-
Notifications
You must be signed in to change notification settings - Fork 114
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
New class for OS patching using kb_articles object #746
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The class does not define new activity_id
values. Just to check, are the default activity_id
values, as shown below, good for this class?
"activity_id": {
"enum": {
"1": {
"caption": "Log",
"description": "The discovered information is via a log."
},
"2": {
"caption": "Collect",
"description": "The discovered information is via a collection process."
}
}
}
@jasonbreimer would this be Windows specific? |
I'm assuming that the primary attributes come from the |
Yes, we could add this constrain. |
Yes, like other data in this category we go out and query/poll this data. I think "Collect" is fine. |
Hey JP, picking up on this one again.... no this would be OS agnostic. I modeled it on data from both linux distros and windows. There are attributes that belong to windows. I don't think anybody else use "bulletin". However I think that's the only one. The other attributes are generic to OS. |
No problem to add constraints. I followed guidance and I think this is the syntax/structure: "constraints": { |
No worries, do you think the |
Hello JP, |
Based on PR discussion, add constraints for device. Signed-off-by: Jason Reimer <jason.reimer@tanium.com>
Signed-off-by: Jason Reimer <jason.reimer@tanium.com>
Hey @pagbabian-splunk, added the constraints you and Roumen referenced! Does the cover the change you would like? Let me know and I will proceed with converting this from a draft PR. Thank you! |
This is great @jasonbreimer I could ultimately either way, just wanted to track the idea we discussed today in case you wanted to look a little deeper. |
Yes it does Jason. However if only Nevertheless, I think with the kb_article and the OS version and patch, it would cover things. |
Related Issue:
Resulting from Vulnerability Findings work.
Description of changes:
Add a new class to Discovery for the install state of an OS patch. This new class includes the Host profile for Device as well as the kb_articles object.
Please comment on any additions/changes.