Exam PCCSE topic 1 question 52 discussion

Build Policies in Prisma Cloud Prisma Cloud IaC Build policies identify insecure configurations in your IaC templates, including: AWS CloudFormation Templates (JSON or YAML format). HashiCorp Terraform templates (HCL or JSON format). Kubernetes App manifests (JSON or YAML format).

"you can also create configuration policies to scan your Infrastructure as Code (IaC) templates that are used to deploy cloud resources. The policies used for scanning IaC templates use a JSON query instead of RQL." https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin/prisma-cloud-policies/create-a-policy

B (JSON) Build Policies in Prisma Cloud identify insecure configurations in your IaC templates, including: HashiCorp Terraform templates (HCL or JSON format). https://www.paloaltonetworks.com/blog/prisma-cloud/cloud-iac-build-policies/

D. You can create custom build policies for the following formats: Terraform - Policies written using Terraform attributes will apply for Terraform (.tf and plan files). CloudFormation - Policies written using CloudFormation attributes will apply for CloudFormation, AWS Serverless Application Model (SAM), and Cloud Development Kit (CDK). https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-code-security/scan-monitor/custom-build-policies

https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-code-security/scan-monitor/custom-build-policies