I have a Mac running Ventura 13.6 and it's all patched.
$ softwareupdate -l
Software Update Tool
Finding available software
Software Update found the following new or updated software:
* Label: macOS Sonoma 14.0-23A344
Title: macOS Sonoma 14.0, Version: 14.0, Size: 4403737KiB, Recommended: YES, Action: restart,
This is new software available and not an upgrade that needs to occur. I would argue that Apple including this as a "software update" muddies the waters a lot, but the fact is that Wazuh is using softwareupdate to determine compliance with the (sensible) policy that "all software should be up-to-date". But in this case, the system is up-to-date. I simply haven't installed an optional upgrade.
Can this rule be updated to avoid triggering when MacOS X+1 is available?
I have a Mac running Ventura 13.6 and it's all patched.
This is new software available and not an upgrade that needs to occur. I would argue that Apple including this as a "software update" muddies the waters a lot, but the fact is that Wazuh is using
softwareupdateto determine compliance with the (sensible) policy that "all software should be up-to-date". But in this case, the system is up-to-date. I simply haven't installed an optional upgrade.Can this rule be updated to avoid triggering when MacOS X+1 is available?