akeyless 5.0.25 → 5.0.26

data/docs/DynamicSecretUpdateCustom.md

@@ -9,10 +9,12 @@
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **description** | **String** | Description of the object | [optional] |
 | **enable_admin_rotation** | **Boolean** | Should admin credentials be rotated | [optional][default to false] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **payload** | **String** | Secret payload to be sent with each create/revoke webhook request | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **revoke_sync_url** | **String** | URL of an endpoint that implements /sync/revoke method, for example https://webhook.example.com/sync/revoke |  |
@@ -34,10 +36,12 @@ instance = Akeyless::DynamicSecretUpdateCustom.new(
   delete_protection: null,
   description: null,
   enable_admin_rotation: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   payload: null,
   producer_encryption_key_name: null,
   revoke_sync_url: null,

data/docs/DynamicSecretUpdateDockerhub.md

@@ -9,10 +9,12 @@
 | **dockerhub_password** | **String** | DockerhubPassword is either the user's password access token to manage the repository | [optional] |
 | **dockerhub_token_scopes** | **String** | Access token scopes list (comma-separated) to give the dynamic secret valid options are in \"repo:admin\", \"repo:write\", \"repo:read\", \"repo:public_read\" | [optional] |
 | **dockerhub_username** | **String** | DockerhubUsername is the name of the user in dockerhub | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **tags** | **Array<String>** | Add tags attached to this object | [optional] |
 | **target_name** | **String** | Target name | [optional] |
@@ -31,10 +33,12 @@ instance = Akeyless::DynamicSecretUpdateDockerhub.new(
   dockerhub_password: null,
   dockerhub_token_scopes: null,
   dockerhub_username: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   producer_encryption_key_name: null,
   tags: null,
   target_name: null,

data/docs/DynamicSecretUpdateEks.md

@@ -13,10 +13,12 @@
 | **eks_cluster_name** | **String** | EKS cluster name | [optional] |
 | **eks_region** | **String** | Region | [optional][default to 'us-east-2'] |
 | **eks_secret_access_key** | **String** | Secret Access Key | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **secure_access_allow_port_forwading** | **Boolean** | Enable Port forwarding while using CLI access | [optional] |
 | **secure_access_bastion_issuer** | **String** | Deprecated. use secure-access-certificate-issuer | [optional] |
@@ -46,10 +48,12 @@ instance = Akeyless::DynamicSecretUpdateEks.new(
   eks_cluster_name: null,
   eks_region: null,
   eks_secret_access_key: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   producer_encryption_key_name: null,
   secure_access_allow_port_forwading: null,
   secure_access_bastion_issuer: null,

data/docs/DynamicSecretUpdateGcp.md

@@ -15,10 +15,12 @@
 | **gcp_project_id** | **String** | GCP Project ID override for dynamic secret operations | [optional] |
 | **gcp_sa_email** | **String** | The email of the fixed service account to generate keys or tokens for (Relevant only when --access-type=sa and --service-account-type=fixed) | [optional] |
 | **gcp_token_scopes** | **String** | Access token scopes list, e.g. scope1,scope2 (Relevant only when --access-type=sa; required when --gcp-cred-type=token) | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **role_binding** | **String** | Role binding definitions in JSON format (Relevant only when --access-type=sa and --service-account-type=dynamic) | [optional] |
 | **role_names** | **String** | Comma-separated list of GCP roles to assign to the user (Relevant only when --access-type=external) | [optional] |
@@ -51,10 +53,12 @@ instance = Akeyless::DynamicSecretUpdateGcp.new(
   gcp_project_id: null,
   gcp_sa_email: null,
   gcp_token_scopes: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   producer_encryption_key_name: null,
   role_binding: null,
   role_names: null,

data/docs/DynamicSecretUpdateGithub.md

@@ -9,6 +9,7 @@
 | **github_app_id** | **Integer** | Github app id | [optional] |
 | **github_app_private_key** | **String** | App private key | [optional] |
 | **github_base_url** | **String** | Base URL | [optional][default to 'https://api.github.com/'] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **installation_id** | **Integer** | GitHub application installation id | [optional] |
 | **installation_organization** | **String** | Optional, mutually exclusive with installation id, GitHub organization name | [optional] |
 | **installation_repository** | **String** | Optional, mutually exclusive with installation id, GitHub repository '<owner>/<repo-name>' | [optional] |
@@ -16,6 +17,7 @@
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **tags** | **Array<String>** | Add tags attached to this object | [optional] |
 | **target_name** | **String** | Target name | [optional] |
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
@@ -35,6 +37,7 @@ instance = Akeyless::DynamicSecretUpdateGithub.new(
   github_app_id: null,
   github_app_private_key: null,
   github_base_url: null,
+  input_rule: null,
   installation_id: null,
   installation_organization: null,
   installation_repository: null,
@@ -42,6 +45,7 @@ instance = Akeyless::DynamicSecretUpdateGithub.new(
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   tags: null,
   target_name: null,
   token: null,

