Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/paloaltonetworks/iac-pac-automation

Policy-as-code automation for Prisma Cloud Code Security and Bridgecrew.
https://github.com/paloaltonetworks/iac-pac-automation

iac policy-as-code prisma-cloud

Last synced: 6 days ago
JSON representation

Policy-as-code automation for Prisma Cloud Code Security and Bridgecrew.

Host: GitHub
URL: https://github.com/paloaltonetworks/iac-pac-automation
Owner: PaloAltoNetworks
License: isc
Created: 2021-10-21T17:20:59.000Z (about 3 years ago)
Default Branch: main
Last Pushed: 2022-07-13T15:22:33.000Z (over 2 years ago)
Last Synced: 2024-12-26T23:56:14.435Z (22 days ago)
Topics: iac, policy-as-code, prisma-cloud
Homepage:
Size: 29.3 KB
Stars: 4
Watchers: 2
Forks: 11
Open Issues: 0
Metadata Files:
- Readme: README.md
- Contributing: CONTRIBUTING.md
- License: LICENSE
- Support: SUPPORT.md

Awesome Lists containing this project

README

# Policy-as-Code Automation with Bridgecrew and GitHub Actions

This GitHub Action runs whenever files change in the main branch. It automatically creates, updates or deletes a Bridgecrew custom policy or policies from your Bridgecrew console based on the file changes triggered by the main branch.

This workflow is not ment for production use. Its goal is to provide a way to showcase how one can automate a custom policy lifecycle using Bridgecrew and GitHub Actions.

## Table of Contents

* [Requirements](#requirements)
* [Getting Started](#getting-started)
* [Support](#support)
* [Contributing](#contributing)

## Requirements

* Bridgecrew account
* Bridgecrew API token

## Getting started

1. Fork this repo.
2. Navigate to [Bridgecrew's website](https://bridgecrew.io/) and choose get started for free to create a trial account.
3. Once in your Bridgecrew console, navigate to integrations and create an API token.
4. Add the API token to your GitHub repo with the name BC_API_KEY (settings > secrets).
5. Create a new policy (you can use the provided policy GCP_Firewall_RDP_Port_Open.yml or create your own policies).
6. Push your changes to the main branch of the repo.
7. Check the actions tab.
8. In your Bridgecrew console navigate to policies, add GCP to the providers list, add "Created by" and select your username.

## Support

Please read [SUPPORT.md](SUPPORT.md) for details on how to get support for this project.

## Contributing

We value your contributions! Please read
[CONTRIBUTING.md](CONTRIBUTING.md)
for details on how to contribute, and the process for submitting pull requests
to us.