Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Netskope event collector rewrite #28941

Merged
merged 47 commits into from Aug 25, 2023
Merged

Netskope event collector rewrite #28941

merged 47 commits into from Aug 25, 2023

Conversation

ShahafBenYakir
Copy link
Contributor

@ShahafBenYakir ShahafBenYakir commented Aug 14, 2023
edited

Status

  • In Progress
  • Ready
  • In Hold - (Reason for hold)

Jira ticket

fixes: https://jira-hq.paloaltonetworks.local/browse/CIAC-7622

Description

This is the mew implementation of Netskope event collector using the v2 dataexport

ShahafBenYakir and others added 30 commits February 19, 2023 19:07
@ShahafBenYakir
Temporarily added the following packs to the update_core_packs_list:
0c85fa7 
Core, DemistoRESTAPI, FiltersAndTransformers, Palo_Alto_Networks_WildFire, rasterize
@ShahafBenYakir
Merge branch 'master' of github.com:demisto/content into add_packs_to…
63e3e61 
…_update_core_packs_list
@ShahafBenYakir
Merge branch 'master' of github.com:demisto/content into add_packs_to…
3ea7a87 
…_update_core_packs_list
@ShahafBenYakir
Added all packs to update core list
c81502c
@ShahafBenYakir
Merge branch 'master' into add_packs_to_update_core_packs_list
dac166b
@ShahafBenYakir
Merge branch 'master' of github.com:demisto/content into add_packs_to…
52ae21e 
…_update_core_packs_list
@ShahafBenYakir
Merge branch 'add_packs_to_update_core_packs_list' of github.com:demi…
67836fe 
…sto/content into add_packs_to_update_core_packs_list
@ShahafBenYakir
Merge branch 'master' into add_packs_to_update_core_packs_list
2481530
@ShahafBenYakir
merge from master
6696d49
@ShahafBenYakir
Added al core packs to update_core_packs_list
ff8111d
@ShahafBenYakir
Added new API endpoint
7ed95de
@ShahafBenYakir
Merge branch 'master' of github.com:demisto/content into Netskope_eve…
8505f2c 
…nt_collector_bug
@ShahafBenYakir
Added testing copies
7064f29
@ShahafBenYakir
Merge branch 'master' of github.com:demisto/content into Netskope_eve…
578602a 
…nt_collector_bug
@ShahafBenYakir
changes from testing
53a8e55
@ShahafBenYakir
changes from testing
ae4c5ff
@ShahafBenYakir
changes from testing
be45264
@ShahafBenYakir
Merge branch 'master' into Netskope_event_collector_rewrite
30face2 
# Conflicts:
#	Packs/Netskope/Integrations/NetskopeEventCollector/NetskopeEventCollector.yml
@ShahafBenYakir
Changed default first fecth
fd2f041
@ShahafBenYakir
Added slipping for no wait time
3f70fc0
@ShahafBenYakir
First code change
8e78a0e
@ShahafBenYakir
Fixed description and log
fd97b29
@ShahafBenYakir
Merge branch 'master' of github.com:demisto/content into Netskope_eve…
d9f66ee 
…nt_collector_rewrite
@ShahafBenYakir
Merge branch 'add_packs_to_update_core_packs_list_2' into Netskope_ev…
2490614 
…ent_collector_rewrite

# Conflicts:
#	Tests/Marketplace/core_packs_xpanse_list.json
@ShahafBenYakir
Merge branch 'master' into Netskope_event_collector_rewrite
3a098a7 
# Conflicts:
#	Packs/Base/Scripts/CommonServerPython/CommonServerPython.py
@ShahafBenYakir
UT fixes + mypy
7ec267d
@ShahafBenYakir
Merge branch 'master' of github.com:demisto/content into Netskope_eve…
a760740 
…nt_collector_rewrite
@ShahafBenYakir
Merge branch 'master' of github.com:demisto/content into Netskope_eve…
f633f32 
…nt_collector_rewrite
@ShahafBenYakir
UT fixes + mypy
4d1fe2e
@ShahafBenYakir
Bumped Docker image and added rn
0ae33f4
@ShahafBenYakir ShahafBenYakir marked this pull request as ready for review August 20, 2023 16:22
Shellyber
Shellyber reviewed Aug 21, 2023
View reviewed changes
Copy link
Contributor

@Shellyber Shellyber left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Great Work!

