Skip to content

Security Scanning#616

Draft
turtle0x1 wants to merge 1 commit into
masterfrom
sec-scanning
Draft

Security Scanning#616
turtle0x1 wants to merge 1 commit into
masterfrom
sec-scanning

Conversation

@turtle0x1

@turtle0x1 turtle0x1 commented May 16, 2026

Copy link
Copy Markdown
Owner

Using OVAL sources we scan software snapshots of running instances for known vulns.

  • Ubuntu
  • Debian

Todo later (I dont use them)

  • Redhat
  • Suse

I've deployed a Ubuntu/Debian instance (with apache+nginx) and waiting for them to get vuln before merging (even though there is a test to ensure it works how I want, I do want to see a real instance go vulnerable before merging - just have to wait a while, apache/nginx/kernel always finds itself in trouble).

A lot of of security frameworks demand "you show mitigations are applied within X days" - while ensuring your system has "auto sec updates on" usually suffices (most do by default), actually having an interface to review this always nice.

Close #584

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

Security Scanning

1 participant