Resource management for services

What is claimed is: 1. A method for resource management, the method comprising: receiving, from a client device that does not have permission to access resources in a protected region of a provider network, a search request at a resource management service of the provider network, the search request specifying a query associated with at least one operational health indicator in the protected region, wherein the protected region has restricted connectivity with at least one other region in the provider network; determining, using a secure query service, that the at least one operational health indicator does not exist in the protected region, wherein the secure query service enables the client device to obtain information about the resources in the protected region without gaining access to the resources in the protected region by sending the query regarding the status of the operational health indicator and receiving filtered results without receiving information retrieved by the query; and causing, by the resource management service, sending to the client device of a notification indicating that the at least one operational health indicator does not exist in the protected region. 2. The method of claim 1 , wherein determining, using the secure query service, that the at least one operational health indicator does not exist in the protected region by sending the query regarding the status of the operational health indicator and filtering the results comprises forwarding the search request to the secure query service, wherein the secure query service: sends a filtered search request validated by one or more attributes of a first schema to a storage location in the protected region; executes the search request on the at least one operational health indicator in the protected region using the name of the at least one operational health indicator; generates a search result including metadata associated with the at least one operational health indicator; and returns a search response based on filtering the search result by validating one or more attributes with a second schema. 3. The method of claim 1 , further comprising: causing creation of the at least one operational health indicator in the protected region using a secure transfer service, wherein the at least one operational health indicator is developed in an unprotected region of the provider network and the secure transfer service is configured to transfer the developed at least one operational health indicator to the protected region of the provider network. 4. The method of claim 3 , wherein the secure transfer service is configured to: determine, in the unprotected region, whether the developed at least one operational health indicator is free of malicious components; package, in the unprotected region, the developed at least one operational health indicator for transfer to the protected region by generating a manifest file for the developed at least one operational health indicator; and transfer, via the secure transfer service, the packaged, developed at least one operational health indicator from the unprotected region to the protected region. 5. The method of claim 3 , wherein the developed at least one operational health indicator comprises an infrastructure as code (IaC) to create the at least one operational health indicator in the protected region. 6. A system for resource management, the system comprising: at least one processor in communication with at least one memory, the at least one processor configured at least to: receive in a first region of a provider network a request from a client, the request indicative of performing a query associated with at least one operational health indicator in a protected region of the provider network, wherein the protected region has restricted access and restricted connectivity with the first region in the provider network; determine, by a query service with access to the protected region, that the at least one operational health indicator does not exist in the protected region, wherein the query service performs the query on the at least one operational health indicator in the protected region and returns filtered information indicative of the presence without sending the information retrieved from the at least one operational health indicator; and sending to the client device of a notification indicating that the at least one operational health indicator does not exist in the protected region. 7. The system of claim 6 , wherein determining, by the query service, that the at least one operational health indicator does not exist in the protected region comprises executing the query on the at least one operational health indicator in the protected region. 8. The system of claim 7 , wherein the at least one processor is further configured to: cause creation of the at least one operational health indicator in the protected region using a secure transfer service, wherein the at least one operational health indicator is developed in an unprotected region of the provider network and the secure transfer service is configured to transfer the developed at least one operational health indicator to the protected region of the provider network. 9. The system of claim 8 , wherein the secure transfer service is configured to: determine, in the unprotected region, whether the developed at least one operational health indicator is free of malicious components; package, in the unprotected region, the developed at least one operational health indicator for transfer to the protected region by generating a manifest file for the developed at least one operational health indicator; and transfer, via the secure transfer service, the packaged, developed at least one operational health indicator from the unprotected region to the protected region. 10. The system of claim 9 , wherein the developed at least one operational health indicator comprises an infrastructure as code (IaC) to create the at least one operational health indicator in the protected region. 11. The system of claim 7 , wherein the at least one operational health indicator exists in at least one different region of the provider network. 12. The system of claim 7 , wherein the at least one operational health indicator comprises an alarm. 13. The system of claim 7 , wherein the at least one operational health indicator comprises a metric. 14. A non-transitory computer-readable medium storing instructions that, when executed, causes at least one computing node to perform the operations comprising: receiving in a first region of a provider network a request from a client, the request indicative of performing a query associated with at least one operational health indicator in a protected region of the provider network, wherein the protected region has restricted access and restricted connectivity with the first region in the provider network; determining, by a query service with access to the protected region, that the at least one operational health indicator does not exist in the protected region, wherein the query service performs the query on the at least one operational health indicator in the protected region and returns filtered information indicative of the presence of the at least one operational health indicator without sending the information retrieved from the at least one operational health indicator; and causing sending information to the client indicating that the at least one operational health indicator does not exist in the protected region. 15. The non-transitory computer-readable medium of claim 14 , wherein determining, by the query s