: false
            resetServer: false
          exemptIps:
            - name: string
          name: string
          notes: string
          packetCapture: string
          timeAttribute:
            interval: 0
            threshold: 0
            trackBy: string

VulnerabilityProtectionProfile Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The VulnerabilityProtectionProfile resource accepts the following input properties:

Description string: The Description param.
Device string: The Device param.
Folder string: The Folder param.
Name string: The Name param. String validation regex: ^[a-zA-Z0-9._-]+$.
Rules List<VulnerabilityProtectionProfileRule>: The Rules param.
Snippet string: The Snippet param.
ThreatExceptions List<VulnerabilityProtectionProfileThreatException>: The ThreatExceptions param.

Description string: The Description param.
Device string: The Device param.
Folder string: The Folder param.
Name string: The Name param. String validation regex: ^[a-zA-Z0-9._-]+$.
Rules []VulnerabilityProtectionProfileRuleArgs: The Rules param.
Snippet string: The Snippet param.
ThreatExceptions []VulnerabilityProtectionProfileThreatExceptionArgs: The ThreatExceptions param.

description String: The Description param.
device String: The Device param.
folder String: The Folder param.
name String: The Name param. String validation regex: ^[a-zA-Z0-9._-]+$.
rules List<VulnerabilityProtectionProfileRule>: The Rules param.
snippet String: The Snippet param.
threatExceptions List<VulnerabilityProtectionProfileThreatException>: The ThreatExceptions param.

description string: The Description param.
device string: The Device param.
folder string: The Folder param.
name string: The Name param. String validation regex: ^[a-zA-Z0-9._-]+$.
rules VulnerabilityProtectionProfileRule[]: The Rules param.
snippet string: The Snippet param.
threatExceptions VulnerabilityProtectionProfileThreatException[]: The ThreatExceptions param.

description str: The Description param.
device str: The Device param.
folder str: The Folder param.
name str: The Name param. String validation regex: ^[a-zA-Z0-9._-]+$.
rules Sequence[VulnerabilityProtectionProfileRuleArgs]: The Rules param.
snippet str: The Snippet param.
threat_exceptions Sequence[VulnerabilityProtectionProfileThreatExceptionArgs]: The ThreatExceptions param.

description String: The Description param.
device String: The Device param.
folder String: The Folder param.
name String: The Name param. String validation regex: ^[a-zA-Z0-9._-]+$.
rules List<Property Map>: The Rules param.
snippet String: The Snippet param.
threatExceptions List<Property Map>: The ThreatExceptions param.

Outputs

All input properties are implicitly available as output properties. Additionally, the VulnerabilityProtectionProfile resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.
Tfid string

Id string: The provider-assigned unique ID for this managed resource.
Tfid string

id String: The provider-assigned unique ID for this managed resource.
tfid String

id string: The provider-assigned unique ID for this managed resource.
tfid string

id str: The provider-assigned unique ID for this managed resource.
tfid str

id String: The provider-assigned unique ID for this managed resource.
tfid String

Look up Existing VulnerabilityProtectionProfile Resource

Get an existing VulnerabilityProtectionProfile resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: VulnerabilityProtectionProfileState, opts?: CustomResourceOptions): VulnerabilityProtectionProfile

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        description: Optional[str] = None,
        device: Optional[str] = None,
        folder: Optional[str] = None,
        name: Optional[str] = None,
        rules: Optional[Sequence[VulnerabilityProtectionProfileRuleArgs]] = None,
        snippet: Optional[str] = None,
        tfid: Optional[str] = None,
        threat_exceptions: Optional[Sequence[VulnerabilityProtectionProfileThreatExceptionArgs]] = None) -> VulnerabilityProtectionProfile

func GetVulnerabilityProtectionProfile(ctx *Context, name string, id IDInput, state *VulnerabilityProtectionProfileState, opts ...ResourceOption) (*VulnerabilityProtectionProfile, error)

