[Security Solution][Alert details] - bring back last alert status change to flyout #205224
+187
−0
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
PhilippeOberti
added
v9.0.0
release_note:feature
|
Pinging @elastic/security-threat-hunting-investigations (Team:Threat Hunting:Investigations) |
nastasha-solomon
approved these changes
Jan 2, 2025
michaelolo24
reviewed
Jan 2, 2025
| <FormattedMessage | ||
| id="xpack.securitySolution.flyout.right.about.status.statusHistoryDetails" | ||
| defaultMessage="Alert status updated by {user} on {date}" | ||
| values={{ |
There was a problem hiding this comment.
nit...since there isn't a whole nested tree of components here, but probably best to memoize this entire object or pull out the new Date(statusUpdatedAt) so it's not calculated in the render
There was a problem hiding this comment.
yeah, these are annoying because I have to do the memoization before the return null so I have to do the check there as well... done here!
michaelolo24
approved these changes
Jan 2, 2025
PhilippeOberti
force-pushed
the
alert-details-latest-status-change
branch
from
1a99cc5 to
6df2909
Compare
PhilippeOberti
force-pushed
the
alert-details-latest-status-change
branch
from
6df2909 to
5e8c28c
Compare
💚 Build Succeeded
Metrics [docs]Module Count
Async chunks
History
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Summary
Over a year ago, this PR added some information to the alert details flyout, to show when an alert's status (
closed,openoraknowledged) had been modified last and by which user.Shortly after, this follow up PR removed the UI from the alert details flyout, as the information wasn't extremely important and was taking some valuable vertical space, pushing down below the
Highlighted fieldssection, that users were finding very important.A few months later, we added the ability to persist which of the top sections (
About,Investigation,Visualizations,InsightsandResponse) were collapsed or expanded. That way the user wouldn't have to always collapse or expand sections they would often don't need.This PR brings back the alert's last status changes to the
Aboutsection, as the vertical space is no longer a big issues, because users can now collapse the entireAboutsection.If data is not present, the last change UI is not shown
If the correct data is shown:
How to test
AboutsectionChecklist