# Plerion, Simplify Cloud Security - documentation > Plerion, Simplify Cloud Security - documentation ## Docs - [List alerts in a tenant](https://docs.plerion.com/api-reference/alerts/list.md): Use the list alerts API to get alerts for the tenant. - [API categories](https://docs.plerion.com/api-reference/api-categories.md): This page provides a comprehensive overview of all Plerion API categories. Each category contains related endpoints for specific functionality within the Plerion platform. Understand what each API category does and access specific endpoints. - [Create asset group in a tenant](https://docs.plerion.com/api-reference/asset-groups/create.md): Create a new asset group within the tenant. You can create an asset group using filters available in Plerion or by using your existing AWS resource group. - [Delete specific asset group in a tenant](https://docs.plerion.com/api-reference/asset-groups/delete.md): Delete a specific asset group by its ID within a tenant. This endpoint allows you to remove a particular asset group from the tenant. - [Get specific asset group in a tenant](https://docs.plerion.com/api-reference/asset-groups/get.md): Retrieve a specific asset group by its ID within a tenant. This endpoint allows you to get detailed information about a particular asset group. - [List asset groups in a tenant](https://docs.plerion.com/api-reference/asset-groups/list.md): Retrieve a list of asset groups within the tenant. By default, 20 asset groups are returned per request. - [Update specific asset group in a tenant](https://docs.plerion.com/api-reference/asset-groups/update.md): Update a specific asset group by its ID within a tenant. This endpoint allows you to update the name and rules of a particular asset group. - [Get specific asset in a tenant](https://docs.plerion.com/api-reference/assets/get.md): Retrieve a specific asset by its ID within a tenant. This endpoint allows you to get detailed information about a particular asset, including optional raw data if requested. - [Get SBOM for a specific asset](https://docs.plerion.com/api-reference/assets/get-sbom.md): Retrieve the Software Bill of Materials (SBOM) for a specific asset identified by its ID within a tenant. This endpoint returns a URL that allows you to download the SBOM file. - [List assets in a tenant](https://docs.plerion.com/api-reference/assets/list.md): Use the list assets API to filter assets across the tenant with many options from Provider, Service, Severity, Integration, etc. By default all assets are returned. - [List audit logs in a tenant](https://docs.plerion.com/api-reference/audit-logs/list.md): Use the list audit logs API to retrieve audit trail information for a tenant with filtering options. By default, all audit logs are returned with a page size of 100. You can filter by date range, user, and operation type. - [Generate temporary token for creating AWS integration](https://docs.plerion.com/api-reference/aws-integration/generate-temporary-token.md): Use the API to generate a temporary token required for creating AWS integration using CloudFormation template provided by Plerion. ```bash curl -X POST https://au.api.plerion.com/v1/tenant/integrations/token -H "Authorization: Bearer $PLERION_API_KEY" ``` - [Get CloudFormation template](https://docs.plerion.com/api-reference/aws-integration/get-cloudformation-template.md): Use the API to get the CloudFormation template required for creating / updating AWS integrations in Plerion. ```bash curl https://au.api.plerion.com/v1/tenant/cloudformation-templates?type=AWSAccount -H "Authorization: Bearer $PLERION_API_KEY" ``` - [Get the external ID of the tenant](https://docs.plerion.com/api-reference/aws-integration/get-external-id.md): Use the API to get the external ID of the tenant. The external ID is fixed for a tenant and used for cross-account access to AWS role. Read more about External Id purpose. ```b… - [List IaC Findings by scanId](https://docs.plerion.com/api-reference/code-security/list-findings.md): Retrieve all the findings for a scanId - [List IaC Scans in a tenant](https://docs.plerion.com/api-reference/code-security/list-scans.md): Retrieve all the scans for the tenant. - [List IaC Vulnerabilities by scanId](https://docs.plerion.com/api-reference/code-security/list-vulnerabilities.md): Retrieve all the Vulnerabilities for a scanId - [Upload Infrastructure as Code for Scanning](https://docs.plerion.com/api-reference/code-security/upload-iac.md): Use Plerion Code security IaC to scan for security vulnerabilities and compliance