[](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown) ![x close icon to close mobile navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/x-black.svg) [![Prisma logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/prisma-logo-dark.svg)](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown) ![magnifying glass search icon to open search field](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/search-black.svg) * [](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown) * Products ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Products Platform * [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown) Protect applications from code to cloud Categories * [Cloud Security Posture Management](https://www.paloaltonetworks.com/prisma/cloud/cloud-security-posture-management?ts=markdown) Gain visibility, compliance and governance across multicloud environments * [Cloud Workload Protection](https://www.paloaltonetworks.com/prisma/cloud/cloud-workload-protection-platform?ts=markdown) Secure host, containers, Kubernetes (K8s) and serverless functions * [Application Security](https://www.paloaltonetworks.com/prisma/cloud/application-security?ts=markdown) Shift left and secure applications by design * [Cloud Infrastructure Entitlement Management](https://www.paloaltonetworks.com/prisma/cloud/cloud-infrastructure-entitlement-mgmt?ts=markdown) Enforce least privilege access to cloud infrastructure * [Web Application \& API Security](https://www.paloaltonetworks.com/prisma/cloud/web-application-API-security?ts=markdown) Protect applications and APIs against web based attacks * [Cloud Discovery \& Exposure Management](https://www.paloaltonetworks.com/prisma/cloud/cloud-discovery-exposure-management?ts=markdown) Combat rogue cloud deployments * [Data Security Posture Management](https://www.paloaltonetworks.com/prisma/cloud/cloud-data-security?ts=markdown) Classify and secure sensitive data * [AI Security Posture Management](https://www.paloaltonetworks.com/prisma/cloud/ai-spm?ts=markdown) Secure AI powered applications * Solutions ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Solutions Use Cases * Risk Prevention * [Secure code by design](https://www.paloaltonetworks.com/prisma/cloud/cloud-code-security?ts=markdown) * [Fix misconfigurations in IaC](https://www.paloaltonetworks.com/prisma/cloud/infrastructure-as-code-security?ts=markdown) * [Manage OSS vulnerabilities (SCA)](https://www.paloaltonetworks.com/prisma/cloud/software-composition-analysis?ts=markdown) * [Avoid secrets exposure](https://www.paloaltonetworks.com/prisma/cloud/secrets-security?ts=markdown) * [Protect CI/CD pipelines](https://www.paloaltonetworks.com/prisma/cloud/software-supply-chain-security?ts=markdown) * Visibility \& Control * [Detect misconfigurations](https://www.paloaltonetworks.com/prisma/cloud/visibility-compliance-governance#conf-mngmt?ts=markdown) * [Generate compliance reports](https://www.paloaltonetworks.com/prisma/cloud/visibility-compliance-governance?ts=markdown) * [Reduce excessive permissions](https://www.paloaltonetworks.com/prisma/cloud/cloud-infrastructure-entitlement-mgmt?ts=markdown) * [Prevent cloud data breaches](https://www.paloaltonetworks.com/prisma/cloud/cloud-data-security?ts=markdown) * [Manage shadow clouds](https://www.paloaltonetworks.com/prisma/cloud/cloud-discovery-exposure-management?ts=markdown) * [Vulnerability management](https://www.paloaltonetworks.com/prisma/cloud/vulnerability-management?ts=markdown) * Runtime Protection * [Detect threats](https://www.paloaltonetworks.com/prisma/cloud/cloud-threat-detection?ts=markdown) * [Container and Kubernetes security](https://www.paloaltonetworks.com/prisma/cloud/container-security?ts=markdown) * [Protect Hosts / VMs](https://www.paloaltonetworks.com/prisma/cloud/host-security?ts=markdown) * [Defend serverless functions](https://www.paloaltonetworks.com/prisma/cloud/serverless-security?ts=markdown) * [Protect web applications](https://www.paloaltonetworks.com/prisma/cloud/web-application-security?ts=markdown) * [API security](https://www.paloaltonetworks.com/prisma/cloud/api-security?ts=markdown) Industries * [Government](https://www.paloaltonetworks.com/prisma/cloud/government?ts=markdown) * Environments ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Environments Environments We Secure * Cloud Service Providers * [Alibaba Cloud](https://www.paloaltonetworks.com/prisma/environments/alibaba-cloud?ts=markdown) * [Amazon Web Services](https://www.paloaltonetworks.com/prisma/environments/aws?ts=markdown) * [Google Cloud](https://www.paloaltonetworks.com/prisma/environments/gcp?ts=markdown) * [Microsoft