Create auto-close rules for Container Vulnerability Response

  • 릴리스 버전: Australia
  • 업데이트 날짜 2026년 03월 12일
  • 소요 시간: 2분

    • Use auto-close rules to close older container vulnerable items (CVITs) automatically based on the filter conditions that you set.

    시작하기 전에

    Role required: sn_vul.container_manage_auto_close_stale_vi

    프로시저

    1. Navigate to All > Container Vulnerability Response > Container Vulnerable Items > Auto-Close rules.

      The base system provides the following auto-close rules: Container Vulnerabilities last scanned: Vulnerabilities not reported within the last 90 days are transitioned to Stale State.

    2. Select New to create auto-close rule.
    3. Fill in the fields on the form.
      Field Value
      Name Name of the auto-close rule.
      Active Option to activate the rule. If activated, it closes any detections automatically that match its filter criteria.
      Execution order Unique value for the execution of the auto-close rule. This value determines the order of execution. The default value is 100.
      Integration type
      Container Vulnerability Integration
      주:
      To scan host vulnerabilities using Prisma Cloud Compute integration, select Vulnerability Scanner Integration.
      Description Description of the auto-close rule.
      Condition Filter conditions used to identify detections that should be closed.
    4. Select Submit.
      The Auto-Close rules scheduled jobs run on a daily basis. It identifies CVITs based on the specified conditions and transitions the matching ones to the Stale state. In cases where there are CVITs with both Closed and Stale statuses, the CVIT is closed with the sub state set as Fixed.