PatchMon

PatchMon is a Linux patch monitoring automation platform that centralizes patch management across diverse server environments. Agents communicate outbound-only to the PatchMon server, eliminating inbound ports on monitored hosts while providing comprehensive visibility and automated remediation capabilities.

Key Features

• Customizable dashboard with per-user card layout and ordering
• Multi-user accounts with roles and RBAC
• Host inventory with OS details and host groups
• Package inventory across hosts, with outdated counts and per-host repositories
• Agent version management and script content stored in the database
• Server configuration options including URL, protocol, host, and port plus signup toggle and default user role
• REST API under /api/v1 with JWT authentication
• Proxmox LXC auto-enrollment to discover and enroll containers
• Outbound-only agent model with rate limiting for security
• Docker deployment with one-line self-host installer, systemd backend, and nginx vhost with optional TLS

Use Cases

• Central patch management for Linux servers across on-premises and cloud environments
• Automatic enrollment and patching of Proxmox LXC containers
• Self-hosted patch monitoring integrated with automation and API-driven workflows

Conclusion

PatchMon provides centralized visibility into patch posture with a secure, self-hosted architecture and an API-driven workflow for automation and integrations. Its Docker-based deployment, outbound agent model, and REST API support scalable patch management across diverse environments.