From 57296e231f73462dda05fa0af5511dc0925f5c88 Mon Sep 17 00:00:00 2001 From: Marian Novotny <46998027+mariannovotny@users.noreply.github.com> Date: Thu, 9 Sep 2021 11:37:33 +0100 Subject: [PATCH] Siembol release v1.3.0 (#316) * v1.3.0 release * fixing typos based on review --- CHANGELOG.md | 8 ++++++++ alerting/alerting-core/pom.xml | 4 ++-- alerting/alerting-spark/pom.xml | 4 ++-- alerting/alerting-storm/pom.xml | 4 ++-- alerting/pom.xml | 2 +- config-editor/config-editor-core/pom.xml | 4 ++-- config-editor/config-editor-rest/pom.xml | 18 +++++++++--------- config-editor/config-editor-services/pom.xml | 20 ++++++++++---------- config-editor/config-editor-sync/pom.xml | 8 ++++---- config-editor/config-editor-ui/package.json | 2 +- config-editor/pom.xml | 2 +- deployment/storm-topology-manager/pom.xml | 4 ++-- docs/deployment/deployment.md | 2 +- docs/services/siembol_alerting_services.md | 2 +- enriching/enriching-core/pom.xml | 6 +++--- enriching/enriching-storm/pom.xml | 4 ++-- enriching/pom.xml | 2 +- parsing/parsing-app/pom.xml | 6 +++--- parsing/parsing-core/pom.xml | 4 ++-- parsing/parsing-storm/pom.xml | 4 ++-- parsing/pom.xml | 2 +- pom.xml | 2 +- responding/pom.xml | 2 +- responding/responding-core/pom.xml | 6 +++--- responding/responding-stream/pom.xml | 6 +++--- siembol-common/pom.xml | 2 +- 26 files changed, 69 insertions(+), 61 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 169234895..c182b435c 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -5,6 +5,14 @@ All notable changes to this project will be documented in this file. The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). +## [1.3.0] - 2021-09-09 + +- Loading rules from multiple ZooKeeper nodes in Siembol alerting +- Fixing adding tags in Siembol correlation alerts +- Various minor fixes in Sigma rule importer in Siembol UI +- Various minor fixes in Siembol UI - uppercase searches for tags, tags in deployment dialog validated before release +- Adding Application manager in Siembol UI for managing Siembol applications (storm topologies) + ## [1.2.0] - 2021-07-19 - adding composite matchers (and, or) in Siembol alerting diff --git a/alerting/alerting-core/pom.xml b/alerting/alerting-core/pom.xml index d181a4759..bbf9aa469 100644 --- a/alerting/alerting-core/pom.xml +++ b/alerting/alerting-core/pom.xml @@ -11,7 +11,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>alerting</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencies> <dependency> @@ -35,7 +35,7 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol-common</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>org.adrianwalker</groupId> diff --git a/alerting/alerting-spark/pom.xml b/alerting/alerting-spark/pom.xml index 491663c36..a7bd498c8 100644 --- a/alerting/alerting-spark/pom.xml +++ b/alerting/alerting-spark/pom.xml @@ -11,7 +11,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>alerting</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencies> <dependency> @@ -23,7 +23,7 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>alerting-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> <exclusions> <exclusion> <artifactId>jackson-databind</artifactId> diff --git a/alerting/alerting-storm/pom.xml b/alerting/alerting-storm/pom.xml index aa1aed495..29e2e78f3 100644 --- a/alerting/alerting-storm/pom.xml +++ b/alerting/alerting-storm/pom.xml @@ -9,7 +9,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>alerting</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencies> <dependency> @@ -46,7 +46,7 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>alerting-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> <exclusions> <exclusion> <groupId>org.slf4j</groupId> diff --git a/alerting/pom.xml b/alerting/pom.xml index e8e1480d6..5d5cc20de 100644 --- a/alerting/pom.xml +++ b/alerting/pom.xml @@ -11,7 +11,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <modules> <module>alerting-core</module> diff --git a/config-editor/config-editor-core/pom.xml b/config-editor/config-editor-core/pom.xml index 8b31e2596..aa50f4007 100644 --- a/config-editor/config-editor-core/pom.xml +++ b/config-editor/config-editor-core/pom.xml @@ -9,13 +9,13 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>config-editor</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencies> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol-common</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>org.apache.commons</groupId> diff --git a/config-editor/config-editor-rest/pom.xml b/config-editor/config-editor-rest/pom.xml index 4af6adeb3..9817e71e9 100644 --- a/config-editor/config-editor-rest/pom.xml +++ b/config-editor/config-editor-rest/pom.xml @@ -9,7 +9,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>config-editor</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencyManagement> <dependencies> @@ -56,7 +56,7 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol-common</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> <exclusions> <exclusion> <groupId>org.slf4j</groupId> @@ -67,22 +67,22 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>config-editor-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>config-editor-services</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>config-editor-sync</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>alerting-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> <exclusions> <exclusion> <groupId>org.slf4j</groupId> @@ -93,7 +93,7 