No-patch handling: if mitigation or risk acceptance is needed, move the item into an exception-style workflow with an owner, compensating control, review date, and expiry condition.
No Patch
Mitigation-first cases where defenders need containment, hardening, and monitoring before a fix exists.
Use this view when the vendor fix path is incomplete or unavailable and exposure reduction matters more than waiting for a patch cycle.