issues. - [Download compliance framework report for an integration in a tenant](https://docs.plerion.com/api-reference/compliance-frameworks/download-report.md): Use the download compliance framework API to receive a pre-signed URL to download a compliance framework summary report for an integration within the tenant. This URL will be valid for 1 hour. To download the report, use `curl` or any other tool of your choice. - [List compliance frameworks in a tenant](https://docs.plerion.com/api-reference/compliance-frameworks/list.md): Use the list compliance frameworks API to list compliance frameworks across the tenant along with the compliance posture for each framework as well as the total compliance posture of the tenant. - [Request a compliance framework report for an integration](https://docs.plerion.com/api-reference/compliance-frameworks/request-a-framework-report.md): Starts the generation of a compliance framework report for the specified integration. Once requested, poll using the download report endpoint. - [List findings in a tenant](https://docs.plerion.com/api-reference/findings/list.md): Use the list findings API to filter findings across the tenant with many options from Provider, Service, Detection, Severity, Integration, etc. By default all `PASSED` and `FAILED` findings are returned. To list only failed findings filter by `statuses=FAILED` - [Quick start with Plerion API](https://docs.plerion.com/api-reference/index.md): This section describes how to quickly get started with the Plerion API using curl. For a more detailed guide, see the sections below. - [List inbound integrations in a tenant](https://docs.plerion.com/api-reference/integrations/list-inbound-integrations.md): Use the list integrations API to list all inbound integrations that have been added across the tenant. - [List risks in a tenant](https://docs.plerion.com/api-reference/risks/list.md): Use the list risks API to retrieve and filter risks across the tenant. - [Get tenant details](https://docs.plerion.com/api-reference/tenant/get.md): Use the get tenant details API to retrieve information about the tenant including tenant ID, organization ID, name, creation date, last updated date, and current risk score. - [Get the usage details of tenant](https://docs.plerion.com/api-reference/tenant/usage.md): Use the get tenant usage API to get the usage details of the tenant. The API retrieves the total consumed Plerion units for the tenant for the specified period and additional information regarding whether the limit has been exceeded. - [Create a vulnerability exemption in a profile](https://docs.plerion.com/api-reference/vulnerabilities/create-a-vulnerability-exemption-in-a-profile.md): Creates an exemption definition scoped to the given profile. Use it to suppress specific vulnerabilities. - [Delete a vulnerability exemption by ID](https://docs.plerion.com/api-reference/vulnerabilities/delete-a-vulnerability-exemption-by-id.md): Deletes a specific vulnerability exemption by its ID. - [Get a vulnerability exemption by ID](https://docs.plerion.com/api-reference/vulnerabilities/get-a-vulnerability-exemption-by-id.md): Retrieves a specific vulnerability exemption by its ID. - [List Vulnerabilities in a tenant](https://docs.plerion.com/api-reference/vulnerabilities/list.md): Use the list vulnerabilities API to filter vulnerabilities across the tenant with many options from Organization, Tenant, Integration, Asset, Severity, etc. By default all vulnerabilities are returned. - [List vulnerability exemptions in a profile](https://docs.plerion.com/api-reference/vulnerabilities/list-vulnerability-exemptions-in-a-profile.md): Lists all vulnerability exemptions scoped to the given profile with pagination support. - [Update a vulnerability exemption by ID](https://docs.plerion.com/api-reference/vulnerabilities/update-a-vulnerability-exemption-by-id.md): Updates a specific vulnerability exemption by its ID. All fields are optional for partial updates. - [Download a well-architected framework report for an integration in a tenant](https://docs.plerion.com/api-reference/well-architected-frameworks/download-report.md): Use the download well-architected framework API to obtain a pre-signed URL for downloading a well-architected framework summary report for an integration within the tenant. This URL will be valid for 1 hour. To download the report, use `curl` or any other tool of your choice. - [List well-architected frameworks in a tenant](https://docs.plerion.com/api-reference/well-architected-frameworks/list.md): Returns