pulumi-kubernetes 4.24.0a1753079574__py3-none-any.whl → 4.24.0a1753121506__py3-none-any.whl

pulumi_kubernetes/policy/v1beta1/_inputs.py

@@ -2,8 +2,7 @@
 # *** WARNING: this file was generated by pulumigen. ***
 # *** Do not edit by hand unless you're certain you know what you are doing! ***
 
-import builtins
-import copy
+import builtins as _builtins
 import warnings
 import sys
 import pulumi
@@ -85,7 +84,7 @@ if not MYPY:
         """
         AllowedCSIDriver represents a single inline CSI Driver that is allowed to be used.
         """
-        name: NotRequired[pulumi.Input[builtins.str]]
+        name: NotRequired[pulumi.Input[_builtins.str]]
         """
         Name is the registered name of the CSI driver
         """
@@ -95,24 +94,24 @@ elif False:
 @pulumi.input_type
 class AllowedCSIDriverPatchArgs:
     def __init__(__self__, *,
-                 name: Optional[pulumi.Input[builtins.str]] = None):
+                 name: Optional[pulumi.Input[_builtins.str]] = None):
         """
         AllowedCSIDriver represents a single inline CSI Driver that is allowed to be used.
-        :param pulumi.Input[builtins.str] name: Name is the registered name of the CSI driver
+        :param pulumi.Input[_builtins.str] name: Name is the registered name of the CSI driver
         """
         if name is not None:
             pulumi.set(__self__, "name", name)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def name(self) -> Optional[pulumi.Input[builtins.str]]:
+    def name(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Name is the registered name of the CSI driver
         """
         return pulumi.get(self, "name")
 
     @name.setter
-    def name(self, value: Optional[pulumi.Input[builtins.str]]):
+    def name(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "name", value)
 
 
@@ -121,7 +120,7 @@ if not MYPY:
         """
         AllowedCSIDriver represents a single inline CSI Driver that is allowed to be used.
         """
-        name: pulumi.Input[builtins.str]
+        name: pulumi.Input[_builtins.str]
         """
         Name is the registered name of the CSI driver
         """
@@ -131,23 +130,23 @@ elif False:
 @pulumi.input_type
 class AllowedCSIDriverArgs:
     def __init__(__self__, *,
-                 name: pulumi.Input[builtins.str]):
+                 name: pulumi.Input[_builtins.str]):
         """
         AllowedCSIDriver represents a single inline CSI Driver that is allowed to be used.
-        :param pulumi.Input[builtins.str] name: Name is the registered name of the CSI driver
+        :param pulumi.Input[_builtins.str] name: Name is the registered name of the CSI driver
         """
         pulumi.set(__self__, "name", name)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def name(self) -> pulumi.Input[builtins.str]:
+    def name(self) -> pulumi.Input[_builtins.str]:
         """
         Name is the registered name of the CSI driver
         """
         return pulumi.get(self, "name")
 
     @name.setter
-    def name(self, value: pulumi.Input[builtins.str]):
+    def name(self, value: pulumi.Input[_builtins.str]):
         pulumi.set(self, "name", value)
 
 
@@ -156,7 +155,7 @@ if not MYPY:
         """
         AllowedFlexVolume represents a single Flexvolume that is allowed to be used.
         """
-        driver: NotRequired[pulumi.Input[builtins.str]]
+        driver: NotRequired[pulumi.Input[_builtins.str]]
         """
         driver is the name of the Flexvolume driver.
         """
@@ -166,24 +165,24 @@ elif False:
 @pulumi.input_type
 class AllowedFlexVolumePatchArgs:
     def __init__(__self__, *,
-                 driver: Optional[pulumi.Input[builtins.str]] = None):
+                 driver: Optional[pulumi.Input[_builtins.str]] = None):
         """
         AllowedFlexVolume represents a single Flexvolume that is allowed to be used.
-        :param pulumi.Input[builtins.str] driver: driver is the name of the Flexvolume driver.
+        :param pulumi.Input[_builtins.str] driver: driver is the name of the Flexvolume driver.
         """
         if driver is not None:
             pulumi.set(__self__, "driver", driver)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def driver(self) -> Optional[pulumi.Input[builtins.str]]:
+    def driver(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         driver is the name of the Flexvolume driver.
         """
         return pulumi.get(self, "driver")
 
     @driver.setter
-    def driver(self, value: Optional[pulumi.Input[builtins.str]]):
+    def driver(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "driver", value)
 
 
@@ -192,7 +191,7 @@ if not MYPY:
         """
         AllowedFlexVolume represents a single Flexvolume that is allowed to be used.
         """
-        driver: pulumi.Input[builtins.str]
+        driver: pulumi.Input[_builtins.str]
         """
         driver is the name of the Flexvolume driver.
         """
@@ -202,23 +201,23 @@ elif False:
 @pulumi.input_type
 class AllowedFlexVolumeArgs:
     def __init__(__self__, *,
-                 driver: pulumi.Input[builtins.str]):
+                 driver: pulumi.Input[_builtins.str]):
         """
         AllowedFlexVolume represents a single Flexvolume that is allowed to be used.
-        :param pulumi.Input[builtins.str] driver: driver is the name of the Flexvolume driver.
+        :param pulumi.Input[_builtins.str] driver: driver is the name of the Flexvolume driver.
         """
         pulumi.set(__self__, "driver", driver)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def driver(self) -> pulumi.Input[builtins.str]:
+    def driver(self) -> pulumi.Input[_builtins.str]:
         """
         driver is the name of the Flexvolume driver.
         """
         return pulumi.get(self, "driver")
 
     @driver.setter
-    def driver(self, value: pulumi.Input[builtins.str]):
+    def driver(self, value: pulumi.Input[_builtins.str]):
         pulumi.set(self, "driver", value)
 
 
@@ -227,13 +226,13 @@ if not MYPY:
         """
         AllowedHostPath defines the host volume conditions that will be enabled by a policy for pods to use. It requires the path prefix to be defined.
         """
-        path_prefix: NotRequired[pulumi.Input[builtins.str]]
+        path_prefix: NotRequired[pulumi.Input[_builtins.str]]
         """
         pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.
 
         Examples: `/foo` would allow `/foo`, `/foo/` and `/foo/bar` `/foo` would not allow `/food` or `/etc/foo`
         """
-        read_only: NotRequired[pulumi.Input[builtins.bool]]
+        read_only: NotRequired[pulumi.Input[_builtins.bool]]
         """
         when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.
         """
@@ -243,23 +242,23 @@ elif False:
 @pulumi.input_type
 class AllowedHostPathPatchArgs:
     def __init__(__self__, *,
-                 path_prefix: Optional[pulumi.Input[builtins.str]] = None,
-                 read_only: Optional[pulumi.Input[builtins.bool]] = None):
+                 path_prefix: Optional[pulumi.Input[_builtins.str]] = None,
+                 read_only: Optional[pulumi.Input[_builtins.bool]] = None):
         """
         AllowedHostPath defines the host volume conditions that will be enabled by a policy for pods to use. It requires the path prefix to be defined.
-        :param pulumi.Input[builtins.str] path_prefix: pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.
+        :param pulumi.Input[_builtins.str] path_prefix: pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.
                
                Examples: `/foo` would allow `/foo`, `/foo/` and `/foo/bar` `/foo` would not allow `/food` or `/etc/foo`
-        :param pulumi.Input[builtins.bool] read_only: when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.
+        :param pulumi.Input[_builtins.bool] read_only: when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.
         """
         if path_prefix is not None:
             pulumi.set(__self__, "path_prefix", path_prefix)
         if read_only is not None:
             pulumi.set(__self__, "read_only", read_only)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="pathPrefix")
-    def path_prefix(self) -> Optional[pulumi.Input[builtins.str]]:
+    def path_prefix(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.
 
@@ -268,19 +267,19 @@ class AllowedHostPathPatchArgs:
         return pulumi.get(self, "path_prefix")
 
     @path_prefix.setter
-    def path_prefix(self, value: Optional[pulumi.Input[builtins.str]]):
+    def path_prefix(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "path_prefix", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="readOnly")
-    def read_only(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def read_only(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.
         """
         return pulumi.get(self, "read_only")
 
     @read_only.setter
-    def read_only(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def read_only(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "read_only", value)
 
 
@@ -289,13 +288,13 @@ if not MYPY:
         """
         AllowedHostPath defines the host volume conditions that will be enabled by a policy for pods to use. It requires the path prefix to be defined.
         """
-        path_prefix: NotRequired[pulumi.Input[builtins.str]]
+        path_prefix: NotRequired[pulumi.Input[_builtins.str]]
         """
         pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.
 
         Examples: `/foo` would allow `/foo`, `/foo/` and `/foo/bar` `/foo` would not allow `/food` or `/etc/foo`
         """
-        read_only: NotRequired[pulumi.Input[builtins.bool]]
+        read_only: NotRequired[pulumi.Input[_builtins.bool]]
         """
         when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.
         """
@@ -305,23 +304,23 @@ elif False:
 @pulumi.input_type
 class AllowedHostPathArgs:
     def __init__(__self__, *,
-                 path_prefix: Optional[pulumi.Input[builtins.str]] = None,
-                 read_only: Optional[pulumi.Input[builtins.bool]] = None):
+                 path_prefix: Optional[pulumi.Input[_builtins.str]] = None,
+                 read_only: Optional[pulumi.Input[_builtins.bool]] = None):
         """
         AllowedHostPath defines the host volume conditions that will be enabled by a policy for pods to use. It requires the path prefix to be defined.
-        :param pulumi.Input[builtins.str] path_prefix: pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.
+        :param pulumi.Input[_builtins.str] path_prefix: pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.
                
                Examples: `/foo` would allow `/foo`, `/foo/` and `/foo/bar` `/foo` would not allow `/food` or `/etc/foo`
-        :param pulumi.Input[builtins.bool] read_only: when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.
+        :param pulumi.Input[_builtins.bool] read_only: when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.
         """
         if path_prefix is not None:
             pulumi.set(__self__, "path_prefix", path_prefix)
         if read_only is not None:
             pulumi.set(__self__, "read_only", read_only)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="pathPrefix")
-    def path_prefix(self) -> Optional[pulumi.Input[builtins.str]]:
+    def path_prefix(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         pathPrefix is the path prefix that the host volume must match. It does not support `*`. Trailing slashes are trimmed when validating the path prefix with a host path.
 
@@ -330,19 +329,19 @@ class AllowedHostPathArgs:
         return pulumi.get(self, "path_prefix")
 
     @path_prefix.setter
-    def path_prefix(self, value: Optional[pulumi.Input[builtins.str]]):
+    def path_prefix(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "path_prefix", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="readOnly")
-    def read_only(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def read_only(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         when set to true, will allow host volumes matching the pathPrefix only if all volume mounts are readOnly.
         """
         return pulumi.get(self, "read_only")
 
     @read_only.setter
-    def read_only(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def read_only(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "read_only", value)
 
 
@@ -355,7 +354,7 @@ if not MYPY:
         """
         ranges are the allowed ranges of fs groups.  If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.
         """
-        rule: NotRequired[pulumi.Input[builtins.str]]
+        rule: NotRequired[pulumi.Input[_builtins.str]]
         """
         rule is the strategy that will dictate what FSGroup is used in the SecurityContext.
         """
@@ -366,18 +365,18 @@ elif False:
 class FSGroupStrategyOptionsPatchArgs:
     def __init__(__self__, *,
                  ranges: Optional[pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]]] = None,
-                 rule: Optional[pulumi.Input[builtins.str]] = None):
+                 rule: Optional[pulumi.Input[_builtins.str]] = None):
         """
         FSGroupStrategyOptions defines the strategy type and options used to create the strategy.
         :param pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]] ranges: ranges are the allowed ranges of fs groups.  If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.
-        :param pulumi.Input[builtins.str] rule: rule is the strategy that will dictate what FSGroup is used in the SecurityContext.
+        :param pulumi.Input[_builtins.str] rule: rule is the strategy that will dictate what FSGroup is used in the SecurityContext.
         """
         if ranges is not None:
             pulumi.set(__self__, "ranges", ranges)
         if rule is not None:
             pulumi.set(__self__, "rule", rule)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]]]:
         """
@@ -389,16 +388,16 @@ class FSGroupStrategyOptionsPatchArgs:
     def ranges(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]]]):
         pulumi.set(self, "ranges", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def rule(self) -> Optional[pulumi.Input[builtins.str]]:
+    def rule(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         rule is the strategy that will dictate what FSGroup is used in the SecurityContext.
         """
         return pulumi.get(self, "rule")
 
     @rule.setter
-    def rule(self, value: Optional[pulumi.Input[builtins.str]]):
+    def rule(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "rule", value)
 
