Kernel vulnerability mitigations missing
One or more CPU vulnerability mitigations (Spectre, Meltdown, MDS, etc.) report unmitigated or partial coverage in /sys/devices/system/cpu/vulnerabilities/. Update kernel + CPU microcode to apply.
Remediation
When this rule fires on one of your servers, the dashboard alert detail page renders the full remediation guidance: the command to run, what to verify after, and Furnace's annotation for your specific distro + hardware. Sign in at app.glassmkr.com to see the live alert.