pulumi-gcp 7.32.0a1721151794__py3-none-any.whl → 7.32.0a1721158586__py3-none-any.whl

pulumi_gcp/kms/get_kms_crypto_key.py

@@ -27,7 +27,7 @@ class GetKMSCryptoKeyResult:
     """
     A collection of values returned by getKMSCryptoKey.
     """
-    def __init__(__self__, crypto_key_backend=None, destroy_scheduled_duration=None, effective_labels=None, id=None, import_only=None, key_ring=None, labels=None, name=None, primaries=None, pulumi_labels=None, purpose=None, rotation_period=None, skip_initial_version_creation=None, version_templates=None):
+    def __init__(__self__, crypto_key_backend=None, destroy_scheduled_duration=None, effective_labels=None, id=None, import_only=None, key_access_justifications_policies=None, key_ring=None, labels=None, name=None, primaries=None, pulumi_labels=None, purpose=None, rotation_period=None, skip_initial_version_creation=None, version_templates=None):
         if crypto_key_backend and not isinstance(crypto_key_backend, str):
             raise TypeError("Expected argument 'crypto_key_backend' to be a str")
         pulumi.set(__self__, "crypto_key_backend", crypto_key_backend)
@@ -43,6 +43,9 @@ class GetKMSCryptoKeyResult:
         if import_only and not isinstance(import_only, bool):
             raise TypeError("Expected argument 'import_only' to be a bool")
         pulumi.set(__self__, "import_only", import_only)
+        if key_access_justifications_policies and not isinstance(key_access_justifications_policies, list):
+            raise TypeError("Expected argument 'key_access_justifications_policies' to be a list")
+        pulumi.set(__self__, "key_access_justifications_policies", key_access_justifications_policies)
         if key_ring and not isinstance(key_ring, str):
             raise TypeError("Expected argument 'key_ring' to be a str")
         pulumi.set(__self__, "key_ring", key_ring)
@@ -99,6 +102,11 @@ class GetKMSCryptoKeyResult:
     def import_only(self) -> bool:
         return pulumi.get(self, "import_only")
 
+    @property
+    @pulumi.getter(name="keyAccessJustificationsPolicies")
+    def key_access_justifications_policies(self) -> Sequence['outputs.GetKMSCryptoKeyKeyAccessJustificationsPolicyResult']:
+        return pulumi.get(self, "key_access_justifications_policies")
+
     @property
     @pulumi.getter(name="keyRing")
     def key_ring(self) -> str:
@@ -164,6 +172,7 @@ class AwaitableGetKMSCryptoKeyResult(GetKMSCryptoKeyResult):
             effective_labels=self.effective_labels,
             id=self.id,
             import_only=self.import_only,
+            key_access_justifications_policies=self.key_access_justifications_policies,
             key_ring=self.key_ring,
             labels=self.labels,
             name=self.name,
@@ -216,6 +225,7 @@ def get_kms_crypto_key(key_ring: Optional[str] = None,
         effective_labels=pulumi.get(__ret__, 'effective_labels'),
         id=pulumi.get(__ret__, 'id'),
         import_only=pulumi.get(__ret__, 'import_only'),
+        key_access_justifications_policies=pulumi.get(__ret__, 'key_access_justifications_policies'),
         key_ring=pulumi.get(__ret__, 'key_ring'),
         labels=pulumi.get(__ret__, 'labels'),
         name=pulumi.get(__ret__, 'name'),

pulumi_gcp/kms/outputs.py

@@ -18,6 +18,7 @@ from . import outputs
 __all__ = [
     'CryptoKeyIAMBindingCondition',
     'CryptoKeyIAMMemberCondition',
+    'CryptoKeyKeyAccessJustificationsPolicy',
     'CryptoKeyPrimary',
     'CryptoKeyVersionAttestation',
     'CryptoKeyVersionAttestationCertChains',
@@ -31,8 +32,10 @@ __all__ = [
     'KeyRingImportJobAttestation',
     'KeyRingImportJobPublicKey',
     'GetCryptoKeysKeyResult',
+    'GetCryptoKeysKeyKeyAccessJustificationsPolicyResult',
     'GetCryptoKeysKeyPrimaryResult',
     'GetCryptoKeysKeyVersionTemplateResult',
+    'GetKMSCryptoKeyKeyAccessJustificationsPolicyResult',
     'GetKMSCryptoKeyPrimaryResult',
     'GetKMSCryptoKeyVersionPublicKeyResult',
     'GetKMSCryptoKeyVersionTemplateResult',
@@ -137,6 +140,46 @@ class CryptoKeyIAMMemberCondition(dict):
         return pulumi.get(self, "description")
 
