Osquery uses basic SQL commands to leverage a relational data-model to describe a device.

osquery

Looking for some clarification RE: Vuln Processing.

The docs here: <https://fleetdm.com/docs/using-fleet/vulnerability-processing>

The first section states `Vulnerability processing is enabled by default.`

The 2nd section states: `To enable vulnerability processing, first enable the software inventory feature by setting the following app config:`

As of 4.8.0 - Is Vuln Processing enabled by default? What about new installs vs. upgrades?

&gt; What about new installs vs. upgrades?
In Fleet 4.7.0, vulnerability processing was enabled by default for new installs.

In addition, vulnerability processing was enabled for users that upgrade (to 4.7.0 or later) if they did not explicitly disable vuln processing and software inventory.

Thank you for pointing out this, likely misleading, section of the docs.

The above clarification are here in this PR made to the docs: <https://github.com/fleetdm/fleet/pull/3629>