iac-pac-automation

Policy-as-code automation for Prisma Cloud Code Security and Bridgecrew.

iac

prisma-cloud

policy-as-code

Policy-as-Code Automation with Bridgecrew and GitHub Actions

This GitHub Action runs whenever files change in the main branch. It automatically creates, updates or deletes a Bridgecrew custom policy or policies from your Bridgecrew console based on the file changes triggered by the main branch.

This workflow is not ment for production use. Its goal is to provide a way to showcase how one can automate a custom policy lifecycle using Bridgecrew and GitHub Actions.

Requirements
Getting Started
Support
Contributing

Requirements

Bridgecrew account
Bridgecrew API token

Getting started

Fork this repo.
Navigate to Bridgecrew's website and choose get started for free to create a trial account.
Once in your Bridgecrew console, navigate to integrations and create an API token.
Add the API token to your GitHub repo with the name BC_API_KEY (settings > secrets).
Create a new policy (you can use the provided policy GCP_Firewall_RDP_Port_Open.yml or create your own policies).
Push your changes to the main branch of the repo.
Check the actions tab.
In your Bridgecrew console navigate to policies, add GCP to the providers list, add "Created by" and select your username.

Support

Please read SUPPORT.md for details on how to get support for this project.

Contributing

We value your contributions! Please read CONTRIBUTING.md for details on how to contribute, and the process for submitting pull requests to us.

iac-pac-automation .css-17neft0{box-sizing:border-box;margin:0;min-width:0;max-width:100%;height:auto;position:relative;top:3px;}