search

fleetdm / fleet

Open-source platform for IT, security, and infrastructure teams. (Linux, macOS, Chrome, Windows, cloud, data center)
https://fleetdm.com
Other
2.92k stars 406 forks source link

Add vulnerability automations for OS vulns #16406

Open sharon-fdm opened 7 months ago

sharon-fdm commented 7 months ago

Background

The "Surface macOS and Windows OS vulnerabilities story" (#4345), which was shipped as part of Fleet 4.44, didn't add vulnerability automations for OS vulns. See Figma here.

(noahtalerman 2024-02-02)

Goal

User story
As a vulnerability engineer,
I want to receive a webhook or Jira/Zendesk ticket when a new OS vulnerability is discovered in my Fleet
so that I can patch the vulnerability.

Changes

Product

Engineering

ℹ️  Please read this issue carefully and understand it. Pay special attention to UI wireframes, especially "dev notes".

Context

QA

Risk assessment

Manual testing steps

  1. Step 1
  2. Step 2
  3. Step 3

Testing notes

Confirmation

  1. [ ] Engineer (@____): Added comment to user story confirming successful completion of QA.
  2. [ ] QA (@____): Added comment to user story confirming successful completion of QA.
sharon-fdm commented 7 months ago

User story As a vulnerability management engineer integrating w/ the Fleet, I want to see macOS and Windows versions installed and which of those are vulnerable across my hosts so that I can know which versions of macOS and Windows have vulns.

noahtalerman commented 7 months ago

Hey @mostlikelee, @sharon-fdm, and @rachaelshaw, heads up, I updated this story description to match the conventions we use for stories (user story, changes, etc.)

I also updated the title so the value of this story is clear to the business.

Also, I noticed that there are minor UI changes required for this story (removing some copy). I spec'd these in Figma here and added this to the story.

Please let me know if you have any questions.

sharon-fdm commented 7 months ago

Thanks @noahtalerman

sharon-fdm commented 7 months ago

I removed a redundant sub-task and made this the main (and only) task.