 
+@pulumi.output_type
+class CryptoKeyKeyAccessJustificationsPolicy(dict):
+    @staticmethod
+    def __key_warning(key: str):
+        suggest = None
+        if key == "allowedAccessReasons":
+            suggest = "allowed_access_reasons"
+
+        if suggest:
+            pulumi.log.warn(f"Key '{key}' not found in CryptoKeyKeyAccessJustificationsPolicy. Access the value via the '{suggest}' property getter instead.")
+
+    def __getitem__(self, key: str) -> Any:
+        CryptoKeyKeyAccessJustificationsPolicy.__key_warning(key)
+        return super().__getitem__(key)
+
+    def get(self, key: str, default = None) -> Any:
+        CryptoKeyKeyAccessJustificationsPolicy.__key_warning(key)
+        return super().get(key, default)
+
+    def __init__(__self__, *,
+                 allowed_access_reasons: Optional[Sequence[str]] = None):
+        """
+        :param Sequence[str] allowed_access_reasons: The list of allowed reasons for access to this CryptoKey. Zero allowed
+               access reasons means all encrypt, decrypt, and sign operations for
+               this CryptoKey will fail.
+        """
+        if allowed_access_reasons is not None:
+            pulumi.set(__self__, "allowed_access_reasons", allowed_access_reasons)
+
+    @property
+    @pulumi.getter(name="allowedAccessReasons")
+    def allowed_access_reasons(self) -> Optional[Sequence[str]]:
+        """
+        The list of allowed reasons for access to this CryptoKey. Zero allowed
+        access reasons means all encrypt, decrypt, and sign operations for
+        this CryptoKey will fail.
+        """
+        return pulumi.get(self, "allowed_access_reasons")
+
+
 @pulumi.output_type
 class CryptoKeyPrimary(dict):
     def __init__(__self__, *,
@@ -872,6 +915,7 @@ class GetCryptoKeysKeyResult(dict):
                  effective_labels: Mapping[str, str],
                  id: str,
                  import_only: bool,
+                 key_access_justifications_policies: Sequence['outputs.GetCryptoKeysKeyKeyAccessJustificationsPolicyResult'],
                  labels: Mapping[str, str],
                  primaries: Sequence['outputs.GetCryptoKeysKeyPrimaryResult'],
                  pulumi_labels: Mapping[str, str],
@@ -887,6 +931,14 @@ class GetCryptoKeysKeyResult(dict):
         :param str destroy_scheduled_duration: The period of time that versions of this key spend in the DESTROY_SCHEDULED state before transitioning to DESTROYED.
                If not specified at creation time, the default duration is 30 days.
         :param bool import_only: Whether this key may contain imported versions only.
+        :param Sequence['GetCryptoKeysKeyKeyAccessJustificationsPolicyArgs'] key_access_justifications_policies: The policy used for Key Access Justifications Policy Enforcement. If this
+               field is present and this key is enrolled in Key Access Justifications
+               Policy Enforcement, the policy will be evaluated in encrypt, decrypt, and
+               sign operations, and the operation will fail if rejected by the policy. The
+               policy is defined by specifying zero or more allowed justification codes.
+               https://cloud.google.com/assured-workloads/key-access-justifications/docs/justification-codes
+               By default, this field is absent, and all justification codes are allowed.
+               This field is currently in beta and is subject to change.
         :param Mapping[str, str] labels: Labels with user-defined metadata to apply to this resource.
                
