Features Introduced in August 2023
Table of Contents
Features Introduced in August 2023
Learn about the new Application Security capabilities on Prisma™ Cloud Enterprise Edition (SaaS) in August 2023.
The following new features or enhancements are available for Prisma Cloud Application Security. These capabilities help agile teams add security checks to their development process and enforce security throughout the build lifecycle.
New Features
FEATURE | DESCRIPTION |
Added support for setting up Transporter network tunnels using Helm Charts | You can now set up Transporter with Kubernetes Helm Charts. This enhancement provides increased flexibility in customizing your Transporter deployment to meet your specific requirements. |
Added support for multiple integrations across both GitLab and GitLab Self-Managed version control systems | Added support for multiple integrations across both GitLab and GitLab Self-Managed version control systems. After the initial integration with Prisma Cloud, you can continue to add additional organizations and workspaces using a different or the same user or team token. Multiple integrations from a single Prisma Cloud account enables you to:
 |
Added support for multiple integrations across Jenkins Plugin and CircleCI CI/CD systems | Added support for multiple integrations across Jenkins Plugin and CircleCI CI/CD systems. Multiple integrations from a single Prisma Cloud account enables you to:
|
Changes in Existing Behavior
FEATURE | DESCRIPTION |
Code Security has a New Name | Starting with 23.8.3, Cloud Application Security is the new name for the combination of the Cloud Code Security capabilities and the newly introduced CI/CD Security module. CI/CD Security is available as a standard a-la-carte option or as an add-on with the Prisma Cloud Runtime Security Foundations or Advanced bundles. Owing to the name change, the path to Projects, Development Pipelines and Supply Chain will now be Application Security instead of Code Security on the Prisma Cloud administrative console. The change does impact any existing workflows for scanning and fixing issues. |
New Policies for Cloud Application Security (previously Cloud Code Security) | Starting with the 23.8.3 release, 125 new Config policies of subtype Build that enable the detection of CI/CD security risks will be enabled by default and available on the Policies page. With the release, the Code Security capabilities are being renamed as Application Security, and also will introduce CI/CD Security.These new policies will not generate any alerts until you enable the new CI/CD Security capability on . When you subscribe the CI/CD Security capability, when it becomes available, the alerts will display on . |
Policy Updates
POLICY UPDATES | DESCRIPTION |
Migration of Build Integrity Policies to Configuration Build Policies | Changes - The Build Integrity policies for GitHub and GitLab Terraform Providers will be migrated to IaC Misconfiguration Build policies in the next release.Here is the list of policies to be migrated:
Impact - You will view policy violations for these policies on Projects and Supply Chain in IaC Misconfigurations code category. Enforcement levels for IaC Misconfigurations will now be applied to pipelines with these findings. |
Build Integrity Policies -Deleted | Changes - The following Build Integrity policies are no longer supported.
Impact - You will not view any policy violations on Projects and Supply Chain. |
REST API Updates
FEATURE | DESCRIPTION |
Code Security Dashboard APIs | Prisma Cloud Code Security (CCS) now includes the following new Dashboard endpoints that enable you to get details and metrics for Code Security related issues: |