6 commits

Author	SHA1	Message	Date
Juan Fernandez	765031d962	Bug 6717: Duplicate calls on vulnerability third party integrations. (#7698) ... If the same vulnerability was present in more than one software, then duplicated third party integration calls were being issued.	2022-09-13 10:41:52 -04:00
Juan Fernandez	b6d084deec	Feature 7559: Include 3rd party severity scores in the vulnerability web-hook payload (#7581) ... Premium users should receive vulnerability scores as part of the web-hook payload.	2022-09-06 15:12:17 -04:00
Juan Fernandez	966bfbf85e	Feature 6487: Deprecate cpe_id from software_cve table (#6562) ... Part 2/3 of the removal of the cpe_id column from the software_cve table in favor of using the newly added software_id coumn.	2022-08-04 09:24:44 -04:00
Juan Fernandez	ef73039559	Improve vulnerability detection for Ubuntu (#6102) ... Feature: Improve our capability to detect vulnerable software on Ubuntu hosts To improve the capability of detecting vulnerable software on Ubuntu, we are now using OVAL definitions to detect vulnerable software on Ubuntu hosts. If data sync is enabled (disable_data_sync=false) OVAL definitions are automatically kept up to date (they are 'refreshed' once per day) - there's also the option to manually download the OVAL definitions using the 'fleetctl vulnerability-data-stream' command. Downloaded definitions are then parsed into an intermediary format and then used to identify vulnerable software on Ubuntu hosts. Finally, any 'recent' detected vulnerabilities are sent to any third-party integrations.	2022-06-07 21:09:47 -04:00
Martin Angers	7187f1adac	Queue jobs for Jira integration when enabled and new vulnerabilities are found. (#4975)	2022-04-11 16:42:16 -04:00
Martin Angers	6e2ba62744	Trigger webhooks for recently published vulnerabilities (#3941)	2022-02-02 16:34:37 -05:00