Configure - Code Security

cancel
Showing results for 
Search instead for 
Did you mean: 
L4 Transporter
Did you find this article helpful? Yes No
No ratings

 

Code Security on Prisma Cloud enables you to  add security checks to your existing IaC (Infrastructure-as-Code) model.

The Code Security capabilities include creating custom build policies, integrating a wide variety of code repositories and continuous integration and continuous delivery (CI/CD) workflows to secure cloud infrastructure, and applications.

Once your code repositories are integrated, you can modify your configuration to specify how Prisma Cloud scans your code.

 

 

  1. Exclude Paths from Code Security scans:

 

           A.  Select Settings > Code Configuration to configure your integrated repository. 

           B.  Enable repositories to scan.

           C.  Enter paths to exclude from the repository.

           D  Select Add Rule to add the rule with excluded paths to your code configuration.

 

     2.  Enable Code Reviews:

             A.  Select Settings > Code Configuration to configure your integrated repository.

             B.  Enable repositories you want to scan.

             C.  Select the fail severity of the policy.

             D.  Then add a rule.

 

  1. Enable Pull Request Bot Comments:
    1.  Select Settings > Code Configuration and enable repositories you want to scan.
    2.  Select the threshold of the policy severity.
    3.  Select Add Rule to add the defined rule to your configuration.
    4.  Select Save to save your new rule for the pull request bot comments.

      4.  Enable notifications:

              A.  Select Settings > Code Security Configuration and enable Notifications.

              B.  Set up your notification preferences.     

                    1.  Enable repositories you want to scan.

                    2.  Select the name or ID of the integration. 

                    3.  Select the policy severity threshold.

               C.  Add Rule to add more granular notification configuration.

               D. Save your changes.

 

        5.  Enable Tagging Bot:

               A.  Select Settings > Code Configuration and enable repositories you want to scan.

               B.  Enable repositories you want to scan.

                     1.   Select from repositories.

                          Enter paths to exclude from the repository.

                     2.  Type paths to exclude within the selected repository.

                          Save to exclude the path from the scan.

 

 

The next step from here would be Integrate

Please visit Customer Support for additional assistance.

 

 

Rate this article:
Register or Sign-in
Contributors
Article Dashboard
Version history
Last update:
‎03-14-2022 09:27 AM
Updated by: