I got Twistlock defender completed with an error: fargate is not supported for arm64after injecting ecs task definition with twistlock defender ver. twistlock/defender:defender_34_04_156 I could not find authoritative answer, so im asking here:Is running defender on ecs backed by arm64 fargate not supported?
Is there a way to assign a Asset Type to a custom Prisma policy? The only way we can currently do it is to copy a default policy that is already mapped to Asset Class and type. Thanks.
I have two Prisma Cloud Compute instances which have their intelligence streams updated via the twistcli (v31).31.03.103 - updates with no issues whatsoever. 33.00.169 - stopped accepting updates a few days ago with a 504 gateway error. As a test, I have tried: Setting 33.00.169 to get updates from 31.03.103 server, but I get the same 504 gatewa...
Hello, I would like to gain a clearer understanding of how the join operator functions within RQL. Below is an example query I am currently working with: Full Query: config from cloud.resource where api.name = 'aws-ec2-describe-instances' AND json.rule = tags[*].value does not start with "prismacloud" AND tags[*].value doe...
Hello,Is it possible to use an array or list of values when comparing few values for a json.rule within an RQL? For example, in the following RQL, can we combine the "tags[*].key" comparison values to a list of items (such as something like 'does not contain ["PatchGroup", "Patch Group", "patch-window", "prismacloud-scan"]') rather than ha...
In Prisma Cloud (SaaS version), under Runtime Security > Defend > Vulnerabilities > Base Images, I have defined base images, and I can also search for them under Monitor > Vulnerabilities > Registries I need a weekly report on the vulnerabilities detected in these base images. How can I automate this so that a CSV file is automati...
Hi team We need to scheduled automatic backups for our ION devices Can anybody help us? Is there a API or other way for do it? Regards
Below are docker file instruction FROM docker.io/library/alpine:latest RUN apk update && apk add --no-cache tar With this only tar package is being installed within image. But during scan of same image with Prisma security scan tool, it is incorrectly mapping same with "https://nvd.nist.gov/vuln/detail/CVE-2018-20834" having node-tar v...
Hi I have aquestion for Prisma cloud's API access key. Quoted from docs, when generating access key, it's tied to current login user's Role. https://docs.prismacloud.io/en/enterprise-edition/content-collections/administration/create-access-keys I tried some test to see if it works. I made a role that do not have access to view, update, delete a...
tenemos implementado prisma cloud y durante el proceso de implementación nos indicaron que se requería una MV donde se guardarían los registro diario de Agentless, la MV la tenemos funcional, sin embargo no sabemos como identificar si se guardan los reportes en la MV y en que momento lo hace.
Hi I am interesting in the SBOMs that Twistlock generates using the CDX Specification Specifically in relation to the components > scope field The values for scope are: Required - the default Optional Excluded - where the package exists in the product (Image/Container), but is not used by the product. Does or can Twistlock generate ...
I am encountering a 403 Forbidden error when trying to access Prisma Cloud Data Security (DSPM) APIs, such as:POST https://api.ind.prismacloud.io/dlp/api/v1/inventory/objects/aggregateHowever, I am able to successfully access CSPM APIs (for example, /compliance/standards). DSPM is enabled on my tenant, and I have checked by assigning a custom ...
Hi Community, I’m facing an issue where RQL queries that work perfectly in the Investigate > Search console do not work when used in policy definitions via Terraform (v1.5.7). For example: Query that works in Investigate > Search: config from cloud.resource where api.name = 'aws-ec2-describe-internet-gateways' as X; config from cloud.resou...
HI, I’m currently onboarding Azure cloud accounts into Prisma Cloud Enterprise and I’d like some clarification before I make a change in production.Initially, I onboarded several subscriptions individually (scope = Subscription), later I mistakenly onboarded the entire Tenant (scope = Tenant) instead of a single subscription.Now, in the Cloud Ac...
I understood that Prisma Cloud Defender does not directly attempt to connect to ports or perform scans, but it seems to have executed the curl -X OPTIONS http://localhost:8355 command on the tomcat shutdown port. Since such a command was executed, there are daily logs of it being blocked by the tomcat shutdown port. Please tell me the reason why...