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>parsing-app</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> <exclusions> <exclusion> <groupId>org.slf4j</groupId> @@ -104,7 +104,7 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>enriching-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> <exclusions> <exclusion> <groupId>org.slf4j</groupId> @@ -115,7 +115,7 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>responding-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> <exclusions> <exclusion> <groupId>org.slf4j</groupId> diff --git a/config-editor/config-editor-services/pom.xml b/config-editor/config-editor-services/pom.xml index f15f29e0b..d8bc828e0 100644 --- a/config-editor/config-editor-services/pom.xml +++ b/config-editor/config-editor-services/pom.xml @@ -10,53 +10,53 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>config-editor</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencies> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol-common</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>config-editor-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>alerting-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>alerting-storm</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>parsing-storm</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>enriching-storm</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>parsing-app</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>enriching-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>responding-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>junit</groupId> diff --git a/config-editor/config-editor-sync/pom.xml b/config-editor/config-editor-sync/pom.xml index faa4106f1..35cdbe1a4 100644 --- a/config-editor/config-editor-sync/pom.xml +++ b/config-editor/config-editor-sync/pom.xml @@ -9,7 +9,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>config-editor</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencies> <dependency> @@ -20,17 +20,17 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol-common</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>config-editor-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>parsing-app</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> <scope>provided</scope> </dependency> <dependency> diff --git a/config-editor/config-editor-ui/package.json b/config-editor/config-editor-ui/package.json index d9e02fa95..348d4a2bb 100644 --- a/config-editor/config-editor-ui/package.json +++ b/config-editor/config-editor-ui/package.json @@ -1,6 +1,6 @@ { "name": "rule-editor.ui", - "version": "1.3.10-dev", + "version": "1.3.0", "license": "MIT", "scripts": { "ng": "ng", diff --git a/config-editor/pom.xml b/config-editor/pom.xml index c10df45bd..c05d2e9cc 100644 --- a/config-editor/pom.xml +++ b/config-editor/pom.xml @@ -11,7 +11,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <modules> <module>config-editor-core</module> diff --git a/deployment/storm-topology-manager/pom.xml b/deployment/storm-topology-manager/pom.xml index def7277d8..073717376 100644 --- a/deployment/storm-topology-manager/pom.xml +++ b/deployment/storm-topology-manager/pom.xml @@ -9,7 +9,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> <relativePath>../../pom.xml</relativePath> </parent> <dependencyManagement> @@ -43,7 +43,7 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol-common</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> <exclusions> <exclusion> <groupId>org.slf4j</groupId> diff --git a/docs/deployment/deployment.md b/docs/deployment/deployment.md index c0388457a..708ef34e4 100644 --- a/docs/deployment/deployment.md +++ b/docs/deployment/deployment.md @@ -10,7 +10,7 @@ Java artifacts are published to Central Maven Repository - [Sonatype OSS Reposit ### Docker images Docker images are built both from snapshots and releases. - The images are tagged by two tags: - - `latest` for tagging the latest image + - `latest` for tagging an image with the latest released stable version or `snapshot` for tagging an image with the latest snapshot development version - The version of the application from [POM](/pom.xml) - Springboot applications - An application is loaded using [springboot properties launcher](https://docs.spring.io/spring-boot/docs/current/reference/html/appendix-executable-jar-format.html) diff --git a/docs/services/siembol_alerting_services.md b/docs/services/siembol_alerting_services.md index 666a0025e..314e437bb 100644 --- a/docs/services/siembol_alerting_services.md +++ b/docs/services/siembol_alerting_services.md @@ -74,7 +74,7 @@ The correlation alert allows you to group several detections together before rai - `kafka.producer.properties` - Defines kafka producer properties, see [https://kafka.apache.org/0102/documentation.html#producerconfigs](https://kafka.apache.org/0102/documentation.html#producerconfigs) - `zookeeper.attributes` - The zookeeper attributes for updating the rules - `zk.url` - Zookeeper servers url. Multiple servers are separated by comma - - `zk.path` - Path to a zookeeper node + - `zk.path` - Path to a zookeeper node or multiple nodes delimited by new line. Alerting rules from multiple zookeeper nodes can be loaded in order to save storm resources - `storm.attributes` - Storm attributes for the enrichment topology - `bootstrap.servers` - Kafka brokers servers url. Multiple servers are separated by comma - `first.pool.offset.strategy` - Defines how the kafka spout seeks the offset to be used in the first poll to kafka diff --git