Azure](https://www.paloaltonetworks.com/prisma/environments/azure?ts=markdown) * [Oracle Cloud Infrastructure](https://www.paloaltonetworks.com/prisma/environments/oci?ts=markdown) * Application Platforms * [Docker](https://www.paloaltonetworks.com/prisma/environments/docker?ts=markdown) * [Kubernetes](https://www.paloaltonetworks.com/prisma/environments/kubernetes?ts=markdown) * [Red Hat OpenShift](https://www.paloaltonetworks.com/prisma/environments/red-hat-openshift?ts=markdown) * [ServiceNow](https://www.paloaltonetworks.com/prisma/environments/servicenow?ts=markdown) * [VMWare Tanzu](https://www.paloaltonetworks.com/prisma/environments/vmware-tanzu?ts=markdown) * Cloud Automation * [HashiCorp](https://www.paloaltonetworks.com/prisma/environments/hashicorp?ts=markdown) * [Product Tour](https://www.paloaltonetworks.com/prisma/cloud/explore-prisma-cloud?ts=markdown) * Resources ![black arrow pointing left to go back to main navigation](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-black.svg) Resources Product Information * [Datasheets](https://www.paloaltonetworks.com/resources?q=*%3A*&_charset_=UTF-8&fq=PRODUCTS0_DFACET%3Apan%253Aresource-center%252Fproducts0%252Fprisma-cloud&fq=RC_TYPE_DFACET%3Apan%253Aresource-center%252Frc-type%252Fdatasheet&ts=markdown) * [Explore Demos](https://www.paloaltonetworks.com/prisma/demos?ts=markdown) * [Technical Documentation](https://docs.prismacloud.io/en) * [Knowledge Base](https://support.paloaltonetworks.com/search#f:@source=[Salesforce%20Knowledge]&f:@objecttype=[KBKnowledge]&f:@panproduct=[Prisma%20Cloud]) * [Support](https://support.paloaltonetworks.com/Support/Index) * [Professional Services](https://www.paloaltonetworks.com/prisma/professional-services-for-cloud-native-security?ts=markdown) * [Technology Partners](https://technologypartners.paloaltonetworks.com/English/directory?Integration_Products__cf=Prisma%20Cloud&Integration_Products__cf=Prisma%20Cloud%20Compute) * [Open Source](https://www.paloaltonetworks.com/prisma/cloud/open-source-projects?ts=markdown) Learn \& Connect * [Blog](https://www.paloaltonetworks.com/blog/prisma-cloud/?ts=markdown) * [Research](https://www.paloaltonetworks.com/prisma/cloud/research?ts=markdown) * [DevSecTalks](https://www.paloaltonetworks.com/devsectalks/?ts=markdown) * [Cloud Security Cyberpedia](https://www.paloaltonetworks.com/cyberpedia/cloud-security?ts=markdown) * [Customer Success Stories](https://www.paloaltonetworks.com/prisma/cloud/customer-stories?ts=markdown) * [Analyst \& Research Reports](https://www.paloaltonetworks.com/resources?q=*%3A*&_charset_=UTF-8&fq=PRODUCTS0_DFACET%3Apan%253Aresource-center%252Fproducts0%252Fprisma-cloud&fq=RC_TYPE_DFACET%3Apan%253Aresource-center%252Frc-type%252Fresearch&ts=markdown) * [Whitepapers](https://www.paloaltonetworks.com/resources?q=*%3A*&_charset_=UTF-8&fq=PRODUCTS0_DFACET%3Apan%253Aresource-center%252Fproducts0%252Fprisma-cloud&fq=RC_TYPE_DFACET%3Apan%253Aresource-center%252Frc-type%252Fwhitepaper&ts=markdown) * [eBooks](https://www.paloaltonetworks.com/resources?q=*%3A*&_charset_=UTF-8&fq=PRODUCTS0_DFACET%3Apan%253Aresource-center%252Fproducts0%252Fprisma-cloud&fq=RC_TYPE_DFACET%3Apan%253Aresource-center%252Frc-type%252Fbook&ts=markdown) * [Videos](https://www.paloaltonetworks.com/resources?q=*%3A*&_charset_=UTF-8&fq=PRODUCTS0_DFACET%3Apan%253Aresource-center%252Fproducts0%252Fprisma-cloud&fq=RC_TYPE_DFACET%3Apan%253Aresource-center%252Frc-type%252Fvideo&ts=markdown) * [Developer Resources](https://www.paloaltonetworks.com/prisma/cloud/developer?ts=markdown) [![The State of Cloud-Native Security 2024 Report](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/prisma-cloud_state-of-cloud-native-security-report-2024_website-nav-card_167x125.jpg) CXO Research The State of Cloud-Native Security 2024 Report Get your copy](https://start.paloaltonetworks.com/state-of-cloud-native-security-2024) [![The Complete Cloud Security Platform.End-to-End of Story.](https://www.paloaltonetworks.com/content/dam/pan/en_US/prisma/cloud-new/promo-card.jpg) ON-DEMAND VIRTUAL EVENT The Complete Cloud Security Platform. End-to-End of Story. Watch now](https://start.paloaltonetworks.com/prisma-cloud-new-innovations-for-the-future-of-cloud-security-webinar-on-demand.html) * ![palo alto networks logo icon](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/logo-default.svg) ![white arrow icon pointing left to return to main Palo Alto Networks site](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/arrow-right-white.svg) [](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown) Search All * [Tech Docs]() Close search modal *** ** * ** *** Cortex