DataDog
diff --git a/‎.generator/schemas/v2/openapi.yaml‎
Lines changed: 61 additions & 11 deletions b/‎.generator/schemas/v2/openapi.yaml‎
Lines changed: 61 additions & 11 deletions
diff --git a/‎examples/v2/csm-threats/CreateCSMThreatsAgentPolicy.java‎
Lines changed: 1 addition & 1 deletion b/‎examples/v2/csm-threats/CreateCSMThreatsAgentPolicy.java‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎examples/v2/csm-threats/CreateCSMThreatsAgentRule.java‎
Lines changed: 1 addition & 0 deletions b/‎examples/v2/csm-threats/CreateCSMThreatsAgentRule.java‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎examples/v2/csm-threats/CreateCSMThreatsAgentRule_1295653933.java‎
Lines changed: 2 additions & 1 deletion b/‎examples/v2/csm-threats/CreateCSMThreatsAgentRule_1295653933.java‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎examples/v2/csm-threats/CreateCSMThreatsAgentRule_1363354233.java‎
Lines changed: 58 additions & 0 deletions b/‎examples/v2/csm-threats/CreateCSMThreatsAgentRule_1363354233.java‎
Lines changed: 58 additions & 0 deletions
@@ -9472,6 +9472,10 @@ components:
           description: The name of the policy
           example: my_agent_policy
           type: string
+        pinned:
+          description: Whether the policy is pinned
+          example: false
+          type: boolean
         policyVersion:
           description: The version of the policy
           example: '1'
@@ -9499,6 +9503,8 @@ components:
           type: integer
         updater:
           $ref: '#/components/schemas/CloudWorkloadSecurityAgentPolicyUpdaterAttributes'
+        versions:
+          $ref: '#/components/schemas/CloudWorkloadSecurityAgentPolicyVersions'
       type: object
     CloudWorkloadSecurityAgentPolicyCreateAttributes:
       description: Create a new Cloud Workload Security Agent policy
@@ -9645,6 +9651,23 @@ components:
           nullable: true
           type: string
       type: object
+    CloudWorkloadSecurityAgentPolicyVersion:
+      description: The versions of the policy
+      properties:
+        Date:
+          description: The date and time the version was created
+          nullable: true
+          type: string
+        Name:
+          description: The version of the policy
+          example: 1.47.0-rc2
+          type: string
+      type: object
+    CloudWorkloadSecurityAgentPolicyVersions:
+      description: The versions of the policy
+      items:
+        $ref: '#/components/schemas/CloudWorkloadSecurityAgentPolicyVersion'
+      type: array
     CloudWorkloadSecurityAgentRuleAction:
       description: The action the rule can perform if triggered
       properties:
@@ -9682,23 +9705,32 @@ components:
       description: The set action applied on the scope matching the rule
       properties:
         append:
-          description: Whether the value should be appended to the field
+          description: Whether the value should be appended to the field.
           type: boolean
+        default_value:
+          description: The default value of the set action
+          type: string
+        expression:
+          description: The expression of the set action.
+          type: string
         field:
           description: The field of the set action
           type: string
+        inherited:
+          description: Whether the value should be inherited.
+          type: boolean
         name:
           description: The name of the set action
           type: string
         scope:
-          description: The scope of the set action
+          description: The scope of the set action.
           type: string
         size:
-          description: The size of the set action
+          description: The size of the set action.
           format: int64
           type: integer
         ttl:
-          description: The time to live of the set action
+          description: The time to live of the set action.
           format: int64
           type: integer
         value:
@@ -9779,6 +9811,10 @@ components:
           items:
             type: string
           type: array
+        silent:
+          description: Whether the rule is silent.
+          example: false
+          type: boolean
         updateAuthorUuId:
           description: The ID of the user who updated the rule
           example: e51c9744-d158-11ec-ad23-da7ad0900002
@@ -9806,8 +9842,11 @@ components:
       properties:
         actions:
           $ref: '#/components/schemas/CloudWorkloadSecurityAgentRuleActions'
+        agent_version:
+          description: Constrain the rule to specific versions of the Datadog Agent.
+          type: string
         blocking:
-          description: The blocking policies that the rule belongs to
+          description: The blocking policies that the rule belongs to.
           items:
             type: string
           type: array
@@ -9816,25 +9855,25 @@ components:
           example: My Agent rule
           type: string
         disabled:
-          description: The disabled policies that the rule belongs to
+          description: The disabled policies that the rule belongs to.
           items:
             type: string
           type: array
         enabled:
-          description: Whether the Agent rule is enabled
+          description: Whether the Agent rule is enabled.
           example: true
           type: boolean
         expression:
           description: The SECL expression of the Agent rule.
           example: exec.file.name == "sh"
           type: string
         filters:
-          description: The platforms the Agent rule is supported on
+          description: The platforms the Agent rule is supported on.
           items:
             type: string
           type: array
         monitoring:
-          description: The monitoring policies that the rule belongs to
+          description: The monitoring policies that the rule belongs to.
           items:
             type: string
           type: array
@@ -9843,14 +9882,18 @@ components:
           example: my_agent_rule
           type: string
         policy_id:
-          description: The ID of the policy where the Agent rule is saved
+          description: The ID of the policy where the Agent rule is saved.
           example: a8c8e364-6556-434d-b798-a4c23de29c0b
           type: string
         product_tags:
-          description: The list of product tags associated with the rule
+          description: The list of product tags associated with the rule.
           items:
             type: string
           type: array
+        silent:
+          description: Whether the rule is silent.
+          example: false
+          type: boolean
       required:
       - name
       - expression
@@ -9930,6 +9973,9 @@ components:
       properties:
         actions:
           $ref: '#/components/schemas/CloudWorkloadSecurityAgentRuleActions'
+        agent_version:
+          description: Constrain the rule to specific versions of the Datadog Agent
+          type: string
         blocking:
           description: The blocking policies that the rule belongs to
           items:
@@ -9966,6 +10012,10 @@ components:
           items:
             type: string
           type: array
+        silent:
+          description: Whether the rule is silent.
+          example: false
+          type: boolean
       type: object
     CloudWorkloadSecurityAgentRuleUpdateData:
       description: Object for a single Agent rule
 
