Get Daily Compliance Stats
GET/api/v33.01/stats/daily
x-prisma-cloud-target-env: {"permission":"monitorRuntimeContainers"}
Returns a historical list of per-day statistics for the resources protected by Prisma Cloud Compute, including the total number of runtime audits, image vulnerabilities, and compliance violations.
The following example command uses curl and basic auth to retrieve the daily stats:
$ curl -k \
-u <USER> \
-H 'Content-Type: application/json' \
-X GET \
https://<CONSOLE>/api/v<VERSION>/stats/daily
Responses
- 200
- default
- application/json
- Schema
- Example (from schema)
Schema
- Array [
- ]
AgentlessAppFirewall object
AppFirewallStats are the daily stats for app firewall audits TODO #20802 - replace string key with WAAS attack type type when mongo changed to avoid encoding map keys without stringer
ID is the metric type.
access object
AccessStats are stats for the access flows
docker object
AccessStatsCount stores the total amount of access audits
.
.
sshd object
AccessStatsCount stores the total amount of access audits
.
.
sudo object
AccessStatsCount stores the total amount of access audits
.
.
appEmbeddedAppFirewall object
AppFirewallStats are the daily stats for app firewall audits TODO #20802 - replace string key with WAAS attack type type when mongo changed to avoid encoding map keys without stringer
container object
RuntimeStats are stats for runtime flows (sum of audits per flow)
.
.
.
.
containerAppFirewall object
AppFirewallStats are the daily stats for app firewall audits TODO #20802 - replace string key with WAAS attack type type when mongo changed to avoid encoding map keys without stringer
containerNetworkFirewall object
NetworkFirewallStats stores the total amount of network firewall audits
.
.
host object
RuntimeStats are stats for runtime flows (sum of audits per flow)
.
.
.
.
hostAppFirewall object
AppFirewallStats are the daily stats for app firewall audits TODO #20802 - replace string key with WAAS attack type type when mongo changed to avoid encoding map keys without stringer
HostComplianceCount is the host compliance count.
hostNetworkFirewall object
NetworkFirewallStats stores the total amount of network firewall audits
.
.
IncidentsCount is the incidents count.
serverless object
RuntimeStats are stats for runtime flows (sum of audits per flow)
.
.
.
.
serverlessAppFirewall object
AppFirewallStats are the daily stats for app firewall audits TODO #20802 - replace string key with WAAS attack type type when mongo changed to avoid encoding map keys without stringer
UnixTimestamp is the unix timestamp.
vulnerabilities object
VulnerabilitiesStats are measures the total number of vulnerabilities in a specific images
ContainerCompliance is the sum of all compliance issues for all running containers.
ImageCompliance is the sum of all compliance issues of all running images.
ImageCVE is the sum of cve vulnerabilities of all running images.
[
{
"AgentlessAppFirewall": {},
"_id": "string",
"access": {
"docker": {
"allowed": 0,
"denied": 0
},
"sshd": {
"allowed": 0,
"denied": 0
},
"sudo": {
"allowed": 0,
"denied": 0
}
},
"appEmbeddedAppFirewall": {},
"container": {
"filesystem": 0,
"kubernetes": 0,
"network": 0,
"processes": 0
},
"containerAppFirewall": {},
"containerNetworkFirewall": {
"alerted": 0,
"blocked": 0
},
"host": {
"filesystem": 0,
"kubernetes": 0,
"network": 0,
"processes": 0
},
"hostAppFirewall": {},
"hostComplianceCount": 0,
"hostNetworkFirewall": {
"alerted": 0,
"blocked": 0
},
"incidentsCount": 0,
"serverless": {
"filesystem": 0,
"kubernetes": 0,
"network": 0,
"processes": 0
},
"serverlessAppFirewall": {},
"time": 0,
"vulnerabilities": {
"containerCompliance": 0,
"imageCompliance": 0,
"imageCve": 0
}
}
]