Goal Summary:

An elevator pitch (value statement) that describes the Feature in a clear, concise way. Complete during New status.

Base image detection allows customers to associate components and their vulnerabilities in application images to their base image layers. That functionality does not perform or report full vulnerability reports of the base images detected. This creates a gap in remediation decision making where ACS users cannot prioritize which active base images (i.e., base images in use in the environment, both watched or deployments) have a higher risk, or would create most value by being updated.

Goals and expected user outcomes:

The observable functionality that the user now has as a result of receiving this feature. Include the anticipated primary user type/persona and which existing features, if any, will be expanded. Complete during New status.

Active base images are fully scanned by ACS automatically, and will be served/reported alongside application images in vulnerability reports.

Acceptance Criteria:

A list of specific needs or objectives that a feature must deliver in order to be considered complete. Be sure to include nonfunctional requirements such as security, reliability, performance, maintainability, scalability, usability, etc. Initial completion during Refinement status.

• Base images detected in the environment and that are active are scanned by ACS
• Base images that are inactive (not used) will be removed automatically

Success Criteria or KPIs measured:

A list of specific, measurable criteria that will be used to determine if the feature is successful. Include key performance indicators (KPIs) or other metrics., etc. Initial completion during Refinement status.

TBD

Use Cases (Optional):

Include use case diagrams, main success scenarios, alternative flow scenarios together with user type/persona. Initial completion during Refinement status.

TBD

Out of Scope (Optional):

High-level list of items that are out of scope. Initial completion during Refinement status.

TBD