Pentest

The unique identifier of the agent space that contains the pentest.

Type: String

Required: Yes

The assets included in the pentest.

Type: Assets object

Required: Yes

The unique identifier of the pentest.

Type: String

Required: Yes

The title of the pentest.

Type: String

Required: Yes

The code remediation strategy for the pentest.

Type: String

Valid Values: AUTOMATIC | DISABLED

Required: No

The date and time the pentest was created, in UTC format.

Type: Timestamp

Required: No

The list of risk types excluded from the pentest.

Type: Array of strings

Valid Values: CROSS_SITE_SCRIPTING | DEFAULT_CREDENTIALS | INSECURE_DIRECT_OBJECT_REFERENCE | PRIVILEGE_ESCALATION | SERVER_SIDE_TEMPLATE_INJECTION | COMMAND_INJECTION | CODE_INJECTION | SQL_INJECTION | ARBITRARY_FILE_UPLOAD | INSECURE_DESERIALIZATION | LOCAL_FILE_INCLUSION | INFORMATION_DISCLOSURE | PATH_TRAVERSAL | SERVER_SIDE_REQUEST_FORGERY | JSON_WEB_TOKEN_VULNERABILITIES | XML_EXTERNAL_ENTITY | FILE_DELETION | OTHER | GRAPHQL_VULNERABILITIES | BUSINESS_LOGIC_VULNERABILITIES | CRYPTOGRAPHIC_VULNERABILITIES | DENIAL_OF_SERVICE | FILE_ACCESS | FILE_CREATION | DATABASE_MODIFICATION | DATABASE_ACCESS | OUTBOUND_SERVICE_REQUEST | UNKNOWN

Required: No

The CloudWatch Logs configuration for the pentest.

Type: CloudWatchLog object

Required: No

The network traffic configuration for the pentest.

Type: NetworkTrafficConfig object

Required: No

The IAM service role used for the pentest.

Type: String

Required: No

The date and time the pentest was last updated, in UTC format.

Type: Timestamp

Required: No

The VPC configuration for the pentest.

Type: VpcConfig object

Required: No