Prisma Cloud Compute: Will a deployed image be scanned if scanned previously via registry image scan?

Prisma Cloud Compute: Will a deployed image be scanned if scanned previously via registry image scan?

1276
Created On 07/28/23 17:10 PM - Last Modified 01/28/25 17:09 PM


Question


Will a deployed image be scanned if scanned previously via registry image scan?

Environment


  • Prisma Cloud Compute SaaS version
  • Prisma Cloud Compute Self-hosted version 21.08 and above
  • Registry Scanning
  • Deployed Image Scanning

Answer


  1. Deployed images will be scanned if the same image SHA was scanned only through registry image.
  2. Deployed imageĀ and registry image scans are two separate features and are not dependent on one another.
  3. Within the same feature, i.e. registry image scan, the image will not be scanned again unless there was a newer defender version. In this case, the image will be re-scanned since the defender was updated in case of any additional package detection changes/bug fixes etc.

Additional Information
Other users also viewed:
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000XfpOCAS&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail