Merge branch 'main' into ml-aiops-plugin-api

.buildkite/scripts/steps/artifacts/cloud.sh

@@ -43,39 +43,39 @@ jq '
   ' .buildkite/scripts/steps/cloud/deploy.json > "$DEPLOYMENT_SPEC"
 
 ecctl deployment create --track --output json --file "$DEPLOYMENT_SPEC" &> "$LOGS"
-CLOUD_DEPLOYMENT_USERNAME=$(jq --slurp '.[]|select(.resources).resources[] | select(.credentials).credentials.username' "$LOGS")
-CLOUD_DEPLOYMENT_PASSWORD=$(jq --slurp '.[]|select(.resources).resources[] | select(.credentials).credentials.password' "$LOGS")
+CLOUD_DEPLOYMENT_USERNAME=$(jq -r --slurp '.[]|select(.resources).resources[] | select(.credentials).credentials.username' "$LOGS")
+CLOUD_DEPLOYMENT_PASSWORD=$(jq -r --slurp '.[]|select(.resources).resources[] | select(.credentials).credentials.password' "$LOGS")
 CLOUD_DEPLOYMENT_ID=$(jq -r --slurp '.[0].id' "$LOGS")
 CLOUD_DEPLOYMENT_STATUS_MESSAGES=$(jq --slurp '[.[]|select(.resources == null)]' "$LOGS")
 
 CLOUD_DEPLOYMENT_KIBANA_URL=$(ecctl deployment show "$CLOUD_DEPLOYMENT_ID" | jq -r '.resources.kibana[0].info.metadata.aliased_url')
 CLOUD_DEPLOYMENT_ELASTICSEARCH_URL=$(ecctl deployment show "$CLOUD_DEPLOYMENT_ID" | jq -r '.resources.elasticsearch[0].info.metadata.aliased_url')
 
-# NOTE: disabled pending log sanitization
-# echo "--- Setup FTR"
-# export TEST_KIBANA_PROTOCOL=$(node -e "console.log(new URL('$CLOUD_DEPLOYMENT_KIBANA_URL').protocol)")
-# export TEST_KIBANA_HOSTNAME=$(node -e "console.log(new URL('$CLOUD_DEPLOYMENT_KIBANA_URL').hostname)")
-# export TEST_KIBANA_PORT=$(node -e "console.log(new URL('$CLOUD_DEPLOYMENT_KIBANA_URL').port)")
-# export TEST_KIBANA_USERNAME=$CLOUD_DEPLOYMENT_USERNAME"
-# export TEST_KIBANA_PASS=$CLOUD_DEPLOYMENT_PASSWORD"
+echo "Kibana: $CLOUD_DEPLOYMENT_KIBANA_URL"
+echo "ES: $CLOUD_DEPLOYMENT_ELASTICSEARCH_URL"
 
-# export TEST_ES_PROTOCOL=$(node -e "console.log(new URL('$CLOUD_DEPLOYMENT_KIBANA_URL').protocol)")
-# export TEST_ES_HOSTNAME==$(node -e "console.log(new URL('$CLOUD_DEPLOYMENT_KIBANA_URL').hostname)")
-# export TEST_ES_PORT=$(node -e "console.log(new URL('$CLOUD_DEPLOYMENT_KIBANA_URL').port)")
-# export TEST_ES_USER="$CLOUD_DEPLOYMENT_USERNAME"
-# export TEST_ES_PASS="$CLOUD_DEPLOYMENT_PASSWORD"
+function shutdown {
+  echo "--- Shutdown deployment"
+  ecctl deployment shutdown "$CLOUD_DEPLOYMENT_ID" --force --track --output json &> "$LOGS"
+}
+trap "shutdown" EXIT
 
-# export TEST_BROWSER_HEADLESS=1
+export TEST_KIBANA_PROTOCOL=$(node -e "console.log(new URL('$CLOUD_DEPLOYMENT_KIBANA_URL').protocol.replace(':', ''))")
+export TEST_KIBANA_HOSTNAME=$(node -e "console.log(new URL('$CLOUD_DEPLOYMENT_KIBANA_URL').hostname)")
+export TEST_KIBANA_PORT=$(node -e "console.log(new URL('$CLOUD_DEPLOYMENT_KIBANA_URL').port)")
+export TEST_KIBANA_USERNAME="$CLOUD_DEPLOYMENT_USERNAME"
+export TEST_KIBANA_PASSWORD="$CLOUD_DEPLOYMENT_PASSWORD"
 
