Best practices checklists

Support cluster and node level items that can be checked for presence/absence then build reports around this.

Things to think of:

• Is latest version/is update available?
• Is TLS required for connections?
• Are there CVEs issued for the current version?

Start with focus on standard items that are applied to everything. Quickly expand to custom items with partial agent support.

Ideas

• Add agent endpoint to return check results (are checks lightweight enough to assume they can be triggered by the endpoint itself?)
• Endpoint returns a dictionary of {<ID>: {"status": <bool>, "message": <string>}}.
• Core can poll the results:
  • Less frequently then for other state?
  • On demand to generate reports?
• Data files used by core (imported in DB?) to attach meaning to items by ID:
  • Display text
  • Short description
  • Link to details
  • Is desired/undesired item?
  • Severity of presence/absence