Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Backport 2.x adds support for alerts and triggers on group by based sigma rules (#545) #559

Merged
merged 2 commits into from
Sep 9, 2023
Merged

Backport 2.x adds support for alerts and triggers on group by based sigma rules (#545) #559

merged 2 commits into from
Sep 9, 2023

Conversation

eirsep
Copy link
Member

@eirsep eirsep commented Sep 8, 2023

adds support for alerts and triggers on group by based rules

@eirsep
adds support for alerts and triggers on group by based sigma rules (o…
8bef0d9 
…pensearch-project#545)

* fix test

Signed-off-by: Surya Sashank Nistala <[email protected]>

* adds support for alerts and triggers on group by based rules

Signed-off-by: Surya Sashank Nistala <[email protected]>

* change setting workflow usage enabled to true by default

Signed-off-by: Surya Sashank Nistala <[email protected]>

* turn off workflow setting for test

Signed-off-by: Surya Sashank Nistala <[email protected]>

* revert new line

Signed-off-by: Surya Sashank Nistala <[email protected]>

* support feeding findings to chained finding monitors ONLY from rules mentioned in detector triggers

Signed-off-by: Surya Sashank Nistala <[email protected]>

* revert naming convention change for bucket level monitors

Signed-off-by: Surya Sashank Nistala <[email protected]>

---------

Signed-off-by: Surya Sashank Nistala <[email protected]>
@codecov
Copy link

codecov bot commented Sep 8, 2023
edited
Loading

Codecov Report

Merging #559 (fd7b0a3) into 2.x (4e77f5a) will decrease coverage by 0.13%.
The diff coverage is 0.00%.

@@             Coverage Diff              @@
##                2.x     #559      +/-   ##
============================================
- Coverage     25.14%   25.02%   -0.13%     
- Complexity      940      941       +1     
============================================
  Files           255      255              
  Lines         11062    11123      +61     
  Branches       1231     1242      +11     
============================================
+ Hits           2782     2783       +1     
- Misses         8028     8089      +61     
+ Partials        252      251       -1
Files Changed Coverage Δ
...earch/securityanalytics/model/DetectorTrigger.java 54.85% <0.00%> (-1.29%) ⬇️
...yanalytics/settings/SecurityAnalyticsSettings.java 96.00% <ø> (ø)
...lytics/transport/TransportIndexDetectorAction.java 0.00% <0.00%> (ø)
...ensearch/securityanalytics/util/DetectorUtils.java 0.00% <0.00%> (ø)
...search/securityanalytics/util/WorkflowService.java 0.00% <0.00%> (ø)

... and 1 file with indirect coverage changes

@eirsep eirsep merged commit 24fe8d4 into opensearch-project:2.x Sep 9, 2023
@opensearch-trigger-bot opensearch-trigger-bot bot mentioned this pull request Sep 9, 2023
Merged
opensearch-trigger-bot bot pushed a commit that referenced this pull request Sep 9, 2023
@eirsep @github-actions
Backport 2.x adds support for alerts and triggers on group by based s…
1607397 
…igma rules (#545) (#559)

* adds support for alerts and triggers on group by based sigma rules  (#545)

* fix test

Signed-off-by: Surya Sashank Nistala <[email protected]>

* adds support for alerts and triggers on group by based rules

Signed-off-by: Surya Sashank Nistala <[email protected]>

* change setting workflow usage enabled to true by default

Signed-off-by: Surya Sashank Nistala <[email protected]>

* turn off workflow setting for test

Signed-off-by: Surya Sashank Nistala <[email protected]>

* revert new line

Signed-off-by: Surya Sashank Nistala <[email protected]>

* support feeding findings to chained finding monitors ONLY from rules mentioned in detector triggers

Signed-off-by: Surya Sashank Nistala <[email protected]>

* revert naming convention change for bucket level monitors

Signed-off-by: Surya Sashank Nistala <[email protected]>

---------

Signed-off-by: Surya Sashank Nistala <[email protected]>

* fix compile issue from main and 2.x dependency divergence

Signed-off-by: Surya Sashank Nistala <[email protected]>

---------

Signed-off-by: Surya Sashank Nistala <[email protected]>
(cherry picked from commit 24fe8d4)
sbcd90 pushed a commit that referenced this pull request Sep 9, 2023
@opensearch-trigger-bot
Backport 2.10 adds support for alerts and triggers on group by based …
a59bb63 
…sigma rules (#545) (#559) (#560)

Signed-off-by: Surya Sashank Nistala <[email protected]>
riysaxen-amzn pushed a commit to riysaxen-amzn/security-analytics that referenced this pull request Feb 20, 2024
@jovancvetkovic3006
[FEATURE] Finding flyout loading state (opensearch-project#562)
0e38a1b 
* [FEATURE] Set loading state for finding fly-out until the data is ready opensearch-project#559

Signed-off-by: Jovan Cvetkovic <[email protected]>

* fix tests

Signed-off-by: Jovan Cvetkovic <[email protected]>

* fix tests

Signed-off-by: Jovan Cvetkovic <[email protected]>

---------

Signed-off-by: Jovan Cvetkovic <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lezzago lezzago lezzago approved these changes

@sbcd90 sbcd90 sbcd90 approved these changes

Assignees
No one assigned
Labels
backport 2.10
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@eirsep @sbcd90 @lezzago