Cloud"\> Introducing Cortex Cloud === Bringing together best-in-class CDR with the next version of Prisma Cloud's leading CNAPP for real-time cloud security. --- ![logo](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/cortexcloud/logos/cortex-logo-white-with-panw.png) * [Experience real-time cloud security](https://www.paloaltonetworks.com/cortex/cloud/?ts=markdown) **cortex** ![](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/x-white.svg) WHY IT MATTERSOUR APPROACHMODULESRESOURCES * [WHY IT MATTERS](#why) * [OUR APPROACH](#approach) * [MODULES](#modules) * [RESOURCES](#resources) {#why} ## Application security has reached an inflection point. Organizations are pushing new code to production faster than ever, which is enabling too many security risks to leak into runtime. The responsibility for security testing is also shifting from security professionals to developers, even though traditional AppSec tools aren't built with developers in mind. To overcome these challenges, modern AppSec solutions must integrate seamlessly with development pipelines and code repositories so teams can identify vulnerable components, detect misconfigurations and manage remediation workflows effectively. ### Agile development requires security guardrails Traditional security reviews break agile development methods and slow the business down. To accelerate secure deployment, security teams need to remove gates and build guardrails across the application development lifecycle. ### Siloed tools lack holistic context Cloud-native architectures are complex, and modern software supply chains rely on diverse technologies. Teams need integrated security solutions to simplify risk prioritization and enforce context-aware policies across the application lifecycle. ### Consistent security is difficult to apply across the software development lifecycle (SDLC) Security teams struggle to translate security policy into consistent technical enforcement across the application lifecycle. A platform approach to cloud security is the only way teams can apply consistent security from code to cloud. ![GigaOm](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/thumbnail-gigaom-report-supply-chain-security.png) ## Palo Alto Networks: Leader in Software Supply Chain Security [Download report](https://start.paloaltonetworks.com/gigaom-radar-for-software-supply-chain-security-report.html) ## A single tool to secure applications across all modern architectures and software supply chains. Embedding comprehensive security throughout the SDLC makes it easy to identify vulnerabilities, misconfigurations, compliance violations and exposed secrets before they become a problem. Prisma^®^ Cloud consolidates AppSec capabilities --- from code to runtime --- into a single risk, policy and automation engine. This not only prevents risks from reaching production, it streamlines DevSecOps workflows and provides unparalleled visibility. The result? Engineering teams can secure their entire stack within their existing tools while security teams ensure that all deployed code is fully protected. * Support for multiple languages, runtimes and frameworks * Consistent controls from build to runtime * Embed guided security best practices into DevOps tooling * ![Application Security Posture Management (ASPM)](https://www.paloaltonetworks.com/content/dam/pan/en_US/prisma/icon-Application-Security-Posture-Management.svg) Application Security Posture Management (ASPM) * ![Infrastructure as Code (IaC) security](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/devsecops/Iac-scanning.png) Infrastructure as Code (IaC) security * ![Software composition analysis](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/devsecops/icon-git-repo-vulnerability-management-74x74.svg) Software composition analysis * ![Software Supply Chain (CI/CD) Security](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/devsecops/icon-prisma-cloud-clean-pipe.svg) Software Supply Chain (CI/CD) Security * ![Container image scanning](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/devsecops/container-scanning.png) Container image scanning * ![Policy as code](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/devsecops/icon-policy-as-code-74x74.svg) Policy as code * ![Secrets security](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/devsecops/icon-secrets-scanning-74x74.svg) Secrets security * ![OSS license compliance](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/devsecops/icon-oss-license-compliance-74x74.svg) OSS license compliance {#approach} *** ** * ** *** THE PRISMA CLOUD SOLUTION ## Our approach to application security ### Application Security