Which three options are selectable in a CI policy for image scanning with Jenkins or twistcli? (Choose three.)
Which three options are selectable in a CI policy for image scanning with Jenkins or twistcli? (Choose three.)
For a CI policy involving image scanning with Jenkins or twistcli, the three selectable options would typically include setting up credentials, defining a failure threshold, and specifying a grace period. Credentials are necessary for accessing various repositories or registries to perform the scans. The failure threshold defines the conditions under which the scan results would be considered unacceptable, often based on the severity of vulnerabilities found. Lastly, the grace period allows for a temporary allowance period before enforcing the failure threshold, giving teams time to address vulnerabilities. The inclusion of these options ensures that the scanning process is both secure and functional, while also allowing flexibility in addressing identified issues.
In Prisma: Compute > Defend > Vulnerabilities > Images > CI Docs: https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/continuous_integration/set_policy_ci_plugins It's shown in step 3, add rule: Scope, failure threshold, and grace period.
Scope is not applicable if you scan with twistcli or Jenkins.
A C D https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/continuous_integration/set_policy_ci_plugins
A C D https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/continuous_integration/set_policy_ci_plugins
B. Credential D. Failure threshold E. Grace Period