public static VulnerabilityProtectionProfile Get(string name, Input<string> id, VulnerabilityProtectionProfileState? state, CustomResourceOptions? opts = null)

public static VulnerabilityProtectionProfile get(String name, Output<String> id, VulnerabilityProtectionProfileState state, CustomResourceOptions options)

resources:  _:    type: scm:VulnerabilityProtectionProfile    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Description string: The Description param.
Device string: The Device param.
Folder string: The Folder param.
Name string: The Name param. String validation regex: ^[a-zA-Z0-9._-]+$.
Rules List<VulnerabilityProtectionProfileRule>: The Rules param.
Snippet string: The Snippet param.
Tfid string
ThreatExceptions List<VulnerabilityProtectionProfileThreatException>: The ThreatExceptions param.

Description string: The Description param.
Device string: The Device param.
Folder string: The Folder param.
Name string: The Name param. String validation regex: ^[a-zA-Z0-9._-]+$.
Rules []VulnerabilityProtectionProfileRuleArgs: The Rules param.
Snippet string: The Snippet param.
Tfid string
ThreatExceptions []VulnerabilityProtectionProfileThreatExceptionArgs: The ThreatExceptions param.

description String: The Description param.
device String: The Device param.
folder String: The Folder param.
name String: The Name param. String validation regex: ^[a-zA-Z0-9._-]+$.
rules List<VulnerabilityProtectionProfileRule>: The Rules param.
snippet String: The Snippet param.
tfid String
threatExceptions List<VulnerabilityProtectionProfileThreatException>: The ThreatExceptions param.

description string: The Description param.
device string: The Device param.
folder string: The Folder param.
name string: The Name param. String validation regex: ^[a-zA-Z0-9._-]+$.
rules VulnerabilityProtectionProfileRule[]: The Rules param.
snippet string: The Snippet param.
tfid string
threatExceptions VulnerabilityProtectionProfileThreatException[]: The ThreatExceptions param.

description str: The Description param.
device str: The Device param.
folder str: The Folder param.
name str: The Name param. String validation regex: ^[a-zA-Z0-9._-]+$.
rules Sequence[VulnerabilityProtectionProfileRuleArgs]: The Rules param.
snippet str: The Snippet param.
tfid str
threat_exceptions Sequence[VulnerabilityProtectionProfileThreatExceptionArgs]: The ThreatExceptions param.

description String: The Description param.
device String: The Device param.
folder String: The Folder param.
name String: The Name param. String validation regex: ^[a-zA-Z0-9._-]+$.
rules List<Property Map>: The Rules param.
snippet String: The Snippet param.
tfid String
threatExceptions List<Property Map>: The ThreatExceptions param.

Supporting Types

VulnerabilityProtectionProfileRule, VulnerabilityProtectionProfileRuleArgs

Action VulnerabilityProtectionProfileRuleAction: The Action param.
Category string: The Category param. String must be one of these: "any", "brute-force", "code-execution", "code-obfuscation", "command-execution", "dos", "exploit-kit", "info-leak", "insecure-credentials", "overflow", "phishing", "protocol-anomaly", "scan", "sql-injection".
Cves List<string>: The Cves param.
Host string: The Host param.
Name string: The Name param.
PacketCapture string: The PacketCapture param. String must be one of these: "disable", "single-packet", "extended-capture".
Severities List<string>: The Severities param.
ThreatName string: The ThreatName param.
VendorIds List<string>: The VendorIds param.

