{ "$schema": "https://json-structure.org/meta/core/v0/#", "$id": "https://raw.githubusercontent.com/api-evangelist/palo-alto-networks/refs/heads/main/json-structure/prisma-cloud-cspm-api-policy-structure.json", "name": "Policy", "description": "Policy schema from Palo Alto Networks Prisma Cloud CSPM API", "type": "object", "properties": { "policyId": { "type": "string", "description": "Unique policy identifier." }, "name": { "type": "string", "description": "Policy name." }, "policyType": { "type": "string", "description": "Type of policy check.", "enum": [ "config", "network", "audit_event", "anomaly", "data", "iam" ] }, "severity": { "type": "string", "description": "Policy severity level.", "enum": [ "critical", "high", "medium", "low", "informational" ] }, "description": { "type": "string", "description": "Policy description." }, "recommendation": { "type": "string", "description": "Recommended remediation for policy violations." }, "cloudType": { "type": "string", "description": "Cloud provider the policy applies to." }, "enabled": { "type": "boolean", "description": "Whether the policy is active." }, "systemDefault": { "type": "boolean", "description": "Whether this is a built-in policy." }, "rule": { "type": "object", "properties": { "name": { "type": "string" }, "criteria": { "type": "string", "description": "RQL query string." }, "type": { "type": "string" } } }, "complianceMetadata": { "type": "array", "items": { "type": "object", "properties": { "standardName": { "type": "string" }, "requirementId": { "type": "string" }, "requirementName": { "type": "string" }, "sectionId": { "type": "string" } } } } } }