Posture Management Prisma Cloud consolidates AppSec tools into a single platform --- making it easier to correlate and prioritize risk and apply context-aware security policies across the entire application lifecycle. * #### Single source of truth Consolidate AppSec capabilities---from code to runtime---into a single platform to minimize tool console switching and streamline DevSecOps workflows. \* #### Comprehensive risk context Bring code, pipeline and runtime context together to manage risks based on probability of exploitation and potential business impact. \* #### Consistent policy enforcement Apply consistent security policy across the SDLC to ensure that security standards are maintained throughout development and deployment. \* #### Smart guardrails Accelerate secure deployments with agile security guardrails that empower developers to apply best practices throughout the application development lifecycle. \* #### Native developer integrations Secure applications in existing developer workflows with native integrations for IDEs, VCS and CI/CD tooling. [![Application Security Posture Management](https://www.paloaltonetworks.com/content/dam/pan/en_US/prisma/AppSec-Dashboard.png)](#prismastickyimagecomapproach1_prisma-custom-background_prismacustombackgrou_1073690407_cleanParsys_application-security_cloud_prisma_en_US_pan_content_) ### Infrastructure as code scanning IaC offers a powerful opportunity to secure cloud environments directly in code, even before deployment to production. Prisma Cloud enhances security across the SDLC by automating processes and embedding security into DevOps workflows, supporting tools like Terraform^®^, CloudFormation, Kubernetes^®^, Dockerfiles, serverless frameworks and ARM templates. * #### Automate cloud misconfiguration checks in code Integrate automated misconfiguration checks at every stage of the SDLC, ensuring continuous security and compliance. \* #### Identify misconfiguration ownership Prisma Cloud tracks IaC resource dependencies and identifies recent developer changes, enhancing collaboration across large teams. \* #### Automate feedback and fixes in code Prisma Cloud comes with native integrations for IDEs, VCS, and CI/CD tooling to help developers ship secure code in their existing workflows. \* #### Include deep context for misconfigurations Enable pull request comments and automate commits or pull requests to resolve misconfigurations directly in the code. [Learn more](https://www.paloaltonetworks.com/prisma/cloud/infrastructure-as-code-security?ts=markdown) [![Container image scanning](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/devsecops/container-image-scanning.png)](#prismastickyimagecom_1131470066_prisma-custom-background_prismacustombackgrou_1073690407_cleanParsys_application-security_cloud_prisma_en_US_pan_content_) ### Software composition analysis Modern applications depend heavily on open-source libraries. Often, teams lack visibility into all the dependencies in use and hesitate to push updates for fear of causing disruptions --- leaving potentially dangerous vulnerabilities unaddressed. Prisma Cloud integrates seamlessly with your developer tools to automatically identify vulnerabilities in open-source packages and their entire dependency trees. With support for flexible and granular bump fixes, the platform ensures your applications stay secure without risking functionality. * #### Ensure comprehensive open-source security Scan all open-source dependencies and cross-references them with trusted databases like NVD and the Prisma Cloud Intelligence Stream to uncover vulnerabilities. \* #### Uncover and prioritize risks with context Analyze dependency trees to the deepest layer and link vulnerabilities to infrastructure and application risks, streamlining remediation efforts. \* #### Resolve vulnerabilities without disruption Apply precise updates to fix direct and transitive dependency issues, avoiding breaking changes while addressing multiple vulnerabilities efficiently. [Learn more](https://www.paloaltonetworks.com/blog/prisma-cloud/git-repo-vuln-management/?ts=markdown) [![Software Composition Analysis](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/devsecops/sca.png)](#prismastickyimagecom_59613034_prisma-custom-background_prismacustombackgrou_1073690407_cleanParsys_application-security_cloud_prisma_en_US_pan_content_) ### Software supply chain security Cloud-native CI/CD pipelines are increasingly becoming the target of attacks as they give bad actors access to code and secrets, which can be used to inject malicious code or pivot to exfiltrate data. Prisma Cloud provides a powerful yet simple