 
@@ -411,7 +410,7 @@ if not MYPY:
         """
         ranges are the allowed ranges of fs groups.  If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.
         """
-        rule: NotRequired[pulumi.Input[builtins.str]]
+        rule: NotRequired[pulumi.Input[_builtins.str]]
         """
         rule is the strategy that will dictate what FSGroup is used in the SecurityContext.
         """
@@ -422,18 +421,18 @@ elif False:
 class FSGroupStrategyOptionsArgs:
     def __init__(__self__, *,
                  ranges: Optional[pulumi.Input[Sequence[pulumi.Input['IDRangeArgs']]]] = None,
-                 rule: Optional[pulumi.Input[builtins.str]] = None):
+                 rule: Optional[pulumi.Input[_builtins.str]] = None):
         """
         FSGroupStrategyOptions defines the strategy type and options used to create the strategy.
         :param pulumi.Input[Sequence[pulumi.Input['IDRangeArgs']]] ranges: ranges are the allowed ranges of fs groups.  If you would like to force a single fs group then supply a single range with the same start and end. Required for MustRunAs.
-        :param pulumi.Input[builtins.str] rule: rule is the strategy that will dictate what FSGroup is used in the SecurityContext.
+        :param pulumi.Input[_builtins.str] rule: rule is the strategy that will dictate what FSGroup is used in the SecurityContext.
         """
         if ranges is not None:
             pulumi.set(__self__, "ranges", ranges)
         if rule is not None:
             pulumi.set(__self__, "rule", rule)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['IDRangeArgs']]]]:
         """
@@ -445,16 +444,16 @@ class FSGroupStrategyOptionsArgs:
     def ranges(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['IDRangeArgs']]]]):
         pulumi.set(self, "ranges", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def rule(self) -> Optional[pulumi.Input[builtins.str]]:
+    def rule(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         rule is the strategy that will dictate what FSGroup is used in the SecurityContext.
         """
         return pulumi.get(self, "rule")
 
     @rule.setter
-    def rule(self, value: Optional[pulumi.Input[builtins.str]]):
+    def rule(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "rule", value)
 
 
@@ -463,11 +462,11 @@ if not MYPY:
         """
         HostPortRange defines a range of host ports that will be enabled by a policy for pods to use.  It requires both the start and end to be defined.
         """
-        max: NotRequired[pulumi.Input[builtins.int]]
+        max: NotRequired[pulumi.Input[_builtins.int]]
         """
         max is the end of the range, inclusive.
         """
-        min: NotRequired[pulumi.Input[builtins.int]]
+        min: NotRequired[pulumi.Input[_builtins.int]]
         """
         min is the start of the range, inclusive.
         """
@@ -477,40 +476,40 @@ elif False:
 @pulumi.input_type
 class HostPortRangePatchArgs:
     def __init__(__self__, *,
-                 max: Optional[pulumi.Input[builtins.int]] = None,
-                 min: Optional[pulumi.Input[builtins.int]] = None):
+                 max: Optional[pulumi.Input[_builtins.int]] = None,
+                 min: Optional[pulumi.Input[_builtins.int]] = None):
         """
         HostPortRange defines a range of host ports that will be enabled by a policy for pods to use.  It requires both the start and end to be defined.
-        :param pulumi.Input[builtins.int] max: max is the end of the range, inclusive.
-        :param pulumi.Input[builtins.int] min: min is the start of the range, inclusive.
+        :param pulumi.Input[_builtins.int] max: max is the end of the range, inclusive.
+        :param pulumi.Input[_builtins.int] min: min is the start of the range, inclusive.
         """
         if max is not None:
             pulumi.set(__self__, "max", max)
         if min is not None:
             pulumi.set(__self__, "min", min)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def max(self) -> Optional[pulumi.Input[builtins.int]]:
+    def max(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         max is the end of the range, inclusive.
         """
         return pulumi.get(self, "max")
 
     @max.setter
-    def max(self, value: Optional[pulumi.Input[builtins.int]]):
+    def max(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "max", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def min(self) -> Optional[pulumi.Input[builtins.int]]:
+    def min(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         min is the start of the range, inclusive.
         """
         return pulumi.get(self, "min")
 
     @min.setter
-    def min(self, value: Optional[pulumi.Input[builtins.int]]):
+    def min(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "min", value)
 
 
@@ -519,11 +518,11 @@ if not MYPY:
         """
         HostPortRange defines a range of host ports that will be enabled by a policy for pods to use.  It requires both the start and end to be defined.
         """
-        max: pulumi.Input[builtins.int]
+        max: pulumi.Input[_builtins.int]
         """
         max is the end of the range, inclusive.
         """
-        min: pulumi.Input[builtins.int]
+        min: pulumi.Input[_builtins.int]
         """
         min is the start of the range, inclusive.
         """
@@ -533,38 +532,38 @@ elif False:
 @pulumi.input_type
 class HostPortRangeArgs:
     def __init__(__self__, *,
-                 max: pulumi.Input[builtins.int],
-                 min: pulumi.Input[builtins.int]):
+                 max: pulumi.Input[_builtins.int],
+                 min: pulumi.Input[_builtins.int]):
         """
         HostPortRange defines a range of host ports that will be enabled by a policy for pods to use.  It requires both the start and end to be defined.
-        :param pulumi.Input[builtins.int] max: max is the end of the range, inclusive.
-        :param pulumi.Input[builtins.int] min: min is the start of the range, inclusive.
+        :param pulumi.Input[_builtins.int] max: max is the end of the range, inclusive.
+        :param pulumi.Input[_builtins.int] min: min is the start of the range, inclusive.
         """
         pulumi.set(__self__, "max", max)
         pulumi.set(__self__, "min", min)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def max(self) -> pulumi.Input[builtins.int]:
+    def max(self) -> pulumi.Input[_builtins.int]:
         """
         max is the end of the range, inclusive.
         """
         return pulumi.get(self, "max")
 
     @max.setter
-    def max(self, value: pulumi.Input[builtins.int]):
+    def max(self, value: pulumi.Input[_builtins.int]):
         pulumi.set(self, "max", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def min(self) -> pulumi.Input[builtins.int]:
+    def min(self) -> pulumi.Input[_builtins.int]:
         """
         min is the start of the range, inclusive.
         """
         return pulumi.get(self, "min")
 
     @min.setter
-    def min(self, value: pulumi.Input[builtins.int]):
+    def min(self, value: pulumi.Input[_builtins.int]):
         pulumi.set(self, "min", value)
 
 
@@ -573,11 +572,11 @@ if not MYPY:
         """
         IDRange provides a min/max of an allowed range of IDs.
         """
-        max: NotRequired[pulumi.Input[builtins.int]]
+        max: NotRequired[pulumi.Input[_builtins.int]]
         """
         max is the end of the range, inclusive.
         """
-        min: NotRequired[pulumi.Input[builtins.int]]
+        min: NotRequired[pulumi.Input[_builtins.int]]
         """
         min is the start of the range, inclusive.
         """
@@ -587,40 +586,40 @@ elif False:
 @pulumi.input_type
 class IDRangePatchArgs:
     def __init__(__self__, *,
-                 max: Optional[pulumi.Input[builtins.int]] = None,
-                 min: Optional[pulumi.Input[builtins.int]] = None):
+                 max: Optional[pulumi.Input[_builtins.int]] = None,
+                 min: Optional[pulumi.Input[_builtins.int]] = None):
         """
         IDRange provides a min/max of an allowed range of IDs.
-        :param pulumi.Input[builtins.int] max: max is the end of the range, inclusive.
-        :param pulumi.Input[builtins.int] min: min is the start of the range, inclusive.
+        :param pulumi.Input[_builtins.int] max: max is the end of the range, inclusive.
+        :param pulumi.Input[_builtins.int] min: min is the start of the range, inclusive.
         """
         if max is not None:
             pulumi.set(__self__, "max", max)
         if min is not None:
             pulumi.set(__self__, "min", min)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def max(self) -> Optional[pulumi.Input[builtins.int]]:
+    def max(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         max is the end of the range, inclusive.
         """
         return pulumi.get(self, "max")
 
     @max.setter
-    def max(self, value: Optional[pulumi.Input[builtins.int]]):
+    def max(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "max", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def min(self) -> Optional[pulumi.Input[builtins.int]]:
+    def min(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         min is the start of the range, inclusive.
         """
         return pulumi.get(self, "min")
 
     @min.setter
-    def min(self, value: Optional[pulumi.Input[builtins.int]]):
+    def min(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "min", value)
 
 
@@ -629,11 +628,11 @@ if not MYPY:
         """
         IDRange provides a min/max of an allowed range of IDs.
         """
-        max: pulumi.Input[builtins.int]
+        max: pulumi.Input[_builtins.int]
         """
         max is the end of the range, inclusive.
         """
-        min: pulumi.Input[builtins.int]
+        min: pulumi.Input[_builtins.int]
         """
         min is the start of the range, inclusive.
         """
@@ -643,38 +642,38 @@ elif False:
 @pulumi.input_type
 class IDRangeArgs:
     def __init__(__self__, *,
-                 max: pulumi.Input[builtins.int],
-                 min: pulumi.Input[builtins.int]):
+                 max: pulumi.Input[_builtins.int],
+                 min: pulumi.Input[_builtins.int]):
         """
         IDRange provides a min/max of an allowed range of IDs.
-        :param pulumi.Input[builtins.int] max: max is the end of the range, inclusive.
-        :param pulumi.Input[builtins.int] min: min is the start of the range, inclusive.
+        :param pulumi.Input[_builtins.int] max: max is the end of the range, inclusive.
+        :param pulumi.Input[_builtins.int] min: min is the start of the range, inclusive.
         """
         pulumi.set(__self__, "max", max)
         pulumi.set(__self__, "min", min)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def max(self) -> pulumi.Input[builtins.int]:
+    def max(self) -> pulumi.Input[_builtins.int]:
         """
         max is the end of the range, inclusive.
         """
         return pulumi.get(self, "max")
 
     @max.setter
-    def max(self, value: pulumi.Input[builtins.int]):
+    def max(self, value: pulumi.Input[_builtins.int]):
         pulumi.set(self, "max", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def min(self) -> pulumi.Input[builtins.int]:
+    def min(self) -> pulumi.Input[_builtins.int]:
         """
         min is the start of the range, inclusive.
         """
         return pulumi.get(self, "min")
 
     @min.setter
-    def min(self, value: pulumi.Input[builtins.int]):
+    def min(self, value: pulumi.Input[_builtins.int]):
         pulumi.set(self, "min", value)
 
 
@@ -683,11 +682,11 @@ if not MYPY:
         """
         PodDisruptionBudgetSpec is a description of a PodDisruptionBudget.
         """
-        max_unavailable: NotRequired[pulumi.Input[Union[builtins.int, builtins.str]]]
+        max_unavailable: NotRequired[pulumi.Input[Union[_builtins.int, _builtins.str]]]
         """
         An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".
         """
-        min_available: NotRequired[pulumi.Input[Union[builtins.int, builtins.str]]]
+        min_available: NotRequired[pulumi.Input[Union[_builtins.int, _builtins.str]]]
         """
         An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying "100%".
         """
@@ -701,13 +700,13 @@ elif False:
 @pulumi.input_type
 class PodDisruptionBudgetSpecPatchArgs:
     def __init__(__self__, *,
-                 max_unavailable: Optional[pulumi.Input[Union[builtins.int, builtins.str]]] = None,
-                 min_available: Optional[pulumi.Input[Union[builtins.int, builtins.str]]] = None,
+                 max_unavailable: Optional[pulumi.Input[Union[_builtins.int, _builtins.str]]] = None,
+                 min_available: Optional[pulumi.Input[Union[_builtins.int, _builtins.str]]] = None,
                  selector: Optional[pulumi.Input['_meta.v1.LabelSelectorPatchArgs']] = None):
         """
         PodDisruptionBudgetSpec is a description of a PodDisruptionBudget.
-        :param pulumi.Input[Union[builtins.int, builtins.str]] max_unavailable: An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".
-        :param pulumi.Input[Union[builtins.int, builtins.str]] min_available: An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying "100%".
+        :param pulumi.Input[Union[_builtins.int, _builtins.str]] max_unavailable: An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".
+        :param pulumi.Input[Union[_builtins.int, _builtins.str]] min_available: An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying "100%".
         :param pulumi.Input['_meta.v1.LabelSelectorPatchArgs'] selector: Label query over pods whose evictions are managed by the disruption budget.
         """
         if max_unavailable is not None:
@@ -717,31 +716,31 @@ class PodDisruptionBudgetSpecPatchArgs:
         if selector is not None:
             pulumi.set(__self__, "selector", selector)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="maxUnavailable")
-    def max_unavailable(self) -> Optional[pulumi.Input[Union[builtins.int, builtins.str]]]:
+    def max_unavailable(self) -> Optional[pulumi.Input[Union[_builtins.int, _builtins.str]]]:
         """
         An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".
         """
         return pulumi.get(self, "max_unavailable")
 
     @max_unavailable.setter
-    def max_unavailable(self, value: Optional[pulumi.Input[Union[builtins.int, builtins.str]]]):
+    def max_unavailable(self, value: Optional[pulumi.Input[Union[_builtins.int, _builtins.str]]]):
         pulumi.set(self, "max_unavailable", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="minAvailable")
-    def min_available(self) -> Optional[pulumi.Input[Union[builtins.int, builtins.str]]]:
+    def min_available(self) -> Optional[pulumi.Input[Union[_builtins.int, _builtins.str]]]:
         """
         An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying "100%".
         """
         return pulumi.get(self, "min_available")
 
