Package-level declarations

You do not have sufficient access to perform this action.

Defines the visibility level of provider resources. PRIVATE indicates restricted access, while PUBLIC indicates open access.

Represents an actor used during penetration testing. An actor defines a user or entity that interacts with the target application, including authentication credentials and target URIs.

Represents an agent space, which is a dedicated workspace for securing a specific application. An agent space contains the configuration, resources, and settings needed for security testing.

Contains summary information about an agent space.

Contains summary information about an application.

Represents an artifact that provides context for security testing, such as documentation, diagrams, or configuration files.

Contains metadata about an artifact.

Contains summary information about an artifact.

Supported file extension types for artifacts.

The collection of assets used in a pentest configuration, including endpoints, actors, documents, source code repositories, and integrated repositories.

The authentication configuration for an actor, specifying the provider type and credentials.

Type of authentication provider.

The AWS resources associated with an agent space, including VPCs, log groups, S3 buckets, secrets, Lambda functions, and IAM roles.

Input for deleting multiple code reviews.

Output for the BatchDeleteCodeReviews operation.

Input for deleting multiple pentests.

Output for the BatchDeletePentests operation.

Input for batch retrieving agent spaces.

Output for the BatchGetAgentSpaces operation.

Input for BatchGetCodeReviewJobs operation.

Output for the BatchGetCodeReviewJobs operation.

Input for retrieving multiple tasks associated with a code review job.

Output for the BatchGetCodeReviewJobTasks operation.

Input for retrieving multiple code reviews by their IDs.

Output for the BatchGetCodeReviews operation.

Input for BatchGetFindings operation.

Output for the BatchGetFindings operation.

Input for BatchGetPentestJobs operation.

Output for the BatchGetPentestJobs operation.

Input for retrieving multiple tasks associated with a pentest job.

Output for the BatchGetPentestJobTasks operation.

Input for retrieving multiple pentests by their IDs.

Output for the BatchGetPentests operation.

Input for batch retrieving target domains.

Output for the BatchGetTargetDomains operation.

Represents a category assigned to a security testing task.

The Amazon CloudWatch Logs configuration for pentest job logging.

Represents a location in source code associated with a security finding.

Strategy for automated code remediation.

Represents a code remediation task that was initiated to fix a security finding.

Contains details about a code remediation task, including links to the code diff and pull request.

Code remediation task status.

Represents a code review configuration that defines the parameters for automated security-focused code analysis, including target assets and logging configuration.

Represents a code review job, which is an execution instance of a code review. A code review job progresses through preflight, static analysis, and finalizing steps.

Contains summary information about a code review job.

Represents an individual security test task within a code review job. Each task targets a specific risk type and executes independently.

Contains summary information about a code review job task.

The code review settings for an agent space, controlling which types of scanning are enabled.

Contains summary information about a code review.

Finding confidence level.

The request could not be completed due to a conflict with the current state of the resource.

Category of execution context.

Input for creating a new agent space.

Output for the CreateAgentSpace operation.

Input for creating a new code review.

Output for the CreateCodeReview operation.

Request structure for adding a single member to an agent space.

Response structure for adding a single member to an agent space.

Input for creating a new pentest.

Output for the CreatePentest operation.

Input for creating a new target domain.

Output for the CreateTargetDomain operation.

A custom HTTP header to include in network traffic during penetration testing.

Input for deleting an agent space.

Output for the DeleteAgentSpace operation.

Contains information about a code review that failed to delete.

Request structure for removing a single member from an agent space.

Response structure for removing a single member from an agent space.

Contains information about a pentest that failed to delete.

Input for deleting a target domain.

Output for the DeleteTargetDomain operation.

Represents an endpoint discovered during a pentest job.

Type of DNS record.

Contains DNS verification details for a target domain, including the DNS record to create for domain ownership verification.

Represents a document that provides context for security testing.

Method used to verify domain ownership.

Represents a target endpoint for penetration testing.

Error code for pentest job failure.

Contains error information for a pentest job that encountered an error.

Contains contextual information about the execution of a pentest job, such as errors, warnings, or informational messages.

Represents a security finding discovered during a pentest job. A finding contains details about a vulnerability, including its risk level, confidence, and remediation status.

Finding status.

Contains summary information about a security finding.

The input required to create a GitHub integration, including the OAuth authorization code and CSRF state.

Contains metadata about a GitHub repository that is integrated with the service.

Represents a GitHub repository resource used in an integration.

The capabilities enabled for a GitHub resource integration.

Contains HTTP route verification details for a target domain, including the route path and token to serve for domain ownership verification.

The IAM Identity Center configuration for an application.

Represents a code repository that is integrated with the service through a third-party provider.