way to gain visibility and control of application delivery pipelines, using the Cloud Application Graph™ to harden CI/CD pipelines and prevent security issues from reaching production. * #### Gain complete visibility into the engineering ecosystem Achieve unified visibility and control across the engineering ecosystem, including code repositories, contributors, technologies used and pipelines connected. \* #### Harden CI/CD pipelines Implement security guardrails that are informed by world-class software supply chain security research. Harden pipelines and achieve optimized security posture against the OWASP Top 10 CI/CD Risks framework. \* #### Analyze the entire ecosystem Centralize visibility and control across the engineering ecosystem to correlate disparate signals across codebases, scanners, orchestration and automation tools. \* #### Generate a software bill of materials (SBOM) Generate an SBOM report containing open-source packages, libraries and IaC resources, along with associated security issues, to track and understand application risk. [Learn more](https://www.paloaltonetworks.com/prisma/cloud/ci-cd-security?ts=markdown) [![CI/CD SECURITY](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/devsecops/ci-cd-security.png)](#prismastickyimagecom_275749595_prisma-custom-background_prismacustombackgrou_1073690407_cleanParsys_application-security_cloud_prisma_en_US_pan_content_) ### Secrets Security Bad actors can exploit exposed credentials in seconds. Identify and eliminate secrets before they reach production by scanning IaC templates and container images during development and build time. Using advanced signatures and heuristics, Prisma Cloud ensures your secrets stay secure from the start. * #### Detects secrets in any file type Identify exposed passwords, tokens and credentials in IaC templates, golden images and Git repository configurations to prevent security risks. \* #### Integrate secrets scanning into developer tools Catch hardcoded secrets early with seamless integration into IDEs, CLIs, pre-commit checks and CI/CD pipelines. \* #### Advanced secrets detection Use regular expressions, keywords or fine-tuned entropy-based scanning to uncover both common and obscure secrets with precision. [Learn more](https://www.paloaltonetworks.com/resources/datasheets/cloud-code-security?ts=markdown) [![Secrets scanning](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/devsecops/secrets_scanning.png)](#prismastickyimagecom_prisma-custom-background_prismacustombackgrou_1073690407_cleanParsys_application-security_cloud_prisma_en_US_pan_content_) ### Policy as code Traditional security testing relies on fragmented tools and teams, making controls hard to replicate. Prisma Cloud streamlines this process with policy as code, embedding replicable, version-controlled and testable controls directly into your codebase. Developers receive instant feedback with autofixes, pull/merge request comments and automated pull/merge request updates to enhance security without slowing down workflows. * #### Define and manage using code Create, test and version control checklists skip-lists and custom graph-based policies for IaC templates using Python and YAML, ensuring consistency and control across your infrastructure. \* #### Automate account and agent deployment Use Terraform to seamlessly onboard accounts, deploy agents, and configure runtime policies, including data ingestion and protection based on OpenAPI and Swagger specifications. \* #### Out-of-the-box and custom fixes for misconfigurations Save time and effort with hundreds of prebuilt custom fixes for cloud resources and IaC templates, along with the flexibility to add your own fixes to address misconfigurations. [Learn more](https://www.paloaltonetworks.com/prisma/cloud/infrastructure-as-code-security?ts=markdown) [![Policy as code](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/devsecops/policy-as-code.png)](#prismastickyimagecomapproach4_prisma-custom-background_prismacustombackgrou_1073690407_cleanParsys_application-security_cloud_prisma_en_US_pan_content_) ### Container image scanning Container images are key components of cloud native-applications. However, they typically include many resources outside the control of developers, such as operating systems and configurations. Prisma Cloud enables security teams to provide actionable feedback and guardrails for vulnerabilities and compliance violations in container images to keep these components secure. * #### Identify vulnerabilities in container images Use twistcli to identify vulnerabilities in operating systems and open-source packages built into container image