[RQL] How to construct a query to investigate on all AWS Security Groups that has outbound to 0.0.0.0

Reference: https://docs.aws.amazon.com/cli/latest/reference/ec2/describe-security-groups.html

RQL that is not working: config from cloud.resource where cloud.type = 'aws' AND api.name = 'describe-security-groups' AND json.rule = "IpPermissionsEgres

Prisma cloud rql join filter

How can I use the cloud account filter in an RQL query? I'm putting together a query to display which screen images are not in use and I would need to add the cloud account filter.

My querys is:

config from cloud.resource where api.name = 'aws-ecr-i

Report on nodes not using any compute resources

Hello,

We're looking to find Cloud systems not being used. Is there a way on Prisma Cloud to report on nodes not using any compute resources?

Thank you,

Jennifer

Unknown command 'coderepo' Run 'twistcli --help' for usage

Hi, 

coderepo scan is returning command not found as below. Please suggest.

Instructions and Best Practices guide for setting up Prisma cloud for Azure Container Registry and Azure Kubernetes Service

Looking for Instructions and Best Practices guide for setting up Prisma cloud for Azure Container Registry and Azure Kubernetes Service

Azure Active Directory - No Results

Trying to figure out why AAD configurations are not showing up in Prisma Cloud.

Our scenario is this:

• We've connected Prisma to our Azure lab
• We've executed the TF module
• Some resources are showing up; however, the TF module doesn't show anything for

need prisma RQL query to fetch account name where "xxx" cloudtrail account is not present

need prisma RQL query to fetch account name where "xxx" aws cloudtrail account is not present, whichever account is not present, I should list that account as Non-compliant, and if "xxx" present and is not matching specific configuration also list ou

Failed to pull image "registry-auth.twistlock.com/tw_<token>/twistlock/defender:defender_22_06_224"

I'm getting the following error when deploying the twistlock defender into a 1.21 EKS cluster:

Failed to pull image "registry-auth.twistlock.com/tw_<token>/twistlock/defender:defender_22_06_224": rpc error: code = Unknown desc = Error response from

Prisma Fargate App Embedded Defender protecting a container image based on scratch image

Hello,

I'm looking for guidance on what the App embedded defender's pre-requisites are when it is going to protect a docker image that is based on the scratch image.  From what I've briefly seen there'd at least need to be a shell (/bin/sh) available

Big query iam policy bindings

Hello,

I wanted to get a report in gcp for users that have policy bindings in bigquery tables but the results por iam and resource cloud manager doesn´t show me all the direct bindings only those from the IAM roles.

Is there a way to get that inf

Expport all resource information with tags

Hello,

I'm trying to export information for all resource.

"/resource/scan_info"

or

"/v2/resource/scan_info"

do you know how I can recover --> resourceConfigJson

I can't manage to retrieve tag information from azure for example and prisma web in th

Can we combine 2 Investigate Query types like "Asset" and "Vulnerability"?

Hello,

I'd like to look up all Critical and High vulnerabilities that are Patchable and Exploitable in a Cloud Account with a certain Asset type. I see that if I pick the "Vulnerability" query type with Risk factors - Patchable and Exploitable, it