From c95a07bded005480cafdb41fd44b9db268416434 Mon Sep 17 00:00:00 2001
From: David Karlsson <35727626+dvdksn@users.noreply.github.com>
Date: Wed, 14 Aug 2024 17:30:31 +0200
Subject: [PATCH] scout: add "package types" config option for vulnerabilities
 policy

Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
---
 content/manuals/scout/policy/_index.md | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/content/manuals/scout/policy/_index.md b/content/manuals/scout/policy/_index.md
index eaa2f2007b6..596e2ec8f61 100644
--- a/content/manuals/scout/policy/_index.md
+++ b/content/manuals/scout/policy/_index.md
@@ -101,6 +101,12 @@ The following policy parameters are configurable in a custom version:
 - **Fixable vulnerabilities only**: Whether or not to only report
   vulnerabilities with a fix version available (enabled by default).
 
+- **Package types**: List of package types to consider.
+
+  This option lets you specify the package types, as [PURL package type definitions](https://github.com/package-url/purl-spec/blob/master/PURL-TYPES.rst),
+  that you want to include in the policy evaluation. By default, the policy
+  considers all package types.
+
 For more information about configuring policies, see [Configure policies](./configure.md).
 
 ### No AGPL v3 licenses