Action VulnerabilityProtectionProfileRuleAction: The Action param.
Category string: The Category param. String must be one of these: "any", "brute-force", "code-execution", "code-obfuscation", "command-execution", "dos", "exploit-kit", "info-leak", "insecure-credentials", "overflow", "phishing", "protocol-anomaly", "scan", "sql-injection".
Cves []string: The Cves param.
Host string: The Host param.
Name string: The Name param.
PacketCapture string: The PacketCapture param. String must be one of these: "disable", "single-packet", "extended-capture".
Severities []string: The Severities param.
ThreatName string: The ThreatName param.
VendorIds []string: The VendorIds param.

action VulnerabilityProtectionProfileRuleAction: The Action param.
category String: The Category param. String must be one of these: "any", "brute-force", "code-execution", "code-obfuscation", "command-execution", "dos", "exploit-kit", "info-leak", "insecure-credentials", "overflow", "phishing", "protocol-anomaly", "scan", "sql-injection".
cves List<String>: The Cves param.
host String: The Host param.
name String: The Name param.
packetCapture String: The PacketCapture param. String must be one of these: "disable", "single-packet", "extended-capture".
severities List<String>: The Severities param.
threatName String: The ThreatName param.
vendorIds List<String>: The VendorIds param.

action VulnerabilityProtectionProfileRuleAction: The Action param.
category string: The Category param. String must be one of these: "any", "brute-force", "code-execution", "code-obfuscation", "command-execution", "dos", "exploit-kit", "info-leak", "insecure-credentials", "overflow", "phishing", "protocol-anomaly", "scan", "sql-injection".
cves string[]: The Cves param.
host string: The Host param.
name string: The Name param.
packetCapture string: The PacketCapture param. String must be one of these: "disable", "single-packet", "extended-capture".
severities string[]: The Severities param.
threatName string: The ThreatName param.
vendorIds string[]: The VendorIds param.

action VulnerabilityProtectionProfileRuleAction: The Action param.
category str: The Category param. String must be one of these: "any", "brute-force", "code-execution", "code-obfuscation", "command-execution", "dos", "exploit-kit", "info-leak", "insecure-credentials", "overflow", "phishing", "protocol-anomaly", "scan", "sql-injection".
cves Sequence[str]: The Cves param.
host str: The Host param.
name str: The Name param.
packet_capture str: The PacketCapture param. String must be one of these: "disable", "single-packet", "extended-capture".
severities Sequence[str]: The Severities param.
threat_name str: The ThreatName param.
vendor_ids Sequence[str]: The VendorIds param.

action Property Map: The Action param.
category String: The Category param. String must be one of these: "any", "brute-force", "code-execution", "code-obfuscation", "command-execution", "dos", "exploit-kit", "info-leak", "insecure-credentials", "overflow", "phishing", "protocol-anomaly", "scan", "sql-injection".
cves List<String>: The Cves param.
host String: The Host param.
name String: The Name param.
packetCapture String: The PacketCapture param. String must be one of these: "disable", "single-packet", "extended-capture".
severities List<String>: The Severities param.
threatName String: The ThreatName param.
vendorIds List<String>: The VendorIds param.

VulnerabilityProtectionProfileRuleAction, VulnerabilityProtectionProfileRuleActionArgs

Alert bool: The Alert param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
Allow bool: The Allow param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
BlockIp VulnerabilityProtectionProfileRuleActionBlockIp: The BlockIp param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
Default bool: The Default param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
Drop bool: The Drop param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
ResetBoth bool: The ResetBoth param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
ResetClient bool: The ResetClient param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
ResetServer bool: The ResetServer param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server

Alert bool: The Alert param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
Allow bool: The Allow param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
BlockIp VulnerabilityProtectionProfileRuleActionBlockIp: The BlockIp param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
Default bool: The Default param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
Drop bool: The Drop param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
ResetBoth bool: The ResetBoth param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
ResetClient bool: The ResetClient param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
ResetServer bool: The ResetServer param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server

alert Boolean: The Alert param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
allow Boolean: The Allow param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
blockIp VulnerabilityProtectionProfileRuleActionBlockIp: The BlockIp param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
default_ Boolean: The Default param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
drop Boolean: The Drop param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetBoth Boolean: The ResetBoth param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetClient Boolean: The ResetClient param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetServer Boolean: The ResetServer param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server