-# Error: attempted to use the "es" service to fetch Elasticsearch version info but the request failed: ConnectionError: self signed certificate in certificate chain
-# export NODE_TLS_REJECT_UNAUTHORIZED=0
+export TEST_ES_PROTOCOL=$(node -e "console.log(new URL('$CLOUD_DEPLOYMENT_ELASTICSEARCH_URL').protocol.replace(':', ''))")
+export TEST_ES_HOSTNAME=$(node -e "console.log(new URL('$CLOUD_DEPLOYMENT_ELASTICSEARCH_URL').hostname)")
+export TEST_ES_PORT=$(node -e "console.log(new URL('$CLOUD_DEPLOYMENT_ELASTICSEARCH_URL').port)")
+export TEST_ES_USERNAME="$CLOUD_DEPLOYMENT_USERNAME"
+export TEST_ES_PASSWORD="$CLOUD_DEPLOYMENT_PASSWORD"
 
-# echo "--- Run default functional tests"
-# node --no-warnings scripts/functional_test_runner.js --include-tag=cloud -exclude-tag=skipCloud
+export TEST_BROWSER_HEADLESS=1
 
-# echo "--- Run x-pack functional tests"
-# cd x-pack
-# node --no-warnings scripts/functional_test_runner.js --include-tag=cloud -exclude-tag=skipCloud 
+# Error: attempted to use the "es" service to fetch Elasticsearch version info but the request failed: ConnectionError: self signed certificate in certificate chain
+export NODE_TLS_REJECT_UNAUTHORIZED=0
 
-echo "--- Shutdown deployment"
-ecctl deployment shutdown "$CLOUD_DEPLOYMENT_ID" --force --track --output json &> "$LOGS"
+echo "--- FTR - Reporting"
+node --no-warnings scripts/functional_test_runner.js --config x-pack/test/functional/apps/visualize/config.ts --include-tag=smoke --quiet

.eslintignore

@@ -30,7 +30,7 @@ snapshots.js
 /x-pack/plugins/reporting/server/export_types/printable_pdf_v2/server/lib/pdf/assets/**
 
 # package overrides
-/packages/elastic-eslint-config-kibana
+/packages/kbn-eslint-config
 /packages/kbn-plugin-generator/template
 /packages/kbn-generate/templates
 /packages/kbn-pm/dist

.eslintrc.js

@@ -230,7 +230,7 @@ const RESTRICTED_IMPORTS = [
 module.exports = {
   root: true,
 
-  extends: ['@elastic/eslint-config-kibana', 'plugin:@elastic/eui/recommended'],
+  extends: ['plugin:@elastic/eui/recommended', '@kbn/eslint-config'],
 
   overrides: [
     /**
@@ -304,7 +304,7 @@ module.exports = {
      */
     {
       files: [
-        'packages/elastic-eslint-config-kibana/**/*.{js,mjs,ts,tsx}',
+        'packages/kbn-eslint-config/**/*.{js,mjs,ts,tsx}',
         'packages/kbn-datemath/**/*.{js,mjs,ts,tsx}',
       ],
       rules: {

docs/api/cases/cases-api-add-comment.asciidoc

@@ -119,6 +119,7 @@ The API returns details about the case and its comments. For example:
     "syncAlerts":false
   },
   "owner": "cases",
+  "duration": null,
   "closed_at": null,
   "closed_by": null,
   "created_at": "2022-03-24T00:37:03.906Z",

docs/api/cases/cases-api-create.asciidoc

@@ -205,6 +205,7 @@ the case identifier, version, and creation time. For example:
   },
   "owner": "securitySolution",
   "description": "James Bond clicked on a highly suspicious email banner advertising cheap holidays for underpaid civil servants. Operation bubblegum is active. Repeat - operation bubblegum is now active",
+  "duration": null,
   "closed_at": null,
   "closed_by": null,
   "created_at": "2022-05-13T09:16:17.416Z",

docs/api/cases/cases-api-find-cases.asciidoc

@@ -125,6 +125,7 @@ The API returns a JSON object listing the retrieved cases. For example:
         "syncAlerts": true
       },
       "owner": "securitySolution",
+      "duration": null,
       "closed_at": null,
       "closed_by": null,
       "created_at": "2022-03-29T13:03:23.533Z",
@@ -164,6 +165,7 @@ The API returns a JSON object listing the retrieved cases. For example:
         "syncAlerts": false
       },
       "owner": "cases",
+      "duration": null,
       "closed_at": null,
       "closed_by": null,
       "created_at": "2022-03-29T11:30:02.658Z",