Represents an integrated resource from a third-party provider. This is a union type that contains provider-specific resource information.

Represents an input item for updating integrated resources, including the resource and its capabilities.

Contains metadata about an integrated resource. This is a union type that contains provider-specific metadata.

Contains summary information about an integrated resource.

A filter for listing integrations. This is a union type where you can filter by provider or provider type.

Contains summary information about an integration.

An unexpected error occurred during the processing of your request.

Status of a pentest job.

Input for listing agent spaces.

Output for the ListAgentSpaces operation.

Input for ListCodeReviewJobsForCodeReview operation.

Output for the ListCodeReviewJobsForCodeReview operation.

Input for listing tasks associated with a code review job.

Output for the ListCodeReviewJobTasks operation.

Input for listing code reviews with optional filtering.

Output for the ListCodeReviews operation.

Input for ListDiscoveredEndpoints operation.

Output for the ListDiscoveredEndpoints operation.

Input for ListFindings operation with filtering support.

Output for the ListFindings operation.

Request structure for listing agent space members.

Response structure for listing members associated to an agent space.

Input for ListPentestJobsForPentest operation.

Output for the ListPentestJobsForPentest operation.

Input for listing tasks associated with a pentest job.

Output for the ListPentestJobTasks operation.

Input for listing pentests with optional filtering.

Output for the ListPentests operation.

Input for ListTagsForResource operation.

Output for ListTagsForResource operation.

Input for listing target domains.

Output for the ListTargetDomains operation.

The log location for a task, specifying where task execution logs are stored.

Type of log storage.

Contains metadata about a member. This is a union type that contains member-type-specific metadata.

The configuration for a membership. This is a union type that contains member-type-specific configuration.

Contains summary information about a membership.

Type of membership.

Filter for member type in list operations.

The network traffic configuration for a pentest, including custom headers and traffic rules.

A rule that controls network traffic during penetration testing by allowing or denying traffic to specific URL patterns.

Effect of a network traffic rule.

Type of network traffic rule.

Represents a pentest configuration that defines the parameters for security testing, including target assets, risk type exclusions, and infrastructure settings.

Represents a pentest job, which is an execution instance of a pentest. A pentest job progresses through preflight, static analysis, pentest, and finalizing steps.

Contains summary information about a pentest job.

Contains summary information about a pentest.

Third-party provider type.

The provider-specific input for creating an integration. This is a union type that contains provider-specific configuration.

The capabilities for an integrated resource from a third-party provider. This is a union type that contains provider-specific capabilities.

Type of provider integration.

The specified resource was not found. Verify that the resource identifier is correct and that the resource exists in the specified agent space or account.

Type of resource.

Risk severity level.

Type of security risk.

Base class for all service related exceptions thrown by the SecurityAgent client

Represents a source code repository used for security analysis during a pentest.

Input for the StartCodeRemediation operation.

Output for the StartCodeRemediation operation.

Input for starting the execution of a code review.

Output for the StartCodeReviewJob operation.

Input for starting the execution of a pentest.

Output for the StartPentestJob operation.

Represents a step in the pentest job execution pipeline. Steps include preflight, static analysis, pentest, and finalizing.

Pentest job step names.

Pentest job step status.

Input for stopping the execution of a code review job.

Output for the StopCodeReviewJob operation.

Input for stopping the execution of a pentest.

Output for the StopPentestJob operation.

Input for TagResource operation.

Output for TagResource operation.

Represents a target domain registered for penetration testing. A target domain must be verified through DNS TXT or HTTP route verification before it can be used in pentests.

Verification status of a target domain.

Contains summary information about a target domain.

Represents an individual security test task within a pentest job. Each task targets a specific risk type or endpoint and executes independently.

Execution status of a task.

Contains summary information about a task.

The request was denied due to request throttling.

Input for UntagResource operation.

Output for UntagResource operation.

Input for updating an agent space.

Output for the UpdateAgentSpace operation.

Input for updating an existing code review.

Output for the UpdateCodeReview operation.

Input for updating an existing security finding.

Output for the UpdateFinding operation.

Input for updating an existing pentest.

Output for the UpdatePentest operation.

Input for updating a target domain.

Output for the UpdateTargetDomain operation.

The configuration for a user membership, including the role assigned to the user within the agent space.

Contains metadata about a user member, including the username and email address.

Role of a user member associated to an agent space.

The input fails to satisfy the constraints specified by the service.

Describes one specific validation failure for an input member.

Contains the verification details for a target domain, including the verification method and provider-specific details.

Input for verifying ownership for a registered target domain in an agent space.

Output for verifying ownership for a registered target domain in an agent space.

The VPC configuration for a pentest, specifying the VPC, security groups, and subnets to use during testing.