Container Vulnerability Response remediation task and container vulnerable item states

  • Release version: Washingtondc
  • Updated February 6, 2024
  • 1 minute to read

    • With the Container Vulnerability Response application, you can use the state model to see the status of a remediation task, at any given time. Knowing how each state relates to and affects each other helps you to determine when and how to remediate your container vulnerable items (CVITs).

    Remediation task states

    Complex use cases can sometimes result in a container vulnerable item being in a different state than its remediation task. Understanding how states work helps to explain this behavior and can help with creating remediation tasks and creating or editing remediation task rules.

    Remediation tasks have many possible states as shown in the following diagram.
    Figure 1. Container Vulnerability Response state flow
    Container Vulnerability Response state flow diagram that describes the remediation task states as follows: Open, Under Investigation, Awaiting Implementation, In Review, Deferred or False Positive, Resolved, and Closed.
    Note:
    • Container vulnerable items cannot be closed manually.
    • Each task form contains Follow and Update buttons that are standard for ServiceNow tasks.