docs/api/cases/cases-api-get-case.asciidoc

@@ -59,6 +59,7 @@ The API returns a JSON object with the retrieved case. For example:
   "version": "Wzk4LDFd",
   "comments": [],
   "totalComment": 0,
+  "totalAlerts": 0,
   "closed_at": null,
   "closed_by": null,
   "created_at": "2020-03-29T11:30:02.658Z",
@@ -90,6 +91,7 @@ The API returns a JSON object with the retrieved case. For example:
     "syncAlerts": true
   },
   "owner": "securitySolution",
+  "duration": null,
   "tags": [
     "phishing",
     "social engineering",

docs/api/cases/cases-api-push.asciidoc

@@ -68,6 +68,7 @@ The API returns a JSON object representing the pushed case. For example:
     "syncAlerts": true
   },
   "owner": "securitySolution",
+  "duration": null,
   "closed_at": null,
   "closed_by": null,
   "created_at": "2022-03-29T11:30:02.658Z",

docs/api/cases/cases-api-update-comment.asciidoc

@@ -106,35 +106,36 @@ The API returns details about the case and its comments. For example:
   "comments":[{
     "id": "8af6ac20-74f6-11ea-b83a-553aecdb28b6",
     "version": "WzIwNjM3LDFd",
-    "comment":"That is nothing - Ethan Hunt answered a targeted social media campaign promoting phishy pension schemes to IMF operatives. Even worse, he likes baked beans.",
-    "type":"user",
-    "owner":"cases",
-    "created_at":"2022-03-24T00:37:10.832Z",
+    "comment": "That is nothing - Ethan Hunt answered a targeted social media campaign promoting phishy pension schemes to IMF operatives. Even worse, he likes baked beans.",
+    "type": "user",
+    "owner": "cases",
+    "created_at": "2022-03-24T00:37:10.832Z",
     "created_by": {
         "email": "[email protected]",
         "full_name": "Ms Moneypenny",
         "username": "moneypenny"
     },
-    "pushed_at":null,
-    "pushed_by":null,
-    "updated_at":"2022-03-24T01:27:06.210Z",
+    "pushed_at": null,
+    "pushed_by": null,
+    "updated_at": "2022-03-24T01:27:06.210Z",
     "updated_by": {
         "email": "[email protected]",
         "full_name": "James Bond",
         "username": "_007"
       }
     }
   ],
-  "totalAlerts":0,
+  "totalAlerts": 0,
   "id": "293f1bc0-74f6-11ea-b83a-553aecdb28b6",
   "version": "WzIwNjM2LDFd",
   "totalComment": 1,
   "title": "This case will self-destruct in 5 seconds",
-   "tags": ["phishing","social engineering"],
+  "tags": ["phishing","social engineering"],
   "description": "James Bond clicked on a highly suspicious email banner advertising cheap holidays for underpaid civil servants.",
   "settings": {"syncAlerts":false},
-  "owner": "cases","
-  closed_at": null,
+  "owner": "cases",
+  "duration": null,
+  "closed_at": null,
   "closed_by": null,
   "created_at": "2022-03-24T00:37:03.906Z",
   "created_by": {

docs/api/cases/cases-api-update.asciidoc

@@ -226,6 +226,7 @@ The API returns the updated case with a new `version` value. For example:
     },
     "owner": "securitySolution",
     "description": "James Bond clicked on a highly suspicious email banner advertising cheap holidays for underpaid civil servants. Operation bubblegum is active. Repeat - operation bubblegum is now active!",
+    "duration": null,
     "closed_at": null,
     "closed_by": null,
     "created_at": "2022-05-13T09:16:17.416Z",

docs/developer/getting-started/running-kibana-advanced.asciidoc

@@ -30,7 +30,7 @@ If you’re installing dependencies and seeing an error that looks
 something like
 
 ....
-Unsupported URL Type: link:packages/elastic-eslint-config-kibana
+Unsupported URL Type: link:packages/kbn-eslint-config
 ....
 
 you’re likely running `npm`. To install dependencies in {kib} you