data/docs/DynamicSecretUpdateGitlab.md

@@ -13,11 +13,13 @@
 | **gitlab_token_scopes** | **String** | Comma-separated list of access token scopes to grant |  |
 | **gitlab_url** | **String** | Gitlab base url | [optional][default to 'https://gitlab.com/'] |
 | **group_name** | **String** | Gitlab group name, required for access-type=group | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **installation_organization** | **String** | Gitlab project name, required for access-type=project | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **tags** | **Array<String>** | Add tags attached to this object | [optional] |
 | **target_name** | **String** | Target name | [optional] |
 | **token** | **String** | Authentication token (see `/auth` and `/configure`) | [optional] |
@@ -39,11 +41,13 @@ instance = Akeyless::DynamicSecretUpdateGitlab.new(
   gitlab_token_scopes: null,
   gitlab_url: null,
   group_name: null,
+  input_rule: null,
   installation_organization: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   tags: null,
   target_name: null,
   token: null,

data/docs/DynamicSecretUpdateGke.md

@@ -11,10 +11,12 @@
 | **gke_cluster_endpoint** | **String** | GKE cluster URL endpoint | [optional] |
 | **gke_cluster_name** | **String** | GKE cluster name | [optional] |
 | **gke_service_account_email** | **String** | GKE service account email | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **secure_access_allow_port_forwading** | **Boolean** | Enable Port forwarding while using CLI access | [optional] |
 | **secure_access_bastion_issuer** | **String** | Deprecated. use secure-access-certificate-issuer | [optional] |
@@ -42,10 +44,12 @@ instance = Akeyless::DynamicSecretUpdateGke.new(
   gke_cluster_endpoint: null,
   gke_cluster_name: null,
   gke_service_account_email: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   producer_encryption_key_name: null,
   secure_access_allow_port_forwading: null,
   secure_access_bastion_issuer: null,

data/docs/DynamicSecretUpdateGoogleWorkspace.md

@@ -12,10 +12,12 @@
 | **gcp_key** | **String** | Base64-encoded service account private key text | [optional] |
 | **group_email** | **String** | A group email, relevant only for group access-mode | [optional] |
 | **group_role** | **String** |  | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **role_name** | **String** | Name of the admin role to assign to the user, relevant only for role access-mode | [optional] |
 | **role_scope** | **String** |  | [optional] |
@@ -45,10 +47,12 @@ instance = Akeyless::DynamicSecretUpdateGoogleWorkspace.new(
   gcp_key: null,
   group_email: null,
   group_role: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   producer_encryption_key_name: null,
   role_name: null,
   role_scope: null,

data/docs/DynamicSecretUpdateHanaDb.md

@@ -14,10 +14,12 @@
 | **hanadb_port** | **String** | HanaDb Port | [optional][default to '443'] |
 | **hanadb_revocation_statements** | **String** | HanaDb Revocation statements | [optional] |
 | **hanadb_username** | **String** | HanaDb Username | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **password_length** | **String** | The length of the password to be generated | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **secure_access_bastion_issuer** | **String** | Deprecated. use secure-access-certificate-issuer | [optional] |
@@ -49,10 +51,12 @@ instance = Akeyless::DynamicSecretUpdateHanaDb.new(
   hanadb_port: null,
   hanadb_revocation_statements: null,
   hanadb_username: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   password_length: null,
   producer_encryption_key_name: null,
   secure_access_bastion_issuer: null,