                
@@ -916,6 +968,7 @@ class GetCryptoKeysKeyResult(dict):
         pulumi.set(__self__, "effective_labels", effective_labels)
         pulumi.set(__self__, "id", id)
         pulumi.set(__self__, "import_only", import_only)
+        pulumi.set(__self__, "key_access_justifications_policies", key_access_justifications_policies)
         pulumi.set(__self__, "labels", labels)
         pulumi.set(__self__, "primaries", primaries)
         pulumi.set(__self__, "pulumi_labels", pulumi_labels)
@@ -964,6 +1017,21 @@ class GetCryptoKeysKeyResult(dict):
         """
         return pulumi.get(self, "import_only")
 
+    @property
+    @pulumi.getter(name="keyAccessJustificationsPolicies")
+    def key_access_justifications_policies(self) -> Sequence['outputs.GetCryptoKeysKeyKeyAccessJustificationsPolicyResult']:
+        """
+        The policy used for Key Access Justifications Policy Enforcement. If this
+        field is present and this key is enrolled in Key Access Justifications
+        Policy Enforcement, the policy will be evaluated in encrypt, decrypt, and
+        sign operations, and the operation will fail if rejected by the policy. The
+        policy is defined by specifying zero or more allowed justification codes.
+        https://cloud.google.com/assured-workloads/key-access-justifications/docs/justification-codes
+        By default, this field is absent, and all justification codes are allowed.
+        This field is currently in beta and is subject to change.
+        """
+        return pulumi.get(self, "key_access_justifications_policies")
+
     @property
     @pulumi.getter
     def labels(self) -> Mapping[str, str]:
@@ -1051,6 +1119,28 @@ class GetCryptoKeysKeyResult(dict):
         return pulumi.get(self, "name")
 
 
+@pulumi.output_type
+class GetCryptoKeysKeyKeyAccessJustificationsPolicyResult(dict):
+    def __init__(__self__, *,
+                 allowed_access_reasons: Sequence[str]):
+        """
+        :param Sequence[str] allowed_access_reasons: The list of allowed reasons for access to this CryptoKey. Zero allowed
+               access reasons means all encrypt, decrypt, and sign operations for
+               this CryptoKey will fail.
+        """
+        pulumi.set(__self__, "allowed_access_reasons", allowed_access_reasons)
+
+    @property
+    @pulumi.getter(name="allowedAccessReasons")
+    def allowed_access_reasons(self) -> Sequence[str]:
+        """
+        The list of allowed reasons for access to this CryptoKey. Zero allowed
+        access reasons means all encrypt, decrypt, and sign operations for
+        this CryptoKey will fail.
+        """
+        return pulumi.get(self, "allowed_access_reasons")
+
+
 @pulumi.output_type
 class GetCryptoKeysKeyPrimaryResult(dict):
     def __init__(__self__, *,
@@ -1111,6 +1201,28 @@ class GetCryptoKeysKeyVersionTemplateResult(dict):
         return pulumi.get(self, "protection_level")
 
 
+@pulumi.output_type
+class GetKMSCryptoKeyKeyAccessJustificationsPolicyResult(dict):
+    def __init__(__self__, *,
+                 allowed_access_reasons: Sequence[str]):
+        """
+        :param Sequence[str] allowed_access_reasons: The list of allowed reasons for access to this CryptoKey. Zero allowed
+               access reasons means all encrypt, decrypt, and sign operations for
+               this CryptoKey will fail.
+        """
+        pulumi.set(__self__, "allowed_access_reasons", allowed_access_reasons)
+
+    @property
+    @pulumi.getter(name="allowedAccessReasons")
+    def allowed_access_reasons(self) -> Sequence[str]:
+        """
+        The list of allowed reasons for access to this CryptoKey. Zero allowed
+        access reasons means all encrypt, decrypt, and sign operations for
+        this CryptoKey will fail.
+        """
+        return pulumi.get(self, "allowed_access_reasons")
+
+
 @pulumi.output_type
 class GetKMSCryptoKeyPrimaryResult(dict):
     def __init__(__self__, *,

pulumi_gcp/networksecurity/address_group.py

@@ -863,7 +863,7 @@ class AddressGroup(pulumi.CustomResource):
 
     @property
     @pulumi.getter
-    def purposes(self) -> pulumi.Output[Optional[Sequence[str]]]:
+    def purposes(self) -> pulumi.Output[Sequence[str]]:
         """
         List of supported purposes of the Address Group.
         Each value may be one of: `DEFAULT`, `CLOUD_ARMOR`.

