Add GitHub Actions to Prisma Cloud Application Security
Table of Contents
Add GitHub Actions to Prisma Cloud Application Security
Integrating Prisma Cloud with GitHub Actions makes it possible for Prisma Cloud Application Security to scan your Infrastructure-as-code files (Terraform and CloudFormation),review scan results in a number of formats, display Incidents on the Console and, optionally, cause a build to fail.
As a prerequisite you are required to add the Prisma Cloud IP addresses and hostname for Application Security to an allow list, to enable access to the Prisma Cloud Console.
- Access GitHub Actions on Prisma Cloud Application Security.
- SelectSettings > Repositories > Add Repositories.
- SelectGitGub Actions.
- Add environment variable to GitHub Secrets.
- CopyNameandValue keys, then access GitHub Secrets to add the variables.
- SelectNext.
- Configure job on GitHub Actions.
- Copy and then paste the steps from Prisma Cloud console to GitHub Actions job configuration.
- SelectDone.
The GitHub Actions repository you added displays onSettings > Repositories. After a application security scan accessApplication Security > Projectsto view the latest integrated GitHub Actions repository to either Suppress or Fix the policy misconfigurations.