Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[8.x] [Security Solution] `FinalEdit`: Add fields that are common for all rule types (#196642) #199743

Merged
merged 1 commit into from
Nov 12, 2024
Merged

[8.x] [Security Solution] `FinalEdit`: Add fields that are common for all rule types (#196642) #199743

merged 1 commit into from
Nov 12, 2024

Conversation

kibanamachine
Copy link
Contributor

Backport

This will backport the following commits from main to 8.x:

Questions ?

Please refer to the Backport tool documentation

@nikitaindik
[Security Solution] FinalEdit: Add fields that are common for all r…
52aa29c 
…ule types (elastic#196642)

**Partially addresses: elastic#171520
**Is a follow-up to: elastic#196326

This PR enables editing of common fields in the new "Updates" tab of the rule upgrade flyout. The common fields are fields applicable to all rule types.

## Summary
These fields are editable now:
 - `building_block`
 - `description`
 - `false_positives`
 - `investigation_fields`
 - `max_signals`
 - `note`
 - `references`
 - `related_integrations`
 - `required_fields`
 - `risk_score`
 - `risk_score_mapping`
 - `rule_name_override`
 - `rule_schedule`
 - `setup`
 - `severity`
 - `severity_mapping`
 - `tags`
 - `threat`
 - `timeline_template`
 - `timestamp_override`

<img width="2672" alt="Scherm­afbeelding 2024-10-16 om 17 32 06" src="https://github.com/user-attachments/assets/6dd615e2-6e84-4e1f-b674-f42d03f575e7">

### Testing
 - Ensure the `prebuiltRulesCustomizationEnabled` feature flag is enabled.
 - To simulate the availability of prebuilt rule upgrades, downgrade a currently installed prebuilt rule using the `PATCH api/detection_engine/rules` API.
   - Set `version: 1` in the request body to downgrade it to version 1.
   - Modify other rule fields in the request body as needed to test the changes.

(cherry picked from commit 3d3b32f)
@kibanamachine kibanamachine enabled auto-merge (squash) November 12, 2024 10:09
@kibanamachine kibanamachine mentioned this pull request Nov 12, 2024
Merged
@kibanamachine kibanamachine merged commit bb3e3c7 into elastic:8.x Nov 12, 2024
37 checks passed
@elasticmachine
Copy link
Contributor

💚 Build Succeeded

Metrics [docs]

Module Count

Fewer modules leads to a faster build time

id before after diff
securitySolution 6129 6157 +28

Async chunks

Total size of all lazy-loaded chunks that will be downloaded as the user navigates the app

id before after diff
lists 143.9KB 143.9KB -15.0B
securitySolution 13.4MB 13.4MB +13.7KB
total +13.7KB

Public APIs missing exports

Total count of every type that is part of your API that should be exported but is not. This will cause broken links in the API documentation system. Target amount is 0. Run node scripts/build_api_docs --plugin [yourplugin] --stats exports for more detailed information.

id before after diff
@kbn/securitysolution-autocomplete 1 0 -1
Unknown metric groups

ESLint disabled line counts

id before after diff
securitySolution 551 552 +1

Total ESLint disabled count

id before after diff
securitySolution 637 638 +1

cc @nikitaindik

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

@nikitaindik nikitaindik

Labels
backport
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@kibanamachine @elasticmachine @nikitaindik