Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Default Pack - small playbook fix and readme update #26284

Merged
merged 11 commits into from May 9, 2023
Merged

Default Pack - small playbook fix and readme update #26284

merged 11 commits into from May 9, 2023

Conversation

idovandijk
Copy link
Contributor

Status

Ready

Related Issues

fixes: https://jira-hq.paloaltonetworks.local/browse/CIAC-6475

Description

  • Fixed an issue where the playbook did not set an initial value for the Selected Indicators field, which would result in the field not showing in the layout by default, which could confuse users that want to use the field to select indicators for tagging.
  • Updated the pack README to feature the XSOAR 8.2+ content of the Default pack.
  • Fix the reference link in the pack README to point to the Default article.

Minimum version of Cortex XSOAR

  • 6.0.0
  • 6.1.0
  • 6.2.0
  • 6.5.0

Does it break backward compatibility?

No

Must have

  • Tests
  • Documentation

ShirleyDenkberg
ShirleyDenkberg reviewed May 4, 2023
View reviewed changes
Packs/DefaultPlaybook/README.md Outdated Show resolved Hide resolved
Packs/DefaultPlaybook/README.md
@@ -1,14 +1,26 @@
Sometimes you may have an incident, or just some data at hand, that does not fall into any specific category. When you simply create an incident from scratch or just want to get more information about an indicator without performing a full investigation, we recommend using our Default playbook.

This pack provides you with the Default playbook which automates the much-needed core steps of enrichment and severity calculation for any kind of incident.
This pack provides you with the Default playbook and layout, which help automate the core steps of every investigation.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
This pack provides you with the Default playbook and layout, which help automate the core steps of every investigation.
This pack provides you with the Default playbook and layout, which helps automate the core steps of every investigation.

@ShirleyDenkberg
Copy link
Contributor

@michalgold @tomer-pan @AdiPeret Doc review completed.

@idovandijk @ShirleyDenkberg
Update Packs/DefaultPlaybook/README.md
d5f151a 
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
AdiPeret
AdiPeret approved these changes May 4, 2023
View reviewed changes
Copy link
Contributor

@AdiPeret AdiPeret left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Following our session, changes looks good

@idovandijk idovandijk requested a review from ostolero as a code owner May 4, 2023 13:41
@idovandijk idovandijk merged commit c7f228f into master May 9, 2023
13 checks passed
@idovandijk idovandijk deleted the default_pack_small_fixes branch May 9, 2023 08:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ShirleyDenkberg ShirleyDenkberg ShirleyDenkberg left review comments

@AdiPeret AdiPeret AdiPeret approved these changes

@michalgold michalgold Awaiting requested review from michalgold

@tomer-pan tomer-pan Awaiting requested review from tomer-pan

@ostolero ostolero Awaiting requested review from ostolero

Assignees

@ShirleyDenkberg ShirleyDenkberg

Labels
docs-approved
Projects
None yet
Milestone
No milestone
3 participants
@idovandijk @ShirleyDenkberg @AdiPeret