Package-level declarations
Types
You do not have sufficient access to perform this action.
Defines the visibility level of provider resources. PRIVATE indicates restricted access, while PUBLIC indicates open access.
Represents an agent space, which is a dedicated workspace for securing a specific application. An agent space contains the configuration, resources, and settings needed for security testing.
Contains summary information about an agent space.
Contains summary information about an application.
Contains metadata about an artifact.
Contains summary information about an artifact.
Supported file extension types for artifacts.
The authentication configuration for an actor, specifying the provider type and credentials.
Type of authentication provider.
The AWS resources associated with an agent space, including VPCs, log groups, S3 buckets, secrets, Lambda functions, and IAM roles.
Contains information about a successfully created security requirement.
Input for deleting multiple code reviews.
Output for the BatchDeleteCodeReviews operation.
Input for deleting multiple pentests.
Output for the BatchDeletePentests operation.
Input for deleting multiple threat models.
Output for the BatchDeleteThreatModels operation.
Input for batch retrieving agent spaces.
Output for the BatchGetAgentSpaces operation.
Input for BatchGetCodeReviewJobs operation.
Output for the BatchGetCodeReviewJobs operation.
Input for retrieving multiple tasks associated with a code review job.
Output for the BatchGetCodeReviewJobTasks operation.
Input for retrieving multiple code reviews by their IDs.
Output for the BatchGetCodeReviews operation.
Input for BatchGetFindings operation.
Output for the BatchGetFindings operation.
Input for BatchGetPentestJobs operation.
Output for the BatchGetPentestJobs operation.
Input for retrieving multiple tasks associated with a pentest job.
Output for the BatchGetPentestJobTasks operation.
Input for retrieving multiple pentests by their IDs.
Output for the BatchGetPentests operation.
Contains information about a successfully retrieved security requirement.
Input for batch retrieving target domains.
Output for the BatchGetTargetDomains operation.
Input for BatchGetThreatModelJobs operation.
Output for the BatchGetThreatModelJobs operation.
Input for retrieving multiple tasks associated with a threat model job.
Output for the BatchGetThreatModelJobTasks operation.
Input for retrieving multiple threat models by their IDs.
Output for the BatchGetThreatModels operation.
Input for retrieving multiple threats.
Output for the BatchGetThreats operation.
Contains information about an error that occurred for a specific security requirement during a batch operation.
The configuration for creating a Bitbucket integration.
Metadata for an integrated Bitbucket repository.
A Bitbucket repository integrated as a resource.
Capabilities for an integrated Bitbucket repository.
Strategy for handling resources created during a pentest.
The Amazon CloudWatch Logs configuration for pentest job logging.
Represents a location in source code associated with a security finding.
Strategy for automated code remediation.
Represents a code remediation task that was initiated to fix a security finding.
Contains details about a code remediation task, including links to the code diff and pull request.
Code remediation task status.
Represents a code review configuration that defines the parameters for automated security-focused code analysis, including target assets and logging configuration.
Represents a code review job, which is an execution instance of a code review. A code review job progresses through preflight, static analysis, and finalizing steps.
Contains summary information about a code review job.
Represents an individual security test task within a code review job. Each task targets a specific risk type and executes independently.
Contains summary information about a code review job task.
The code review settings for an agent space, controlling which types of scanning are enabled.
Contains summary information about a code review.
Finding confidence level.
The request could not be completed due to a conflict with the current state of the resource.
Metadata for an integrated Confluence document.
A Confluence document (page) integrated as a resource.
The configuration for creating a Confluence integration.
Capabilities for an integrated Confluence space.
Category of execution context.
Input for creating a new agent space.
Output for the CreateAgentSpace operation.
Input for creating a new code review.
Output for the CreateCodeReview operation.
Request structure for adding a single member to an agent space.
Response structure for adding a single member to an agent space.
Input for creating a new pentest.
Output for the CreatePentest operation.
Contains the details for a security requirement to create within a pack.
Input for creating a new target domain.
