demisto · Ni-Knight · May 8, 2023 · May 8, 2023 · May 8, 2023 · May 8, 2023
diff --git a/Packs/TIM_Processing/.pack-ignore b/Packs/TIM_Processing/.pack-ignore
@@ -58,3 +58,5 @@ ignore=PB115
 [file:playbook-TIM_-_Run_Enrichment_For_All__Indicator_Types.yml]
 ignore=PB110
 
+[file:playbook-TIM_-_Run_Enrichment_For_IP_Indicators_6_0_0.yml]
+ignore=RM109
diff --git a/Packs/TIM_Processing/Playbooks/playbook-TIM_-_Run_Enrichment_For_IP_Indicators_6_0_0.yml b/Packs/TIM_Processing/Playbooks/playbook-TIM_-_Run_Enrichment_For_IP_Indicators_6_0_0.yml
@@ -409,7 +409,7 @@ tasks:
                       iscontext: true
                     right:
                       value:
-                        simple: "0"
+                        simple: "2"
                 accessor: value
             iscontext: true
     view: |-

diff --git a/...ssing/Playbooks/playbook-TIM_-_Run_Enrichment_For_IP_Indicators_6_0_0_README.md b/...ssing/Playbooks/playbook-TIM_-_Run_Enrichment_For_IP_Indicators_6_0_0_README.md
@@ -0,0 +1,48 @@
+This playbook processes indicators by enriching indicators
+based on the indicator feed's reputation, as specified in the playbook
+inputs. This playbook needs to be used with caution as it might use up the user
+enrichment integration's API license when running enrichment for large amounts of
+indicators.
+
+## Dependencies
+
+This playbook uses the following sub-playbooks, integrations, and scripts.
+
+### Sub-playbooks
+
+This playbook does not use any sub-playbooks.
+
+### Integrations
+
+This playbook does not use any integrations.
+
+### Scripts
+
+This playbook does not use any scripts.
+
+### Commands
+
+* enrichIndicators
+
+## Playbook Inputs
+
+---
+
+| **Name** | **Description** | **Default Value** | **Required** |
+| --- | --- | --- | --- |
+| Indicator Query | Indicators matching the indicator query will be used as playbook input |  | Optional |
+| EnrichBadIndicators | Enter a value of true to enrich indicators whose reputation from the feed is bad. |  | Optional |
+| EnrichGoodIndicators | Enter a value of true to enrich indicators whose reputation from the feed is good. |  | Optional |
+| EnrichSuspiciousIndicators | Enter a value of true to enrich indicators whose reputation from the feed is suspicious. |  | Optional |
+| EnrichUnknownIndicators | Enter a value of true to enrich indicators whose reputation from the feed is unknown. |  | Optional |
+
+## Playbook Outputs
+
+---
+There are no outputs for this playbook.
+
+## Playbook Image
+
+---
+
+![TIM - Run Enrichment For IP Indicators](../doc_files/TIM_-_Run_Enrichment_For_IP_Indicators.png)
diff --git a/Packs/TIM_Processing/ReleaseNotes/1_1_17.md b/Packs/TIM_Processing/ReleaseNotes/1_1_17.md
@@ -0,0 +1,6 @@
+
+#### Playbooks
+
+##### TIM - Run Enrichment For IP Indicators
+
+- Fixed an issue in the task "Are there suspicious results?" (#134) which was filtering the wrong score value (0 and not 2).
diff --git a/Packs/TIM_Processing/pack_metadata.json b/Packs/TIM_Processing/pack_metadata.json
@@ -2,7 +2,7 @@
     "name": "TIM - Indicator Auto-Processing",
     "description": "Too many threat feeds? This Content Pack automates the processing of indicators at scale, significantly reducing busywork for your analysts.",
     "support": "xsoar",
-    "currentVersion": "1.1.16",
+    "currentVersion": "1.1.17",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",