checkov icon indicating copy to clipboard operation
checkov copied to clipboard

Published 20 hours ago verified publisher icon bridgecrewio

Prisma Cloud Integration Issue

Open regicsolutions opened this issue 2 years ago • 3 comments

Describe the issue

I am trying to generate a cyclonedx sbom from a docker container and unable to use checkov with my Prisma Cloud key::secret as documented here:

Command: checkov --repo-id MYORG/MYREPO --docker-image MYIMAGE --prisma-api-url https://us-east1.cloud.twistlock.com/us-x-XXXXXXXXX --bc-api-key ****::**** -o cyclonedx_json --output-file-path .

Error:

  [MainThread  ] [ERROR]  Failed to get customer assumed role
  Traceback (most recent call last):
    File "/home/user/.local/lib/python3.8/site-packages/urllib3/connectionpool.py

regicsolutions avatar Dec 23 '22 20:12 regicsolutions

Hey!

It seems you're using twistlock URL instead of the prisma one. Prisma API usually look like this: https://api0.prismacloud.io

can you verify your URL, make sure you are using Prisma creds, and try again?

nimrodkor avatar Dec 23 '22 20:12 nimrodkor

Hey!

It seems you're using twistlock URL instead of the prisma one. Prisma API usually look like this: https://api0.prismacloud.io

can you verify your URL, make sure you are using Prisma creds, and try again?

Isn't twistlock now Prisma cloud? Figured this url would work. How would I find my api url?

regicsolutions avatar Dec 24 '22 16:12 regicsolutions

@regicsolutions Still relevant? If so, when logging into prisma cloud, what's the website URL for you? Prisma has stacks around the globe...

nimrodkor avatar Jan 24 '23 11:01 nimrodkor