Back to plugin list
wiz
Official
Premium

Wiz

This plugin is in preview.

Sync from Wiz to any destination

Publisher

cloudquery

Latest version

v3.4.0

Type

Source

Platforms
Date Published

Price

Free while in preview

Set up process #


brew install cloudquery/tap/cloudquery

1. Download CLI and login

See installation options

2. Create source and destination configs

Plugin configuration

cloudquery sync wiz.yml postgresql.yml

3. Run the sync

CloudQuery sync

Overview #

The CloudQuery Wiz source plugin pulls data out of Wiz Integration (WIN) platform and loads it into any supported CloudQuery destination (e.g. PostgreSQL, BigQuery, Snowflake, and more).

Authentication #

In order to fetch information from Wiz, cloudquery needs to be authenticated and configured with valid Service Account credentials. These are:
  • api_endpoint_url
  • client_id
  • client_secret
  • token_url

Wiz Source Plugin Configuration Reference

Example #

This example syncs from Wiz to a Postgres destination. The (top level) source spec section is described in the Source Spec Reference.
kind: source
# Common source-plugin configuration
spec:
  name: wiz
  path: cloudquery/wiz
  registry: cloudquery
  version: "v3.4.0"
  tables:
    - "*"
  destinations: ["postgresql"]

  spec:
    # required parameters
    api_endpoint_url: "${WIZ_API_ENDPOINT_URL}"
    client_id: "${WIZ_CLIENT_ID}"
    client_secret: "${WIZ_CLIENT_SECRET}"
    
    # optional parameters
    # token_url: "${WIZ_TOKEN_URL}"
    # report_polling_interval: 5
    # concurrency: 3

Wiz Spec #

This is the (nested) spec used by the Wiz source plugin.
  • api_endpoint_url (string) (required) (example: https://api.us17.app.wiz.io/graphql)
    API Endpoint URL for your Wiz tenant.
  • client_id (string) (required)
    The Client ID used to generate authentication tokens for the Wiz API. This is generated through the Wiz platform.
  • client_secret (string) (required)
    The Client Secret used to generate authentication tokens for the Wiz API. This is generated through the Wiz platform.
  • token_url (string) (default: https://auth.app.wiz.io/oauth/token)
    The authentication token URL for the Wiz API.
  • report_polling_interval (string) (default: 5)
    Interval in seconds for polling the status of a report.
  • concurrency (integer) (optional) (default: 1000)
    The best effort maximum number of Go routines to use. Lower this number to reduce memory usage.
  • table_options (map) (default: null)
    A set of options to override the defaults for certain tables.
    The format of the table_options object is as follows:
    table_options:
      <table_name>:
        <input_object>
    A list of <input_object> objects should be provided. The plugin will iterate through these to make multiple API calls. The following tables and default options are supported:
    table_options:
      wiz_cloud_configuration_findings:
        include_deleted: true # default: true