data/docs/DynamicSecretUpdateK8s.md

@@ -7,6 +7,7 @@
 | **custom_username_template** | **String** | Customize how temporary usernames are generated using go template | [optional] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **description** | **String** | Description of the object | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **k8s_allowed_namespaces** | **String** | Comma-separated list of allowed K8S namespaces for the generated ServiceAccount (relevant only for k8s-service-account-type=dynamic) | [optional] |
@@ -23,6 +24,7 @@
 | **k8s_service_account_type** | **String** | K8S ServiceAccount type [fixed, dynamic]. | [optional] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **secure_access_allow_port_forwading** | **Boolean** | Enable Port forwarding while using CLI access | [optional] |
 | **secure_access_bastion_issuer** | **String** | Deprecated. use secure-access-certificate-issuer | [optional] |
@@ -50,6 +52,7 @@ instance = Akeyless::DynamicSecretUpdateK8s.new(
   custom_username_template: null,
   delete_protection: null,
   description: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   k8s_allowed_namespaces: null,
@@ -66,6 +69,7 @@ instance = Akeyless::DynamicSecretUpdateK8s.new(
   k8s_service_account_type: null,
   name: null,
   new_name: null,
+  output_rule: null,
   producer_encryption_key_name: null,
   secure_access_allow_port_forwading: null,
   secure_access_bastion_issuer: null,

data/docs/DynamicSecretUpdateLdap.md

@@ -14,12 +14,14 @@
 | **fixed_user_claim_keyname** | **String** | For externally provided users, denotes the key-name of IdP claim to extract the username from (relevant only for external-username=true) | [optional][default to 'ext_username'] |
 | **group_dn** | **String** | Group DN which the temporary user should be added | [optional] |
 | **host_provider** | **String** | Host provider type [explicit/target], Default Host provider is explicit, Relevant only for Secure Remote Access of ssh cert issuer, ldap rotated secret and ldap dynamic secret | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **ldap_ca_cert** | **String** | CA Certificate File Content | [optional] |
 | **ldap_url** | **String** | LDAP Server URL | [optional] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **password_length** | **String** | The length of the password to be generated | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **secure_access_bastion_issuer** | **String** | Deprecated. use secure-access-certificate-issuer | [optional] |
@@ -55,12 +57,14 @@ instance = Akeyless::DynamicSecretUpdateLdap.new(
   fixed_user_claim_keyname: null,
   group_dn: null,
   host_provider: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   ldap_ca_cert: null,
   ldap_url: null,
   name: null,
   new_name: null,
+  output_rule: null,
   password_length: null,
   producer_encryption_key_name: null,
   secure_access_bastion_issuer: null,

data/docs/DynamicSecretUpdateMongoDb.md

@@ -7,6 +7,7 @@
 | **custom_username_template** | **String** | Customize how temporary usernames are generated using go template | [optional] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **description** | **String** | Description of the object | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **mongodb_atlas_api_private_key** | **String** | MongoDB Atlas private key | [optional] |
@@ -24,6 +25,7 @@
 | **mongodb_username** | **String** | MongoDB server username | [optional] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **password_length** | **String** | The length of the password to be generated | [optional] |
 | **producer_encryption_key_name** | **String** | Encrypt producer with following key | [optional] |
 | **secure_access_bastion_issuer** | **String** | Deprecated. use secure-access-certificate-issuer | [optional] |
@@ -48,6 +50,7 @@ instance = Akeyless::DynamicSecretUpdateMongoDb.new(
   custom_username_template: null,
   delete_protection: null,
   description: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   mongodb_atlas_api_private_key: null,
@@ -65,6 +68,7 @@ instance = Akeyless::DynamicSecretUpdateMongoDb.new(
   mongodb_username: null,
   name: null,
   new_name: null,
+  output_rule: null,
   password_length: null,
   producer_encryption_key_name: null,
   secure_access_bastion_issuer: null,

data/docs/DynamicSecretUpdateMsSql.md

@@ -7,6 +7,7 @@
 | **custom_username_template** | **String** | Customize how temporary usernames are generated using go template | [optional] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **description** | **String** | Description of the object | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **mssql_allowed_db_names** | **String** | CSV of allowed DB names for runtime selection when getting the secret value. Empty => use target DB only; \"*\" => any DB allowed; One or more names => user must choose from this list | [optional] |
@@ -19,6 +20,7 @@
 | **mssql_username** | **String** | MSSQL Username | [optional] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **password_length** | **String** | The length of the password to be generated | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **secure_access_bastion_issuer** | **String** | Deprecated. use secure-access-certificate-issuer | [optional] |
@@ -44,6 +46,7 @@ instance = Akeyless::DynamicSecretUpdateMsSql.new(
   custom_username_template: null,
   delete_protection: null,
   description: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   mssql_allowed_db_names: null,
@@ -56,6 +59,7 @@ instance = Akeyless::DynamicSecretUpdateMsSql.new(
   mssql_username: null,
   name: null,
   new_name: null,
+  output_rule: null,
   password_length: null,
   producer_encryption_key_name: null,
   secure_access_bastion_issuer: null,

