new "checked for vulnerabilities" entry

[xpkoala]

Adding to knowledge base from #4946

[noahtalerman]

EDIT: Please ignore the feedback about renaming the page. We can come back and address this in a later pass.

Looking really good! I have a couple larger pieces of feedback in this comment and then several other comments and requests in comments below:

I think we can move the new section you added to the top of this documentation page (first section). This is because we expect that the user visiting this page is primarily attempting to achieve the goal of understanding the vulnerability coverage Fleet offers.

I also think it makes sense to change the title of this documentation page to "Vulnerable software."

This way, the page's title clearly communicates that Fleet offers a vulnerable software feature and not the vulnerability scanner feature set (vulnerable software, cloud configuration, networks, libraries, and dependencies) that other vuln management solutions offer.

Please check in with @eashaw on changing the title of documentation pages. I'm not sure how the links for fleetdm.com/docs react to changing the name of the markdown file.

Also, please check if this name change will result in any broken links in the Fleet product. You can do this by searching the Fleet repo for the current link: https://fleetdm.com/docs/using-fleet/vulnerability-processing

This is rocking!

[noahtalerman]

@xpkoala please ignore my earlier piece of feedback about renaming the page. We can come back and address this in a later pass.

[xpkoala]

Added suggestions from @noahtalerman

[noahtalerman]

Looking sweet. I left a couple suggested changes below.

[noahtalerman]

@xpkoala heads up, I left a couple suggested changes above.

[noahtalerman]

@xpkoala heads up, I left a couple suggested changes above.

[xpkoala]

Renamed and moved Coverage section to be higher in the document.

[noahtalerman]

Looking good!

@chiiph I added you as a reviewer. Can you please review these changes for accuracy? By accuracy, I mean "does Fleet currently detect vulnerabilities for all these software items?"

Thanks :)

@xpkoala please feel free to merge once Tomas gets a chance to review.

[noahtalerman]

@xpkoala this is looking really good. I left several more requested changes below.

[xpkoala]

Changed software to packages and other minor fixes.

[chiiph]

This is the same as deb.

[noahtalerman]

The only reason "Packages installed using YUM (Red Hat)" is in here is because we thought the query Fleet runs to collect software includes the apt_sources table. This is not the case.

[chiiph]

apt_sources lists the repositories APT uses, not the packages.

[chiiph]

This is the same as RPM.

[noahtalerman]

@chiiph great catch.

The only reason "Packages installed using YUM (Red Hat)" is in here is because we thought the query Fleet runs to collect software includes the yum_sources table. This is not the case.

[chiiph]

yum_sources iiuc lists the respositories, not the packages.

[chiiph]

Looks good, just left a couple of comments that were technically redundant.

[noahtalerman]

@xpkoala I added two more requested changes following feedback from Tomas.

Pumped to get this merged today!

[Desmi-Dizney]

Editor pass completed on:

• Editor pass - new "checked for vulnerabilities" entry #5886