Manage virtual patches

Virtual patches are short-term, custom defense rules that protect against specific, newly discovered vulnerabilities in your code. You can specify the criteria for each attack event, to which application(s) the patch applies and in which environments the patch is enabled.

Organization Administrators and RulesAdmins can view and manage virtual patches.

To add a virtual patch:

  1. In the user menu, under Policy management, select Virtual patches.

  2. Find virtual patches by using the language filters in the drop-down menu or entering the rule name in the search field above the grid.

  3. Click on the name of a patch to edit the rule configuration, or select Add Virtual Patch to add a new one. (You can also select the trash can icon to delete a rule or use the toggles in the grid to enable or disable each environment.)

  4. In the window that opens, add a Name and Description .

  5. In the Apply to section, use the radio button to choose whether the rule applies to specific Applications, an Application language or an Application technology. After clicking the appropriate button, use the multiselect field that appears to further refine your choice.

  6. Use the drop-down menus to define the Conditions under which the patch should apply to your application selection(s). Select Add another condition in a separate row, if necessary.

  7. Select Add to save the configuration.