data/docs/DynamicSecretUpdateMySql.md

@@ -9,6 +9,7 @@
 | **db_server_name** | **String** | (Optional) Server name for certificate verification | [optional] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **description** | **String** | Description of the object | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **mysql_dbname** | **String** | MySQL DB Name | [optional] |
@@ -20,6 +21,7 @@
 | **mysql_username** | **String** | MySQL Username | [optional] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **password_length** | **String** | The length of the password to be generated | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **secure_access_bastion_issuer** | **String** | Deprecated. use secure-access-certificate-issuer | [optional] |
@@ -48,6 +50,7 @@ instance = Akeyless::DynamicSecretUpdateMySql.new(
   db_server_name: null,
   delete_protection: null,
   description: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   mysql_dbname: null,
@@ -59,6 +62,7 @@ instance = Akeyless::DynamicSecretUpdateMySql.new(
   mysql_username: null,
   name: null,
   new_name: null,
+  output_rule: null,
   password_length: null,
   producer_encryption_key_name: null,
   secure_access_bastion_issuer: null,

data/docs/DynamicSecretUpdateOpenAI.md

@@ -7,10 +7,12 @@
 | **custom_username_template** | **String** | Customize how temporary usernames are generated using go template | [optional] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **description** | **String** | Description of the object | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **project_id** | **String** | Project ID | [optional] |
 | **tags** | **Array<String>** | Add tags attached to this object | [optional] |
@@ -28,10 +30,12 @@ instance = Akeyless::DynamicSecretUpdateOpenAI.new(
   custom_username_template: null,
   delete_protection: null,
   description: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   producer_encryption_key_name: null,
   project_id: null,
   tags: null,

data/docs/DynamicSecretUpdateOracleDb.md

@@ -9,6 +9,7 @@
 | **db_server_name** | **String** | (Optional) Server name for certificate verification | [optional] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **description** | **String** | Description of the object | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
@@ -20,6 +21,7 @@
 | **oracle_screation_statements** | **String** | Oracle Creation statements | [optional] |
 | **oracle_service_name** | **String** | Oracle DB Name | [optional] |
 | **oracle_username** | **String** | Oracle Username | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **password_length** | **String** | The length of the password to be generated | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **secure_access_bastion_issuer** | **String** | Deprecated. use secure-access-certificate-issuer | [optional] |
@@ -44,6 +46,7 @@ instance = Akeyless::DynamicSecretUpdateOracleDb.new(
   db_server_name: null,
   delete_protection: null,
   description: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
@@ -55,6 +58,7 @@ instance = Akeyless::DynamicSecretUpdateOracleDb.new(
   oracle_screation_statements: null,
   oracle_service_name: null,
   oracle_username: null,
+  output_rule: null,
   password_length: null,
   producer_encryption_key_name: null,
   secure_access_bastion_issuer: null,

data/docs/DynamicSecretUpdatePing.md

@@ -6,10 +6,12 @@
 | ---- | ---- | ----------- | ----- |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **description** | **String** | Description of the object | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **ping_administrative_port** | **String** | Ping Federate administrative port | [optional][default to '9999'] |
 | **ping_atm_id** | **String** | Set a specific Access Token Management (ATM) instance for the created OAuth Client by providing the ATM Id. If no explicit value is given, the default pingfederate server ATM will be set. | [optional] |
 | **ping_authorization_port** | **String** | Ping Federate authorization port | [optional][default to '9031'] |
@@ -41,10 +43,12 @@ require 'akeyless'
 instance = Akeyless::DynamicSecretUpdatePing.new(
   delete_protection: null,
   description: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   ping_administrative_port: null,
   ping_atm_id: null,
   ping_authorization_port: null,