alert boolean: The Alert param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
allow boolean: The Allow param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
blockIp VulnerabilityProtectionProfileRuleActionBlockIp: The BlockIp param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
default boolean: The Default param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
drop boolean: The Drop param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetBoth boolean: The ResetBoth param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetClient boolean: The ResetClient param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetServer boolean: The ResetServer param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server

alert bool: The Alert param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
allow bool: The Allow param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
block_ip VulnerabilityProtectionProfileRuleActionBlockIp: The BlockIp param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
default bool: The Default param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
drop bool: The Drop param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
reset_both bool: The ResetBoth param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
reset_client bool: The ResetClient param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
reset_server bool: The ResetServer param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server

alert Boolean: The Alert param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
allow Boolean: The Allow param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
blockIp Property Map: The BlockIp param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
default Boolean: The Default param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
drop Boolean: The Drop param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetBoth Boolean: The ResetBoth param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetClient Boolean: The ResetClient param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetServer Boolean: The ResetServer param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server

VulnerabilityProtectionProfileRuleActionBlockIp, VulnerabilityProtectionProfileRuleActionBlockIpArgs

Duration int: The Duration param. Value must be between 1 and 3600.
TrackBy string: The TrackBy param. String must be one of these: "source-and-destination", "source".

Duration int: The Duration param. Value must be between 1 and 3600.
TrackBy string: The TrackBy param. String must be one of these: "source-and-destination", "source".

duration Integer: The Duration param. Value must be between 1 and 3600.
trackBy String: The TrackBy param. String must be one of these: "source-and-destination", "source".

duration number: The Duration param. Value must be between 1 and 3600.
trackBy string: The TrackBy param. String must be one of these: "source-and-destination", "source".

duration int: The Duration param. Value must be between 1 and 3600.
track_by str: The TrackBy param. String must be one of these: "source-and-destination", "source".

duration Number: The Duration param. Value must be between 1 and 3600.
trackBy String: The TrackBy param. String must be one of these: "source-and-destination", "source".

VulnerabilityProtectionProfileThreatException, VulnerabilityProtectionProfileThreatExceptionArgs

Action VulnerabilityProtectionProfileThreatExceptionAction: The Action param.
ExemptIps List<VulnerabilityProtectionProfileThreatExceptionExemptIp>: The ExemptIps param.
Name string: The Name param.
Notes string: The Notes param.
PacketCapture string: The PacketCapture param. String must be one of these: "disable", "single-packet", "extended-capture".
TimeAttribute VulnerabilityProtectionProfileThreatExceptionTimeAttribute: The TimeAttribute param.

Action VulnerabilityProtectionProfileThreatExceptionAction: The Action param.
ExemptIps []VulnerabilityProtectionProfileThreatExceptionExemptIp: The ExemptIps param.
Name string: The Name param.
Notes string: The Notes param.
PacketCapture string: The PacketCapture param. String must be one of these: "disable", "single-packet", "extended-capture".
TimeAttribute VulnerabilityProtectionProfileThreatExceptionTimeAttribute: The TimeAttribute param.

action VulnerabilityProtectionProfileThreatExceptionAction: The Action param.
exemptIps List<VulnerabilityProtectionProfileThreatExceptionExemptIp>: The ExemptIps param.
name String: The Name param.
notes String: The Notes param.
packetCapture String: The PacketCapture param. String must be one of these: "disable", "single-packet", "extended-capture".
timeAttribute VulnerabilityProtectionProfileThreatExceptionTimeAttribute: The TimeAttribute param.

action VulnerabilityProtectionProfileThreatExceptionAction: The Action param.
exemptIps VulnerabilityProtectionProfileThreatExceptionExemptIp[]: The ExemptIps param.
name string: The Name param.
notes string: The Notes param.
packetCapture string: The PacketCapture param. String must be one of these: "disable", "single-packet", "extended-capture".
timeAttribute VulnerabilityProtectionProfileThreatExceptionTimeAttribute: The TimeAttribute param.

