Refresh Compliance Stats
POST/api/v32.07/stats/compliance/refresh
x-prisma-cloud-target-env: {"permission":"monitorCompliance"}
Refreshes the current day's compliance violations counts and list, as well as the affected running resources.
The response will return exactly what the /statistics/compliance endpoint returns, only with updated statistics for the current day.
The following example command that uses curl and basic auth to refresh compliance statistics:
$ curl -k \
-u <USER> \
-H 'Content-Type: application/json' \
-X POST \
https://<CONSOLE>:8083/api/v1/stats/compliance
Request
Query Parameters
Scopes query by collection.
Scopes query by account ID.
Filters results by rule name.
Possible values: [containerVulnerability,containerCompliance,ciImagesVulnerability,ciImagesCompliance,hostVulnerability,hostCompliance,vmVulnerability,vmCompliance,serverlessCompliance,ciServerlessCompliance,serverlessVulnerability,ciServerlessVulnerability,containerRuntime,appEmbeddedRuntime,containerAppFirewall,hostAppFirewall,outOfBandAppFirewall,agentlessAppFirewall,serverObserverAppFirewall,appEmbeddedAppFirewall,serverlessAppFirewall,networkFirewall,secrets,hostRuntime,serverlessRuntime,kubernetesAudit,trust,admission,codeRepoCompliance,ciCodeRepoCompliance,ciCodeRepoVulnerability,codeRepoVulnerability
]
Filters results by policy type. Used to further scope queries because rule names do not need to be unique between policies.
Possible values: [Docker,Docker (DISA STIG),Twistlock Labs,Custom,Istio,Linux,Kubernetes,CRI,OpenShift,Application Control,GKE,Prisma Cloud Labs,EKS,AKS
]
Filters results by category. For example, a benchmark or resource type.
Possible values: [PCI,HIPAA,NIST SP 800-190,GDPR,DISA STIG
]
Filters results by compliance template.
Responses
- 200
- default
ComplianceStats holds compliance data
- application/json
- Schema
- Example (from schema)
Schema
- Array [
- ]
- Array [
- ]
- Array [
- ]
- Array [
- ]
- Array [
- ]
categories object[]
Compliance stats by category.
Failed is the count of impacted resources by the category IDs.
Possible values: [Docker,Docker (DISA STIG),Twistlock Labs,Custom,Istio,Linux,Kubernetes,CRI,OpenShift,Application Control,GKE,Prisma Cloud Labs,EKS,AKS
]
ComplianceCategory represents the compliance category
Total is the count of evaluations of category IDs.
daily object[]
Daily compliance stats.
Date holds the date the data was collected.
distribution object
Distribution counts the number of vulnerabilities per type
.
.
.
.
.
Modified is the time the data was modified.
ids object[]
Compliance data by check ID.
BenchmarkID is the benchmark ID.
Possible values: [Docker,Docker (DISA STIG),Twistlock Labs,Custom,Istio,Linux,Kubernetes,CRI,OpenShift,Application Control,GKE,Prisma Cloud Labs,EKS,AKS
]
ComplianceCategory represents the compliance category
Description is the compliance description.
Failed is the number of occurrences of compliance ID in resources.
ID is the compliance ID.
Severity is the compliance severity.
TemplateTitle is the template title.
Total is the count of resources evaluated with the compliance.
Possible values: [container,image,host_config,daemon_config,daemon_config_files,security_operations,k8s_master,k8s_worker,k8s_federation,linux,windows,istio,serverless,custom,docker_stig,openshift_master,openshift_worker,application_control_linux,gke_worker,image_malware,host_malware,aks_worker,eks_worker,image_secret,host_secret
]
Type represents the vulnerability type
rules object[]
Compliance stats by policy rules.
Failed is the count of the rule compliance IDs in resources.
Name is the name of the applied rule.
Possible values: [containerVulnerability,containerCompliance,ciImagesVulnerability,ciImagesCompliance,hostVulnerability,hostCompliance,vmVulnerability,vmCompliance,serverlessCompliance,ciServerlessCompliance,serverlessVulnerability,ciServerlessVulnerability,containerRuntime,appEmbeddedRuntime,containerAppFirewall,hostAppFirewall,outOfBandAppFirewall,agentlessAppFirewall,serverObserverAppFirewall,appEmbeddedAppFirewall,serverlessAppFirewall,networkFirewall,secrets,hostRuntime,serverlessRuntime,kubernetesAudit,trust,admission,codeRepoCompliance,ciCodeRepoCompliance,ciCodeRepoVulnerability,codeRepoVulnerability
]
PolicyType represents the type of the policy
Total is the count of evaluations done by rule.
templates object[]
Compliance stats by template.
Failed is the count of impacted resources by the template IDs.
Possible values: [PCI,HIPAA,NIST SP 800-190,GDPR,DISA STIG
]
ComplianceTemplate represents the compliance template
Total is the count of evaluations of template IDs.
{
"categories": [
{
"failed": 0,
"name": [
"Docker",
"Docker (DISA STIG)",
"Twistlock Labs",
"Custom",
"Istio",
"Linux",
"Kubernetes",
"CRI",
"OpenShift",
"Application Control",
"GKE",
"Prisma Cloud Labs",
"EKS",
"AKS"
],
"total": 0
}
],
"daily": [
{
"_id": "string",
"distribution": {
"critical": 0,
"high": 0,
"low": 0,
"medium": 0,
"total": 0
},
"modified": "2024-07-29T15:51:28.071Z"
}
],
"ids": [
{
"benchmarkID": "string",
"category": [
"Docker",
"Docker (DISA STIG)",
"Twistlock Labs",
"Custom",
"Istio",
"Linux",
"Kubernetes",
"CRI",
"OpenShift",
"Application Control",
"GKE",
"Prisma Cloud Labs",
"EKS",
"AKS"
],
"description": "string",
"failed": 0,
"id": 0,
"severity": "string",
"templateTitle": "string",
"total": 0,
"type": [
"container",
"image",
"host_config",
"daemon_config",
"daemon_config_files",
"security_operations",
"k8s_master",
"k8s_worker",
"k8s_federation",
"linux",
"windows",
"istio",
"serverless",
"custom",
"docker_stig",
"openshift_master",
"openshift_worker",
"application_control_linux",
"gke_worker",
"image_malware",
"host_malware",
"aks_worker",
"eks_worker",
"image_secret",
"host_secret"
]
}
],
"rules": [
{
"failed": 0,
"name": "string",
"policyType": [
"containerVulnerability",
"containerCompliance",
"ciImagesVulnerability",
"ciImagesCompliance",
"hostVulnerability",
"hostCompliance",
"vmVulnerability",
"vmCompliance",
"serverlessCompliance",
"ciServerlessCompliance",
"serverlessVulnerability",
"ciServerlessVulnerability",
"containerRuntime",
"appEmbeddedRuntime",
"containerAppFirewall",
"hostAppFirewall",
"outOfBandAppFirewall",
"agentlessAppFirewall",
"serverObserverAppFirewall",
"appEmbeddedAppFirewall",
"serverlessAppFirewall",
"networkFirewall",
"secrets",
"hostRuntime",
"serverlessRuntime",
"kubernetesAudit",
"trust",
"admission",
"codeRepoCompliance",
"ciCodeRepoCompliance",
"ciCodeRepoVulnerability",
"codeRepoVulnerability"
],
"total": 0
}
],
"templates": [
{
"failed": 0,
"name": [
"PCI",
"HIPAA",
"NIST SP 800-190",
"GDPR",
"DISA STIG"
],
"total": 0
}
]
}