@@ -25,7 +25,7 @@ public static void main(String[] args) {
                             .enabled(true)
                             .hostTagsLists(
                                 Collections.singletonList(Collections.singletonList("env:test")))
-                            .name("my_agent_policy"))
+                            .name("my_agent_policy_2"))
                     .type(CloudWorkloadSecurityAgentPolicyType.POLICY));
 
     try {
 
@@ -28,6 +28,7 @@ public static void main(String[] args) {
                             .expression("""
 exec.file.name == "sh"
 """)
+                            .agentVersion("> 7.60")
                             .name("examplecsmthreat")
                             .policyId(POLICY_DATA_ID))
                     .type(CloudWorkloadSecurityAgentRuleType.AGENT_RULE));
 
@@ -41,7 +41,8 @@ public static void main(String[] args) {
                                             new CloudWorkloadSecurityAgentRuleActionSet()
                                                 .name("test_set")
                                                 .value("test_value")
-                                                .scope("process")),
+                                                .scope("process")
+                                                .inherited(true)),
                                     new CloudWorkloadSecurityAgentRuleAction()
                                         .hash(Map.ofEntries()))))
                     .type(CloudWorkloadSecurityAgentRuleType.AGENT_RULE));
 
@@ -0,0 +1,58 @@
+// Create a Workload Protection agent rule with set action with expression returns "OK" response
+
+import com.datadog.api.client.ApiClient;
+import com.datadog.api.client.ApiException;
+import com.datadog.api.client.v2.api.CsmThreatsApi;
+import com.datadog.api.client.v2.model.CloudWorkloadSecurityAgentRuleAction;
+import com.datadog.api.client.v2.model.CloudWorkloadSecurityAgentRuleActionSet;
+import com.datadog.api.client.v2.model.CloudWorkloadSecurityAgentRuleCreateAttributes;
+import com.datadog.api.client.v2.model.CloudWorkloadSecurityAgentRuleCreateData;
+import com.datadog.api.client.v2.model.CloudWorkloadSecurityAgentRuleCreateRequest;
+import com.datadog.api.client.v2.model.CloudWorkloadSecurityAgentRuleResponse;
+import com.datadog.api.client.v2.model.CloudWorkloadSecurityAgentRuleType;
+import java.util.Collections;
+
+public class Example {
+  public static void main(String[] args) {
+    ApiClient defaultClient = ApiClient.getDefaultApiClient();
+    CsmThreatsApi apiInstance = new CsmThreatsApi(defaultClient);
+
+    // there is a valid "policy_rc" in the system
+    String POLICY_DATA_ID = System.getenv("POLICY_DATA_ID");
+
+    CloudWorkloadSecurityAgentRuleCreateRequest body =
+        new CloudWorkloadSecurityAgentRuleCreateRequest()
+            .data(
+                new CloudWorkloadSecurityAgentRuleCreateData()
+                    .attributes(
+                        new CloudWorkloadSecurityAgentRuleCreateAttributes()
+                            .description("My Agent rule with set action with expression")
+                            .enabled(true)
+                            .expression("""
+exec.file.name == "sh"
+""")
+                            .name("examplecsmthreat")
+                            .policyId(POLICY_DATA_ID)
+                            .actions(
+                                Collections.singletonList(
+                                    new CloudWorkloadSecurityAgentRuleAction()
+                                        .set(
+                                            new CloudWorkloadSecurityAgentRuleActionSet()
+                                                .name("test_set")
+                                                .expression("open.file.path")
+                                                .defaultValue("/dev/null")
+                                                .scope("process")))))
+                    .type(CloudWorkloadSecurityAgentRuleType.AGENT_RULE));
+
+    try {
+      CloudWorkloadSecurityAgentRuleResponse result = apiInstance.createCSMThreatsAgentRule(body);
+      System.out.println(result);
+    } catch (ApiException e) {
+      System.err.println("Exception when calling CsmThreatsApi#createCSMThreatsAgentRule");
+      System.err.println("Status code: " + e.getCode());
+      System.err.println("Reason: " + e.getResponseBody());
+      System.err.println("Response headers: " + e.getResponseHeaders());
+      e.printStackTrace();
+    }
+  }
+}