Vulnerability Scanning

OCI Vulnerability Scanning routinely checks hosts and container images for potential vulnerabilities and related security findings. This subject area enables tracking container scan targets and host scan targets, including scan recipe, lifecycle, tenancy, compartment, region, and creation activity attributes.

Business Questions

The subject area can answer the following business questions:

How many host and container scan targets exist by tenancy, compartment, or region?
How have scan target counts changed over time?
Which scan targets are active or in another lifecycle state?
Which scan recipes are associated with targets?

Logical Model

Fact - Vulnerability Scanning Container Scan Target

The model centers on Fact - Vulnerability Scanning Container Scan Target and joins to container scan target, container scan recipe, compartment, date, region, and tenancy dimensions.

The Vulnerability Scanning Container Scan Target fact table is connected to dimension tables.

Fact - Vulnerability Scanning Host Scan Target

The model centers on Fact - Vulnerability Scanning Host Scan Target and joins to host scan target, host scan recipe, compartment, date, region, and tenancy dimensions.

The Vulnerability Scanning Host Scan Target fact table is connected to dimension tables.

Metric Details

Metric Details for Vulnerability Scanning
Fact Folder	Metric	Definition
Vulnerability Scanning Container Scan Target	Vulnerability Scanning Container Scan Target Count	COUNT metric from `Fact - Vulnerability Scanning Container Scan Target`.
Vulnerability Scanning Host Scan Target	Vulnerability Scanning Host Scan Target Count	COUNT metric from `Fact - Vulnerability Scanning Host Scan Target`.

Oracle Cloud Infrastructure Documentation

Vulnerability Scanning

Business Questions

Logical Model

Metric Details