-
Notifications
You must be signed in to change notification settings - Fork 8.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Security Solution][Detections] Associate Endpoint Exceptions List to Rule during rule creation/update #71794
Conversation
This works on creation, now we need edit.
EuiText generates a div, but this is inside of an EuiCard which is a paragraph. Defines a span with equivalent styles, instead.
@benskelker this adds the "Associate Global Endpoint Exception List" option to rule creation/update. |
💚 Build SucceededBuild metrics
To update your PR or re-run it, just comment with: |
Pinging @elastic/siem (Team:SIEM) |
@@ -83,7 +83,7 @@ const NO_LEGEND_DATA: LegendItem[] = []; | |||
export const AlertsHistogramPanel = memo<AlertsHistogramPanelProps>( | |||
({ | |||
chartHeight, | |||
defaultStackByOption = alertsHistogramOptions[0], | |||
defaultStackByOption = alertsHistogramOptions[8], // signal.rule.name |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thank you! 🙂
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM! Thanks for the extra fixes here too @rylnd! 🙂
* master: (82 commits) Fixed the spacing of child accordion items for policy response dialog. (elastic#71677) [SECURITY] Timeline bug 7.9 (elastic#71748) use fixed isChromeVisible method (elastic#71813) [SIEM][Detection Engine][Lists] Adds specific endpoint_list REST API and API for abilities to auto-create the endpoint_list if it gets deleted (elastic#71792) [test] Skips flaky Saved Objects Management test [APM] Remove watcher integration (elastic#71655) [APM] Increase `xpack.apm.ui.transactionGroupBucketSize` (elastic#71661) [test] Skips Ingest Manager test preventing ES promotion [test] Skips flaky detection engine tests Revert "re-fix navigate path for master add SAML login to login_page (elastic#71337)" [tests] Temporarily skipped Fleet tests [test] Skipped monitoring test [Security Solution][Detections] Associate Endpoint Exceptions List to Rule during rule creation/update (elastic#71794) Add endpoint exception creation API validation (elastic#71791) Skip jest tests that timeout waiting for react (elastic#71801) [Security Solution][Exceptions] - Adds filtering to endpoint index patterns by exceptional fields (elastic#71757) [Reporting] Re-delete a file (elastic#71730) [Security Solution] [Detections] Fixes bug for determining when we hit max signals after filtering with lists (elastic#71768) [Ingest Manager] Better display of Fleet requirements (elastic#71686) [tests] Temporarily skipped to promote snapshot ...
…ist to Rule during rule creation/update (#71794) (#71806) Co-authored-by: Elastic Machine <[email protected]>
Pinging @elastic/security-solution (Team: SecuritySolution) |
Summary
This adds the following:
signal.rule.name
TODO
Followup Actions:
'endpoint_list'
) with common constant from [SIEM][Detection Engine][Lists] Adds specific endpoint_list REST API and API for abilities to auto-create the endpoint_list if it gets deleted #71792For maintainers