Accelerated Patching — in the Mythos era
Automated, AI-assisted patching workflow combining Red Hat Lightspeed, Ansible Automation Platform (AAP), and Event-Driven Ansible (EDA) to identify, remediate, and record CVEs and advisories — with full ITSM integration.
1. RHEL hosts registered to Red Hat Lightspeed
2. Red Hat Lightspeed scans for CVEs and advisories
3. CVE identified — triggers automated response
4. ServiceNow incident created automatically
5. Event-Driven Ansible picks up the event and fires the remediation workflow
6. AAP Remediation Workflow:
a. Link CMDB CI to the incident
b. Fetch the Lightspeed remediation plan
c. Patch the RHEL host
d. Close the incident ("Solved Permanently")
| Category | Tools |
|---|---|
| AI / Advisory | Red Hat Lightspeed |
| Automation | Ansible Automation Platform (AAP), Event-Driven Ansible |
| Patching Target | Red Hat Enterprise Linux (RHEL) |
| ITSM | ServiceNow |
Every RHEL host provisioned and patched by this workflow gets a Red Hat
Lightspeed login banner, installed by
playbooks/configure_motd.yml:
___________________________________________________________________
/ \
| ____ _____ ____ _ _ _ _____ |
| | _ \| ____| _ \ | | | | / \|_ _| |
| | |_) | _| | | | | | |_| | / _ \ | | |
| | _ <| |___| |_| | | _ |/ ___ \| | |
| |_| \_\_____|____/ |_| |_/_/ \_\_| |
| |
| _ ___ ____ _ _ _____ ____ ____ _____ _____ ____ |
| | | |_ _/ ___| | | |_ _/ ___|| _ \| ____| ____| _ \ |
| | | | | | _| |_| | | | \___ \| |_) | _| | _| | | | | |
| | |___ | | |_| | _ | | | ___) | __/| |___| |___| |_| | |
| |_____|___\____|_| |_| |_| |____/|_| |_____|_____|____/ |
| |
| ============================================= |
| C V E P A T C H I N G E N G I N E |
| ============================================= |
| |
| Powered by: |
| - Red Hat Lightspeed (detect) |
| - Event-Driven Ansible (respond) |
| - Ansible Automation Platform (remediate) |
| - ServiceNow ITSM (track) |
| |
| This host is managed by AAP. Manual changes may be reverted. |
\___________________________________________________________________/
\
\ ^__^
\ (oo)\_______
(__)\ )\/\
||----w |
|| ||
- Ansible Automation Platform 2.4+
- Red Hat Lightspeed subscription
- RHEL hosts registered to Red Hat Lightspeed
~/.ansible.cfgconfigured with Automation Hub token (seeansible.cfg.example)
git clone https://github.com/toharris-rh/aap.lightspeed.patching.git
cd aap.lightspeed.patching
cp ansible.cfg.example ~/.ansible.cfg
# Edit ~/.ansible.cfg — replace REPLACE_ME_AUTOMATION_HUB_OFFLINE_TOKEN
# with your token from https://console.redhat.com/ansible/automation-hub/tokenSee CONTRIBUTING.md for development setup and docs/servicenow-integration.md for the full ITSM integration guide.