Documentation Index

Fetch the complete documentation index at: https://help.nucleussec.com/llms.txt

Use this file to discover all available pages before exploring further.

Cloud Resources

  • 1 minute(s) read
Prev Next

Note: Cloud resource asset types are only supported via the JSON schema

Name (* Required)

Description

Accepted Values or Format

urn*

The unique string that identifies a resource within the cloud provider. For AWS, this is typically the ARN; for GCP, the full resource name; for Azure, the resource ID path.

string

Examples:

AWS: arn:aws:glacier:eu-north-1:520600265607:vaults/test@/1234abcdef

GCP: //storage.googleapis.com/projects/my-project-123/buckets/my-bucket

Azure: /subscriptions/subscription-123/resourcegroups/my-resource-group/providers/microsoft.network/virtualnetworks/my-vnet

provider*

The cloud service provider managing the resource.

Accepted Values: aws, gcp, azure

account_id*

The owning account or project identifier in the cloud provider.

string

  • AWS: 12-digit AWS Account ID

  • GCP: Google Cloud Project ID

  • Azure: Subscription GUID

region

The region that the cloud resource is in.

string

resource_name*

The full name of the cloud resource, often used interchangeably with urn for uniqueness. Represents the full string path to the resource within the cloud platform.

string

// you can now put different asset types inside each asset separately rather than at the scan level. 
{
    "nucleus_import_version": "1",
    "scan_tool": "<Scanning_Tool>",
    "assets": [
        {
            "host_name": "my.secret.server.com",
            "asset_type": "iam"
            "urn": <string>, // mandatory
            "provider": <string. valid values: aws, azure, gcp>, // mandatory
            "account_id": <string>, // mandatory
            "region": <string>,
            "resource_name": <string> // mandatory
        },
        {
            "host_name": "my.other.server.com",
            "asset_type": "Host"
        }
    ]
}