mirror of
https://github.com/fleetdm/fleet
synced 2026-05-22 16:39:01 +00:00
c2f333aebb
Closes: #18240 Changes: - Updated the schema override files to use only one YAML block scalar (`>-`) - Updated the template yaml included in the link to create a new override file in get-extended-osquery-schema helper to use the `>-` block scalar - regenerated osquery_fleet_schema.json
12 lines
441 B
YAML
12 lines
441 B
YAML
name: xprotect_reports
|
|
examples: >-
|
|
See all Xprotect activity reports, if any are present. This indicates
|
|
potentially malicious software was blocked by Xprotect.
|
|
|
|
```
|
|
|
|
SELECT * FROM xprotect_reports;
|
|
|
|
```
|
|
notes: >-
|
|
- In [very specific circumstances](https://github.com/osquery/osquery/issues/6588#issuecomment-1410934706) this table will return empty because xprotect will detect and remediate without generating an eicar file.
|