a/enriching/enriching-core/pom.xml b/enriching/enriching-core/pom.xml index 8529ff930..51440c71b 100644 --- a/enriching/enriching-core/pom.xml +++ b/enriching/enriching-core/pom.xml @@ -11,7 +11,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>enriching</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencies> <dependency> @@ -35,12 +35,12 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol-common</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>alerting-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>org.adrianwalker</groupId> diff --git a/enriching/enriching-storm/pom.xml b/enriching/enriching-storm/pom.xml index 5fa7beb6b..d928e284a 100644 --- a/enriching/enriching-storm/pom.xml +++ b/enriching/enriching-storm/pom.xml @@ -9,7 +9,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>enriching</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencies> <dependency> @@ -62,7 +62,7 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>enriching-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> <exclusions> <exclusion> <groupId>org.slf4j</groupId> diff --git a/enriching/pom.xml b/enriching/pom.xml index 48de7fb08..c687614cc 100644 --- a/enriching/pom.xml +++ b/enriching/pom.xml @@ -11,7 +11,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <modules> <module>enriching-core</module> diff --git a/parsing/parsing-app/pom.xml b/parsing/parsing-app/pom.xml index 988f92ca1..4090894af 100644 --- a/parsing/parsing-app/pom.xml +++ b/parsing/parsing-app/pom.xml @@ -11,7 +11,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>parsing</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencies> <dependency> @@ -39,12 +39,12 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol-common</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>parsing-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>org.adrianwalker</groupId> diff --git a/parsing/parsing-core/pom.xml b/parsing/parsing-core/pom.xml index f95d64307..ed807379b 100644 --- a/parsing/parsing-core/pom.xml +++ b/parsing/parsing-core/pom.xml @@ -11,7 +11,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>parsing</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencies> <dependency> @@ -45,7 +45,7 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol-common</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>joda-time</groupId> diff --git a/parsing/parsing-storm/pom.xml b/parsing/parsing-storm/pom.xml index 388befee4..1c7efccb7 100644 --- a/parsing/parsing-storm/pom.xml +++ b/parsing/parsing-storm/pom.xml @@ -9,7 +9,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>parsing</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencies> <dependency> @@ -62,7 +62,7 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>parsing-app</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> <exclusions> <exclusion> <groupId>org.slf4j</groupId> diff --git a/parsing/pom.xml b/parsing/pom.xml index dcfd4c039..5d825c1c7 100644 --- a/parsing/pom.xml +++ b/parsing/pom.xml @@ -11,7 +11,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <modules> <module>parsing-core</module> diff --git a/pom.xml b/pom.xml index 0a636d4b9..f79d9b7af 100644 --- a/pom.xml +++ b/pom.xml @@ -6,7 +6,7 @@ <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol</artifactId> <name>siembol</name> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> <description>A scalable, advanced security analytics framework based on open-source big data technologies.</description> <inceptionYear>2019</inceptionYear> <url>https://siembol.io/</url> diff --git a/responding/pom.xml b/responding/pom.xml index 3bba7c6fa..24a30e732 100644 --- a/responding/pom.xml +++ b/responding/pom.xml @@ -11,7 +11,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <modules> <module>responding-core</module> diff --git a/responding/responding-core/pom.xml b/responding/responding-core/pom.xml index d72821ade..7956fe2ef 100644 --- a/responding/responding-core/pom.xml +++ b/responding/responding-core/pom.xml @@ -11,7 +11,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>responding</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencies> <dependency> @@ -35,12 +35,12 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol-common</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>alerting-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>com.jayway.jsonpath</groupId> diff --git a/responding/responding-stream/pom.xml b/responding/responding-stream/pom.xml index ede8db67c..bbed52edd 100644 --- a/responding/responding-stream/pom.xml +++ b/responding/responding-stream/pom.xml @@ -9,7 +9,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>responding</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencyManagement> <dependencies> @@ -51,7 +51,7 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol-common</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> <exclusions> <exclusion> <groupId>org.slf4j</groupId> @@ -62,7 +62,7 @@ <dependency> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>responding-core</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </dependency> <dependency> <groupId>org.apache.kafka</groupId> diff --git a/siembol-common/pom.xml b/siembol-common/pom.xml index 43f80e325..a8a0e1eaa 100644 --- a/siembol-common/pom.xml +++ b/siembol-common/pom.xml @@ -9,7 +9,7 @@ <parent> <groupId>uk.co.gresearch.siembol</groupId> <artifactId>siembol</artifactId> - <version>1.3.6-SNAPSHOT</version> + <version>1.3.0</version> </parent> <dependencies> <dependency>