Package software.amazon.awscdk.services.ssm

Class CfnPatchBaseline.RuleProperty.Builder

java.lang.Object
software.amazon.awscdk.services.ssm.CfnPatchBaseline.RuleProperty.Builder
All Implemented Interfaces:
software.amazon.jsii.Builder<CfnPatchBaseline.RuleProperty>
Enclosing interface:
CfnPatchBaseline.RuleProperty
@Stability(Stable) public static final class CfnPatchBaseline.RuleProperty.Builder extends Object implements software.amazon.jsii.Builder<CfnPatchBaseline.RuleProperty>
A builder for CfnPatchBaseline.RuleProperty

  • Constructor Details

    • Builder

      public Builder()

  • Method Details

    • approveAfterDays

      @Stability(Stable) public CfnPatchBaseline.RuleProperty.Builder approveAfterDays(Number approveAfterDays)
      Sets the value of CfnPatchBaseline.RuleProperty.getApproveAfterDays()
      Parameters:
      approveAfterDays - The number of days after the release date of each patch matched by the rule that the patch is marked as approved in the patch baseline. For example, a value of 7 means that patches are approved seven days after they are released.

      Patch Manager evaluates patch release dates using Coordinated Universal Time (UTC). If the day represented by 7 is 2025-11-16 , patches released between 2025-11-16T00:00:00Z and 2025-11-16T23:59:59Z will be included in the approval.

      This parameter is marked as Required: No , but your request must include a value for either ApproveAfterDays or ApproveUntilDate .

      Not supported for Debian Server or Ubuntu Server.

      Use caution when setting this value for Windows Server patch baselines. Because patch updates that are replaced by later updates are removed, setting too broad a value for this parameter can result in crucial patches not being installed. For more information, see the Windows Server tab in the topic How security patches are selected in the AWS Systems Manager User Guide .

      Returns:
      this

    • approveUntilDate

      @Stability(Stable) public CfnPatchBaseline.RuleProperty.Builder approveUntilDate(String approveUntilDate)
      Sets the value of CfnPatchBaseline.RuleProperty.getApproveUntilDate()
      Parameters:
      approveUntilDate - The cutoff date for auto approval of released patches. Any patches released on or before this date are installed automatically.

      Enter dates in the format YYYY-MM-DD . For example, 2025-11-16 .

      Patch Manager evaluates patch release dates using Coordinated Universal Time (UTC). If you enter the date 2025-11-16 , patches released between 2025-11-16T00:00:00Z and 2025-11-16T23:59:59Z will be included in the approval.

      This parameter is marked as Required: No , but your request must include a value for either ApproveUntilDate or ApproveAfterDays .

      Not supported for Debian Server or Ubuntu Server.

      Use caution when setting this value for Windows Server patch baselines. Because patch updates that are replaced by later updates are removed, setting too broad a value for this parameter can result in crucial patches not being installed. For more information, see the Windows Server tab in the topic How security patches are selected in the AWS Systems Manager User Guide .

      Returns:
      this

    • complianceLevel

      @Stability(Stable) public CfnPatchBaseline.RuleProperty.Builder complianceLevel(String complianceLevel)
      Sets the value of CfnPatchBaseline.RuleProperty.getComplianceLevel()
      Parameters:
      complianceLevel - A compliance severity level for all approved patches in a patch baseline. Valid compliance severity levels include the following: UNSPECIFIED , CRITICAL , HIGH , MEDIUM , LOW , and INFORMATIONAL .
      Returns:
      this

    • enableNonSecurity

      @Stability(Stable) public CfnPatchBaseline.RuleProperty.Builder enableNonSecurity(Boolean enableNonSecurity)
      Sets the value of CfnPatchBaseline.RuleProperty.getEnableNonSecurity()
      Parameters:
      enableNonSecurity - For managed nodes identified by the approval rule filters, enables a patch baseline to apply non-security updates available in the specified repository. The default value is false . Applies to Linux managed nodes only.
      Returns:
      this

    • enableNonSecurity

      @Stability(Stable) public CfnPatchBaseline.RuleProperty.Builder enableNonSecurity(IResolvable enableNonSecurity)
      Sets the value of CfnPatchBaseline.RuleProperty.getEnableNonSecurity()
      Parameters:
      enableNonSecurity - For managed nodes identified by the approval rule filters, enables a patch baseline to apply non-security updates available in the specified repository. The default value is false . Applies to Linux managed nodes only.
      Returns:
      this

    • patchFilterGroup

      @Stability(Stable) public CfnPatchBaseline.RuleProperty.Builder patchFilterGroup(IResolvable patchFilterGroup)
      Sets the value of CfnPatchBaseline.RuleProperty.getPatchFilterGroup()
      Parameters:
      patchFilterGroup - The patch filter group that defines the criteria for the rule.
      Returns:
      this

    • patchFilterGroup

      @Stability(Stable) public CfnPatchBaseline.RuleProperty.Builder patchFilterGroup(CfnPatchBaseline.PatchFilterGroupProperty patchFilterGroup)
      Sets the value of CfnPatchBaseline.RuleProperty.getPatchFilterGroup()
      Parameters:
      patchFilterGroup - The patch filter group that defines the criteria for the rule.
      Returns:
      this

    • build

      @Stability(Stable) public CfnPatchBaseline.RuleProperty build()
      Builds the configured instance.
      Specified by:
      build in interface software.amazon.jsii.Builder<CfnPatchBaseline.RuleProperty>
      Returns:
      a new instance of CfnPatchBaseline.RuleProperty
      Throws:
      NullPointerException - if any required attribute was not provided