pulumi_gcp/privilegedaccessmanager/entitlement.py

@@ -449,6 +449,8 @@ class Entitlement(pulumi.CustomResource):
                  requester_justification_config: Optional[pulumi.Input[Union['EntitlementRequesterJustificationConfigArgs', 'EntitlementRequesterJustificationConfigArgsDict']]] = None,
                  __props__=None):
         """
+        An Entitlement defines the eligibility of a set of users to obtain a predefined access for some time possibly after going through an approval workflow.
+
         ## Example Usage
 
         ### Privileged Access Manager Entitlement Basic
@@ -535,6 +537,8 @@ class Entitlement(pulumi.CustomResource):
                  args: EntitlementArgs,
                  opts: Optional[pulumi.ResourceOptions] = None):
         """
+        An Entitlement defines the eligibility of a set of users to obtain a predefined access for some time possibly after going through an approval workflow.
+
         ## Example Usage
 
         ### Privileged Access Manager Entitlement Basic

pulumi_gcp/provider.py

@@ -172,6 +172,7 @@ class ProviderArgs:
                  service_management_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  service_networking_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  service_usage_custom_endpoint: Optional[pulumi.Input[str]] = None,
+                 site_verification_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  source_repo_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  spanner_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  sql_custom_endpoint: Optional[pulumi.Input[str]] = None,
@@ -503,6 +504,8 @@ class ProviderArgs:
             pulumi.set(__self__, "service_networking_custom_endpoint", service_networking_custom_endpoint)
         if service_usage_custom_endpoint is not None:
             pulumi.set(__self__, "service_usage_custom_endpoint", service_usage_custom_endpoint)
+        if site_verification_custom_endpoint is not None:
+            pulumi.set(__self__, "site_verification_custom_endpoint", site_verification_custom_endpoint)
         if source_repo_custom_endpoint is not None:
             pulumi.set(__self__, "source_repo_custom_endpoint", source_repo_custom_endpoint)
         if spanner_custom_endpoint is not None:
@@ -1914,6 +1917,15 @@ class ProviderArgs:
     def service_usage_custom_endpoint(self, value: Optional[pulumi.Input[str]]):
         pulumi.set(self, "service_usage_custom_endpoint", value)
 
+    @property
+    @pulumi.getter(name="siteVerificationCustomEndpoint")
+    def site_verification_custom_endpoint(self) -> Optional[pulumi.Input[str]]:
+        return pulumi.get(self, "site_verification_custom_endpoint")
+
+    @site_verification_custom_endpoint.setter
+    def site_verification_custom_endpoint(self, value: Optional[pulumi.Input[str]]):
+        pulumi.set(self, "site_verification_custom_endpoint", value)
+
     @property
     @pulumi.getter(name="sourceRepoCustomEndpoint")
     def source_repo_custom_endpoint(self) -> Optional[pulumi.Input[str]]:
@@ -2252,6 +2264,7 @@ class Provider(pulumi.ProviderResource):
                  service_management_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  service_networking_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  service_usage_custom_endpoint: Optional[pulumi.Input[str]] = None,
+                 site_verification_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  source_repo_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  spanner_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  sql_custom_endpoint: Optional[pulumi.Input[str]] = None,
@@ -2461,6 +2474,7 @@ class Provider(pulumi.ProviderResource):
                  service_management_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  service_networking_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  service_usage_custom_endpoint: Optional[pulumi.Input[str]] = None,
+                 site_verification_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  source_repo_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  spanner_custom_endpoint: Optional[pulumi.Input[str]] = None,
                  sql_custom_endpoint: Optional[pulumi.Input[str]] = None,
@@ -2646,6 +2660,7 @@ class Provider(pulumi.ProviderResource):
             __props__.__dict__["service_management_custom_endpoint"] = service_management_custom_endpoint
             __props__.__dict__["service_networking_custom_endpoint"] = service_networking_custom_endpoint
             __props__.__dict__["service_usage_custom_endpoint"] = service_usage_custom_endpoint
+            __props__.__dict__["site_verification_custom_endpoint"] = site_verification_custom_endpoint
             __props__.__dict__["source_repo_custom_endpoint"] = source_repo_custom_endpoint
             __props__.__dict__["spanner_custom_endpoint"] = spanner_custom_endpoint
             __props__.__dict__["sql_custom_endpoint"] = sql_custom_endpoint
@@ -3406,6 +3421,11 @@ class Provider(pulumi.ProviderResource):
     def service_usage_custom_endpoint(self) -> pulumi.Output[Optional[str]]:
         return pulumi.get(self, "service_usage_custom_endpoint")
 
