post https://api.armosec.io/api/v1/runtime/policies
Creates a new runtime policy for monitoring and responding to security incidents.
Query params
customerGUID
- required. Unique identifier for the customer.
Request object
The request body contains details about the runtime policy to be created.
Request object examples
Create a custom runtime policy for EC2 instances:
{
"name": "EC2 Runtime Monitoring",
"description": "Monitors runtime security for EC2 instances",
"enabled": true,
"ruleSetType": "Custom",
"incidentTypeIDs": [
"I006",
"I007",
"I008",
"I010",
"I011"
],
"notifications": [],
"scope": {
"cves": [],
"riskFactors": [],
"designators": [{
"accountID": "",
"cloudProvider": "",
"cluster": "",
"kind": "",
"name": "",
"namespace": "",
"region": "",
"service": "EC2Instance"
}]
},
"actions": [],
"applyNetworkPolicy": false,
"applySeccompProfile": false
}