Create auto-close rules for Container Vulnerability Response

  • リリースバージョン: Australia
  • 更新日 2026年03月12日
  • 所要時間:2分

    • Use auto-close rules to close older container vulnerable items (CVITs) automatically based on the filter conditions that you set.

    始める前に

    Role required: sn_vul.container_manage_auto_close_stale_vi

    手順

    1. Navigate to All > Container Vulnerability Response > Container Vulnerable Items > Auto-Close rules.

      The base system provides the following auto-close rules: Container Vulnerabilities last scanned: Vulnerabilities not reported within the last 90 days are transitioned to Stale State.

    2. Select New to create auto-close rule.
    3. Fill in the fields on the form.
      Field Value
      Name Name of the auto-close rule.
      Active Option to activate the rule. If activated, it closes any detections automatically that match its filter criteria.
      Execution order Unique value for the execution of the auto-close rule. This value determines the order of execution. The default value is 100.
      Integration type
      Container Vulnerability Integration
      注:
      To scan host vulnerabilities using Prisma Cloud Compute integration, select Vulnerability Scanner Integration.
      Description Description of the auto-close rule.
      Condition Filter conditions used to identify detections that should be closed.
    4. Select Submit.
      The Auto-Close rules scheduled jobs run on a daily basis. It identifies CVITs based on the specified conditions and transitions the matching ones to the Stale state. In cases where there are CVITs with both Closed and Stale statuses, the CVIT is closed with the sub state set as Fixed.