Class: Aws::SSM::Types::PatchRule

Inherits:
Struct
  • Object
show all
Defined in:
gems/aws-sdk-ssm/lib/aws-sdk-ssm/types.rb

Overview

Note:

When making an API call, you may pass PatchRule data as a hash:

{
  patch_filter_group: { # required
    patch_filters: [ # required
      {
        key: "ARCH", # required, accepts ARCH, ADVISORY_ID, BUGZILLA_ID, PATCH_SET, PRODUCT, PRODUCT_FAMILY, CLASSIFICATION, CVE_ID, EPOCH, MSRC_SEVERITY, NAME, PATCH_ID, SECTION, PRIORITY, REPOSITORY, RELEASE, SEVERITY, SECURITY, VERSION
        values: ["PatchFilterValue"], # required
      },
    ],
  },
  compliance_level: "CRITICAL", # accepts CRITICAL, HIGH, MEDIUM, LOW, INFORMATIONAL, UNSPECIFIED
  approve_after_days: 1,
  approve_until_date: "PatchStringDateTime",
  enable_non_security: false,
}

Defines an approval rule for a patch baseline.

See Also:

Constant Summary collapse

SENSITIVE = 
[]

Instance Attribute Summary collapse

Instance Attribute Details

#approve_after_daysInteger

The number of days after the release date of each patch matched by the rule that the patch is marked as approved in the patch baseline. For example, a value of 7 means that patches are approved seven days after they are released. Not supported on Debian Server or Ubuntu Server.

Returns:

  • (Integer) 


16086
16087
16088
16089
16090
16091
16092
16093
16094
 
# File 'gems/aws-sdk-ssm/lib/aws-sdk-ssm/types.rb', line 16086

class PatchRule < Struct.new(
  :patch_filter_group,
  :compliance_level,
  :approve_after_days,
  :approve_until_date,
  :enable_non_security)
  SENSITIVE = []
  include Aws::Structure
end

#approve_until_dateString

The cutoff date for auto approval of released patches. Any patches released on or before this date are installed automatically. Not supported on Debian Server or Ubuntu Server.

Enter dates in the format YYYY-MM-DD. For example, 2021-12-31.

Returns:

  • (String) 


16086
16087
16088
16089
16090
16091
16092
16093
16094
 
# File 'gems/aws-sdk-ssm/lib/aws-sdk-ssm/types.rb', line 16086

class PatchRule < Struct.new(
  :patch_filter_group,
  :compliance_level,
  :approve_after_days,
  :approve_until_date,
  :enable_non_security)
  SENSITIVE = []
  include Aws::Structure
end

#compliance_levelString

A compliance severity level for all approved patches in a patch baseline.

Returns:

  • (String) 


16086
16087
16088
16089
16090
16091
16092
16093
16094
 
# File 'gems/aws-sdk-ssm/lib/aws-sdk-ssm/types.rb', line 16086

class PatchRule < Struct.new(
  :patch_filter_group,
  :compliance_level,
  :approve_after_days,
  :approve_until_date,
  :enable_non_security)
  SENSITIVE = []
  include Aws::Structure
end

#enable_non_securityBoolean

For managed nodes identified by the approval rule filters, enables a patch baseline to apply non-security updates available in the specified repository. The default value is false. Applies to Linux managed nodes only.

Returns:

  • (Boolean) 


16086
16087
16088
16089
16090
16091
16092
16093
16094
 
# File 'gems/aws-sdk-ssm/lib/aws-sdk-ssm/types.rb', line 16086

class PatchRule < Struct.new(
  :patch_filter_group,
  :compliance_level,
  :approve_after_days,
  :approve_until_date,
  :enable_non_security)
  SENSITIVE = []
  include Aws::Structure
end

#patch_filter_groupTypes::PatchFilterGroup

The patch filter group that defines the criteria for the rule.

Returns:



16086
16087
16088
16089
16090
16091
16092
16093
16094
 
# File 'gems/aws-sdk-ssm/lib/aws-sdk-ssm/types.rb', line 16086

class PatchRule < Struct.new(
  :patch_filter_group,
  :compliance_level,
  :approve_after_days,
  :approve_until_date,
  :enable_non_security)
  SENSITIVE = []
  include Aws::Structure
end