     @min_available.setter
-    def min_available(self, value: Optional[pulumi.Input[Union[builtins.int, builtins.str]]]):
+    def min_available(self, value: Optional[pulumi.Input[Union[_builtins.int, _builtins.str]]]):
         pulumi.set(self, "min_available", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def selector(self) -> Optional[pulumi.Input['_meta.v1.LabelSelectorPatchArgs']]:
         """
@@ -759,11 +758,11 @@ if not MYPY:
         """
         PodDisruptionBudgetSpec is a description of a PodDisruptionBudget.
         """
-        max_unavailable: NotRequired[pulumi.Input[Union[builtins.int, builtins.str]]]
+        max_unavailable: NotRequired[pulumi.Input[Union[_builtins.int, _builtins.str]]]
         """
         An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".
         """
-        min_available: NotRequired[pulumi.Input[Union[builtins.int, builtins.str]]]
+        min_available: NotRequired[pulumi.Input[Union[_builtins.int, _builtins.str]]]
         """
         An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying "100%".
         """
@@ -777,13 +776,13 @@ elif False:
 @pulumi.input_type
 class PodDisruptionBudgetSpecArgs:
     def __init__(__self__, *,
-                 max_unavailable: Optional[pulumi.Input[Union[builtins.int, builtins.str]]] = None,
-                 min_available: Optional[pulumi.Input[Union[builtins.int, builtins.str]]] = None,
+                 max_unavailable: Optional[pulumi.Input[Union[_builtins.int, _builtins.str]]] = None,
+                 min_available: Optional[pulumi.Input[Union[_builtins.int, _builtins.str]]] = None,
                  selector: Optional[pulumi.Input['_meta.v1.LabelSelectorArgs']] = None):
         """
         PodDisruptionBudgetSpec is a description of a PodDisruptionBudget.
-        :param pulumi.Input[Union[builtins.int, builtins.str]] max_unavailable: An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".
-        :param pulumi.Input[Union[builtins.int, builtins.str]] min_available: An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying "100%".
+        :param pulumi.Input[Union[_builtins.int, _builtins.str]] max_unavailable: An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".
+        :param pulumi.Input[Union[_builtins.int, _builtins.str]] min_available: An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying "100%".
         :param pulumi.Input['_meta.v1.LabelSelectorArgs'] selector: Label query over pods whose evictions are managed by the disruption budget.
         """
         if max_unavailable is not None:
@@ -793,31 +792,31 @@ class PodDisruptionBudgetSpecArgs:
         if selector is not None:
             pulumi.set(__self__, "selector", selector)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="maxUnavailable")
-    def max_unavailable(self) -> Optional[pulumi.Input[Union[builtins.int, builtins.str]]]:
+    def max_unavailable(self) -> Optional[pulumi.Input[Union[_builtins.int, _builtins.str]]]:
         """
         An eviction is allowed if at most "maxUnavailable" pods selected by "selector" are unavailable after the eviction, i.e. even in absence of the evicted pod. For example, one can prevent all voluntary evictions by specifying 0. This is a mutually exclusive setting with "minAvailable".
         """
         return pulumi.get(self, "max_unavailable")
 
     @max_unavailable.setter
-    def max_unavailable(self, value: Optional[pulumi.Input[Union[builtins.int, builtins.str]]]):
+    def max_unavailable(self, value: Optional[pulumi.Input[Union[_builtins.int, _builtins.str]]]):
         pulumi.set(self, "max_unavailable", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="minAvailable")
-    def min_available(self) -> Optional[pulumi.Input[Union[builtins.int, builtins.str]]]:
+    def min_available(self) -> Optional[pulumi.Input[Union[_builtins.int, _builtins.str]]]:
         """
         An eviction is allowed if at least "minAvailable" pods selected by "selector" will still be available after the eviction, i.e. even in the absence of the evicted pod.  So for example you can prevent all voluntary evictions by specifying "100%".
         """
         return pulumi.get(self, "min_available")
 
     @min_available.setter
-    def min_available(self, value: Optional[pulumi.Input[Union[builtins.int, builtins.str]]]):
+    def min_available(self, value: Optional[pulumi.Input[Union[_builtins.int, _builtins.str]]]):
         pulumi.set(self, "min_available", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def selector(self) -> Optional[pulumi.Input['_meta.v1.LabelSelectorArgs']]:
         """
@@ -835,27 +834,27 @@ if not MYPY:
         """
         PodDisruptionBudgetStatus represents information about the status of a PodDisruptionBudget. Status may trail the actual state of a system.
         """
-        current_healthy: pulumi.Input[builtins.int]
+        current_healthy: pulumi.Input[_builtins.int]
         """
         current number of healthy pods
         """
-        desired_healthy: pulumi.Input[builtins.int]
+        desired_healthy: pulumi.Input[_builtins.int]
         """
         minimum desired number of healthy pods
         """
-        disruptions_allowed: pulumi.Input[builtins.int]
+        disruptions_allowed: pulumi.Input[_builtins.int]
         """
         Number of pod disruptions that are currently allowed.
         """
-        expected_pods: pulumi.Input[builtins.int]
+        expected_pods: pulumi.Input[_builtins.int]
         """
         total number of pods counted by this disruption budget
         """
-        disrupted_pods: NotRequired[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]
+        disrupted_pods: NotRequired[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]
         """
         DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn't occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.
         """
-        observed_generation: NotRequired[pulumi.Input[builtins.int]]
+        observed_generation: NotRequired[pulumi.Input[_builtins.int]]
         """
         Most recent generation observed when updating this PDB status. PodDisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB's object generation.
         """
@@ -865,20 +864,20 @@ elif False:
 @pulumi.input_type
 class PodDisruptionBudgetStatusArgs:
     def __init__(__self__, *,
-                 current_healthy: pulumi.Input[builtins.int],
-                 desired_healthy: pulumi.Input[builtins.int],
-                 disruptions_allowed: pulumi.Input[builtins.int],
-                 expected_pods: pulumi.Input[builtins.int],
-                 disrupted_pods: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]] = None,
-                 observed_generation: Optional[pulumi.Input[builtins.int]] = None):
+                 current_healthy: pulumi.Input[_builtins.int],
+                 desired_healthy: pulumi.Input[_builtins.int],
+                 disruptions_allowed: pulumi.Input[_builtins.int],
+                 expected_pods: pulumi.Input[_builtins.int],
+                 disrupted_pods: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]] = None,
+                 observed_generation: Optional[pulumi.Input[_builtins.int]] = None):
         """
         PodDisruptionBudgetStatus represents information about the status of a PodDisruptionBudget. Status may trail the actual state of a system.
-        :param pulumi.Input[builtins.int] current_healthy: current number of healthy pods
-        :param pulumi.Input[builtins.int] desired_healthy: minimum desired number of healthy pods
-        :param pulumi.Input[builtins.int] disruptions_allowed: Number of pod disruptions that are currently allowed.
-        :param pulumi.Input[builtins.int] expected_pods: total number of pods counted by this disruption budget
-        :param pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]] disrupted_pods: DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn't occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.
-        :param pulumi.Input[builtins.int] observed_generation: Most recent generation observed when updating this PDB status. PodDisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB's object generation.
+        :param pulumi.Input[_builtins.int] current_healthy: current number of healthy pods
+        :param pulumi.Input[_builtins.int] desired_healthy: minimum desired number of healthy pods
+        :param pulumi.Input[_builtins.int] disruptions_allowed: Number of pod disruptions that are currently allowed.
+        :param pulumi.Input[_builtins.int] expected_pods: total number of pods counted by this disruption budget
+        :param pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]] disrupted_pods: DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn't occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.
+        :param pulumi.Input[_builtins.int] observed_generation: Most recent generation observed when updating this PDB status. PodDisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB's object generation.
         """
         pulumi.set(__self__, "current_healthy", current_healthy)
         pulumi.set(__self__, "desired_healthy", desired_healthy)
@@ -889,76 +888,76 @@ class PodDisruptionBudgetStatusArgs:
         if observed_generation is not None:
             pulumi.set(__self__, "observed_generation", observed_generation)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="currentHealthy")
-    def current_healthy(self) -> pulumi.Input[builtins.int]:
+    def current_healthy(self) -> pulumi.Input[_builtins.int]:
         """
         current number of healthy pods
         """
         return pulumi.get(self, "current_healthy")
 
     @current_healthy.setter
-    def current_healthy(self, value: pulumi.Input[builtins.int]):
+    def current_healthy(self, value: pulumi.Input[_builtins.int]):
         pulumi.set(self, "current_healthy", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="desiredHealthy")
-    def desired_healthy(self) -> pulumi.Input[builtins.int]:
+    def desired_healthy(self) -> pulumi.Input[_builtins.int]:
         """
         minimum desired number of healthy pods
         """
         return pulumi.get(self, "desired_healthy")
 
     @desired_healthy.setter
-    def desired_healthy(self, value: pulumi.Input[builtins.int]):
+    def desired_healthy(self, value: pulumi.Input[_builtins.int]):
         pulumi.set(self, "desired_healthy", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disruptionsAllowed")
-    def disruptions_allowed(self) -> pulumi.Input[builtins.int]:
+    def disruptions_allowed(self) -> pulumi.Input[_builtins.int]:
         """
         Number of pod disruptions that are currently allowed.
         """
         return pulumi.get(self, "disruptions_allowed")
 
     @disruptions_allowed.setter
-    def disruptions_allowed(self, value: pulumi.Input[builtins.int]):
+    def disruptions_allowed(self, value: pulumi.Input[_builtins.int]):
         pulumi.set(self, "disruptions_allowed", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="expectedPods")
-    def expected_pods(self) -> pulumi.Input[builtins.int]:
+    def expected_pods(self) -> pulumi.Input[_builtins.int]:
         """
         total number of pods counted by this disruption budget
         """
         return pulumi.get(self, "expected_pods")
 
     @expected_pods.setter
-    def expected_pods(self, value: pulumi.Input[builtins.int]):
+    def expected_pods(self, value: pulumi.Input[_builtins.int]):
         pulumi.set(self, "expected_pods", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="disruptedPods")
-    def disrupted_pods(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]:
+    def disrupted_pods(self) -> Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]:
         """
         DisruptedPods contains information about pods whose eviction was processed by the API server eviction subresource handler but has not yet been observed by the PodDisruptionBudget controller. A pod will be in this map from the time when the API server processed the eviction request to the time when the pod is seen by PDB controller as having been marked for deletion (or after a timeout). The key in the map is the name of the pod and the value is the time when the API server processed the eviction request. If the deletion didn't occur and a pod is still there it will be removed from the list automatically by PodDisruptionBudget controller after some time. If everything goes smooth this map should be empty for the most of the time. Large number of entries in the map may indicate problems with pod deletions.
         """
         return pulumi.get(self, "disrupted_pods")
 
     @disrupted_pods.setter
-    def disrupted_pods(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[builtins.str]]]]):
+    def disrupted_pods(self, value: Optional[pulumi.Input[Mapping[str, pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "disrupted_pods", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="observedGeneration")
-    def observed_generation(self) -> Optional[pulumi.Input[builtins.int]]:
+    def observed_generation(self) -> Optional[pulumi.Input[_builtins.int]]:
         """
         Most recent generation observed when updating this PDB status. PodDisruptionsAllowed and other status information is valid only if observedGeneration equals to PDB's object generation.
         """
         return pulumi.get(self, "observed_generation")
 
     @observed_generation.setter
-    def observed_generation(self, value: Optional[pulumi.Input[builtins.int]]):
+    def observed_generation(self, value: Optional[pulumi.Input[_builtins.int]]):
         pulumi.set(self, "observed_generation", value)
 
 
@@ -967,11 +966,11 @@ if not MYPY:
         """
         PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods
         """
-        api_version: NotRequired[pulumi.Input[builtins.str]]
+        api_version: NotRequired[pulumi.Input[_builtins.str]]
         """
         APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
         """
-        kind: NotRequired[pulumi.Input[builtins.str]]
+        kind: NotRequired[pulumi.Input[_builtins.str]]
         """
         Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
         """
@@ -990,15 +989,15 @@ elif False:
 @pulumi.input_type
 class PodDisruptionBudgetArgs:
     def __init__(__self__, *,
-                 api_version: Optional[pulumi.Input[builtins.str]] = None,
-                 kind: Optional[pulumi.Input[builtins.str]] = None,
+                 api_version: Optional[pulumi.Input[_builtins.str]] = None,
+                 kind: Optional[pulumi.Input[_builtins.str]] = None,
                  metadata: Optional[pulumi.Input['_meta.v1.ObjectMetaArgs']] = None,
                  spec: Optional[pulumi.Input['PodDisruptionBudgetSpecArgs']] = None,
                  status: Optional[pulumi.Input['PodDisruptionBudgetStatusArgs']] = None):
         """
         PodDisruptionBudget is an object to define the max disruption that can be caused to a collection of pods
-        :param pulumi.Input[builtins.str] api_version: APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
-        :param pulumi.Input[builtins.str] kind: Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+        :param pulumi.Input[_builtins.str] api_version: APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+        :param pulumi.Input[_builtins.str] kind: Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
         :param pulumi.Input['PodDisruptionBudgetSpecArgs'] spec: Specification of the desired behavior of the PodDisruptionBudget.
         :param pulumi.Input['PodDisruptionBudgetStatusArgs'] status: Most recently observed status of the PodDisruptionBudget.
         """
@@ -1013,31 +1012,31 @@ class PodDisruptionBudgetArgs:
         if status is not None:
             pulumi.set(__self__, "status", status)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="apiVersion")
-    def api_version(self) -> Optional[pulumi.Input[builtins.str]]:
+    def api_version(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
         """
         return pulumi.get(self, "api_version")
 
