Creates a new Application Security policy.
An application security policy defines how a system responds to application security threats. Each policy consists of Conditions, Scope, Triggers, and Actions.
Triggers determine the execution context, such as a Pull Request, CI pipeline, registry scan, or periodic code scan, while Actions are executed only when both the Condition and Scope criteria are met.
Actions can include generating a remediation issue for detection or actively blocking threats within the PR or CI workflow.
Note: To block threats in the CI workflow, you must integrate the Cortex CLI into your pipeline.
Required license:
Cortex XSIAM Premium. In Cortex XSIAM Enterprise and Cortex NG SIEM, requires the Cortex Cloud Posture Management add-on. Not supported in XSIAM Enterprise Plus.