Add to Security Inbox Rules
このページは日本語には対応しておりません。随時翻訳に取り組んでいます。
翻訳に関してご質問やご意見ございましたら、
お気軽にご連絡ください。
Configure inbox rules to manage your Security Inbox effectively, ensuring only the most relevant security issues are highlighted. By customizing conditions, you can focus on critical concerns, prioritize key risks, support compliance, and bring attention to issues that might otherwise be overlooked.
Create an inbox rule
- On the Automation Pipelines page, click Add a New Rule and select Add to Security Inbox.
- Enter a descriptive name for the rule, for example, Cloud Infrastructure Anomaly Warnings.
- Use the following boxes to configure the rule criteria:
- Any of these types: The types of findings that the rule should check for. Available types include:
- Misconfiguration
- Attack Path
- Identity Risk
- API Security Finding
- Application Code Vulnerability
- Application Library Vulnerability
- Container Image Vulnerability
- API Security Finding
- Host Vulnerability
- Any of these tags or attributes: The resource tags or attributes that must match for the rule to apply.
- To add severity criteria to the rule, click Add Severity.
- Click Save. The rule applies to new findings immediately and starts checking existing findings within the next hour.
Rule matching order
When Datadog identifies a finding, it evaluates the finding against your sequence of inbox rules. Starting with the first rule, if there’s a match, Datadog adds the finding to the Security Inbox and stops evaluating further. If no match occurs, Datadog moves to the next rule. This process continues until a match is found or all rules are checked without a match.
Further reading