     @api_version.setter
-    def api_version(self, value: Optional[pulumi.Input[builtins.str]]):
+    def api_version(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "api_version", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def kind(self) -> Optional[pulumi.Input[builtins.str]]:
+    def kind(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
         """
         return pulumi.get(self, "kind")
 
     @kind.setter
-    def kind(self, value: Optional[pulumi.Input[builtins.str]]):
+    def kind(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "kind", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def metadata(self) -> Optional[pulumi.Input['_meta.v1.ObjectMetaArgs']]:
         return pulumi.get(self, "metadata")
@@ -1046,7 +1045,7 @@ class PodDisruptionBudgetArgs:
     def metadata(self, value: Optional[pulumi.Input['_meta.v1.ObjectMetaArgs']]):
         pulumi.set(self, "metadata", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def spec(self) -> Optional[pulumi.Input['PodDisruptionBudgetSpecArgs']]:
         """
@@ -1058,7 +1057,7 @@ class PodDisruptionBudgetArgs:
     def spec(self, value: Optional[pulumi.Input['PodDisruptionBudgetSpecArgs']]):
         pulumi.set(self, "spec", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def status(self) -> Optional[pulumi.Input['PodDisruptionBudgetStatusArgs']]:
         """
@@ -1076,7 +1075,7 @@ if not MYPY:
         """
         PodSecurityPolicySpec defines the policy enforced.
         """
-        allow_privilege_escalation: NotRequired[pulumi.Input[builtins.bool]]
+        allow_privilege_escalation: NotRequired[pulumi.Input[_builtins.bool]]
         """
         allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.
         """
@@ -1084,7 +1083,7 @@ if not MYPY:
         """
         AllowedCSIDrivers is a whitelist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is an alpha field, and is only honored if the API server enables the CSIInlineVolume feature gate.
         """
-        allowed_capabilities: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        allowed_capabilities: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
         """
@@ -1096,25 +1095,25 @@ if not MYPY:
         """
         allowedHostPaths is a white list of allowed host paths. Empty indicates that all host paths may be used.
         """
-        allowed_proc_mount_types: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        allowed_proc_mount_types: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         AllowedProcMountTypes is a whitelist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.
         """
-        allowed_unsafe_sysctls: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        allowed_unsafe_sysctls: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to whitelist all allowed unsafe sysctls explicitly to avoid rejection.
 
         Examples: e.g. "foo/*" allows "foo/bar", "foo/baz", etc. e.g. "foo.*" allows "foo.bar", "foo.baz", etc.
         """
-        default_add_capabilities: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        default_add_capabilities: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.
         """
-        default_allow_privilege_escalation: NotRequired[pulumi.Input[builtins.bool]]
+        default_allow_privilege_escalation: NotRequired[pulumi.Input[_builtins.bool]]
         """
         defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.
         """
-        forbidden_sysctls: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        forbidden_sysctls: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
 
@@ -1124,15 +1123,15 @@ if not MYPY:
         """
         fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.
         """
-        host_ipc: NotRequired[pulumi.Input[builtins.bool]]
+        host_ipc: NotRequired[pulumi.Input[_builtins.bool]]
         """
         hostIPC determines if the policy allows the use of HostIPC in the pod spec.
         """
-        host_network: NotRequired[pulumi.Input[builtins.bool]]
+        host_network: NotRequired[pulumi.Input[_builtins.bool]]
         """
         hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
         """
-        host_pid: NotRequired[pulumi.Input[builtins.bool]]
+        host_pid: NotRequired[pulumi.Input[_builtins.bool]]
         """
         hostPID determines if the policy allows the use of HostPID in the pod spec.
         """
@@ -1140,15 +1139,15 @@ if not MYPY:
         """
         hostPorts determines which host port ranges are allowed to be exposed.
         """
-        privileged: NotRequired[pulumi.Input[builtins.bool]]
+        privileged: NotRequired[pulumi.Input[_builtins.bool]]
         """
         privileged determines if a pod can request to be run as privileged.
         """
-        read_only_root_filesystem: NotRequired[pulumi.Input[builtins.bool]]
+        read_only_root_filesystem: NotRequired[pulumi.Input[_builtins.bool]]
         """
         readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.
         """
-        required_drop_capabilities: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        required_drop_capabilities: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.
         """
@@ -1172,7 +1171,7 @@ if not MYPY:
         """
         supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.
         """
-        volumes: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        volumes: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         volumes is a white list of allowed volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.
         """
@@ -1182,60 +1181,60 @@ elif False:
 @pulumi.input_type
 class PodSecurityPolicySpecPatchArgs:
     def __init__(__self__, *,
-                 allow_privilege_escalation: Optional[pulumi.Input[builtins.bool]] = None,
+                 allow_privilege_escalation: Optional[pulumi.Input[_builtins.bool]] = None,
                  allowed_csi_drivers: Optional[pulumi.Input[Sequence[pulumi.Input['AllowedCSIDriverPatchArgs']]]] = None,
-                 allowed_capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 allowed_capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
                  allowed_flex_volumes: Optional[pulumi.Input[Sequence[pulumi.Input['AllowedFlexVolumePatchArgs']]]] = None,
                  allowed_host_paths: Optional[pulumi.Input[Sequence[pulumi.Input['AllowedHostPathPatchArgs']]]] = None,
-                 allowed_proc_mount_types: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 allowed_unsafe_sysctls: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 default_add_capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 default_allow_privilege_escalation: Optional[pulumi.Input[builtins.bool]] = None,
-                 forbidden_sysctls: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 allowed_proc_mount_types: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 allowed_unsafe_sysctls: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 default_add_capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 default_allow_privilege_escalation: Optional[pulumi.Input[_builtins.bool]] = None,
+                 forbidden_sysctls: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
                  fs_group: Optional[pulumi.Input['FSGroupStrategyOptionsPatchArgs']] = None,
-                 host_ipc: Optional[pulumi.Input[builtins.bool]] = None,
-                 host_network: Optional[pulumi.Input[builtins.bool]] = None,
-                 host_pid: Optional[pulumi.Input[builtins.bool]] = None,
+                 host_ipc: Optional[pulumi.Input[_builtins.bool]] = None,
+                 host_network: Optional[pulumi.Input[_builtins.bool]] = None,
+                 host_pid: Optional[pulumi.Input[_builtins.bool]] = None,
                  host_ports: Optional[pulumi.Input[Sequence[pulumi.Input['HostPortRangePatchArgs']]]] = None,
-                 privileged: Optional[pulumi.Input[builtins.bool]] = None,
-                 read_only_root_filesystem: Optional[pulumi.Input[builtins.bool]] = None,
-                 required_drop_capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 privileged: Optional[pulumi.Input[_builtins.bool]] = None,
+                 read_only_root_filesystem: Optional[pulumi.Input[_builtins.bool]] = None,
+                 required_drop_capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
                  run_as_group: Optional[pulumi.Input['RunAsGroupStrategyOptionsPatchArgs']] = None,
                  run_as_user: Optional[pulumi.Input['RunAsUserStrategyOptionsPatchArgs']] = None,
                  runtime_class: Optional[pulumi.Input['RuntimeClassStrategyOptionsPatchArgs']] = None,
                  se_linux: Optional[pulumi.Input['SELinuxStrategyOptionsPatchArgs']] = None,
                  supplemental_groups: Optional[pulumi.Input['SupplementalGroupsStrategyOptionsPatchArgs']] = None,
-                 volumes: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None):
+                 volumes: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None):
         """
         PodSecurityPolicySpec defines the policy enforced.
-        :param pulumi.Input[builtins.bool] allow_privilege_escalation: allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.
+        :param pulumi.Input[_builtins.bool] allow_privilege_escalation: allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.
         :param pulumi.Input[Sequence[pulumi.Input['AllowedCSIDriverPatchArgs']]] allowed_csi_drivers: AllowedCSIDrivers is a whitelist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is an alpha field, and is only honored if the API server enables the CSIInlineVolume feature gate.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] allowed_capabilities: allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] allowed_capabilities: allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
         :param pulumi.Input[Sequence[pulumi.Input['AllowedFlexVolumePatchArgs']]] allowed_flex_volumes: allowedFlexVolumes is a whitelist of allowed Flexvolumes.  Empty or nil indicates that all Flexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes is allowed in the "volumes" field.
         :param pulumi.Input[Sequence[pulumi.Input['AllowedHostPathPatchArgs']]] allowed_host_paths: allowedHostPaths is a white list of allowed host paths. Empty indicates that all host paths may be used.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] allowed_proc_mount_types: AllowedProcMountTypes is a whitelist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] allowed_unsafe_sysctls: allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to whitelist all allowed unsafe sysctls explicitly to avoid rejection.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] allowed_proc_mount_types: AllowedProcMountTypes is a whitelist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] allowed_unsafe_sysctls: allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to whitelist all allowed unsafe sysctls explicitly to avoid rejection.
                
                Examples: e.g. "foo/*" allows "foo/bar", "foo/baz", etc. e.g. "foo.*" allows "foo.bar", "foo.baz", etc.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] default_add_capabilities: defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.
-        :param pulumi.Input[builtins.bool] default_allow_privilege_escalation: defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] forbidden_sysctls: forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] default_add_capabilities: defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.
+        :param pulumi.Input[_builtins.bool] default_allow_privilege_escalation: defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] forbidden_sysctls: forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
                
                Examples: e.g. "foo/*" forbids "foo/bar", "foo/baz", etc. e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.
         :param pulumi.Input['FSGroupStrategyOptionsPatchArgs'] fs_group: fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.
-        :param pulumi.Input[builtins.bool] host_ipc: hostIPC determines if the policy allows the use of HostIPC in the pod spec.
-        :param pulumi.Input[builtins.bool] host_network: hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
-        :param pulumi.Input[builtins.bool] host_pid: hostPID determines if the policy allows the use of HostPID in the pod spec.
+        :param pulumi.Input[_builtins.bool] host_ipc: hostIPC determines if the policy allows the use of HostIPC in the pod spec.
+        :param pulumi.Input[_builtins.bool] host_network: hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
+        :param pulumi.Input[_builtins.bool] host_pid: hostPID determines if the policy allows the use of HostPID in the pod spec.
         :param pulumi.Input[Sequence[pulumi.Input['HostPortRangePatchArgs']]] host_ports: hostPorts determines which host port ranges are allowed to be exposed.
-        :param pulumi.Input[builtins.bool] privileged: privileged determines if a pod can request to be run as privileged.
-        :param pulumi.Input[builtins.bool] read_only_root_filesystem: readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] required_drop_capabilities: requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.
+        :param pulumi.Input[_builtins.bool] privileged: privileged determines if a pod can request to be run as privileged.
+        :param pulumi.Input[_builtins.bool] read_only_root_filesystem: readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] required_drop_capabilities: requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.
         :param pulumi.Input['RunAsGroupStrategyOptionsPatchArgs'] run_as_group: RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set. If this field is omitted, the pod's RunAsGroup can take any value. This field requires the RunAsGroup feature gate to be enabled.
         :param pulumi.Input['RunAsUserStrategyOptionsPatchArgs'] run_as_user: runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.
         :param pulumi.Input['RuntimeClassStrategyOptionsPatchArgs'] runtime_class: runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod. If this field is omitted, the pod's runtimeClassName field is unrestricted. Enforcement of this field depends on the RuntimeClass feature gate being enabled.
         :param pulumi.Input['SELinuxStrategyOptionsPatchArgs'] se_linux: seLinux is the strategy that will dictate the allowable labels that may be set.
         :param pulumi.Input['SupplementalGroupsStrategyOptionsPatchArgs'] supplemental_groups: supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] volumes: volumes is a white list of allowed volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] volumes: volumes is a white list of allowed volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.
         """
         if allow_privilege_escalation is not None:
             pulumi.set(__self__, "allow_privilege_escalation", allow_privilege_escalation)
@@ -1286,19 +1285,19 @@ class PodSecurityPolicySpecPatchArgs:
         if volumes is not None:
             pulumi.set(__self__, "volumes", volumes)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowPrivilegeEscalation")
-    def allow_privilege_escalation(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def allow_privilege_escalation(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.
         """
         return pulumi.get(self, "allow_privilege_escalation")
 
     @allow_privilege_escalation.setter
-    def allow_privilege_escalation(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def allow_privilege_escalation(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "allow_privilege_escalation", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowedCSIDrivers")
     def allowed_csi_drivers(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['AllowedCSIDriverPatchArgs']]]]:
         """
@@ -1310,19 +1309,19 @@ class PodSecurityPolicySpecPatchArgs:
     def allowed_csi_drivers(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['AllowedCSIDriverPatchArgs']]]]):
         pulumi.set(self, "allowed_csi_drivers", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowedCapabilities")
-    def allowed_capabilities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def allowed_capabilities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
         """
         return pulumi.get(self, "allowed_capabilities")
 
     @allowed_capabilities.setter
-    def allowed_capabilities(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def allowed_capabilities(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "allowed_capabilities", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowedFlexVolumes")
     def allowed_flex_volumes(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['AllowedFlexVolumePatchArgs']]]]:
         """
@@ -1334,7 +1333,7 @@ class PodSecurityPolicySpecPatchArgs:
     def allowed_flex_volumes(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['AllowedFlexVolumePatchArgs']]]]):
         pulumi.set(self, "allowed_flex_volumes", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowedHostPaths")
     def allowed_host_paths(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['AllowedHostPathPatchArgs']]]]:
         """
@@ -1346,21 +1345,21 @@ class PodSecurityPolicySpecPatchArgs:
     def allowed_host_paths(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['AllowedHostPathPatchArgs']]]]):
         pulumi.set(self, "allowed_host_paths", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowedProcMountTypes")
-    def allowed_proc_mount_types(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def allowed_proc_mount_types(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         AllowedProcMountTypes is a whitelist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.
         """
         return pulumi.get(self, "allowed_proc_mount_types")
 
     @allowed_proc_mount_types.setter
-    def allowed_proc_mount_types(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def allowed_proc_mount_types(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "allowed_proc_mount_types", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowedUnsafeSysctls")
-    def allowed_unsafe_sysctls(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def allowed_unsafe_sysctls(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to whitelist all allowed unsafe sysctls explicitly to avoid rejection.
 
