A custom policy would explain it.
However, I know this one is not.
When viewing the policy definition in the console, it says " This policy is defined in Checkov, for more information about this policy's exact definition visit https://github.com/bridgecrewio/checkov".
When querying policy details through the API, the createdBy attribute = "Prisma Cloud System Admin".
I know we've at one time disabled, re-enabled, and updated the labels on this policy (and most other OOTB build policies). Maybe there was a side effect of one of those operations.
So I agree that indications are that somehow Prisma Cloud is inaccurately seeing this and other many other of our OOTB build policies as custom policies.
... View more