dmfezzareed
commented
7 months ago cc @schmelz21 @rapidray12 @stewartl97
Open dmfezzareed opened 7 months ago
dmfezzareed
commented
7 months ago cc @schmelz21 @rapidray12 @stewartl97
💡 Summary
XFD will no longer support partner on demand vulnerability scanning. https://github.com/cisagov/crossfeed/issues/2253 confirmed the function has already been suppressed in the UI for Standard and GlobalView user profiles.
Please update the API and documentation to suppress SCAN and SCAN TASKS functionality for Standard and GlobalView user profiles (and any new profiles that exist that are not GlobalAdmin).
https://docs.crossfeed.cyber.dhs.gov/api-reference/ https://docs.crossfeed.cyber.dhs.gov/dev/worker/#scheduling https://docs.crossfeed.cyber.dhs.gov/dev/worker/#scantask
Motivation and context
XFD is data aggregator. A data aggregator is an organization that collects data from one or more sources, provides some value-added processing, and repackages the result in a usable form. Â I am specifically requesting suppression (via commenting) vs deletion so that if there is a partner demand to restore the functionality, we can do so with very little effort.