The most efficient and CrowdStrike-recommended way to stop seeing vulnerabilities for older images is to use the“Stop assessing images older than (number) of days”setting in Image Assessment configuration.
This setting prevents Falcon Cloud Security from continuing to assess images beyond a defined age threshold—90 days in this case. By stopping assessment at the source, Falcon reduces noise, conserves assessment capacity, and focuses findings on images that are actively used or likely to be deployed.
Other approaches are inefficient or risky. Fusion workflows and manual hiding add operational overhead and do not stop assessments from occurring. Deleting images from registries may disrupt workflows and is outside Falcon’s control.
CrowdStrike best practices favorassessment-scoping controlsover post-processing suppression. Therefore, the correct answer isUse the Stop assessing images older than (number) of days setting.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit