Prisma Certified Cloud Security Engineer (PCCSE) — Question 194

Given the following information, which twistcli command should be run if an administrator were to exec into a running container and scan it from within using an access token for authentication?

• Console is located at https://prisma-console.mydomain.local
• Token is: TOKEN_VALUE
• Report ID is: REPORT_ID
• Container image running is: myimage:latest

Answer options

• A. twistcli images scan --address https://prisma-console.mydomain.local --token TOKEN_VALUE --containerized --details myimage:latest
• B. twistcli images scan --console-address https://prisma-console.mydomain.local --auth-token TOKEN_VALUE --containerized --vulnerability-details REPORT_ID
• C. twistcli images scan --address https://prisma-console.mydomain.local --token TOKEN_VALUE --containerized --details REPORT_ID
• D. twistcli images scan --console-address https://prisma-console.mydomain.local --auth-token MY_TOKEN --local-scan --details myimage:latest

Correct answer: C

Explanation

The correct answer is C because it correctly uses the required parameters: the console address, the access token, and specifies the containerized scan with the report ID. Options A and D incorrectly reference 'details' or 'local-scan', which are not appropriate for the context of the question. Option B uses 'vulnerability-details' instead of 'details', which does not match the required syntax.