Benjamin Edwards08/26/2022, 3:02 PM
Arsenio08/26/2022, 3:05 PM
Benjamin Edwards10/24/2022, 8:39 PM
that is the path in which fleet will use to download the CVE database we end up using for vuln processsing. I would make sure you are seeing in the logs "vuln processing" which confirms that things are configured correctly, and that the background CRON job is actually running on the server. The only other time I have seen vuln data not show up when everything was configured properly is when the fleet backend was running out of resources during the processing window. We recommend dedicating 2GB to the fleet backend responsible for cron processing (which by default is random, i.e fleet elects an instance at random).