Palo Alto Networks · Schema
DataStore
DataStore schema from Palo Alto Networks Prisma Cloud DSPM API
Cloud SecurityCybersecurityFirewallNetwork SecuritySASESOARThreat IntelligenceXDR
Properties
| Name | Type | Description |
|---|---|---|
| id | string | Unique data store identifier in Prisma Cloud. |
| name | string | Name of the data store as it appears in the cloud provider. |
| cloudProvider | string | Cloud provider where the data store is hosted. |
| cloudAccountId | string | Cloud account ID that owns the data store. |
| region | string | Cloud region where the data store is located. |
| serviceType | string | Category of the data store service. |
| serviceName | string | Specific cloud service name (e.g., Amazon S3, Amazon RDS). |
| encryptionEnabled | boolean | Whether encryption at rest is enabled. |
| isPubliclyAccessible | boolean | Whether the data store is accessible from the public internet. |
| riskLevel | string | Overall risk level computed from data sensitivity and security posture. |
| sensitiveDataCount | integer | Number of sensitive data assets found in this data store. |
| classificationLabels | array | Distinct classification labels found in the data store. |
| dataAssetCount | integer | Total number of data assets discovered in this data store. |
| discoveredAt | string | Timestamp when the data store was first discovered by DSPM. |
| lastScannedAt | string | Timestamp of the most recent data classification scan. |
JSON Schema
{
"$schema": "https://json-schema.org/draft/2020-12/schema",
"title": "DataStore",
"description": "DataStore schema from Palo Alto Networks Prisma Cloud DSPM API",
"$id": "https://raw.githubusercontent.com/api-evangelist/palo-alto-networks/refs/heads/main/json-schema/prisma-cloud-dspm-api-data-store-schema.json",
"type": "object",
"properties": {
"id": {
"type": "string",
"description": "Unique data store identifier in Prisma Cloud."
},
"name": {
"type": "string",
"description": "Name of the data store as it appears in the cloud provider."
},
"cloudProvider": {
"type": "string",
"enum": [
"aws",
"azure",
"gcp"
],
"description": "Cloud provider where the data store is hosted."
},
"cloudAccountId": {
"type": "string",
"description": "Cloud account ID that owns the data store."
},
"region": {
"type": "string",
"description": "Cloud region where the data store is located."
},
"serviceType": {
"type": "string",
"enum": [
"relationalDatabase",
"noSqlDatabase",
"objectStorage",
"fileShare",
"dataWarehouse",
"dataLake",
"cache",
"messageQueue"
],
"description": "Category of the data store service."
},
"serviceName": {
"type": "string",
"description": "Specific cloud service name (e.g., Amazon S3, Amazon RDS)."
},
"encryptionEnabled": {
"type": "boolean",
"description": "Whether encryption at rest is enabled."
},
"isPubliclyAccessible": {
"type": "boolean",
"description": "Whether the data store is accessible from the public internet."
},
"riskLevel": {
"type": "string",
"enum": [
"critical",
"high",
"medium",
"low"
],
"description": "Overall risk level computed from data sensitivity and security posture."
},
"sensitiveDataCount": {
"type": "integer",
"description": "Number of sensitive data assets found in this data store."
},
"classificationLabels": {
"type": "array",
"items": {
"type": "string"
},
"description": "Distinct classification labels found in the data store."
},
"dataAssetCount": {
"type": "integer",
"description": "Total number of data assets discovered in this data store."
},
"discoveredAt": {
"type": "string",
"format": "date-time",
"description": "Timestamp when the data store was first discovered by DSPM."
},
"lastScannedAt": {
"type": "string",
"format": "date-time",
"description": "Timestamp of the most recent data classification scan."
}
}
}