Features Introduced in February 2023
Learn about the new Code Security capabilities on Prisma™ Cloud Enterprise Edition (SaaS) in February 2023.
The following new features or enhancements are available for Prisma Cloud Code Security. These capabilities help agile teams add security checks to their existing IaC (Infrastructure-as-Code) model and enforce security throughout the build lifecycle.
You can now configure enforcement thresholds for Vulnerabilities, Licenses, IaC, Build integrity and Secrets. This update aligns with the three new Code Security modules for IaC Security, Software Composition Analysis (SCA) and Secrets Security. For existing customers, the Enforcement thresholds are mapped to the new categories as follows:
IaC and Secrets have no impact.
Code Editor for Custom Secrets
In addition to the custom policy for build-time checks, Code Editor now helps you define regular expression patterns for Custom Secrets identified on the Prisma Cloud console. The policy violation for custom secrets will continue to be viewable on
Code Security > Projects.
Alert Rules for Detecting Drift
With this release, for Drift Detection (
Code Security > Projects), you can now add alert rules to identify policy drift violations for account groups and policies to which you would like to receive alerts within your AWS and Azure cloud accounts. From the Prisma Cloud console (
Alerts > Overview), you can access the alert summary and trace the origin of the drift using the yor_trace tag viewable on Traceability (
Alerts > Overview > Alert Count > Alert ID)
on the Prisma Cloud console is enhanced to help you address security issues in your repositories more easily. It now groups scan results by resources and includes saved views with preset filters that provide contextualized scan results. Each view displays policy violations for a code category so you can prioritize what to fix across all your onboarded repositories.
Code Security Developer-Based Metering Plan
Prisma Cloud is introducing a new developer-based metering plan for Code Security. The plan introduces an a-la-carte model which includes three Code Security modules each using credits per developer.
A credit per developer within each of the modules is a user who actively commits on Git, identified through a unique Git email address with a contribution history to any Git repositories in the last 90 days. Enable one or more Code Security modules for an enhanced shift-left experience on the Prisma Cloud console (
Settings > Code Security Configuration) You can always choose to reconfigure your licensing configuration during the shift-left experience.
Manage Network Tunnels for self-hosted version control systems (VCS)
Establish secure and managed access between your self-hosted version control systems (VCS) and Prisma Cloud using Transporter. After configuring a Transporter in your environment, followed by authentication from Prisma Cloud, Transporter establishes a network tunnel through the WebSocket over HTTPS. A single Transporter on the Prisma Cloud can secure multiple VCS integrations, or you can use multiple Transporters. This feature will be available on request.
Recommended For You
Recommended videos not found.