all AWS Well-Architected Frameworks for the tenant, along with individual framework postures and the tenant’s overall Well-Architected posture. - [Request a Well-Architected framework report for an integration](https://docs.plerion.com/api-reference/well-architected-frameworks/request-framework-report.md): Starts the generation of a Well-Architected framework report for the specified integration. Once requested, poll using the download report endpoint. - [Changelog](https://docs.plerion.com/changelog.md): See what's new at Plerion as we deliver features to keep your code and cloud safe. - [plerion alerts](https://docs.plerion.com/cli-reference/commands/alerts.md): View risk-based alerts. - [plerion asset-groups](https://docs.plerion.com/cli-reference/commands/asset-groups.md): Create, update, list, and delete asset groups. - [plerion assets](https://docs.plerion.com/cli-reference/commands/assets.md): Query the asset inventory, get details, and retrieve SBOMs. - [plerion audit-logs](https://docs.plerion.com/cli-reference/commands/audit-logs.md): View audit logs for tenant operations. - [plerion aws](https://docs.plerion.com/cli-reference/commands/aws.md): AWS integration helpers for external IDs, CloudFormation, and tokens. - [plerion compliance-frameworks](https://docs.plerion.com/cli-reference/commands/compliance-frameworks.md): View compliance framework posture and download reports. - [plerion configure](https://docs.plerion.com/cli-reference/commands/configure.md): Configure Plerion CLI credentials and settings. - [plerion findings](https://docs.plerion.com/cli-reference/commands/findings.md): List and filter security findings. - [plerion iac](https://docs.plerion.com/cli-reference/commands/iac.md): Infrastructure as Code scanning for Terraform, CloudFormation, Kubernetes, and more. - [plerion integrations](https://docs.plerion.com/cli-reference/commands/integrations.md): List cloud integrations. - [plerion risks](https://docs.plerion.com/cli-reference/commands/risks.md): View security risks identified by Plerion. - [plerion tenant](https://docs.plerion.com/cli-reference/commands/tenant.md): Get tenant information and usage details. - [plerion vulnerabilities](https://docs.plerion.com/cli-reference/commands/vulnerabilities.md): Query vulnerabilities and manage exemptions. - [plerion well-architected-frameworks](https://docs.plerion.com/cli-reference/commands/well-architected-frameworks.md): View Well-Architected Framework assessments and download reports. - [Configuration](https://docs.plerion.com/cli-reference/configuration.md): Configure credentials, profiles, regions, and output preferences for the Plerion CLI. - [Installation](https://docs.plerion.com/cli-reference/installation.md): Install the Plerion CLI on macOS, Linux, or Windows. - [Plerion CLI](https://docs.plerion.com/cli-reference/introduction.md): A cross-platform command-line interface for the Plerion cloud security platform. - [Output formats](https://docs.plerion.com/cli-reference/output-formats.md): Control how results are displayed with table, JSON, YAML, and text output. - [Azure single sign-on](https://docs.plerion.com/guides/administration/sso/azure.md): Set up Microsoft Entra ID single sign-on (SSO) with Plerion using SAML and role-based access control (RBAC). - [GitHub single sign-on](https://docs.plerion.com/guides/administration/sso/github.md): Sign in to Plerion using your GitHub account with OAuth-based single sign-on - [Google single sign-on](https://docs.plerion.com/guides/administration/sso/google.md): Set up Google Workspace single sign-on (SSO) with Plerion using SAML and group-based role mapping - [Okta single sign-on](https://docs.plerion.com/guides/administration/sso/okta.md): Set up Okta single sign-on (SSO) with Plerion using SAML and role-based access control (RBAC). - [Partner SSO](https://docs.plerion.com/guides/administration/sso/partner-sso.md): Enable partners to provide single sign-on (SSO) access to their customers through their own SaaS portal using JWT-based authentication. - [User management](https://docs.plerion.com/guides/administration/user-management.md): Control user access in Plerion with role-based permissions across Organization and Tenant levels. - [Overview](https://docs.plerion.com/guides/getting-started/index.md) - [Cloud Detection and Response integration](https://docs.plerion.com/guides/integrations/aws/additional-aws-configurations/cdr-integration.md): Detect and respond to cloud events in near real-time with Plerion CDR, and trigger alerts through