@@ -1369,36 +1368,36 @@ class PodSecurityPolicySpecPatchArgs:
         return pulumi.get(self, "allowed_unsafe_sysctls")
 
     @allowed_unsafe_sysctls.setter
-    def allowed_unsafe_sysctls(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def allowed_unsafe_sysctls(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "allowed_unsafe_sysctls", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="defaultAddCapabilities")
-    def default_add_capabilities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def default_add_capabilities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.
         """
         return pulumi.get(self, "default_add_capabilities")
 
     @default_add_capabilities.setter
-    def default_add_capabilities(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def default_add_capabilities(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "default_add_capabilities", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="defaultAllowPrivilegeEscalation")
-    def default_allow_privilege_escalation(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def default_allow_privilege_escalation(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.
         """
         return pulumi.get(self, "default_allow_privilege_escalation")
 
     @default_allow_privilege_escalation.setter
-    def default_allow_privilege_escalation(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def default_allow_privilege_escalation(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "default_allow_privilege_escalation", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="forbiddenSysctls")
-    def forbidden_sysctls(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def forbidden_sysctls(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
 
@@ -1407,10 +1406,10 @@ class PodSecurityPolicySpecPatchArgs:
         return pulumi.get(self, "forbidden_sysctls")
 
     @forbidden_sysctls.setter
-    def forbidden_sysctls(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def forbidden_sysctls(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "forbidden_sysctls", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="fsGroup")
     def fs_group(self) -> Optional[pulumi.Input['FSGroupStrategyOptionsPatchArgs']]:
         """
@@ -1422,43 +1421,43 @@ class PodSecurityPolicySpecPatchArgs:
     def fs_group(self, value: Optional[pulumi.Input['FSGroupStrategyOptionsPatchArgs']]):
         pulumi.set(self, "fs_group", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="hostIPC")
-    def host_ipc(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def host_ipc(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         hostIPC determines if the policy allows the use of HostIPC in the pod spec.
         """
         return pulumi.get(self, "host_ipc")
 
     @host_ipc.setter
-    def host_ipc(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def host_ipc(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "host_ipc", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="hostNetwork")
-    def host_network(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def host_network(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
         """
         return pulumi.get(self, "host_network")
 
     @host_network.setter
-    def host_network(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def host_network(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "host_network", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="hostPID")
-    def host_pid(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def host_pid(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         hostPID determines if the policy allows the use of HostPID in the pod spec.
         """
         return pulumi.get(self, "host_pid")
 
     @host_pid.setter
-    def host_pid(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def host_pid(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "host_pid", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="hostPorts")
     def host_ports(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['HostPortRangePatchArgs']]]]:
         """
@@ -1470,43 +1469,43 @@ class PodSecurityPolicySpecPatchArgs:
     def host_ports(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['HostPortRangePatchArgs']]]]):
         pulumi.set(self, "host_ports", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def privileged(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def privileged(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         privileged determines if a pod can request to be run as privileged.
         """
         return pulumi.get(self, "privileged")
 
     @privileged.setter
-    def privileged(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def privileged(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "privileged", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="readOnlyRootFilesystem")
-    def read_only_root_filesystem(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def read_only_root_filesystem(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.
         """
         return pulumi.get(self, "read_only_root_filesystem")
 
     @read_only_root_filesystem.setter
-    def read_only_root_filesystem(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def read_only_root_filesystem(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "read_only_root_filesystem", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="requiredDropCapabilities")
-    def required_drop_capabilities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def required_drop_capabilities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.
         """
         return pulumi.get(self, "required_drop_capabilities")
 
     @required_drop_capabilities.setter
-    def required_drop_capabilities(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def required_drop_capabilities(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "required_drop_capabilities", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="runAsGroup")
     def run_as_group(self) -> Optional[pulumi.Input['RunAsGroupStrategyOptionsPatchArgs']]:
         """
@@ -1518,7 +1517,7 @@ class PodSecurityPolicySpecPatchArgs:
     def run_as_group(self, value: Optional[pulumi.Input['RunAsGroupStrategyOptionsPatchArgs']]):
         pulumi.set(self, "run_as_group", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="runAsUser")
     def run_as_user(self) -> Optional[pulumi.Input['RunAsUserStrategyOptionsPatchArgs']]:
         """
@@ -1530,7 +1529,7 @@ class PodSecurityPolicySpecPatchArgs:
     def run_as_user(self, value: Optional[pulumi.Input['RunAsUserStrategyOptionsPatchArgs']]):
         pulumi.set(self, "run_as_user", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="runtimeClass")
     def runtime_class(self) -> Optional[pulumi.Input['RuntimeClassStrategyOptionsPatchArgs']]:
         """
@@ -1542,7 +1541,7 @@ class PodSecurityPolicySpecPatchArgs:
     def runtime_class(self, value: Optional[pulumi.Input['RuntimeClassStrategyOptionsPatchArgs']]):
         pulumi.set(self, "runtime_class", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="seLinux")
     def se_linux(self) -> Optional[pulumi.Input['SELinuxStrategyOptionsPatchArgs']]:
         """
@@ -1554,7 +1553,7 @@ class PodSecurityPolicySpecPatchArgs:
     def se_linux(self, value: Optional[pulumi.Input['SELinuxStrategyOptionsPatchArgs']]):
         pulumi.set(self, "se_linux", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="supplementalGroups")
     def supplemental_groups(self) -> Optional[pulumi.Input['SupplementalGroupsStrategyOptionsPatchArgs']]:
         """
@@ -1566,16 +1565,16 @@ class PodSecurityPolicySpecPatchArgs:
     def supplemental_groups(self, value: Optional[pulumi.Input['SupplementalGroupsStrategyOptionsPatchArgs']]):
         pulumi.set(self, "supplemental_groups", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def volumes(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def volumes(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         volumes is a white list of allowed volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.
         """
         return pulumi.get(self, "volumes")
 
     @volumes.setter
-    def volumes(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def volumes(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "volumes", value)
 
 
@@ -1600,7 +1599,7 @@ if not MYPY:
         """
         supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.
         """
-        allow_privilege_escalation: NotRequired[pulumi.Input[builtins.bool]]
+        allow_privilege_escalation: NotRequired[pulumi.Input[_builtins.bool]]
         """
         allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.
         """
@@ -1608,7 +1607,7 @@ if not MYPY:
         """
         AllowedCSIDrivers is a whitelist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is an alpha field, and is only honored if the API server enables the CSIInlineVolume feature gate.
         """
-        allowed_capabilities: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        allowed_capabilities: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
         """
@@ -1620,39 +1619,39 @@ if not MYPY:
         """
         allowedHostPaths is a white list of allowed host paths. Empty indicates that all host paths may be used.
         """
-        allowed_proc_mount_types: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        allowed_proc_mount_types: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         AllowedProcMountTypes is a whitelist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.
         """
-        allowed_unsafe_sysctls: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        allowed_unsafe_sysctls: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to whitelist all allowed unsafe sysctls explicitly to avoid rejection.
 
         Examples: e.g. "foo/*" allows "foo/bar", "foo/baz", etc. e.g. "foo.*" allows "foo.bar", "foo.baz", etc.
         """
-        default_add_capabilities: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        default_add_capabilities: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.
         """
-        default_allow_privilege_escalation: NotRequired[pulumi.Input[builtins.bool]]
+        default_allow_privilege_escalation: NotRequired[pulumi.Input[_builtins.bool]]
         """
         defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.
         """
-        forbidden_sysctls: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        forbidden_sysctls: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
 
         Examples: e.g. "foo/*" forbids "foo/bar", "foo/baz", etc. e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.
         """
-        host_ipc: NotRequired[pulumi.Input[builtins.bool]]
+        host_ipc: NotRequired[pulumi.Input[_builtins.bool]]
         """
         hostIPC determines if the policy allows the use of HostIPC in the pod spec.
         """
-        host_network: NotRequired[pulumi.Input[builtins.bool]]
+        host_network: NotRequired[pulumi.Input[_builtins.bool]]
         """
         hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
         """
-        host_pid: NotRequired[pulumi.Input[builtins.bool]]
+        host_pid: NotRequired[pulumi.Input[_builtins.bool]]
         """
         hostPID determines if the policy allows the use of HostPID in the pod spec.
         """
@@ -1660,15 +1659,15 @@ if not MYPY:
         """
         hostPorts determines which host port ranges are allowed to be exposed.
         """
-        privileged: NotRequired[pulumi.Input[builtins.bool]]
+        privileged: NotRequired[pulumi.Input[_builtins.bool]]
         """
         privileged determines if a pod can request to be run as privileged.
         """
-        read_only_root_filesystem: NotRequired[pulumi.Input[builtins.bool]]
+        read_only_root_filesystem: NotRequired[pulumi.Input[_builtins.bool]]
         """
         readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.
         """
-        required_drop_capabilities: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        required_drop_capabilities: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.
         """
@@ -1680,7 +1679,7 @@ if not MYPY:
         """
         runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod. If this field is omitted, the pod's runtimeClassName field is unrestricted. Enforcement of this field depends on the RuntimeClass feature gate being enabled.
         """
-        volumes: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        volumes: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         volumes is a white list of allowed volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.
         """
@@ -1694,56 +1693,56 @@ class PodSecurityPolicySpecArgs:
                  run_as_user: pulumi.Input['RunAsUserStrategyOptionsArgs'],
                  se_linux: pulumi.Input['SELinuxStrategyOptionsArgs'],
                  supplemental_groups: pulumi.Input['SupplementalGroupsStrategyOptionsArgs'],
-                 allow_privilege_escalation: Optional[pulumi.Input[builtins.bool]] = None,
+                 allow_privilege_escalation: Optional[pulumi.Input[_builtins.bool]] = None,
                  allowed_csi_drivers: Optional[pulumi.Input[Sequence[pulumi.Input['AllowedCSIDriverArgs']]]] = None,
-                 allowed_capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 allowed_capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
                  allowed_flex_volumes: Optional[pulumi.Input[Sequence[pulumi.Input['AllowedFlexVolumeArgs']]]] = None,
                  allowed_host_paths: Optional[pulumi.Input[Sequence[pulumi.Input['AllowedHostPathArgs']]]] = None,
-                 allowed_proc_mount_types: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 allowed_unsafe_sysctls: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 default_add_capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 default_allow_privilege_escalation: Optional[pulumi.Input[builtins.bool]] = None,
-                 forbidden_sysctls: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 host_ipc: Optional[pulumi.Input[builtins.bool]] = None,
-                 host_network: Optional[pulumi.Input[builtins.bool]] = None,
-                 host_pid: Optional[pulumi.Input[builtins.bool]] = None,
+                 allowed_proc_mount_types: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 allowed_unsafe_sysctls: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 default_add_capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 default_allow_privilege_escalation: Optional[pulumi.Input[_builtins.bool]] = None,
+                 forbidden_sysctls: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 host_ipc: Optional[pulumi.Input[_builtins.bool]] = None,
+                 host_network: Optional[pulumi.Input[_builtins.bool]] = None,
+                 host_pid: Optional[pulumi.Input[_builtins.bool]] = None,
                  host_ports: Optional[pulumi.Input[Sequence[pulumi.Input['HostPortRangeArgs']]]] = None,
-                 privileged: Optional[pulumi.Input[builtins.bool]] = None,
-                 read_only_root_filesystem: Optional[pulumi.Input[builtins.bool]] = None,
-                 required_drop_capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
+                 privileged: Optional[pulumi.Input[_builtins.bool]] = None,
+                 read_only_root_filesystem: Optional[pulumi.Input[_builtins.bool]] = None,
+                 required_drop_capabilities: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
                  run_as_group: Optional[pulumi.Input['RunAsGroupStrategyOptionsArgs']] = None,
                  runtime_class: Optional[pulumi.Input['RuntimeClassStrategyOptionsArgs']] = None,
-                 volumes: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None):
+                 volumes: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None):
         """
         PodSecurityPolicySpec defines the policy enforced.
         :param pulumi.Input['FSGroupStrategyOptionsArgs'] fs_group: fsGroup is the strategy that will dictate what fs group is used by the SecurityContext.
         :param pulumi.Input['RunAsUserStrategyOptionsArgs'] run_as_user: runAsUser is the strategy that will dictate the allowable RunAsUser values that may be set.
         :param pulumi.Input['SELinuxStrategyOptionsArgs'] se_linux: seLinux is the strategy that will dictate the allowable labels that may be set.
         :param pulumi.Input['SupplementalGroupsStrategyOptionsArgs'] supplemental_groups: supplementalGroups is the strategy that will dictate what supplemental groups are used by the SecurityContext.
-        :param pulumi.Input[builtins.bool] allow_privilege_escalation: allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.
+        :param pulumi.Input[_builtins.bool] allow_privilege_escalation: allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.
         :param pulumi.Input[Sequence[pulumi.Input['AllowedCSIDriverArgs']]] allowed_csi_drivers: AllowedCSIDrivers is a whitelist of inline CSI drivers that must be explicitly set to be embedded within a pod spec. An empty value indicates that any CSI driver can be used for inline ephemeral volumes. This is an alpha field, and is only honored if the API server enables the CSIInlineVolume feature gate.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] allowed_capabilities: allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] allowed_capabilities: allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
         :param pulumi.Input[Sequence[pulumi.Input['AllowedFlexVolumeArgs']]] allowed_flex_volumes: allowedFlexVolumes is a whitelist of allowed Flexvolumes.  Empty or nil indicates that all Flexvolumes may be used.  This parameter is effective only when the usage of the Flexvolumes is allowed in the "volumes" field.
         :param pulumi.Input[Sequence[pulumi.Input['AllowedHostPathArgs']]] allowed_host_paths: allowedHostPaths is a white list of allowed host paths. Empty indicates that all host paths may be used.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] allowed_proc_mount_types: AllowedProcMountTypes is a whitelist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] allowed_unsafe_sysctls: allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to whitelist all allowed unsafe sysctls explicitly to avoid rejection.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] allowed_proc_mount_types: AllowedProcMountTypes is a whitelist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] allowed_unsafe_sysctls: allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to whitelist all allowed unsafe sysctls explicitly to avoid rejection.
                