Output for the CreateTargetDomain operation.
Input for creating a new threat model.
Output for the CreateThreatModel operation.
Input for creating a new threat.
Output for the CreateThreat operation.
A custom HTTP header to include in network traffic during penetration testing.
Input for deleting an agent space.
Output for the DeleteAgentSpace operation.
Contains information about a code review that failed to delete.
Request structure for removing a single member from an agent space.
Response structure for removing a single member from an agent space.
Contains information about a pentest that failed to delete.
Input for deleting a target domain.
Output for the DeleteTargetDomain operation.
Contains information about a threat model that failed to delete.
Source of the diff for a differential code scan.
Represents an endpoint discovered during a pentest job.
Type of DNS record.
Contains DNS verification details for a target domain, including the DNS record to create for domain ownership verification.
Represents a document that provides context for security testing.
Method used to verify domain ownership.
Contains error information for a pentest job that encountered an error.
Contains contextual information about the execution of a pentest job, such as errors, warnings, or informational messages.
Finding status.
Contains summary information about a security finding.
The input required to create a GitHub integration, including the OAuth authorization code and CSRF state.
Contains metadata about a GitHub repository that is integrated with the service.
Represents a GitHub repository resource used in an integration.
The capabilities enabled for a GitHub resource integration.
The configuration for creating a GitLab integration.
Metadata for an integrated GitLab repository.
A GitLab repository integrated as a resource.
Capabilities for an integrated GitLab repository.
The type of GitLab access token.
Contains HTTP route verification details for a target domain, including the route path and token to serve for domain ownership verification.
The IAM Identity Center configuration for an application.
The source from which to import security requirements. Currently supports document uploads.
A reference to a document in a third-party provider, such as a Confluence page linked via an integration.
Represents a code repository that is integrated with the service through a third-party provider.
Represents an integrated resource from a third-party provider. This is a union type that contains provider-specific resource information.
Represents an input item for updating integrated resources, including the resource and its capabilities.
Contains metadata about an integrated resource. This is a union type that contains provider-specific metadata.
Contains summary information about an integrated resource.
A filter for listing integrations. This is a union type where you can filter by provider or provider type.
Contains summary information about an integration.
An unexpected error occurred during the processing of your request.
The IP address type of a resource gateway.
Input for listing agent spaces.
Output for the ListAgentSpaces operation.
Input for ListCodeReviewJobsForCodeReview operation.
Output for the ListCodeReviewJobsForCodeReview operation.
Input for listing tasks associated with a code review job.
Output for the ListCodeReviewJobTasks operation.
Input for listing code reviews with optional filtering.
Output for the ListCodeReviews operation.
Input for ListDiscoveredEndpoints operation.
Output for the ListDiscoveredEndpoints operation.
Input for ListFindings operation with filtering support.
Output for the ListFindings operation.
Request structure for listing agent space members.
Response structure for listing members associated to an agent space.
Input for ListPentestJobsForPentest operation.
Output for the ListPentestJobsForPentest operation.
Input for listing tasks associated with a pentest job.
Output for the ListPentestJobTasks operation.
Input for listing pentests with optional filtering.
Output for the ListPentests operation.
Filter criteria for listing security requirement packs.
Input for ListTagsForResource operation.
Output for ListTagsForResource operation.
Input for listing target domains.
Output for the ListTargetDomains operation.
Input for ListThreatModelJobs operation.
Output for the ListThreatModelJobs operation.
Input for listing tasks associated with a threat model job.
Output for the ListThreatModelJobTasks operation.
Input for listing threat models.
Output for the ListThreatModels operation.
Input for listing threats.
Output for the ListThreats operation.
The log location for a task, specifying where task execution logs are stored.
Contains metadata about a member. This is a union type that contains member-type-specific metadata.
The configuration for a membership. This is a union type that contains member-type-specific configuration.
Contains summary information about a membership.
Type of membership.
Filter for member type in list operations.
The network traffic configuration for a pentest, including custom headers and traffic rules.