Workflows. - [Link existing Plerion organization to AWS Marketplace](https://docs.plerion.com/guides/integrations/aws/additional-aws-configurations/link-existing-organization.md): Link your existing Plerion organization to an AWS Marketplace subscription for billing and subscription management. - [Macie integration](https://docs.plerion.com/guides/integrations/aws/additional-aws-configurations/macie-integration.md): Enrich S3 bucket asset context in Plerion with sensitive data findings from AWS. - [Minimum AWS permissions to launch Plerion CloudFormation stack](https://docs.plerion.com/guides/integrations/aws/additional-aws-configurations/minimum-permissions-needed-to-launch-stack.md): Attach this IAM policy to a role or user to deploy the Plerion CloudFormation stack for CSPM, CIEM, and CWPP. - [Provide Plerion access to KMS keys](https://docs.plerion.com/guides/integrations/aws/additional-aws-configurations/provide-plerion-access-to-kms-keys.md): Grant Plerion CWPP appliances access to your customer managed KMS keys to scan encrypted resources. - [Getting started with an AWS account](https://docs.plerion.com/guides/integrations/aws/aws-account/getting-started-with-aws-account.md): Learn how to connect a single Amazon Web Services (AWS) account to Plerion for CSPM, CIEM, and CWPP capabilities. - [AWS integration overview](https://docs.plerion.com/guides/integrations/aws/aws-account/overview.md): Enable CSPM, CIEM, and CWPP for your AWS environment by connecting accounts to Plerion. - [AWS troubleshooting](https://docs.plerion.com/guides/integrations/aws/aws-account/troubleshooting.md): Troubleshoot common errors in workload security (CWPP) scan and appliance lifecycle in Plerion. - [Updating an AWS account](https://docs.plerion.com/guides/integrations/aws/aws-account/updating-aws-account.md): Update an onboarded AWS account to apply new permissions, enable CWPP, or refresh integration resources. - [Getting started with an AWS service account](https://docs.plerion.com/guides/integrations/aws/service-account/getting-started-with-aws-service-account.md): Set up a dedicated AWS service account to simplify CWPP deployment, so you can centrally manage appliances, protect workloads across multiple accounts, and gain complete visibility with less effort. - [Linking target accounts to an AWS service account](https://docs.plerion.com/guides/integrations/aws/service-account/linking-target-accounts-to-service-account.md): Link AWS target accounts to your service account so CWPP appliances can scan workloads centrally across accounts. - [AWS service account overview](https://docs.plerion.com/guides/integrations/aws/service-account/overview.md): Learn how Plerion uses a dedicated AWS service account to simplify Cloud Workload Protection Platform (CWPP) deployments with centralized, agentless management. - [Service account prerequisites](https://docs.plerion.com/guides/integrations/aws/service-account/prerequisites.md): Prepare your AWS account for use as a Plerion service account by verifying regions, enabling availability, and ensuring EC2 quotas can support appliance deployment. - [Updating an AWS service account stack](https://docs.plerion.com/guides/integrations/aws/service-account/updating-aws-service-account-stack.md): Learn how to update an AWS service account stacks to maintain permissions and regional infrastructure for CWPP scanning. - [Azure DevOps](https://docs.plerion.com/guides/integrations/azure-devops.md): Integrate Plerion Code Security with Azure DevOps to scan repositories for infrastructure as code (IaC) issues and software composition analysis (SCA) issues directly in your development workflow. - [Azure CWPP architecture](https://docs.plerion.com/guides/integrations/azure/azure-cwpp-architecture.md): This document outlines the architecture and Azure deployment process of the Plerion workload security solution. - [Azure CWPP prerequisites](https://docs.plerion.com/guides/integrations/azure/prerequisites.md): Prepare your Azure environment with the required quotas and naming policies before enabling workload security in Plerion. - [Getting started with Microsoft Entra ID](https://docs.plerion.com/guides/integrations/azure/setting-up-azure-active-directory.md): Integrate Plerion with Microsoft Entra ID to securely connect subscriptions and enable continuous scanning. - [Microsoft Azure subscription](https://docs.plerion.com/guides/integrations/azure/setting-up-azure-subscription.md): Integrate Plerion with Microsoft Azure subscriptions to enable Cloud Security Posture Management (CSPM) and optionally Cloud Workload Protection Platform (CWPP). - [Azure troubleshooting](https://docs.plerion.com/guides/integrations/azure/troubleshooting.md): Troubleshoot errors in Azure subscription onboarding, workload security (CWPP) setup, and appliance lifecycle in Plerion. - [Bitbucket](https://docs.plerion.com/guides/integrations/bitbucket.md): Integrate Plerion Code Security with Bitbucket to scan repositories for infrastructure as code (IaC) issues and software composition analysis (SCA) issues directly in your development workflow. - [ClickUp](https://docs.plerion.com/guides/integrations/clickup.md): Integrate Plerion with ClickUp to automatically create tasks from alerts, helping your team manage tasks without manual effort. - [Drata](https://docs.plerion.com/guides/integrations/drata.md): Integrate Plerion with Drata to automatically send daily evidence for your compliance frameworks. - [Email](https://docs.plerion.com/guides/integrations/email.md): Integrate Plerion with Email to receive automated alerts directly in your inbox. - [Google Cloud Platform (GCP)](https://docs.plerion.com/guides/integrations/gcp.md): Integrate Plerion with Google Cloud Platform (GCP) to automate scanning for misconfigurations and strengthen cloud security posture across your GCP environment. - [GitHub](https://docs.plerion.com/guides/integrations/github.md): Integrate Plerion Code Security with GitHub to scan repositories for infrastructure as code (IaC) issues and software composition analysis (SCA) issues directly in your development workflow. - [GitLab](https://docs.plerion.com/guides/integrations/gitlab.md): Integrate Plerion Code Security with GitLab to scan repositories for infrastructure as code (IaC) issues and software composition analysis (SCA) issues directly in your development workflow. - [Jira](https://docs.plerion.com/guides/integrations/jira.md): Integrate Plerion with Jira to automatically create and track findings, vulnerabilities, and risks, helping your team manage work in Atlassian’s project management platform. - [Jira Security](https://docs.plerion.com/guides/integrations/jira-security.md): Integrate Plerion with Jira Security to push vulnerabilities directly into the Jira security page, enabling teams to collaborate on issues. - [Leader election](https://docs.plerion.com/guides/integrations/kubernetes/collector-manager/installation/ensuring-leader-election.md): Ensure that only one collector manager pod is active at a time to maintain high availability. - [Helm chart options](https://docs.plerion.com/guides/integrations/kubernetes/collector-manager/installation/helm-chart-options.md): Customize the deployment of Plerion's collector manager by setting Helm chart values directly or with a values.yaml file. - [Install collector manager](https://docs.plerion.com/guides/integrations/kubernetes/collector-manager/installation/installation.md): Install Plerion's collector manager in your Kubernetes cluster using Helm and validate that it is running correctly. - [Validate Helm release](https://docs.plerion.com/guides/integrations/kubernetes/collector-manager/installation/installation-validation.md): Verify that Plerion's collector manager has been installed successfully and is running with the correct configuration. - [Metrics](https://docs.plerion.com/guides/integrations/kubernetes/collector-manager/metrics.md): Monitor collector manager metrics using Prometheus-style endpoints to track performance, collection success, and failures. - [Allow access to managed registries](https://docs.plerion.com/guides/integrations/kubernetes/collector-manager/permissions/allow-access-to-managed-registries.md) - [Collector manager permissions overview](https://docs.plerion.com/guides/integrations/kubernetes/collector-manager/permissions/collector-manager-permissions-overview.md): You can find the permissions configuration for the Plerion Collector Manager. This configuration includes definitions for service accounts, cluster roles, cluster role bindings, roles, and role bindings, allowing you to understand the precise permissions granted to the collector-manager. - [Troubleshooting collector manager](https://docs.plerion.com/guides/integrations/kubernetes/collector-manager/troubleshooting.md): Resolve issues when Plerion's collector manager is not in a Ready state or when you need to retrieve logs for diagnosis. - [Enable verbose logging](https://docs.plerion.com/guides/integrations/kubernetes/collector-manager/troubleshooting/enable-verbose-logging.md): Enable verbose logging