Skip to content

docs(posture-control): document resource_kind valid values #704

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
tembleking merged 2 commits into from
Feb 12, 2026
Merged

docs(posture-control): document resource_kind valid values #704

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
c0e8189
docs(posture-control): document resource_kind valid values and fix im…
tembleking Feb 12, 2026
f645498
docs: do not specify the kind count
tembleking Feb 12, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
19 changes: 17 additions & 2 deletions website/docs/r/secure_posture_control.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -52,7 +52,22 @@ resource "sysdig_secure_posture_control" "c"{
- `description` - (Required) The description of the Posture Control, eg. `EC2 - Instances should not have a public IP address`
- `rego` - (Required) The Posture control Rego. `package sysdig\ndefault risky = false\nrisky {\n input.NetworkInterfaces[_].Association.PublicIp\n input. NetworkInterfaces[_].Association.PublicIp != \"\"\n}`
- `remediation_details`- (Required) The Posture control Remediation details. `Use a non-default VPC so that your instance is not assigned a public IP address by default`
- `resource_kind` - (Required) The Posture Control Resource kind. It should be a supported resource kind, eg. `AWS_S3_BUCKET`
- `resource_kind` - (Required) The resource type this control evaluates. Must be a supported resource kind string matching
Comment thread
tembleking marked this conversation as resolved.
a resource type in the Sysdig CSPM inventory. The format varies by platform:

- **AWS**: `AWS_S3_BUCKET`, `AWS_EC2_INSTANCE`, `AWS_IAM_ROLE`, `AWS_LAMBDA_FUNCTION`, ...
- **GCP**: `GCP_STORAGE_GOOGLEAPIS_COM_BUCKET`, `GCP_COMPUTE_GOOGLEAPIS_COM_INSTANCE`, ...
- **Azure**: `AZURE_MICROSOFT_COMPUTE_VIRTUALMACHINES`, `AZURE_MICROSOFT_STORAGE_STORAGEACCOUNTS`, ...
- **Kubernetes**: `DEPLOYMENT`, `SERVICE`, `NAMESPACE`, `CLUSTERROLE`, ...
- **IBM Cloud**: `IBM_USER-MANAGEMENT_USER`, `IBM_IS_VPC_INSTANCE`, `IBM_CLOUD-OBJECT-STORAGE_BUCKET`, ...
- **Host** (Linux/Windows/Docker): `host`

Comment thread
tembleking marked this conversation as resolved.
To list all valid values, query the CSPM API:
```
GET /api/cspm/v1/policy/controls/resource-template/kinds
```
Comment thread
tembleking marked this conversation as resolved.
See the [Sysdig API Swagger docs](https://docs.sysdig.com/en/docs/developer-tools/sysdig-api/#swagger-documentation) and
the [posture controls API documentation](https://docs.sysdig.com/en/sysdig-secure/posture_controls/#sysdig-api-endpoint) for more details.
- `severity` - (Required) The Posture Control Severity [`High`, `Medium`, `Low`], case sensitive, e.g., `High`.
## Attributes Reference

Expand All @@ -65,5 +80,5 @@ In addition to all arguments above, the following attributes are exported:
Posture custom control can be imported using the ID, e.g.

```
$ terraform import sysdig_secure_posture_control.example c 12345
$ terraform import sysdig_secure_posture_control.example 12345
```
Loading