Feature changed by: Matthias Eckermann (mge1512) Feature #310085, revision 8 Title: Zypper: Filter Security Needed patches Package Wishlist: Unconfirmed Priority Requester: Desirable Requested by: Michael Moser (mose) Description: I would be nice if there was a way to install only security patches that are 'Needed'. I have a multitude of SuSE based servers under management where I work, and we need to keep boxes up to date with security releases. Since we dont manage the applications the customer uses, we have no way of knowing if recommended patches for any given package will have adverse affects on their software. Currently we zypper pch | grep security | grep '| Needed' then copy & paste the output of that list to zypper patch. I've thought about trying to write a script to generate the list, but thought an intrinsic feature would be cleaner, especially when cssh'd into 30+ boxes at a time. I've seen alot of threads on google on this subject, so it seems that others are trying to accomplish the same task. I think such a feature would be a worthwhile implementation. Something to the order of: * zypper patch -s (security only) * zypper patch -r (recommended only) * zypper patch (Defaults to all patches) - - - - + Or implement it similar to "zypper lp --issue=security", i.e. "zypper + patch --issue=security". Discussion: #1: Carl Linden (carllinden) (2010-11-01 15:47:12) Hi - I have several customer asking for this feature. We used to have "rug up -t patch -g security" which worked fine on SLES10 but with SLES11 and zypper this is not yet availble. - - + #2: Matthias Eckermann (mge1512) (2010-11-01 17:17:39) + In my view, the commandline should be similar to "zypper lp -- + issue=security", i.e. "zypper patch --issue=security". -- openSUSE Feature: https://features.opensuse.org/310085