Merge branch 'main' into osint-expansion

ocsf · Aug 29, 2024 · 96241e1 · 96241e1
2 parents 3d994e3 + 2322992
commit 96241e1
Show file tree

Hide file tree

Showing 4 changed files with 9 additions and 1 deletion.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -49,6 +49,8 @@ Thankyou! -->
     1. Added `has_mfa` as a `boolean_t`. #1155
 
 ### Improved
+* #### Event Classes
+    1. Added `evidences` to `compliance_finding` class. #1157
 * #### Objects
     1. Added `phone_number` to `user` and `ldap_person` objects. #1155
     2. Added `has_mfa` to `user` object. #1155

diff --git a/dictionary.json b/dictionary.json
@@ -1858,7 +1858,7 @@
     },
     "evidences": {
       "caption": "Evidence Artifacts",
-      "description": "Describes various evidence artifacts associated to the activity/activities that triggered a security detection.",
+      "description": "A collection of evidence artifacts associated to the activity/activities that triggered a finding. See specific usage.",
       "type": "evidences",
       "is_array": true
     },

diff --git a/events/findings/compliance_finding.json b/events/findings/compliance_finding.json
@@ -9,6 +9,11 @@
       "group": "primary",
       "requirement": "required"
     },
+    "evidences": {
+      "group": "context",
+      "description": "Describes various evidence artifacts associated with the compliance finding.",
+      "requirement": "optional"
+    },
     "remediation": {
       "group": "context",
       "requirement": "recommended"

diff --git a/events/findings/detection_finding.json b/events/findings/detection_finding.json
@@ -10,6 +10,7 @@
     ],
     "evidences": {
       "group": "primary",
+      "description": "Describes various evidence artifacts associated to the activity/activities that triggered a security detection.",
       "requirement": "recommended"
     },
     "impact": {