To successfully integrate Prisma Cloud serverless vulnerability scanning into an AWS DevOps CI/CD workflow, you must follow a sequential infrastructure setup. First, you must obtain the required scanning payload by downloading the Prisma Cloud Lambda function executable from the Prisma Cloud console or API. Second, you deploy this executable into your environment by creating an AWS Lambda function, applying the necessary environment variables and authentication settings to establish communication with Prisma Cloud. Third, because the scanner acts as an invokable target, you create the AWS DevOps pipeline with the appropriate settings, adding a stage configured to trigger the newly created Lambda function. Finally, you execute the pipeline to run the automated serverless scan against your code artifacts.

Palo Alto Networks. (n.d.). Prisma Cloud Administrator's Guide (Compute): Serverless Functions Scanning. Section: Integrating Serverless Scanning with CI/CD. Palo Alto Networks TechDocs.

Palo Alto Networks. (n.d.). Prisma Cloud Compute API Reference. Section: CI/CD Pipeline Integrations & Serverless Defender Deployment. Palo Alto Networks TechDocs.