layers. \* #### Provide fix status and remediation guidance Provide developers with the fix status, minimum version to remediate and time since the fix was released so they can easily prioritize updating packages. \* #### Alert on or block vulnerabilities by severity level Add guardrails to block images with vulnerabilities that don't meet severity level requirements before they're pushed to production. \* #### Achieve container compliance in code Check your container image dependencies and configurations for violations against popular benchmarks like CIS and proprietary issues such as malware in build time. \* #### Ensure trust for container images Harden images by leveraging build time scanning and trusted registries for a secure container image supply chain. [Learn more](https://www.paloaltonetworks.com/blog/2019/11/cloud-container-security/?ts=markdown) [![Container image scanning](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/devsecops/container-image-scanning.png)](#prismastickyimagecom_559805668_prisma-custom-background_prismacustombackgrou_1073690407_cleanParsys_application-security_cloud_prisma_en_US_pan_content_) ### OSS license compliance Every company has its own acceptable use policies for open-source licenses. Don't wait until a manual compliance review to find out that an open-source library is noncompliant. Prisma Cloud catalogs open-source licenses for dependencies and can alert or block repository commits based on customizable policies. * #### Avoid open-source license violations Surface license violations early and block repository commits based on customizable policies. \* #### Scan Git and non-Git repositories for issues identify potential license issues throughout your codebase and ensure compliance at every stage with seamless integration into both Git and non-Git repositories. \* #### Customize alerts and blocking policies Set specific thresholds for alerting and blocking by license type to match your organization's copyleft and permissive license requirements, ensuring full compliance with internal policies. [Learn more](https://www.paloaltonetworks.com/blog/prisma-cloud/open-source-license-detection-expanded-git-repo-scanning/?ts=markdown) [![OSS license compliance](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/prisma/cloud/sca/OSS-License-Compliance-Checkov-Placeholder.png)](#prismastickyimagecom_949261381_prisma-custom-background_prismacustombackgrou_1073690407_cleanParsys_application-security_cloud_prisma_en_US_pan_content_) {#modules} ## AppSec modules ### IaC security Automated IaC security embedded in developer workflows [Learn more](https://www.paloaltonetworks.com/prisma/cloud/infrastructure-as-code-security?ts=markdown) ### Software Composition Analysis (SCA) Highly accurate and context-aware open source security and license compliance [Learn more](https://www.paloaltonetworks.com/prisma/cloud/software-composition-analysis?ts=markdown) ### Software Supply Chain (CI/CD) Security End-to-end protection for software components and pipelines [Learn more](https://www.paloaltonetworks.com/prisma/cloud/ci-cd-security?ts=markdown) ### Secrets Security Full-stack, multidimensional secrets scanning across repos and pipelines [Learn more](https://www.paloaltonetworks.com/prisma/cloud/secrets-security?ts=markdown) {#resources} Featured Resources ## Secure applications with trusted resources. [See all resources](https://www.paloaltonetworks.com/resources?q=*%3A*&_charset_=UTF-8&fq=PRODUCTS0_DFACET%3Apan%253Aresource-center%252Fproducts0%252Fprisma-cloud&ts=markdown) Datasheet ### Code Security [Download](https://www.paloaltonetworks.com/resources/datasheets/cloud-code-security?ts=markdown) At a Glance ### Cloud Code Security [Download](https://www.paloaltonetworks.com/resources/datasheets/cloud-code-security-aag?ts=markdown) Blog #### What Is Container Scanning? A Top Requirement for Container Security [Read now](https://www.paloaltonetworks.com/blog/prisma-cloud/what-is-container-scanning-a-top-requirement-for-container-security/) Whitepaper #### The DevSecGuide to Infrastructure as Code [Download](https://bridgecrew.io/resource/the-devsecguide-to-infrastructure-as-code/) WHITE PAPER #### Implementing Cloud Native Security: Shift Left to Increase Effectiveness [Read now](https://www.paloaltonetworks.com/resources/whitepapers/implementing-cloud-native?ts=markdown) PreviousNext {#footer} ## Products and Services * [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown) * [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown) * [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown) * [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown) * [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown) * [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown) * [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown) * [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown) * [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown) * [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown) * [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown) * [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown) * [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown) * [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown) * [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown) * [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown) * [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown) * [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown) * [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown) * [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown) * [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown) * [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown) * [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown) * [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown) * [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown) * [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown) * [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown) * [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown) * [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown) * [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown) * [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown) * [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown) * [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown) * [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown) * [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown) * [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown) * [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown) * [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown) * [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown) * [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown) * [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown) * [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown) * [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown) * [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown) * [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown) * [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown) * [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown) * [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown) ## Company * [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown) * [Careers](https://jobs.paloaltonetworks.com/en/) * [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown) * [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown) * [Customers](https://www.paloaltonetworks.com/customers?ts=markdown) * [Investor Relations](https://investors.paloaltonetworks.com/) * [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown) * [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown) ## Popular Links * [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown) * [Communities](https://www.paloaltonetworks.com/communities?ts=markdown) * [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown) * [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown) * [Event Center](https://events.paloaltonetworks.com/) * [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center) * [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown) * [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown) * [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown) * [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown) * [Tech Docs](https://docs.paloaltonetworks.com/) * [Unit 42](https://unit42.paloaltonetworks.com/) * [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd) ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg) * [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown) * [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown) * [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) * [Documents](https://www.paloaltonetworks.com/legal?ts=markdown) Copyright © 2025 Palo Alto Networks. All Rights Reserved * [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks) * [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown) * [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/) * [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks) * [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks) * EN Select your language