Integrating Prisma Cloud with Github Actions makes it possible for Prisma Cloud Code Security to scan your Infrastructure-as-code files (Terraform and CloudFormation),review scan results in a number of formats, display Incidents on the Console and, optionally, cause a build to fail.
As a prerequisite you are required to add the Prisma Cloud IP addresses and hostname for Code Security to an allow list, to enable access to the Prisma Cloud Console.
Select
Settings > Repositories > GitHub Actions
.
Add the
Name
and
Value keys
to your Github Secrets, then click
Next
.
Add the step into your Github Action job configuration, then select
Done
.
Your configured GitHub Actions repositories will appear on the
Repositories
page. On your next GitHub Actions scan, the scan results will include the new configured repositories. Access