                Examples: e.g. "foo/*" allows "foo/bar", "foo/baz", etc. e.g. "foo.*" allows "foo.bar", "foo.baz", etc.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] default_add_capabilities: defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.
-        :param pulumi.Input[builtins.bool] default_allow_privilege_escalation: defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] forbidden_sysctls: forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] default_add_capabilities: defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.
+        :param pulumi.Input[_builtins.bool] default_allow_privilege_escalation: defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] forbidden_sysctls: forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
                
                Examples: e.g. "foo/*" forbids "foo/bar", "foo/baz", etc. e.g. "foo.*" forbids "foo.bar", "foo.baz", etc.
-        :param pulumi.Input[builtins.bool] host_ipc: hostIPC determines if the policy allows the use of HostIPC in the pod spec.
-        :param pulumi.Input[builtins.bool] host_network: hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
-        :param pulumi.Input[builtins.bool] host_pid: hostPID determines if the policy allows the use of HostPID in the pod spec.
+        :param pulumi.Input[_builtins.bool] host_ipc: hostIPC determines if the policy allows the use of HostIPC in the pod spec.
+        :param pulumi.Input[_builtins.bool] host_network: hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
+        :param pulumi.Input[_builtins.bool] host_pid: hostPID determines if the policy allows the use of HostPID in the pod spec.
         :param pulumi.Input[Sequence[pulumi.Input['HostPortRangeArgs']]] host_ports: hostPorts determines which host port ranges are allowed to be exposed.
-        :param pulumi.Input[builtins.bool] privileged: privileged determines if a pod can request to be run as privileged.
-        :param pulumi.Input[builtins.bool] read_only_root_filesystem: readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] required_drop_capabilities: requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.
+        :param pulumi.Input[_builtins.bool] privileged: privileged determines if a pod can request to be run as privileged.
+        :param pulumi.Input[_builtins.bool] read_only_root_filesystem: readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] required_drop_capabilities: requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.
         :param pulumi.Input['RunAsGroupStrategyOptionsArgs'] run_as_group: RunAsGroup is the strategy that will dictate the allowable RunAsGroup values that may be set. If this field is omitted, the pod's RunAsGroup can take any value. This field requires the RunAsGroup feature gate to be enabled.
         :param pulumi.Input['RuntimeClassStrategyOptionsArgs'] runtime_class: runtimeClass is the strategy that will dictate the allowable RuntimeClasses for a pod. If this field is omitted, the pod's runtimeClassName field is unrestricted. Enforcement of this field depends on the RuntimeClass feature gate being enabled.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] volumes: volumes is a white list of allowed volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] volumes: volumes is a white list of allowed volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.
         """
         pulumi.set(__self__, "fs_group", fs_group)
         pulumi.set(__self__, "run_as_user", run_as_user)
@@ -1790,7 +1789,7 @@ class PodSecurityPolicySpecArgs:
         if volumes is not None:
             pulumi.set(__self__, "volumes", volumes)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="fsGroup")
     def fs_group(self) -> pulumi.Input['FSGroupStrategyOptionsArgs']:
         """
@@ -1802,7 +1801,7 @@ class PodSecurityPolicySpecArgs:
     def fs_group(self, value: pulumi.Input['FSGroupStrategyOptionsArgs']):
         pulumi.set(self, "fs_group", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="runAsUser")
     def run_as_user(self) -> pulumi.Input['RunAsUserStrategyOptionsArgs']:
         """
@@ -1814,7 +1813,7 @@ class PodSecurityPolicySpecArgs:
     def run_as_user(self, value: pulumi.Input['RunAsUserStrategyOptionsArgs']):
         pulumi.set(self, "run_as_user", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="seLinux")
     def se_linux(self) -> pulumi.Input['SELinuxStrategyOptionsArgs']:
         """
@@ -1826,7 +1825,7 @@ class PodSecurityPolicySpecArgs:
     def se_linux(self, value: pulumi.Input['SELinuxStrategyOptionsArgs']):
         pulumi.set(self, "se_linux", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="supplementalGroups")
     def supplemental_groups(self) -> pulumi.Input['SupplementalGroupsStrategyOptionsArgs']:
         """
@@ -1838,19 +1837,19 @@ class PodSecurityPolicySpecArgs:
     def supplemental_groups(self, value: pulumi.Input['SupplementalGroupsStrategyOptionsArgs']):
         pulumi.set(self, "supplemental_groups", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowPrivilegeEscalation")
-    def allow_privilege_escalation(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def allow_privilege_escalation(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         allowPrivilegeEscalation determines if a pod can request to allow privilege escalation. If unspecified, defaults to true.
         """
         return pulumi.get(self, "allow_privilege_escalation")
 
     @allow_privilege_escalation.setter
-    def allow_privilege_escalation(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def allow_privilege_escalation(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "allow_privilege_escalation", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowedCSIDrivers")
     def allowed_csi_drivers(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['AllowedCSIDriverArgs']]]]:
         """
@@ -1862,19 +1861,19 @@ class PodSecurityPolicySpecArgs:
     def allowed_csi_drivers(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['AllowedCSIDriverArgs']]]]):
         pulumi.set(self, "allowed_csi_drivers", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowedCapabilities")
-    def allowed_capabilities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def allowed_capabilities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         allowedCapabilities is a list of capabilities that can be requested to add to the container. Capabilities in this field may be added at the pod author's discretion. You must not list a capability in both allowedCapabilities and requiredDropCapabilities.
         """
         return pulumi.get(self, "allowed_capabilities")
 
     @allowed_capabilities.setter
-    def allowed_capabilities(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def allowed_capabilities(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "allowed_capabilities", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowedFlexVolumes")
     def allowed_flex_volumes(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['AllowedFlexVolumeArgs']]]]:
         """
@@ -1886,7 +1885,7 @@ class PodSecurityPolicySpecArgs:
     def allowed_flex_volumes(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['AllowedFlexVolumeArgs']]]]):
         pulumi.set(self, "allowed_flex_volumes", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowedHostPaths")
     def allowed_host_paths(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['AllowedHostPathArgs']]]]:
         """
@@ -1898,21 +1897,21 @@ class PodSecurityPolicySpecArgs:
     def allowed_host_paths(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['AllowedHostPathArgs']]]]):
         pulumi.set(self, "allowed_host_paths", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowedProcMountTypes")
-    def allowed_proc_mount_types(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def allowed_proc_mount_types(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         AllowedProcMountTypes is a whitelist of allowed ProcMountTypes. Empty or nil indicates that only the DefaultProcMountType may be used. This requires the ProcMountType feature flag to be enabled.
         """
         return pulumi.get(self, "allowed_proc_mount_types")
 
     @allowed_proc_mount_types.setter
-    def allowed_proc_mount_types(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def allowed_proc_mount_types(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "allowed_proc_mount_types", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowedUnsafeSysctls")
-    def allowed_unsafe_sysctls(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def allowed_unsafe_sysctls(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         allowedUnsafeSysctls is a list of explicitly allowed unsafe sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of allowed sysctls. Single * means all unsafe sysctls are allowed. Kubelet has to whitelist all allowed unsafe sysctls explicitly to avoid rejection.
 
@@ -1921,36 +1920,36 @@ class PodSecurityPolicySpecArgs:
         return pulumi.get(self, "allowed_unsafe_sysctls")
 
     @allowed_unsafe_sysctls.setter
-    def allowed_unsafe_sysctls(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def allowed_unsafe_sysctls(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "allowed_unsafe_sysctls", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="defaultAddCapabilities")
-    def default_add_capabilities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def default_add_capabilities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         defaultAddCapabilities is the default set of capabilities that will be added to the container unless the pod spec specifically drops the capability.  You may not list a capability in both defaultAddCapabilities and requiredDropCapabilities. Capabilities added here are implicitly allowed, and need not be included in the allowedCapabilities list.
         """
         return pulumi.get(self, "default_add_capabilities")
 
     @default_add_capabilities.setter
-    def default_add_capabilities(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def default_add_capabilities(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "default_add_capabilities", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="defaultAllowPrivilegeEscalation")
-    def default_allow_privilege_escalation(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def default_allow_privilege_escalation(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         defaultAllowPrivilegeEscalation controls the default setting for whether a process can gain more privileges than its parent process.
         """
         return pulumi.get(self, "default_allow_privilege_escalation")
 
     @default_allow_privilege_escalation.setter
-    def default_allow_privilege_escalation(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def default_allow_privilege_escalation(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "default_allow_privilege_escalation", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="forbiddenSysctls")
-    def forbidden_sysctls(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def forbidden_sysctls(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         forbiddenSysctls is a list of explicitly forbidden sysctls, defaults to none. Each entry is either a plain sysctl name or ends in "*" in which case it is considered as a prefix of forbidden sysctls. Single * means all sysctls are forbidden.
 
@@ -1959,46 +1958,46 @@ class PodSecurityPolicySpecArgs:
         return pulumi.get(self, "forbidden_sysctls")
 
     @forbidden_sysctls.setter
-    def forbidden_sysctls(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def forbidden_sysctls(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "forbidden_sysctls", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="hostIPC")
-    def host_ipc(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def host_ipc(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         hostIPC determines if the policy allows the use of HostIPC in the pod spec.
         """
         return pulumi.get(self, "host_ipc")
 
     @host_ipc.setter
-    def host_ipc(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def host_ipc(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "host_ipc", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="hostNetwork")
-    def host_network(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def host_network(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         hostNetwork determines if the policy allows the use of HostNetwork in the pod spec.
         """
         return pulumi.get(self, "host_network")
 
     @host_network.setter
-    def host_network(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def host_network(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "host_network", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="hostPID")
-    def host_pid(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def host_pid(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         hostPID determines if the policy allows the use of HostPID in the pod spec.
         """
         return pulumi.get(self, "host_pid")
 
     @host_pid.setter
-    def host_pid(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def host_pid(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "host_pid", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="hostPorts")
     def host_ports(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['HostPortRangeArgs']]]]:
         """
@@ -2010,43 +2009,43 @@ class PodSecurityPolicySpecArgs:
     def host_ports(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['HostPortRangeArgs']]]]):
         pulumi.set(self, "host_ports", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def privileged(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def privileged(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         privileged determines if a pod can request to be run as privileged.
         """
         return pulumi.get(self, "privileged")
 
     @privileged.setter
-    def privileged(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def privileged(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "privileged", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="readOnlyRootFilesystem")
-    def read_only_root_filesystem(self) -> Optional[pulumi.Input[builtins.bool]]:
+    def read_only_root_filesystem(self) -> Optional[pulumi.Input[_builtins.bool]]:
         """
         readOnlyRootFilesystem when set to true will force containers to run with a read only root file system.  If the container specifically requests to run with a non-read only root file system the PSP should deny the pod. If set to false the container may run with a read only root file system if it wishes but it will not be forced to.
         """
         return pulumi.get(self, "read_only_root_filesystem")
 
     @read_only_root_filesystem.setter
-    def read_only_root_filesystem(self, value: Optional[pulumi.Input[builtins.bool]]):
+    def read_only_root_filesystem(self, value: Optional[pulumi.Input[_builtins.bool]]):
         pulumi.set(self, "read_only_root_filesystem", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="requiredDropCapabilities")
-    def required_drop_capabilities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def required_drop_capabilities(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         requiredDropCapabilities are the capabilities that will be dropped from the container.  These are required to be dropped and cannot be added.
         """
         return pulumi.get(self, "required_drop_capabilities")
 