action VulnerabilityProtectionProfileThreatExceptionAction: The Action param.
exempt_ips Sequence[VulnerabilityProtectionProfileThreatExceptionExemptIp]: The ExemptIps param.
name str: The Name param.
notes str: The Notes param.
packet_capture str: The PacketCapture param. String must be one of these: "disable", "single-packet", "extended-capture".
time_attribute VulnerabilityProtectionProfileThreatExceptionTimeAttribute: The TimeAttribute param.

action Property Map: The Action param.
exemptIps List<Property Map>: The ExemptIps param.
name String: The Name param.
notes String: The Notes param.
packetCapture String: The PacketCapture param. String must be one of these: "disable", "single-packet", "extended-capture".
timeAttribute Property Map: The TimeAttribute param.

VulnerabilityProtectionProfileThreatExceptionAction, VulnerabilityProtectionProfileThreatExceptionActionArgs

Alert bool: The Alert param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
Allow bool: The Allow param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
BlockIp VulnerabilityProtectionProfileThreatExceptionActionBlockIp: The BlockIp param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
Default bool: The Default param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
Drop bool: The Drop param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
ResetBoth bool: The ResetBoth param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
ResetClient bool: The ResetClient param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
ResetServer bool: The ResetServer param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server

Alert bool: The Alert param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
Allow bool: The Allow param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
BlockIp VulnerabilityProtectionProfileThreatExceptionActionBlockIp: The BlockIp param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
Default bool: The Default param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
Drop bool: The Drop param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
ResetBoth bool: The ResetBoth param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
ResetClient bool: The ResetClient param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
ResetServer bool: The ResetServer param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server

alert Boolean: The Alert param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
allow Boolean: The Allow param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
blockIp VulnerabilityProtectionProfileThreatExceptionActionBlockIp: The BlockIp param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
default_ Boolean: The Default param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
drop Boolean: The Drop param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetBoth Boolean: The ResetBoth param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetClient Boolean: The ResetClient param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetServer Boolean: The ResetServer param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server

alert boolean: The Alert param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
allow boolean: The Allow param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
blockIp VulnerabilityProtectionProfileThreatExceptionActionBlockIp: The BlockIp param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
default boolean: The Default param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
drop boolean: The Drop param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetBoth boolean: The ResetBoth param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetClient boolean: The ResetClient param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetServer boolean: The ResetServer param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server

alert bool: The Alert param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
allow bool: The Allow param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
block_ip VulnerabilityProtectionProfileThreatExceptionActionBlockIp: The BlockIp param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
default bool: The Default param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
drop bool: The Drop param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
reset_both bool: The ResetBoth param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
reset_client bool: The ResetClient param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
reset_server bool: The ResetServer param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server

alert Boolean: The Alert param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
allow Boolean: The Allow param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
blockIp Property Map: The BlockIp param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
default Boolean: The Default param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
drop Boolean: The Drop param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetBoth Boolean: The ResetBoth param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetClient Boolean: The ResetClient param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server
resetServer Boolean: The ResetServer param. Ensure that only one of the following is specified: alert, allow, block_ip, default, drop, reset_both, reset_client, reset_server

VulnerabilityProtectionProfileThreatExceptionActionBlockIp, VulnerabilityProtectionProfileThreatExceptionActionBlockIpArgs

Duration int: The Duration param. Value must be between 1 and 3600.
TrackBy string: The TrackBy param. String must be one of these: "source-and-destination", "source".

