As we might have fleet of matchers (I don't know when that will happen), will we need a database for each matcher to store index report ( like Consequence 1 describes)? Or we just use central db to store index reports so multiple matchers can all access same central db.

My understanding is that Matchers need a DB to keep the vulnerability data. I am describing the possibility of Vulnerability Matching happening in a single DB outside Central, front-ended by a fleet of Scanners in Matcher mode. I haven't thought too much about how we can make the DB scalable to accommodate matching requests from multiple Central instances.

Is this flow new? I'm not seeing a getImages() call from Central to Sensor. The enricher within Sensor calls getImages() (which triggers scans but the flow is the opposite direction - Sensor will call ScanImageInternal or EnrichLocalImageInternal)

The diagram might be confusing. I am trying to show that the messages directed towards Sensor will be handled by calling enricher.getImages() inside Sensor. Central will send MstToSensor message to Sensor, which will eventually be processed by the enricher of the detector. The method enriched.getImages() will be called by various flows, triggered by different message types, in the detector, to perform the retrieve image scans.

Checkout Frame 2 in the miro board this image can from - believe it may be more accurate for consideration