We use podman <v2.4 to build docker using jenkins CI pipeline. We have already moved to podman 3 and the lower has some issues as well as vulnerabilities however we are yet forced to use it just because prisma cloud doesn't support it yet. Can you he
...
Hello,
How can I mark some CVEs as false positives in the tool itself so that subsequent scans do not report those CVEs? Is there an API for this? Thanks!
I'm finding what appears to be a lot of false positives for alerts within Compute Defender > Events and Runtime. What is best practice for marking these false positive to prevent additional alerts from being generated? I noticed some options for re-l
...
Is there a way to export a compliance standard assigned both default and custom policies from one tenant then import that standard and all associated policies into another tenant?
I have a quick question, we are using TwistLock to scan our containers, wanted to know what is the CVE scanning engine that is used under the hood?
Is it Clair or something else??
Thanks
I have created an Access Key under the "Settings" -> "Access Keys". I have the System Admin priviledge and I copied the access key and secret key and call the /login api from the API doc page.
However, it returns HTTP 401 error.
Hi,
I'm currently working with the Prisma Resource Explorer API, and I'm trying to do some analysis on the responses I get. In the API response there is a field called "riskGrade" which is a string of one uppercase letter, A, B, or C. I can't find
...
Is there someone who has figured out the correct place to get data in API calls? I can currently make 3 different calls that should give the container count in prisma and get 3 numbers that vary by 25%. I see similar inconsistency when looking for
...
Hello everyone.
I have some queries about permission previously when onboarding GCP project on Prisma Cloud.
I have given 5 roles below to the user who is used to onboard the GCP project.
For Prisma cloud what are folks using for reporting? The canned reports are lacking and we need to customize reports to make them actionable by groups. Customization in the tool is restricted to occurrence and one other item.
Hello All,
Can someone please help me getting access to Prisma community edition license or access to test few things?
Thank you,
Kavish
Is there any ways/solution to programmatically dump those remediation binded to policies? Thanks
We have been using the console to generate the YAML necessary to deploy a Defender Daemon Set to our k8s cluster (Compute -> Manage -> Defenders -> Deploy). The YAML includes an environment variable called INSTALL_BUNDLE. This INSTALL_BUNDLE includes
...
Hello,
I'm trying to run defender in fargate/sidecar mode. It works fin if I use alpine/ubuntu images as base, but It fails when I try to use google's distroless static/base images
The only log I get is
tandard_init_linux.go:190: exec user process cau
...
how to find out who create the resource by RQL?
When we use RQL, the output columns are fixed without the info who created the resource, we have to use auditral info manually search created by or modified by, is there any way can get created by or mod
...
