II.
LibraryProcess JSON
Structured · livelib-process:security-compliance--vulnerability-management
vulnerability-management json
Inspect the normalized record payload exactly as the atlas UI reads it.
{
"id": "lib-process:security-compliance--vulnerability-management",
"_kind": "LibraryProcess",
"_file": "generated-library/processes.yaml",
"_cluster": "generated-library",
"attributes": {
"displayName": "vulnerability-management",
"description": "Vulnerability Management Lifecycle - Comprehensive end-to-end vulnerability management process covering\ncontinuous scanning, validation and triage, risk-based prioritization using CVSS/EPSS, remediation tracking,\nverification, and MTTD/MTTR metrics reporting. Implements industry best practices for managing security\nvulnerabilities across application portfolios with automated workflows and SLA tracking.",
"libraryPath": "library/specializations/security-compliance/vulnerability-management.js",
"specialization": "security-compliance",
"references": [
"- NIST SP 800-40: Vulnerability Management: https://csrc.nist.gov/publications/detail/sp/800-40/rev-4/final\n- CVSS v3.1 Specification: https://www.first.org/cvss/v3.1/specification-document\n- EPSS (Exploit Prediction Scoring System): https://www.first.org/epss/\n- OWASP Vulnerability Management Guide: https://owasp.org/www-community/Vulnerability_Scanning_Tools\n- CIS Controls v8 - Vulnerability Management: https://www.cisecurity.org/controls/\n- CISA Known Exploited Vulnerabilities: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
],
"example": "const result = await orchestrate('specializations/security-compliance/vulnerability-management', {\n projectName: 'E-Commerce Platform',\n assetScope: ['applications', 'infrastructure', 'containers', 'dependencies'],\n scanTypes: ['sast', 'dast', 'sca', 'container', 'infrastructure', 'network'],\n riskThreshold: 'high', // 'critical', 'high', 'medium', 'low'\n complianceFrameworks: ['PCI-DSS', 'SOC2', 'ISO27001', 'NIST'],\n prioritizationMethod: 'cvss-epss', // 'cvss', 'epss', 'cvss-epss', 'custom'\n slaTargets: {\n critical: { mttr: 24, unit: 'hours' },\n high: { mttr: 7, unit: 'days' },\n medium: { mttr: 30, unit: 'days' },\n low: { mttr: 90, unit: 'days' }\n },\n autoRemediation: true,\n continuousScanning: true,\n falsePositiveManagement: true\n});",
"usesAgents": [
"general-purpose",
"vulnerability-triage-agent",
"risk-scoring-agent",
"remediation-guidance-agent",
"patch-management-agent"
],
"usesSkills": [
"dependency-scanner"
]
},
"outgoingEdges": [
{
"from": "lib-process:security-compliance--vulnerability-management",
"to": "domain:security",
"kind": "lib_applies_to_domain",
"attributes": {
"weight": 1
}
},
{
"from": "lib-process:security-compliance--vulnerability-management",
"to": "workflow:vulnerability-management",
"kind": "lib_implements_workflow",
"attributes": {
"weight": 1
}
},
{
"from": "lib-process:security-compliance--vulnerability-management",
"to": "specialization:security-compliance",
"kind": "lib_belongs_to_specialization",
"attributes": {
"weight": 0.9
}
},
{
"from": "lib-process:security-compliance--vulnerability-management",
"to": "lib-agent:security-compliance--vulnerability-triage-agent",
"kind": "uses_agent",
"attributes": {
"weight": 0.8
}
},
{
"from": "lib-process:security-compliance--vulnerability-management",
"to": "lib-agent:security-compliance--risk-scoring-agent",
"kind": "uses_agent",
"attributes": {
"weight": 0.8
}
},
{
"from": "lib-process:security-compliance--vulnerability-management",
"to": "lib-agent:security-compliance--remediation-guidance-agent",
"kind": "uses_agent",
"attributes": {
"weight": 0.8
}
},
{
"from": "lib-process:security-compliance--vulnerability-management",
"to": "lib-agent:security-compliance--patch-management-agent",
"kind": "uses_agent",
"attributes": {
"weight": 0.8
}
},
{
"from": "lib-process:security-compliance--vulnerability-management",
"to": "lib-skill:security-compliance--dependency-scanner",
"kind": "uses_skill",
"attributes": {
"weight": 0.8
}
}
],
"incomingEdges": []
}