in Plerion's collector manager to capture detailed diagnostic information for troubleshooting. - [Uninstall](https://docs.plerion.com/guides/integrations/kubernetes/collector-manager/uninstall.md): Remove Plerion's collector manager from your Kubernetes cluster. - [Upgrade and rollback](https://docs.plerion.com/guides/integrations/kubernetes/collector-manager/upgrade-rollbacks.md): Upgrade Plerion's collector manager to a newer version or roll back to a previous release while preserving configuration. - [Overview](https://docs.plerion.com/guides/integrations/kubernetes/overview.md): Integrate Kubernetes with Plerion to manage cluster posture (KSPM), scan workloads for vulnerabilities, and deploy collectors for continuous visibility. - [Linear](https://docs.plerion.com/guides/integrations/linear.md): Integrate Plerion with Linear to automatically create and track issues from alerts, helping your team manage work in Linear’s project management platform. - [PagerDuty](https://docs.plerion.com/guides/integrations/pagerduty.md): Integrate Plerion with PagerDuty to automatically create incidents from alerts, streamline on-call response, and keep teams in their incident management workflow. - [Plerion Code Security](https://docs.plerion.com/guides/integrations/plerion-code-security.md): Automatically scan code repositories for infrastructure as code (IaC) and software composition analysis (SCA) issues with Plerion Code Security. - [AWS Security Hub](https://docs.plerion.com/guides/integrations/securityhub.md): Integrate Plerion with AWS Security Hub to send alerts as findings for centralized visibility, compliance, and security posture management. - [Microsoft Sentinel](https://docs.plerion.com/guides/integrations/sentinel.md): Integrate Plerion with Microsoft Sentinel to automatically send alerts as incidents for centralized security monitoring and investigation. - [ServiceNow](https://docs.plerion.com/guides/integrations/servicenow.md): Integrate Plerion with ServiceNow to automatically create and update incidents, streamlining IT service management (ITSM) workflows and reducing manual effort. - [Slack](https://docs.plerion.com/guides/integrations/slack.md): Integrate Plerion with Slack to send alerts to a channel via Incoming Webhooks, keeping your team informed in real time. - [Amazon SQS](https://docs.plerion.com/guides/integrations/sqs.md): Integrate Plerion with Amazon SQS to send alerts for reliable, scalable processing with optional KMS encryption. - [Microsoft Teams](https://docs.plerion.com/guides/integrations/teams.md): Integrate Plerion with Microsoft Teams to send automated alerts to your channels based on defined triggers and parameters. - [Vanta](https://docs.plerion.com/guides/integrations/vanta.md): Integrate Plerion with Vanta to automatically send vulnerabilities into your compliance workflows. - [Webhook](https://docs.plerion.com/guides/integrations/webhook.md): Integrate Plerion with custom webhooks to deliver alerts directly to your external web servers for flexible automation and workflows. - [Alerts](https://docs.plerion.com/guides/platform/alerts-overview.md): Learn how Plerion alerts work and deliver them through the dashboard, Email, Slack, Jira, or Sentinel. - [Asset groups](https://docs.plerion.com/guides/platform/asset-groups.md): Organize and manage assets in Plerion using asset groups to simplify filtering, reporting, and analysis. - [Assets](https://docs.plerion.com/guides/platform/assets/overview.md): Use the Assets dashboard to view, filter, and investigate all resources discovered across your connected cloud environments. - [Supported AWS cloud services](https://docs.plerion.com/guides/platform/assets/supported-cloud-services/aws-services.md): List of AWS services and resource types supported by Plerion for asset discovery. - [Supported Azure cloud services](https://docs.plerion.com/guides/platform/assets/supported-cloud-services/azure-services.md): List of Azure services and resource types supported by Plerion for asset discovery. - [Supported GCP cloud services](https://docs.plerion.com/guides/platform/assets/supported-cloud-services/gcp-services.md): List of GCP services and resource types supported by Plerion for asset discovery. - [Auto stack update](https://docs.plerion.com/guides/platform/auto-stack-update.md): Automatically keep your Plerion CloudFormation stack up to date with secure, controlled updates that reduce operational overhead while maintaining full customer visibility and control. - [Compliance