kube-hunter icon indicating copy to clipboard operation
kube-hunter copied to clipboard

Published 20 hours ago verified publisher icon aquasecurity

Add severity for vulnerabilities

Open lizrice opened this issue 5 years ago • 1 comments

Currently the severity is mapped from the category. Severity should relate to the specific vulnerability / exposure.

lizrice avatar May 14 '19 10:05 lizrice

Agreed.

I discussed with @itaysk about severity in the context of necessary refactor. The discussion essence it that apart of category mapping to severity, each and every event should declare its severity in its definition.

There is also needed change in how we treat Events/Vulnerabilities/Services since there is a possible overlap in their behavior which may be reasonable, but can mislead to wrong implementations.

iyehuda avatar Oct 20 '19 13:10 iyehuda