Prisma Cloud CLI
Project description
How to use this tool
This is a start of a Prisma Cloud CLI. It contains a script called pc which can be used to trigger API calls.
Make sure this folder is in your path and create the authentication file below.
Support
These scripts have been developed by Prisma Cloud SAs, they are not Supported by Palo Alto Networks. Nevertheless, the maintainers will make a best-effort to address issues, and (of course) contributors are encouraged to submit issues and pull requests.
Authentication
Create an access key from Settings then Access key
Get the path to console from Compute tab, System, Utilities
Create a file into home directory .prismacloud/credentials.json with the following structure
{
"api_endpoint": "__REDACTED__",
"pcc_api_endpoint": "__REDACTED__",
"access_key_id": "__REDACTED__",
"secret_key": "__REDACTED__"
}
Run the script
pc
Examples
pc policies -o csv
pc policies -o json | jq
pc tags
pc stats -t dashboard
pc stats -t dashboard -o json
pc users
pc cloud
pc reports -o json | jq
pc stats -t dashboard --columns defendersSummary.host --config local
Global options
The following global options are available
--debug, -d, Show debug output
--columns, Select columns to show
--config, Read custom config file ~/.prismacloud/[value].json
--limit, -l, Number of rows to show
--output, -o, Output mode (json/csv/html/markdown/columns)
Use -o columns to get a list of columns available for --columns, e.g.:
pc images -o columns
pc images -l 1 --columns hostname repoTag.repo osDistro -o csv
Use cases
Show twistcli latest scans of scanned images and their number of critical CVEs:
pc scans --columns time entityInfo.id entityInfo.repoTag.registry entityInfo.repoTag.repo entityInfo.repoTag.tag entityInfo.vulnerabilityDistribution.high entityInfo.vulnerabilityDistribution.critical
Get latest scan from image id
pc scans --columns entityInfo.id entityInfo.repoTag.registry entityInfo.repoTag.repo entityInfo.repoTag.tag entityInfo.vulnerabilityDistribution.critical time --config local --custom 'imageID=sha256:ef20bafd68d5e55da305c2289a58f367cd90f71ea97b5414a73b0be745f6aab9'
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for prismacloud-cli-0.1.1.dev0.tar.gz
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 280183b81264d15a837c6a147dcd172c3682d8c7b8e0f090f1d2c4eb4ec182bd |
|
| MD5 | 06d681b2334a390abab01185ee1cd7d4 |
|
| BLAKE2b-256 | 5f29fb1e6ce8adca0de8c05d5af743552a04e590a33759c9e79a4bb5b920b0c3 |
Hashes for prismacloud_cli-0.1.1.dev0-py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 3bf148eebeda025ff16692b8c2fc4e81c0b10108813f341b207087194a03386f |
|
| MD5 | 3a65538d16f610adecd19548bb897079 |
|
| BLAKE2b-256 | 12528ddb88cdb33e96951c3e38aa941321e907300e4459800d47d39a54bb4cc3 |
