Serverless function usage - Administrator Guide - Cortex CLOUD

Cortex Cloud Runtime Security Documentation
Product
Cortex Cloud Application Security > Cortex CLOUD
License
Cloud Runtime Security
Creation date
2024-12-24
Last date published
2026-06-10
Category
Administrator Guide

Serverless functions is integrated as a feature across various sections of your tenant. Refer to the following sections for specific usage instructions within each context:

Serverless function assets

The Serverless Functions asset inventory provides a centralized view of all serverless functions in your environment.

To access serverless function assets, under Inventory, select All AssetsCompute Serverless Functions.

For more information on serverless function assets, refer to Manage serverless function assetsOverview

Serverless function issues

Currently, only vulnerability issues are supported for serverless functions.

  • To manage serverless function vulnerability issues through Vulnerability Management:

    1. Navigate to Posture ManagementVulnerability Management)Vulnerability Issues.

    2. Select Add FiltersAsset CategoryServerless Function.

  • To manage serverless function vulnerability issues through Vulnerability Assets:

    1. Navigate to Posture ManagementVulnerability Management)Vulnerable Assets.

    2. Select Add FiltersAsset CategoryServerless Functions.

    3. Select an asset in the inventory table.

      The Overview tab is displayed.

    4. Click on Issues.

      You are redirected to the Issues page, displaying a list of serverless function vulnerabilities.

The serverless function vulnerabilities issues inventory includes these unique properties:

  • Asset Type: The type of serverless function: Lamda Function for AWS, Google Cloud Function for GCP and Azure App Service Web App Function for Azure

  • Asset Category: Serverless Functions

Selecting an issue opens the expanded card with additional details about the issue including a description of the issue, when fist and last detected, affected assets, linked cases and evidence (such as the vulnerability ID, CVSS severity, score and version, and the policy that detected the issue).

For more information on vulnerability issues, refer to Investigate and remediate vulnerabilities.

Serverless function findings

  1. To manage serverless function findings, navigate to Posture ManagementVulnerability Management)Vulnerability Issues.

  2. Select All Vulnerabilities Findings.

  3. Select Add FiltersAsset CategoryServerless Function.

  4. Select an asset in the inventory table.

For more information on vulnerability findings, refer to View All Vulnerability Findings.

Monitor serverless function scan health

You can monitor and manage the health and status of your integrated serverless function scans, troubleshoot errors and mitigate detected vulnerabilities

For more information, refer to Monitor serverless function scan health.Monitor serverless function scan health and status