A rule that controls network traffic during penetration testing by allowing or denying traffic to specific URL patterns.
Effect of a network traffic rule.
Type of network traffic rule.
Represents a pentest job, which is an execution instance of a pentest. A pentest job progresses through preflight, static analysis, pentest, and finalizing steps.
Contains summary information about a pentest job.
Contains summary information about a pentest.
The configuration for a private connection. Specify either a service-managed or a self-managed mode.
The status of a private connection.
Summarizes a private connection.
The type of a private connection, indicating whether it is service-managed or self-managed.
The provider-specific input for creating an integration. This is a union type that contains provider-specific configuration.
The capabilities for an integrated resource from a third-party provider. This is a union type that contains provider-specific capabilities.
Type of provider integration.
Destination for publishing scan reports to an integrated document provider.
The DNS resolution mode for a resource gateway.
The specified resource was not found. Verify that the resource identifier is correct and that the resource exists in the specified agent space or account.
Type of resource.
Base class for all service related exceptions thrown by the SecurityAgent client
A document used as source material for importing security requirements.
Contains summary information about a security requirement pack.
Contains summary information about a security requirement.
The configuration for a self-managed private connection.
The configuration for a service-managed private connection.
The request exceeds a service quota. Review your current usage and request a quota increase if needed.
Represents a source code repository used for security analysis during a pentest.
Input for the StartCodeRemediation operation.
Output for the StartCodeRemediation operation.
Input for starting the execution of a code review.
Output for the StartCodeReviewJob operation.
Input for starting the execution of a pentest.
Output for the StartPentestJob operation.
Input for starting a threat model job.
Output for the StartThreatModelJob operation.
Pentest job step status.
Input for stopping the execution of a code review job.
Output for the StopCodeReviewJob operation.
Input for stopping the execution of a pentest.
Output for the StopPentestJob operation.
Input for stopping a threat model job.
Output for the StopThreatModelJob operation.
STRIDE threat classification category.
Input for TagResource operation.
Output for TagResource operation.
Represents a target domain registered for penetration testing. A target domain must be verified through DNS TXT or HTTP route verification before it can be used in pentests.
Verification status of a target domain.
Contains summary information about a target domain.
Execution status of a task.
Contains summary information about a task.
Indicates whether a threat was created or updated by a customer or an agent.
DFD element that a threat is anchored to.
Source code file supporting a threat.
Represents a threat model configuration that defines the parameters for automated threat analysis, including target assets and logging configuration.
Represents a threat model job, which is an execution instance of a threat model.
Contains summary information about a threat model job.
Represents an individual task within a threat model job.
Contains summary information about a threat model job task.
Contains summary information about a threat model.
Severity level for a threat.
Status of a threat.
Contains summary information about a threat.
The request was denied due to request throttling.
Input for UntagResource operation.
Output for UntagResource operation.
Input for updating an agent space.
Output for the UpdateAgentSpace operation.
Input for updating an existing code review.
Output for the UpdateCodeReview operation.
Input for updating an existing security finding.
Output for the UpdateFinding operation.
Input for updating an existing pentest.
Output for the UpdatePentest operation.
Contains the details for updating an existing security requirement within a pack. The name is an immutable identifier used to locate the requirement and cannot be modified.
Input for updating a target domain.
Output for the UpdateTargetDomain operation.
Input for updating an existing threat model.
Output for the UpdateThreatModel operation.
Input for updating an existing threat.
Output for the UpdateThreat operation.
The configuration for a user membership, including the role assigned to the user within the agent space.
Contains metadata about a user member, including the username and email address.
The input fails to satisfy the constraints specified by the service.
Describes one specific validation failure for an input member.
Mode of validation to perform on findings
Per-finding sandbox validation status
Contains the verification details for a target domain, including the verification method and provider-specific details.
Contains metadata for a verification script that can be used to reproduce a security finding.
Represents an environment variable required to run a verification script.
Input for verifying ownership for a registered target domain in an agent space.
Output for verifying ownership for a registered target domain in an agent space.