Get Cloud Discovery Scan Results
x-prisma-cloud-target-env: {"permission":"monitorCloud","saas":true,"self-hosted":true}
x-public: true
Returns a list of all cloud discovery scan results in a paginated response.
The entities object and the associated parameters in the response schema is now part of a new API endpoint /api/v1/cloud/discovery/entities.
cURL Request
Refer to the following cURL example request:
$ curl -k \
-u <USER> \
-H 'Content-Type: application/json' \
-X GET \
"https://<CONSOLE>/api/v<VERSION>/cloud/discovery"
Query Parameters
Offsets the result to a specific report count. Offset starts from 0.
Number of reports to retrieve in a page. For PCCE, the maximum limit is 250. For PCEE, the maximum limit is 50. The default value is 50.
Retrieves the result for a search term.
Sorts the result using a key. Refer to the columns in the relevant Prisma Cloud Compute user interface to use them as sort keys.
Sorts the result in reverse order.
Filters the result based on collection names that you have defined in Prisma Cloud Compute.
Scopes the query by cloud provider.
Filters the result based on cloud account IDs.
Scopes the query by resource ID.
Scopes the query by cloud region.
Retrieves the fields that you need in a report. Use the list of fields you want to retrieve. By default, the result shows all fields of data.
CredentialID is the account filter.
ServiceType is the service type filter.
Registry is the registry filter.
AccountName is the account name filter.
Agentless is the agentless filter.
- 200
- default
Schema
- Array [
- ]
AccountID is the cloud account ID.
AccountName is the cloud account name.
Agentless indicates whether the account is scan by agentless.
Collections are the matched result collections.
CredentialID is the id reference of the credential used.
Defended is the number of defended entities (registries, functions, clusters).
DefenseCoverage is the defense coverage.
Err holds any error found during a scan.
Nodes is the number of nodes.
Project is the GCP project that was scanned.
Possible values: [aws,azure,gcp,alibaba,oci,others]
CloudProvider represents the cloud provider
Region is the region that was scanned, for example: GCP - "us-east-1", Azure - "westus".
Registry is the Azure registry that was scanned, for example: testcloudscanregistry.azurecr.io.
Possible values: [aws-ecr,aws-lambda,aws-ec2,aws-eks,aws-ecs,aws-s3,aws-config,aws-cloud-trail,aws-kms,aws-cloud-watch,aws-sns,aws-security-hub,aws-secrets-manager,aws-parameter-store,azure-acr,azure-functions,azure-aks,azure-aci,azure-vm,gcp-gcr,gcp-gcf,gcp-gke,gcp-vm,gcp-artifact,oci-instance]
ScanResultType represents a cloud scan result type
Total is total number of entities found in cloud scan.
Undefended is the number of undefended entities (registries, functions, clusters).
Zone is the zone that was scanned, only relevant to GCP.
[
{
"accountID": "string",
"accountName": "string",
"agentless": true,
"collections": [
"string"
],
"credentialId": "string",
"defended": 0,
"defenseCoverage": 0,
"err": "string",
"nodes": 0,
"project": "string",
"provider": [
"aws",
"azure",
"gcp",
"alibaba",
"oci",
"others"
],
"region": "string",
"registry": "string",
"serviceType": [
"aws-ecr",
"aws-lambda",
"aws-ec2",
"aws-eks",
"aws-ecs",
"aws-s3",
"aws-config",
"aws-cloud-trail",
"aws-kms",
"aws-cloud-watch",
"aws-sns",
"aws-security-hub",
"aws-secrets-manager",
"aws-parameter-store",
"azure-acr",
"azure-functions",
"azure-aks",
"azure-aci",
"azure-vm",
"gcp-gcr",
"gcp-gcf",
"gcp-gke",
"gcp-vm",
"gcp-artifact",
"oci-instance"
],
"total": 0,
"undefended": 0,
"zone": "string"
}
]