Package URL (pURL) Format Support for Vulnerabilities
Prisma Cloud now adds package URLs (pURL) for packages and vulnerabilities while scanning the images using twistcli. This helps to reliably reference the same software package using a simple and expressive syntax and conventions based on familiar URLs.
As you scan images with twistcli, you can filter the CVEs based on the pURL format in the CVE viewer.
Registry Scan Scale Support Increased to 1M Images
Registry image scan limit has been increased to 1,000,000 from 100,000 for all image types.
Scan errors visibility improvements - accounts/ region error scope
Introducing Enhanced Issue Visibility: To get the most out of agentless scanning, this update categorizes issues during the agentless scan process, provides detailed information on their nature, source, and troubleshooting steps, and offers a seamless user interface experience. Easily understand and resolve issues, improving scan coverage and streamlining your scanning process.
As a side effect, this update might display erroneous scan details, that would be auto-remediated by a maximum of 2 agentless scan cycles.
Added Support for Parallel Agentless Scans of Accounts and Regions
Added the ability for agentless scanning to scan accounts and regions within those accounts in parallel.
The changes include the following enhancements.
The UI shows the status of an ongoing scan for specific accounts.
You can see the general progress of an ongoing scan on the
Compute Cloud Accounts
page instead of in the progress bar.
Your hub account is treated as an account dedicated for agentless scanning, which is used only to scan other accounts, and no longer scans itself.
You can manage the agentless scanning configuration centrally for all target accounts in the hub account configuration.
You aren’t required to duplicate the configuration across all target accounts.
For example, you can set custom networking configuration only on the hub account.
New Features in Core
Improved the Syslog output to Align with the API Output
Added fields to enhance the syslog output in alignment with the the API call responses. Fields were added for container runtime audits, host runtime audits, container incidents, and host incidents.
API Changes and New APIs
Registry Settings API supports GitLab Container Registry
Starting with 30.03, you no longer need to add GitLab Container Registry through Docker V2 registry which required administrative permissions to scan all images.
Fixed an issue in Azure API that left the disks created by the agentless scanning process in a dangling state once the scanner VM was terminated.
With this release, the dangling disks are explicitly deleted after the agentless scanner terminates leaving no resources unattached.