Packs/Netskope/Integrations/NetskopeEventCollector/NetskopeEventCollector.yml Show resolved Hide resolved
Packs/Netskope/Integrations/NetskopeEventCollector/NetskopeEventCollector.yml Outdated Show resolved Hide resolved
Packs/Netskope/Integrations/NetskopeEventCollector/NetskopeEventCollector.py Outdated Show resolved Hide resolved
Packs/Netskope/Integrations/NetskopeEventCollector/NetskopeEventCollector.py Outdated Show resolved Hide resolved
Packs/Netskope/Integrations/NetskopeEventCollector/NetskopeEventCollector.py Show resolved Hide resolved
Packs/Netskope/Integrations/NetskopeEventCollector/README.md
| Trust any certificate (not secure) | | False |
| Use system proxy settings | | False |
| First fetch timestamp (<number> <time unit>, e.g., 12 hours, 7 days) | | False |
| Max events per fetch | The maximum amount of events to retrieve \(up to 30000 events\). | False |
| Max events per fetch | The maximum amount of events to retrieve per each event type. For more information about event types see the help section. | False |
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Don't you want to add the limitations also to the readme?
Under the known limitation section?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

WDYM? I have this https://github.com/demisto/content/blob/c9a58b26fef538397c2572b9836c04ba1f719846/Packs/Netskope/Integrations/NetskopeEventCollector/README.md#fetch-events-limitation

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

My bad - Missed that.
Do we want to add also the API limitation regarding indexation?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Waiting for the Netskope team investigation resolution on this

Packs/Netskope/Integrations/NetskopeEventCollector/NetskopeEventCollector_test.py Outdated Show resolved Hide resolved
@ShahafBenYakir
- Removed first_fetch param
f7f2ce3 
- Added types to perform_data_export parameters
- Removed unused code
@dantavori dantavori removed their request for review August 24, 2023 15:10
@ShahafBenYakir
Copy link
Contributor Author

Validation fails on removed parameters, this is by design as the first fetch is not relevant anymore

@ShahafBenYakir ShahafBenYakir merged commit cda7019 into master Aug 25, 2023
12 of 15 checks passed
@ShahafBenYakir ShahafBenYakir deleted the Netskope_event_collector_rewrite branch August 25, 2023 10:35
xsoar-bot pushed a commit to xsoar-contrib/content that referenced this pull request Oct 5, 2023
@ShahafBenYakir @xsoar-bot
Netskope event collector rewrite (demisto#28941)
6a1e527 
* Temporarily added the following packs to the update_core_packs_list:
Core, DemistoRESTAPI, FiltersAndTransformers, Palo_Alto_Networks_WildFire, rasterize

* Added all packs to update core list

* Added al core packs to update_core_packs_list

* Added new API endpoint

* Added testing copies

* changes from testing

* changes from testing

* changes from testing

* Changed default first fecth

* Added slipping for no wait time

* First code change

* Fixed description and log

* UT fixes + mypy

* UT fixes + mypy

* Bumped Docker image and added rn

* Formatting and typos

* Fixed honor_rate_limit and added ut

* Flake 8 fix

* Added more UT

* revert core list change

* Enhanced docs

* Small UT fixes

* Removed is_command variable

* Added docs
Fixed UT

* changes rn version

* - Removed first_fetch param
- Added types to perform_data_export parameters
- Removed unused code

* lint fixes

* lint fixes
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Shellyber Shellyber Shellyber approved these changes

Assignees
No one assigned
Labels
docs-approved
Projects
None yet
Milestone
No milestone
2 participants
@ShahafBenYakir @Shellyber