frameworks](https://docs.plerion.com/guides/platform/compliance-frameworks.md): Use Plerion compliance frameworks to track regulatory standards such as ISO 27001, SOC 2, and CIS Benchmarks across your cloud environments. - [How to create a custom report](https://docs.plerion.com/guides/platform/custom-reports/how-to-create-a-custom-report.md): Learn how to create, save, and schedule a custom report in Plerion using widgets, data sources, and filters. - [Custom reports](https://docs.plerion.com/guides/platform/custom-reports/overview.md): Use Plerion custom reports to design, manage, and schedule reports with flexible widgets that visualize findings, assets, vulnerabilities, and more. - [Workload security FAQs](https://docs.plerion.com/guides/platform/cwpp/faq.md) - [Workload security (CWPP)](https://docs.plerion.com/guides/platform/cwpp/overview.md): Use workload security in Plerion, also known as Cloud Workload Protection Platform (CWPP), to scan workloads for vulnerabilities and prioritize risks across virtual machines, containers, images, EC2 instances, Lambda functions, and code. - [Software Bill of Materials (SBOM)](https://docs.plerion.com/guides/platform/cwpp/scanning-coverage/sbom.md) - [Secrets and sensitive data](https://docs.plerion.com/guides/platform/cwpp/scanning-coverage/secrets.md) - [Vulnerabilities](https://docs.plerion.com/guides/platform/cwpp/scanning-coverage/vulnerabilities.md): Plerion's CWPP scanner will report on vulnerabilities from the following software components. - [Workload scanning policy](https://docs.plerion.com/guides/platform/cwpp/workload-scanning-policy.md): Configure workload scan frequencies across environments and exposure levels to align scanning with operational needs. - [Entitlements analyzer coverage](https://docs.plerion.com/guides/platform/entitlements-analyzer/coverage.md): Reference of supported providers, identities, policy types, ABAC features, and AWS resource types in the Entitlements analyzer. - [Entitlements analyzer](https://docs.plerion.com/guides/platform/entitlements-analyzer/overview.md): Use Plerion's Entitlements analyzer to gain insights into cloud access permissions and answer the critical question of who has access to what. - [Environment classification](https://docs.plerion.com/guides/platform/environments.md): Use environment classifications to label your cloud integrations as Production or Non-production and filter data across Plerion. - [Findings](https://docs.plerion.com/guides/platform/findings-overview.md): Understand, filter, download, and exempt findings in Plerion to manage risks across your cloud environments. - [Asset risk score](https://docs.plerion.com/guides/platform/plerion-risk-score/asset-risk-score.md): Learn how the Plerion Risk Calculator (PRC) determines an asset's risk score based on public exposure, contexts, findings, and vulnerabilities. - [Integration and tenant risk score](https://docs.plerion.com/guides/platform/plerion-risk-score/integration-and-tenant-risk-score.md): Learn how Plerion calculates integration and tenant risk scores by aggregating asset risk scores into banded ranges. - [Managing your risk scores](https://docs.plerion.com/guides/platform/plerion-risk-score/managing-risk-scores.md): Learn strategies to reduce your asset, integration, and tenant risk scores in Plerion by remediating findings and addressing high-risk assets. - [Overview](https://docs.plerion.com/guides/platform/plerion-risk-score/overview.md): Understand how the Plerion Risk Score (PRS) quantifies risks across assets, findings, and vulnerabilities in your cloud environment. - [Top risks](https://docs.plerion.com/guides/platform/top-risks.md): Identify, prioritize, and act on the cloud security risks that matter most to your organization, - [Vulnerabilities](https://docs.plerion.com/guides/platform/vulnerabilities.md): View, filter, and exempt software vulnerabilities detected across your cloud workloads - [Well-architected workloads](https://docs.plerion.com/guides/platform/well-architected-workload.md): Use Plerion to create and manage AWS Well-architected workloads, with AutoFill powered by findings from your asset groups. - [Workflows](https://docs.plerion.com/guides/platform/workflows.md): Use workflows in Plerion to automate alerting, define conditions on assets, findings, or vulnerabilities, and send notifications to third-party tools like email, Slack, Jira, PagerDuty, and more. - [Welcome](https://docs.plerion.com/index.md): Plerion documentation ## OpenAPI Specs - [openapi](https://docs.plerion.com/api-reference/openapi.yaml)