     @required_drop_capabilities.setter
-    def required_drop_capabilities(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def required_drop_capabilities(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "required_drop_capabilities", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="runAsGroup")
     def run_as_group(self) -> Optional[pulumi.Input['RunAsGroupStrategyOptionsArgs']]:
         """
@@ -2058,7 +2057,7 @@ class PodSecurityPolicySpecArgs:
     def run_as_group(self, value: Optional[pulumi.Input['RunAsGroupStrategyOptionsArgs']]):
         pulumi.set(self, "run_as_group", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="runtimeClass")
     def runtime_class(self) -> Optional[pulumi.Input['RuntimeClassStrategyOptionsArgs']]:
         """
@@ -2070,16 +2069,16 @@ class PodSecurityPolicySpecArgs:
     def runtime_class(self, value: Optional[pulumi.Input['RuntimeClassStrategyOptionsArgs']]):
         pulumi.set(self, "runtime_class", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def volumes(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def volumes(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         volumes is a white list of allowed volume plugins. Empty indicates that no volumes may be used. To allow all volumes you may use '*'.
         """
         return pulumi.get(self, "volumes")
 
     @volumes.setter
-    def volumes(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def volumes(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "volumes", value)
 
 
@@ -2088,11 +2087,11 @@ if not MYPY:
         """
         PodSecurityPolicy governs the ability to make requests that affect the Security Context that will be applied to a pod and container.
         """
-        api_version: NotRequired[pulumi.Input[builtins.str]]
+        api_version: NotRequired[pulumi.Input[_builtins.str]]
         """
         APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
         """
-        kind: NotRequired[pulumi.Input[builtins.str]]
+        kind: NotRequired[pulumi.Input[_builtins.str]]
         """
         Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
         """
@@ -2110,14 +2109,14 @@ elif False:
 @pulumi.input_type
 class PodSecurityPolicyArgs:
     def __init__(__self__, *,
-                 api_version: Optional[pulumi.Input[builtins.str]] = None,
-                 kind: Optional[pulumi.Input[builtins.str]] = None,
+                 api_version: Optional[pulumi.Input[_builtins.str]] = None,
+                 kind: Optional[pulumi.Input[_builtins.str]] = None,
                  metadata: Optional[pulumi.Input['_meta.v1.ObjectMetaArgs']] = None,
                  spec: Optional[pulumi.Input['PodSecurityPolicySpecArgs']] = None):
         """
         PodSecurityPolicy governs the ability to make requests that affect the Security Context that will be applied to a pod and container.
-        :param pulumi.Input[builtins.str] api_version: APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
-        :param pulumi.Input[builtins.str] kind: Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+        :param pulumi.Input[_builtins.str] api_version: APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+        :param pulumi.Input[_builtins.str] kind: Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
         :param pulumi.Input['_meta.v1.ObjectMetaArgs'] metadata: Standard object's metadata. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
         :param pulumi.Input['PodSecurityPolicySpecArgs'] spec: spec defines the policy enforced.
         """
@@ -2130,31 +2129,31 @@ class PodSecurityPolicyArgs:
         if spec is not None:
             pulumi.set(__self__, "spec", spec)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="apiVersion")
-    def api_version(self) -> Optional[pulumi.Input[builtins.str]]:
+    def api_version(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
         """
         return pulumi.get(self, "api_version")
 
     @api_version.setter
-    def api_version(self, value: Optional[pulumi.Input[builtins.str]]):
+    def api_version(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "api_version", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def kind(self) -> Optional[pulumi.Input[builtins.str]]:
+    def kind(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
         """
         return pulumi.get(self, "kind")
 
     @kind.setter
-    def kind(self, value: Optional[pulumi.Input[builtins.str]]):
+    def kind(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "kind", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def metadata(self) -> Optional[pulumi.Input['_meta.v1.ObjectMetaArgs']]:
         """
@@ -2166,7 +2165,7 @@ class PodSecurityPolicyArgs:
     def metadata(self, value: Optional[pulumi.Input['_meta.v1.ObjectMetaArgs']]):
         pulumi.set(self, "metadata", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def spec(self) -> Optional[pulumi.Input['PodSecurityPolicySpecArgs']]:
         """
@@ -2188,7 +2187,7 @@ if not MYPY:
         """
         ranges are the allowed ranges of gids that may be used. If you would like to force a single gid then supply a single range with the same start and end. Required for MustRunAs.
         """
-        rule: NotRequired[pulumi.Input[builtins.str]]
+        rule: NotRequired[pulumi.Input[_builtins.str]]
         """
         rule is the strategy that will dictate the allowable RunAsGroup values that may be set.
         """
@@ -2199,18 +2198,18 @@ elif False:
 class RunAsGroupStrategyOptionsPatchArgs:
     def __init__(__self__, *,
                  ranges: Optional[pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]]] = None,
-                 rule: Optional[pulumi.Input[builtins.str]] = None):
+                 rule: Optional[pulumi.Input[_builtins.str]] = None):
         """
         RunAsGroupStrategyOptions defines the strategy type and any options used to create the strategy.
         :param pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]] ranges: ranges are the allowed ranges of gids that may be used. If you would like to force a single gid then supply a single range with the same start and end. Required for MustRunAs.
-        :param pulumi.Input[builtins.str] rule: rule is the strategy that will dictate the allowable RunAsGroup values that may be set.
+        :param pulumi.Input[_builtins.str] rule: rule is the strategy that will dictate the allowable RunAsGroup values that may be set.
         """
         if ranges is not None:
             pulumi.set(__self__, "ranges", ranges)
         if rule is not None:
             pulumi.set(__self__, "rule", rule)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]]]:
         """
@@ -2222,16 +2221,16 @@ class RunAsGroupStrategyOptionsPatchArgs:
     def ranges(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]]]):
         pulumi.set(self, "ranges", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def rule(self) -> Optional[pulumi.Input[builtins.str]]:
+    def rule(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         rule is the strategy that will dictate the allowable RunAsGroup values that may be set.
         """
         return pulumi.get(self, "rule")
 
     @rule.setter
-    def rule(self, value: Optional[pulumi.Input[builtins.str]]):
+    def rule(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "rule", value)
 
 
@@ -2240,7 +2239,7 @@ if not MYPY:
         """
         RunAsGroupStrategyOptions defines the strategy type and any options used to create the strategy.
         """
-        rule: pulumi.Input[builtins.str]
+        rule: pulumi.Input[_builtins.str]
         """
         rule is the strategy that will dictate the allowable RunAsGroup values that may be set.
         """
@@ -2254,30 +2253,30 @@ elif False:
 @pulumi.input_type
 class RunAsGroupStrategyOptionsArgs:
     def __init__(__self__, *,
-                 rule: pulumi.Input[builtins.str],
+                 rule: pulumi.Input[_builtins.str],
                  ranges: Optional[pulumi.Input[Sequence[pulumi.Input['IDRangeArgs']]]] = None):
         """
         RunAsGroupStrategyOptions defines the strategy type and any options used to create the strategy.
-        :param pulumi.Input[builtins.str] rule: rule is the strategy that will dictate the allowable RunAsGroup values that may be set.
+        :param pulumi.Input[_builtins.str] rule: rule is the strategy that will dictate the allowable RunAsGroup values that may be set.
         :param pulumi.Input[Sequence[pulumi.Input['IDRangeArgs']]] ranges: ranges are the allowed ranges of gids that may be used. If you would like to force a single gid then supply a single range with the same start and end. Required for MustRunAs.
         """
         pulumi.set(__self__, "rule", rule)
         if ranges is not None:
             pulumi.set(__self__, "ranges", ranges)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def rule(self) -> pulumi.Input[builtins.str]:
+    def rule(self) -> pulumi.Input[_builtins.str]:
         """
         rule is the strategy that will dictate the allowable RunAsGroup values that may be set.
         """
         return pulumi.get(self, "rule")
 
     @rule.setter
-    def rule(self, value: pulumi.Input[builtins.str]):
+    def rule(self, value: pulumi.Input[_builtins.str]):
         pulumi.set(self, "rule", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['IDRangeArgs']]]]:
         """
@@ -2299,7 +2298,7 @@ if not MYPY:
         """
         ranges are the allowed ranges of uids that may be used. If you would like to force a single uid then supply a single range with the same start and end. Required for MustRunAs.
         """
-        rule: NotRequired[pulumi.Input[builtins.str]]
+        rule: NotRequired[pulumi.Input[_builtins.str]]
         """
         rule is the strategy that will dictate the allowable RunAsUser values that may be set.
         """
@@ -2310,18 +2309,18 @@ elif False:
 class RunAsUserStrategyOptionsPatchArgs:
     def __init__(__self__, *,
                  ranges: Optional[pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]]] = None,
-                 rule: Optional[pulumi.Input[builtins.str]] = None):
+                 rule: Optional[pulumi.Input[_builtins.str]] = None):
         """
         RunAsUserStrategyOptions defines the strategy type and any options used to create the strategy.
         :param pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]] ranges: ranges are the allowed ranges of uids that may be used. If you would like to force a single uid then supply a single range with the same start and end. Required for MustRunAs.
-        :param pulumi.Input[builtins.str] rule: rule is the strategy that will dictate the allowable RunAsUser values that may be set.
+        :param pulumi.Input[_builtins.str] rule: rule is the strategy that will dictate the allowable RunAsUser values that may be set.
         """
         if ranges is not None:
             pulumi.set(__self__, "ranges", ranges)
         if rule is not None:
             pulumi.set(__self__, "rule", rule)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]]]:
         """
@@ -2333,16 +2332,16 @@ class RunAsUserStrategyOptionsPatchArgs:
     def ranges(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]]]):
         pulumi.set(self, "ranges", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def rule(self) -> Optional[pulumi.Input[builtins.str]]:
+    def rule(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         rule is the strategy that will dictate the allowable RunAsUser values that may be set.
         """
         return pulumi.get(self, "rule")
 
     @rule.setter
-    def rule(self, value: Optional[pulumi.Input[builtins.str]]):
+    def rule(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "rule", value)
 
 
@@ -2351,7 +2350,7 @@ if not MYPY:
         """
         RunAsUserStrategyOptions defines the strategy type and any options used to create the strategy.
         """
-        rule: pulumi.Input[builtins.str]
+        rule: pulumi.Input[_builtins.str]
         """
         rule is the strategy that will dictate the allowable RunAsUser values that may be set.
         """
@@ -2365,30 +2364,30 @@ elif False:
 @pulumi.input_type
 class RunAsUserStrategyOptionsArgs:
     def __init__(__self__, *,
-                 rule: pulumi.Input[builtins.str],
+                 rule: pulumi.Input[_builtins.str],
                  ranges: Optional[pulumi.Input[Sequence[pulumi.Input['IDRangeArgs']]]] = None):
         """
         RunAsUserStrategyOptions defines the strategy type and any options used to create the strategy.
-        :param pulumi.Input[builtins.str] rule: rule is the strategy that will dictate the allowable RunAsUser values that may be set.
+        :param pulumi.Input[_builtins.str] rule: rule is the strategy that will dictate the allowable RunAsUser values that may be set.
         :param pulumi.Input[Sequence[pulumi.Input['IDRangeArgs']]] ranges: ranges are the allowed ranges of uids that may be used. If you would like to force a single uid then supply a single range with the same start and end. Required for MustRunAs.
         """
         pulumi.set(__self__, "rule", rule)
         if ranges is not None:
             pulumi.set(__self__, "ranges", ranges)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def rule(self) -> pulumi.Input[builtins.str]:
+    def rule(self) -> pulumi.Input[_builtins.str]:
         """
         rule is the strategy that will dictate the allowable RunAsUser values that may be set.
         """
         return pulumi.get(self, "rule")
 
     @rule.setter
-    def rule(self, value: pulumi.Input[builtins.str]):
+    def rule(self, value: pulumi.Input[_builtins.str]):
         pulumi.set(self, "rule", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['IDRangeArgs']]]]:
         """
@@ -2406,11 +2405,11 @@ if not MYPY:
         """
         RuntimeClassStrategyOptions define the strategy that will dictate the allowable RuntimeClasses for a pod.
         """
-        allowed_runtime_class_names: NotRequired[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]
+        allowed_runtime_class_names: NotRequired[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]
         """
         allowedRuntimeClassNames is a whitelist of RuntimeClass names that may be specified on a pod. A value of "*" means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.
         """
-        default_runtime_class_name: NotRequired[pulumi.Input[builtins.str]]
+        default_runtime_class_name: NotRequired[pulumi.Input[_builtins.str]]
         """
         defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.
         """
@@ -2420,40 +2419,40 @@ elif False:
 @pulumi.input_type
 class RuntimeClassStrategyOptionsPatchArgs:
     def __init__(__self__, *,
-                 allowed_runtime_class_names: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]] = None,
-                 default_runtime_class_name: Optional[pulumi.Input[builtins.str]] = None):
+                 allowed_runtime_class_names: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]] = None,
+                 default_runtime_class_name: Optional[pulumi.Input[_builtins.str]] = None):
         """
         RuntimeClassStrategyOptions define the strategy that will dictate the allowable RuntimeClasses for a pod.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] allowed_runtime_class_names: allowedRuntimeClassNames is a whitelist of RuntimeClass names that may be specified on a pod. A value of "*" means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.
-        :param pulumi.Input[builtins.str] default_runtime_class_name: defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] allowed_runtime_class_names: allowedRuntimeClassNames is a whitelist of RuntimeClass names that may be specified on a pod. A value of "*" means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.
+        :param pulumi.Input[_builtins.str] default_runtime_class_name: defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.
         """
         if allowed_runtime_class_names is not None:
             pulumi.set(__self__, "allowed_runtime_class_names", allowed_runtime_class_names)
         if default_runtime_class_name is not None:
             pulumi.set(__self__, "default_runtime_class_name", default_runtime_class_name)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowedRuntimeClassNames")
-    def allowed_runtime_class_names(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]:
+    def allowed_runtime_class_names(self) -> Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]:
         """
         allowedRuntimeClassNames is a whitelist of RuntimeClass names that may be specified on a pod. A value of "*" means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.
         """
         return pulumi.get(self, "allowed_runtime_class_names")
 
