Exception Rule form
Create a rule to automatically request an exception for a specific condition for a group of container vulnerable items (CVITs), such as a rule with a condition that is based on the vulnerability severity of these CVITs. With this rule, you can defer new and existing CVITs automatically if they match the approved rule condition.
To view the Exception Rule form, navigate to .
| Field | Description |
|---|---|
| Name | Name of the exception rule. |
| Valid from | Date from which this rule is active to defer the CVITs. |
| Valid to | Date from which the remediation task stops accepting new CVITs. |
| Reason | Reason to create this exception rule. |
| Assignment group | Group that the remediation task that was created for tracking the deferred CVITs is assigned to. |
| Additional information | Additional information that the requester wants to provide to the approver. This information is populated in the description field of the remediation task. |
| Condition | Filter condition for the CVITs that can be defined while processing the CVITs. |
| Execute on existing data | Option that enables you to run this rule on existing data the first time that this rule is run. |
| Workflow stage | Current approval status of the exception rule. |
| State | State of the exception rule. |
| Execution order | Unique order for each exception rule. |
| Deferred until | Date until when the VULs and CVITs are deferred. On this date, the created VUL is closed, all the CVITs move out of the group, and group rules are reapplied. |