Experimental

Warning

This submodule is subject to non-backward compatible changes or removal in any future version. Breaking changes will be announced in the release notes, however will result in a minor version bump only.

Whilst you may use this package, you may need to update your source code when upgrading to a newer version.

API Reference

Structs

CdkGraphThreatComposerPluginOptions

Options for the Threat Composer CDK Graph plugin.

Initializer

import software.aws.pdk.cdk_graph_plugin_threat_composer.CdkGraphThreatComposerPluginOptions;

CdkGraphThreatComposerPluginOptions.builder()
//  .applicationDetails(ThreatComposerApplicationDetails)
    .build();

Properties

Name	Type	Description
`applicationDetails`	`ThreatComposerApplicationDetails`	Details about the application to include in the threat model.

`applicationDetails`^Optional

public ThreatComposerApplicationDetails getApplicationDetails();

Type: ThreatComposerApplicationDetails

Details about the application to include in the threat model.

ThreatComposerApplicationDetails

Details about the application to include in the threat model.

Initializer

import software.aws.pdk.cdk_graph_plugin_threat_composer.ThreatComposerApplicationDetails;

ThreatComposerApplicationDetails.builder()
//  .description(java.lang.String)
//  .name(java.lang.String)
    .build();

Properties

Name	Type	Description
`description`	`java.lang.String`	A description of the application.
`name`	`java.lang.String`	The name of the application.

`description`^Optional

public java.lang.String getDescription();

Type: java.lang.String

A description of the application.

`name`^Optional

public java.lang.String getName();

Type: java.lang.String
Default: "My Application"

The name of the application.

Classes

CdkGraphThreatComposerPlugin

Implements: software.aws.pdk.cdk_graph_plugin_threat_composer.ICdkGraphPlugin

CdkGraphThreatComposerPlugin is a {@link ICdkGraphPluginCdkGraph Plugin} implementation for generating Threat Composer threat models.

awslabs/threat-composer

Initializers

import software.aws.pdk.cdk_graph_plugin_threat_composer.CdkGraphThreatComposerPlugin;

CdkGraphThreatComposerPlugin.Builder.create()
//  .applicationDetails(ThreatComposerApplicationDetails)
    .build();

Name	Type	Description
`applicationDetails`	`ThreatComposerApplicationDetails`	Details about the application to include in the threat model.

`applicationDetails`^Optional

Type: ThreatComposerApplicationDetails

Details about the application to include in the threat model.

Properties

Name	Type	Description
`id`	`java.lang.String`	Unique identifier for this plugin.
`version`	`java.lang.String`	Plugin version.
`dependencies`	`java.util.List`	List of plugins this plugin depends on, including optional semver version (eg: ["foo", "bar@1.2"]).
`threatModelArtifact`	`software.aws.pdk.cdk_graph_plugin_threat_composer.CdkGraphArtifact`	Retrieve the threat model artifact.
`bind`	`software.aws.pdk.cdk_graph_plugin_threat_composer.IGraphPluginBindCallback`	Binds the plugin to the CdkGraph instance.
`report`	`software.aws.pdk.cdk_graph_plugin_threat_composer.IGraphReportCallback`	Generate asynchronous reports based on the graph.

`id`^Required

public java.lang.String getId();

Type: java.lang.String

Unique identifier for this plugin.

`version`^Required

public java.lang.String getVersion();

Type: java.lang.String

Plugin version.

`dependencies`^Optional

public java.util.List<java.lang.String> getDependencies();

Type: java.util.List

List of plugins this plugin depends on, including optional semver version (eg: ["foo", "bar@1.2"]).

`threatModelArtifact`^Optional

public CdkGraphArtifact getThreatModelArtifact();

Type: software.aws.pdk.cdk_graph_plugin_threat_composer.CdkGraphArtifact

Retrieve the threat model artifact.

`bind`^Required

public IGraphPluginBindCallback getBind();

Type: software.aws.pdk.cdk_graph_plugin_threat_composer.IGraphPluginBindCallback

Binds the plugin to the CdkGraph instance.

Enables plugins to receive base configs.

`report`^Optional

public IGraphReportCallback getReport();

Type: software.aws.pdk.cdk_graph_plugin_threat_composer.IGraphReportCallback

Generate asynchronous reports based on the graph.

This is not automatically called when synthesizing CDK. Developer must explicitly add await graphInstance.report() to the CDK bin or invoke this outside of the CDK synth. In either case, the plugin receives the in-memory graph interface when invoked, as the CdkGraph will deserialize the graph prior to invoking the plugin report.

Constants

Name	Type	Description
`ID`	`java.lang.String`	Fixed ID of the threat-composer plugin.
`VERSION`	`java.lang.String`	Curent semantic version of the threat-composer plugin.

`ID`^Required

public java.lang.String getId();

Type: java.lang.String

Fixed ID of the threat-composer plugin.

`VERSION`^Required

public java.lang.String getVersion();

Type: java.lang.String

Curent semantic version of the threat-composer plugin.

Last update: 2025-07-17

API Reference

Structs

CdkGraphThreatComposerPluginOptions

Initializer

Properties

applicationDetailsOptional

ThreatComposerApplicationDetails

Initializer

Properties

descriptionOptional

nameOptional

Classes

CdkGraphThreatComposerPlugin

Initializers

applicationDetailsOptional

Properties

idRequired

versionRequired

dependenciesOptional

threatModelArtifactOptional

bindRequired

reportOptional

Constants

IDRequired

VERSIONRequired

`applicationDetails`^Optional

`description`^Optional

`name`^Optional

`applicationDetails`^Optional

`id`^Required

`version`^Required

`dependencies`^Optional

`threatModelArtifact`^Optional

`bind`^Required

`report`^Optional

`ID`^Required

`VERSION`^Required