     @allowed_runtime_class_names.setter
-    def allowed_runtime_class_names(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[builtins.str]]]]):
+    def allowed_runtime_class_names(self, value: Optional[pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]]):
         pulumi.set(self, "allowed_runtime_class_names", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="defaultRuntimeClassName")
-    def default_runtime_class_name(self) -> Optional[pulumi.Input[builtins.str]]:
+    def default_runtime_class_name(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.
         """
         return pulumi.get(self, "default_runtime_class_name")
 
     @default_runtime_class_name.setter
-    def default_runtime_class_name(self, value: Optional[pulumi.Input[builtins.str]]):
+    def default_runtime_class_name(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "default_runtime_class_name", value)
 
 
@@ -2462,11 +2461,11 @@ if not MYPY:
         """
         RuntimeClassStrategyOptions define the strategy that will dictate the allowable RuntimeClasses for a pod.
         """
-        allowed_runtime_class_names: pulumi.Input[Sequence[pulumi.Input[builtins.str]]]
+        allowed_runtime_class_names: pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]
         """
         allowedRuntimeClassNames is a whitelist of RuntimeClass names that may be specified on a pod. A value of "*" means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.
         """
-        default_runtime_class_name: NotRequired[pulumi.Input[builtins.str]]
+        default_runtime_class_name: NotRequired[pulumi.Input[_builtins.str]]
         """
         defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.
         """
@@ -2476,39 +2475,39 @@ elif False:
 @pulumi.input_type
 class RuntimeClassStrategyOptionsArgs:
     def __init__(__self__, *,
-                 allowed_runtime_class_names: pulumi.Input[Sequence[pulumi.Input[builtins.str]]],
-                 default_runtime_class_name: Optional[pulumi.Input[builtins.str]] = None):
+                 allowed_runtime_class_names: pulumi.Input[Sequence[pulumi.Input[_builtins.str]]],
+                 default_runtime_class_name: Optional[pulumi.Input[_builtins.str]] = None):
         """
         RuntimeClassStrategyOptions define the strategy that will dictate the allowable RuntimeClasses for a pod.
-        :param pulumi.Input[Sequence[pulumi.Input[builtins.str]]] allowed_runtime_class_names: allowedRuntimeClassNames is a whitelist of RuntimeClass names that may be specified on a pod. A value of "*" means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.
-        :param pulumi.Input[builtins.str] default_runtime_class_name: defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.
+        :param pulumi.Input[Sequence[pulumi.Input[_builtins.str]]] allowed_runtime_class_names: allowedRuntimeClassNames is a whitelist of RuntimeClass names that may be specified on a pod. A value of "*" means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.
+        :param pulumi.Input[_builtins.str] default_runtime_class_name: defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.
         """
         pulumi.set(__self__, "allowed_runtime_class_names", allowed_runtime_class_names)
         if default_runtime_class_name is not None:
             pulumi.set(__self__, "default_runtime_class_name", default_runtime_class_name)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="allowedRuntimeClassNames")
-    def allowed_runtime_class_names(self) -> pulumi.Input[Sequence[pulumi.Input[builtins.str]]]:
+    def allowed_runtime_class_names(self) -> pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]:
         """
         allowedRuntimeClassNames is a whitelist of RuntimeClass names that may be specified on a pod. A value of "*" means that any RuntimeClass name is allowed, and must be the only item in the list. An empty list requires the RuntimeClassName field to be unset.
         """
         return pulumi.get(self, "allowed_runtime_class_names")
 
     @allowed_runtime_class_names.setter
-    def allowed_runtime_class_names(self, value: pulumi.Input[Sequence[pulumi.Input[builtins.str]]]):
+    def allowed_runtime_class_names(self, value: pulumi.Input[Sequence[pulumi.Input[_builtins.str]]]):
         pulumi.set(self, "allowed_runtime_class_names", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="defaultRuntimeClassName")
-    def default_runtime_class_name(self) -> Optional[pulumi.Input[builtins.str]]:
+    def default_runtime_class_name(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         defaultRuntimeClassName is the default RuntimeClassName to set on the pod. The default MUST be allowed by the allowedRuntimeClassNames list. A value of nil does not mutate the Pod.
         """
         return pulumi.get(self, "default_runtime_class_name")
 
     @default_runtime_class_name.setter
-    def default_runtime_class_name(self, value: Optional[pulumi.Input[builtins.str]]):
+    def default_runtime_class_name(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "default_runtime_class_name", value)
 
 
@@ -2517,7 +2516,7 @@ if not MYPY:
         """
         SELinuxStrategyOptions defines the strategy type and any options used to create the strategy.
         """
-        rule: NotRequired[pulumi.Input[builtins.str]]
+        rule: NotRequired[pulumi.Input[_builtins.str]]
         """
         rule is the strategy that will dictate the allowable labels that may be set.
         """
@@ -2531,11 +2530,11 @@ elif False:
 @pulumi.input_type
 class SELinuxStrategyOptionsPatchArgs:
     def __init__(__self__, *,
-                 rule: Optional[pulumi.Input[builtins.str]] = None,
+                 rule: Optional[pulumi.Input[_builtins.str]] = None,
                  se_linux_options: Optional[pulumi.Input['_core.v1.SELinuxOptionsPatchArgs']] = None):
         """
         SELinuxStrategyOptions defines the strategy type and any options used to create the strategy.
-        :param pulumi.Input[builtins.str] rule: rule is the strategy that will dictate the allowable labels that may be set.
+        :param pulumi.Input[_builtins.str] rule: rule is the strategy that will dictate the allowable labels that may be set.
         :param pulumi.Input['_core.v1.SELinuxOptionsPatchArgs'] se_linux_options: seLinuxOptions required to run as; required for MustRunAs More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
         """
         if rule is not None:
@@ -2543,19 +2542,19 @@ class SELinuxStrategyOptionsPatchArgs:
         if se_linux_options is not None:
             pulumi.set(__self__, "se_linux_options", se_linux_options)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def rule(self) -> Optional[pulumi.Input[builtins.str]]:
+    def rule(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         rule is the strategy that will dictate the allowable labels that may be set.
         """
         return pulumi.get(self, "rule")
 
     @rule.setter
-    def rule(self, value: Optional[pulumi.Input[builtins.str]]):
+    def rule(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "rule", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="seLinuxOptions")
     def se_linux_options(self) -> Optional[pulumi.Input['_core.v1.SELinuxOptionsPatchArgs']]:
         """
@@ -2573,7 +2572,7 @@ if not MYPY:
         """
         SELinuxStrategyOptions defines the strategy type and any options used to create the strategy.
         """
-        rule: pulumi.Input[builtins.str]
+        rule: pulumi.Input[_builtins.str]
         """
         rule is the strategy that will dictate the allowable labels that may be set.
         """
@@ -2587,30 +2586,30 @@ elif False:
 @pulumi.input_type
 class SELinuxStrategyOptionsArgs:
     def __init__(__self__, *,
-                 rule: pulumi.Input[builtins.str],
+                 rule: pulumi.Input[_builtins.str],
                  se_linux_options: Optional[pulumi.Input['_core.v1.SELinuxOptionsArgs']] = None):
         """
         SELinuxStrategyOptions defines the strategy type and any options used to create the strategy.
-        :param pulumi.Input[builtins.str] rule: rule is the strategy that will dictate the allowable labels that may be set.
+        :param pulumi.Input[_builtins.str] rule: rule is the strategy that will dictate the allowable labels that may be set.
         :param pulumi.Input['_core.v1.SELinuxOptionsArgs'] se_linux_options: seLinuxOptions required to run as; required for MustRunAs More info: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
         """
         pulumi.set(__self__, "rule", rule)
         if se_linux_options is not None:
             pulumi.set(__self__, "se_linux_options", se_linux_options)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def rule(self) -> pulumi.Input[builtins.str]:
+    def rule(self) -> pulumi.Input[_builtins.str]:
         """
         rule is the strategy that will dictate the allowable labels that may be set.
         """
         return pulumi.get(self, "rule")
 
     @rule.setter
-    def rule(self, value: pulumi.Input[builtins.str]):
+    def rule(self, value: pulumi.Input[_builtins.str]):
         pulumi.set(self, "rule", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter(name="seLinuxOptions")
     def se_linux_options(self) -> Optional[pulumi.Input['_core.v1.SELinuxOptionsArgs']]:
         """
@@ -2632,7 +2631,7 @@ if not MYPY:
         """
         ranges are the allowed ranges of supplemental groups.  If you would like to force a single supplemental group then supply a single range with the same start and end. Required for MustRunAs.
         """
-        rule: NotRequired[pulumi.Input[builtins.str]]
+        rule: NotRequired[pulumi.Input[_builtins.str]]
         """
         rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.
         """
@@ -2643,18 +2642,18 @@ elif False:
 class SupplementalGroupsStrategyOptionsPatchArgs:
     def __init__(__self__, *,
                  ranges: Optional[pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]]] = None,
-                 rule: Optional[pulumi.Input[builtins.str]] = None):
+                 rule: Optional[pulumi.Input[_builtins.str]] = None):
         """
         SupplementalGroupsStrategyOptions defines the strategy type and options used to create the strategy.
         :param pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]] ranges: ranges are the allowed ranges of supplemental groups.  If you would like to force a single supplemental group then supply a single range with the same start and end. Required for MustRunAs.
-        :param pulumi.Input[builtins.str] rule: rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.
+        :param pulumi.Input[_builtins.str] rule: rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.
         """
         if ranges is not None:
             pulumi.set(__self__, "ranges", ranges)
         if rule is not None:
             pulumi.set(__self__, "rule", rule)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]]]:
         """
@@ -2666,16 +2665,16 @@ class SupplementalGroupsStrategyOptionsPatchArgs:
     def ranges(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['IDRangePatchArgs']]]]):
         pulumi.set(self, "ranges", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def rule(self) -> Optional[pulumi.Input[builtins.str]]:
+    def rule(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.
         """
         return pulumi.get(self, "rule")
 
     @rule.setter
-    def rule(self, value: Optional[pulumi.Input[builtins.str]]):
+    def rule(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "rule", value)
 
 
@@ -2688,7 +2687,7 @@ if not MYPY:
         """
         ranges are the allowed ranges of supplemental groups.  If you would like to force a single supplemental group then supply a single range with the same start and end. Required for MustRunAs.
         """
-        rule: NotRequired[pulumi.Input[builtins.str]]
+        rule: NotRequired[pulumi.Input[_builtins.str]]
         """
         rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.
         """
@@ -2699,18 +2698,18 @@ elif False:
 class SupplementalGroupsStrategyOptionsArgs:
     def __init__(__self__, *,
                  ranges: Optional[pulumi.Input[Sequence[pulumi.Input['IDRangeArgs']]]] = None,
-                 rule: Optional[pulumi.Input[builtins.str]] = None):
+                 rule: Optional[pulumi.Input[_builtins.str]] = None):
         """
         SupplementalGroupsStrategyOptions defines the strategy type and options used to create the strategy.
         :param pulumi.Input[Sequence[pulumi.Input['IDRangeArgs']]] ranges: ranges are the allowed ranges of supplemental groups.  If you would like to force a single supplemental group then supply a single range with the same start and end. Required for MustRunAs.
-        :param pulumi.Input[builtins.str] rule: rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.
+        :param pulumi.Input[_builtins.str] rule: rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.
         """
         if ranges is not None:
             pulumi.set(__self__, "ranges", ranges)
         if rule is not None:
             pulumi.set(__self__, "rule", rule)
 
-    @property
+    @_builtins.property
     @pulumi.getter
     def ranges(self) -> Optional[pulumi.Input[Sequence[pulumi.Input['IDRangeArgs']]]]:
         """
@@ -2722,16 +2721,16 @@ class SupplementalGroupsStrategyOptionsArgs:
     def ranges(self, value: Optional[pulumi.Input[Sequence[pulumi.Input['IDRangeArgs']]]]):
         pulumi.set(self, "ranges", value)
 
-    @property
+    @_builtins.property
     @pulumi.getter
-    def rule(self) -> Optional[pulumi.Input[builtins.str]]:
+    def rule(self) -> Optional[pulumi.Input[_builtins.str]]:
         """
         rule is the strategy that will dictate what supplemental groups is used in the SecurityContext.
         """
         return pulumi.get(self, "rule")
 
     @rule.setter
-    def rule(self, value: Optional[pulumi.Input[builtins.str]]):
+    def rule(self, value: Optional[pulumi.Input[_builtins.str]]):
         pulumi.set(self, "rule", value)