Open kpcyrd opened 6 years ago
@kpcyrd you may want to have a look at https://github.com/mozilla/scribe, specifically https://github.com/mozilla/scribe/tree/master/scribevulnpolicy. This generates vulnerability checks for platforms supported by clair, and the actions can be run using MIG's scribe module support.
I'm looking for something along the lines of debsecan that is able to:
The current mig workflow would require explicitly starting investigations for each advisory.