+    @property
+    @pulumi.getter(name="siteVerificationCustomEndpoint")
+    def site_verification_custom_endpoint(self) -> pulumi.Output[Optional[str]]:
+        return pulumi.get(self, "site_verification_custom_endpoint")
+
     @property
     @pulumi.getter(name="sourceRepoCustomEndpoint")
     def source_repo_custom_endpoint(self) -> pulumi.Output[Optional[str]]:

pulumi_gcp/pulumi-plugin.json

@@ -1,5 +1,5 @@
 {
   "resource": true,
   "name": "gcp",
-  "version": "7.32.0-alpha.1721151794"
+  "version": "7.32.0-alpha.1721158586"
 }

pulumi_gcp/securitycenter/__init__.py

@@ -19,6 +19,7 @@ from .mute_config import *
 from .notification_config import *
 from .organization_custom_module import *
 from .project_custom_module import *
+from .project_notification_config import *
 from .source import *
 from .source_iam_binding import *
 from .source_iam_member import *

pulumi_gcp/securitycenter/_inputs.py

@@ -93,6 +93,8 @@ __all__ = [
     'ProjectCustomModuleCustomConfigPredicateArgsDict',
     'ProjectCustomModuleCustomConfigResourceSelectorArgs',
     'ProjectCustomModuleCustomConfigResourceSelectorArgsDict',
+    'ProjectNotificationConfigStreamingConfigArgs',
+    'ProjectNotificationConfigStreamingConfigArgsDict',
     'SourceIamBindingConditionArgs',
     'SourceIamBindingConditionArgsDict',
     'SourceIamMemberConditionArgs',
@@ -3220,6 +3222,97 @@ class ProjectCustomModuleCustomConfigResourceSelectorArgs:
         pulumi.set(self, "resource_types", value)
 
 
+if not MYPY:
+    class ProjectNotificationConfigStreamingConfigArgsDict(TypedDict):
+        filter: pulumi.Input[str]
+        """
+        Expression that defines the filter to apply across create/update
+        events of assets or findings as specified by the event type. The
+        expression is a list of zero or more restrictions combined via
+        logical operators AND and OR. Parentheses are supported, and OR
+        has higher precedence than AND.
+        Restrictions have the form <field> <operator> <value> and may have
+        a - character in front of them to indicate negation. The fields
+        map to those defined in the corresponding resource.
+        The supported operators are:
+        * = for all value types.
+        * >, <, >=, <= for integer values.
+        * :, meaning substring matching, for strings.
+        The supported value types are:
+        * string literals in quotes.
+        * integer literals without quotes.
+        * boolean literals true and false without quotes.
+        See
+        [Filtering notifications](https://cloud.google.com/security-command-center/docs/how-to-api-filter-notifications)
+        for information on how to write a filter.
+
+        - - -
+        """
+elif False:
+    ProjectNotificationConfigStreamingConfigArgsDict: TypeAlias = Mapping[str, Any]
+
+@pulumi.input_type
+class ProjectNotificationConfigStreamingConfigArgs:
+    def __init__(__self__, *,
+                 filter: pulumi.Input[str]):
+        """
+        :param pulumi.Input[str] filter: Expression that defines the filter to apply across create/update
+               events of assets or findings as specified by the event type. The
+               expression is a list of zero or more restrictions combined via
+               logical operators AND and OR. Parentheses are supported, and OR
+               has higher precedence than AND.
+               Restrictions have the form <field> <operator> <value> and may have
+               a - character in front of them to indicate negation. The fields
+               map to those defined in the corresponding resource.
+               The supported operators are:
+               * = for all value types.
+               * >, <, >=, <= for integer values.
+               * :, meaning substring matching, for strings.
+               The supported value types are:
+               * string literals in quotes.
+               * integer literals without quotes.
+               * boolean literals true and false without quotes.
+               See
+               [Filtering notifications](https://cloud.google.com/security-command-center/docs/how-to-api-filter-notifications)
+               for information on how to write a filter.
+               
+               - - -
+        """
+        pulumi.set(__self__, "filter", filter)
+
+    @property
+    @pulumi.getter
+    def filter(self) -> pulumi.Input[str]:
+        """
+        Expression that defines the filter to apply across create/update
+        events of assets or findings as specified by the event type. The
+        expression is a list of zero or more restrictions combined via
+        logical operators AND and OR. Parentheses are supported, and OR
+        has higher precedence than AND.
+        Restrictions have the form <field> <operator> <value> and may have
+        a - character in front of them to indicate negation. The fields
+        map to those defined in the corresponding resource.
+        The supported operators are:
+        * = for all value types.
+        * >, <, >=, <= for integer values.
+        * :, meaning substring matching, for strings.
+        The supported value types are:
+        * string literals in quotes.
+        * integer literals without quotes.
+        * boolean literals true and false without quotes.
+        See
+        [Filtering notifications](https://cloud.google.com/security-command-center/docs/how-to-api-filter-notifications)
+        for information on how to write a filter.
+
+        - - -
+        """
+        return pulumi.get(self, "filter")
+
+    @filter.setter
+    def filter(self, value: pulumi.Input[str]):
+        pulumi.set(self, "filter", value)
+
+
 if not MYPY:
     class SourceIamBindingConditionArgsDict(TypedDict):
         expression: pulumi.Input[str]

