Resource Type: vulnerability_status

Defined in:

lib/puppet/type/vulnerability_status.rb

Providers:

simple

Overview

Manage the status of the vulnerabilities on your system.

Using this type, you can start to manage the number of vulnerabilities you allow on your system. Here is an example on how to use it:

vulnerability_status { 'master.example.com':
  critical   => 2,
  high       => 90,
  allow_list => ['CVE-2018-11749'],
  when_more  => error,
}

In this example, you allow a maximum of 2 critical and 90 high vulnerabilities on your system. You#’ know that vulnerability CVE-2018-11749 is on your system and for now, you don’t want it to allow this CVE and not include it in the count.

Parameters

• provider

  The specific backend to use for this ‘vulnerability_status` resource. You will seldom need to specify this — Puppet will usually discover the appropriate provider for your platform.