Duration int: The Duration param. Value must be between 1 and 3600.
TrackBy string: The TrackBy param. String must be one of these: "source-and-destination", "source".

duration Integer: The Duration param. Value must be between 1 and 3600.
trackBy String: The TrackBy param. String must be one of these: "source-and-destination", "source".

duration number: The Duration param. Value must be between 1 and 3600.
trackBy string: The TrackBy param. String must be one of these: "source-and-destination", "source".

duration int: The Duration param. Value must be between 1 and 3600.
track_by str: The TrackBy param. String must be one of these: "source-and-destination", "source".

duration Number: The Duration param. Value must be between 1 and 3600.
trackBy String: The TrackBy param. String must be one of these: "source-and-destination", "source".

VulnerabilityProtectionProfileThreatExceptionExemptIp, VulnerabilityProtectionProfileThreatExceptionExemptIpArgs

Name string: The Name param.

Name string: The Name param.

name String: The Name param.

name string: The Name param.

name str: The Name param.

name String: The Name param.

VulnerabilityProtectionProfileThreatExceptionTimeAttribute, VulnerabilityProtectionProfileThreatExceptionTimeAttributeArgs

Interval int: The Interval param. Value must be between 1 and 3600.
Threshold int: The Threshold param. Value must be between 1 and 65535.
TrackBy string: The TrackBy param. String must be one of these: "source", "destination", "source-and-destination".

Interval int: The Interval param. Value must be between 1 and 3600.
Threshold int: The Threshold param. Value must be between 1 and 65535.
TrackBy string: The TrackBy param. String must be one of these: "source", "destination", "source-and-destination".

interval Integer: The Interval param. Value must be between 1 and 3600.
threshold Integer: The Threshold param. Value must be between 1 and 65535.
trackBy String: The TrackBy param. String must be one of these: "source", "destination", "source-and-destination".

interval number: The Interval param. Value must be between 1 and 3600.
threshold number: The Threshold param. Value must be between 1 and 65535.
trackBy string: The TrackBy param. String must be one of these: "source", "destination", "source-and-destination".

interval int: The Interval param. Value must be between 1 and 3600.
threshold int: The Threshold param. Value must be between 1 and 65535.
track_by str: The TrackBy param. String must be one of these: "source", "destination", "source-and-destination".

interval Number: The Interval param. Value must be between 1 and 3600.
threshold Number: The Threshold param. Value must be between 1 and 65535.
trackBy String: The TrackBy param. String must be one of these: "source", "destination", "source-and-destination".

Package Details

Repository: scm pulumi/pulumi-scm
License: Apache-2.0
Notes: This Pulumi package is based on the scm Terraform Provider.

Strata Cloud Manager v0.3.1 published on Thursday, Mar 13, 2025 by Pulumi

pulumi/pulumi-scm

scm.VulnerabilityProtectionProfile

On this page

On this page

Example Usage

Create VulnerabilityProtectionProfile Resource

Constructor syntax

Parameters

Constructor example

VulnerabilityProtectionProfile Resource Properties

Inputs

Outputs

Look up Existing VulnerabilityProtectionProfile Resource

Supporting Types

VulnerabilityProtectionProfileRule, VulnerabilityProtectionProfileRuleArgs

VulnerabilityProtectionProfileRuleAction, VulnerabilityProtectionProfileRuleActionArgs

VulnerabilityProtectionProfileRuleActionBlockIp, VulnerabilityProtectionProfileRuleActionBlockIpArgs

VulnerabilityProtectionProfileThreatException, VulnerabilityProtectionProfileThreatExceptionArgs

VulnerabilityProtectionProfileThreatExceptionAction, VulnerabilityProtectionProfileThreatExceptionActionArgs

VulnerabilityProtectionProfileThreatExceptionActionBlockIp, VulnerabilityProtectionProfileThreatExceptionActionBlockIpArgs

VulnerabilityProtectionProfileThreatExceptionExemptIp, VulnerabilityProtectionProfileThreatExceptionExemptIpArgs

VulnerabilityProtectionProfileThreatExceptionTimeAttribute, VulnerabilityProtectionProfileThreatExceptionTimeAttributeArgs

Package Details

On this page

On this page