pulumi_gcp/securitycenter/outputs.py

@@ -55,6 +55,7 @@ __all__ = [
     'ProjectCustomModuleCustomConfigCustomOutputPropertyValueExpression',
     'ProjectCustomModuleCustomConfigPredicate',
     'ProjectCustomModuleCustomConfigResourceSelector',
+    'ProjectNotificationConfigStreamingConfig',
     'SourceIamBindingCondition',
     'SourceIamMemberCondition',
     'V2OrganizationNotificationConfigStreamingConfig',
@@ -2252,6 +2253,64 @@ class ProjectCustomModuleCustomConfigResourceSelector(dict):
         return pulumi.get(self, "resource_types")
 
 
+@pulumi.output_type
+class ProjectNotificationConfigStreamingConfig(dict):
+    def __init__(__self__, *,
+                 filter: str):
+        """
+        :param str filter: Expression that defines the filter to apply across create/update
+               events of assets or findings as specified by the event type. The
+               expression is a list of zero or more restrictions combined via
+               logical operators AND and OR. Parentheses are supported, and OR
+               has higher precedence than AND.
+               Restrictions have the form <field> <operator> <value> and may have
+               a - character in front of them to indicate negation. The fields
+               map to those defined in the corresponding resource.
+               The supported operators are:
+               * = for all value types.
+               * >, <, >=, <= for integer values.
+               * :, meaning substring matching, for strings.
+               The supported value types are:
+               * string literals in quotes.
+               * integer literals without quotes.
+               * boolean literals true and false without quotes.
+               See
+               [Filtering notifications](https://cloud.google.com/security-command-center/docs/how-to-api-filter-notifications)
+               for information on how to write a filter.
+               
+               - - -
+        """
+        pulumi.set(__self__, "filter", filter)
+
+    @property
+    @pulumi.getter
+    def filter(self) -> str:
+        """
+        Expression that defines the filter to apply across create/update
+        events of assets or findings as specified by the event type. The
+        expression is a list of zero or more restrictions combined via
+        logical operators AND and OR. Parentheses are supported, and OR
+        has higher precedence than AND.
+        Restrictions have the form <field> <operator> <value> and may have
+        a - character in front of them to indicate negation. The fields
+        map to those defined in the corresponding resource.
+        The supported operators are:
+        * = for all value types.
+        * >, <, >=, <= for integer values.
+        * :, meaning substring matching, for strings.
+        The supported value types are:
+        * string literals in quotes.
+        * integer literals without quotes.
+        * boolean literals true and false without quotes.
+        See
+        [Filtering notifications](https://cloud.google.com/security-command-center/docs/how-to-api-filter-notifications)
+        for information on how to write a filter.
+
+        - - -
+        """
+        return pulumi.get(self, "filter")
+
+
 @pulumi.output_type
 class SourceIamBindingCondition(dict):
     def __init__(__self__, *,