data/docs/DynamicSecretUpdatePostgreSql.md

@@ -8,10 +8,12 @@
 | **custom_username_template** | **String** | Customize how temporary usernames are generated using go template | [optional] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **description** | **String** | Description of the object | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **password_length** | **String** | The length of the password to be generated | [optional] |
 | **postgresql_db_name** | **String** | PostgreSQL DB Name | [optional] |
 | **postgresql_host** | **String** | PostgreSQL Host | [optional][default to '127.0.0.1'] |
@@ -45,10 +47,12 @@ instance = Akeyless::DynamicSecretUpdatePostgreSql.new(
   custom_username_template: null,
   delete_protection: null,
   description: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   password_length: null,
   postgresql_db_name: null,
   postgresql_host: null,

data/docs/DynamicSecretUpdateRabbitMq.md

@@ -6,10 +6,12 @@
 | ---- | ---- | ----------- | ----- |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **description** | **String** | Description of the object | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **password_length** | **String** | The length of the password to be generated | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **rabbitmq_admin_pwd** | **String** | RabbitMQ Admin password | [optional] |
@@ -39,10 +41,12 @@ require 'akeyless'
 instance = Akeyless::DynamicSecretUpdateRabbitMq.new(
   delete_protection: null,
   description: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   password_length: null,
   producer_encryption_key_name: null,
   rabbitmq_admin_pwd: null,

data/docs/DynamicSecretUpdateRdp.md

@@ -10,10 +10,12 @@
 | **description** | **String** | Description of the object | [optional] |
 | **fixed_user_claim_keyname** | **String** | For externally provided users, denotes the key-name of IdP claim to extract the username from (relevant only for fixed-user-only=true) | [optional][default to 'ext_username'] |
 | **fixed_user_only** | **String** | Allow access using externally (IdP) provided username [true/false] | [optional][default to 'false'] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **password_length** | **String** | The length of the password to be generated | [optional] |
 | **producer_encryption_key_name** | **String** | Dynamic producer encryption key | [optional] |
 | **rdp_admin_name** | **String** | RDP Admin Name | [optional] |
@@ -49,10 +51,12 @@ instance = Akeyless::DynamicSecretUpdateRdp.new(
   description: null,
   fixed_user_claim_keyname: null,
   fixed_user_only: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   password_length: null,
   producer_encryption_key_name: null,
   rdp_admin_name: null,

data/docs/DynamicSecretUpdateRedis.md

@@ -9,10 +9,12 @@
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **description** | **String** | Description of the object | [optional] |
 | **host** | **String** | Redis Host | [optional][default to '127.0.0.1'] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **password** | **String** | Redis Password | [optional] |
 | **password_length** | **String** | The length of the password to be generated | [optional] |
 | **port** | **String** | Redis Port | [optional][default to '6379'] |
@@ -37,10 +39,12 @@ instance = Akeyless::DynamicSecretUpdateRedis.new(
   delete_protection: null,
   description: null,
   host: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   password: null,
   password_length: null,
   port: null,

data/docs/DynamicSecretUpdateRedshift.md

@@ -8,10 +8,12 @@
 | **custom_username_template** | **String** | Customize how temporary usernames are generated using go template | [optional] |
 | **delete_protection** | **String** | Protection from accidental deletion of this object [true/false] | [optional] |
 | **description** | **String** | Description of the object | [optional] |
+| **input_rule** | **Array<String>** | Agentic input rule in name=...,rule=... format (e.g. name=rule1,rule=Sanitize input) Mirrors commands.AgenticRulesParams — kept separate because ResourceDS cannot embed it (different package, different struct layout). | [optional] |
 | **item_custom_fields** | **Hash<String, String>** | Additional custom fields to associate with the item | [optional] |
 | **json** | **Boolean** | Set output format to JSON | [optional][default to false] |
 | **name** | **String** | Dynamic secret name |  |
 | **new_name** | **String** | Dynamic secret name | [optional] |
+| **output_rule** | **Array<String>** | Agentic output rule in name=...,rule=... format (e.g. name=rule1,rule=Mask secrets) | [optional] |
 | **password_length** | **String** | The length of the password to be generated | [optional] |
 | **producer_encryption_key** | **String** | Dynamic producer encryption key | [optional] |
 | **redshift_db_name** | **String** | Redshift DB Name | [optional] |
@@ -38,10 +40,12 @@ instance = Akeyless::DynamicSecretUpdateRedshift.new(
   custom_username_template: null,
   delete_protection: null,
   description: null,
+  input_rule: null,
   item_custom_fields: null,
   json: null,
   name: null,
   new_name: null,
+  output_rule: null,
   password_length: null,
   producer_encryption_key: null,
   redshift_db_name: null,