New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[ASM] EXPANDR-1576 - Remediaiton guidance API changes #30374
[ASM] EXPANDR-1576 - Remediaiton guidance API changes #30374
Conversation
Thank you for your contribution. Your generosity and caring are unrivaled! Make sure to register your contribution by filling the Contribution Registration form, so our content wizard @MosheEichler will know the proposed changes are ready to be reviewed. |
@johnnywilkes @BigEasyJ Please review when you guys get a chance |
@ShirleyDenkberg , can you please review? |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@capanw , some small things to fix
...urfaceManagement/Integrations/CortexAttackSurfaceManagement/CortexAttackSurfaceManagement.py
Outdated
Show resolved
Hide resolved
...rfaceManagement/Integrations/CortexAttackSurfaceManagement/CortexAttackSurfaceManagement.yml
Show resolved
Hide resolved
...urfaceManagement/Integrations/CortexAttackSurfaceManagement/CortexAttackSurfaceManagement.py
Outdated
Show resolved
Hide resolved
...urfaceManagement/Integrations/CortexAttackSurfaceManagement/CortexAttackSurfaceManagement.py
Outdated
Show resolved
Hide resolved
...urfaceManagement/Integrations/CortexAttackSurfaceManagement/CortexAttackSurfaceManagement.py
Outdated
Show resolved
Hide resolved
Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md
Outdated
Show resolved
Hide resolved
Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_ASM_Alert.yml
Show resolved
Hide resolved
Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_ASM_Alert.yml
Outdated
Show resolved
Hide resolved
Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_ASM_Alert.yml
Outdated
Show resolved
Hide resolved
Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_ASM_Alert.yml
Outdated
Show resolved
Hide resolved
…viceNow_Notification_README.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
…urfaceManagement/README.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
…a_Notification_README.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
…urfaceManagement/README.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
…urfaceManagement/README.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
…urfaceManagement/README.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
…a_Notification.yml Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
…urfaceManagement/README.md Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
…_Alert.yml Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
…il_Notification.yml Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@capanw , thanks for making the changes
@@ -306,7 +260,12 @@ inputs: | |||
required: true | |||
description: Body of the notification (email or ticket) sent to the potential service owner. | |||
playbookInputQuery: | |||
- key: RemediationGuidance | |||
value: {} | |||
required: true |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Does this need to be required?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
In the "Cortex ASM - Remediation Guidance" playbook, we set the RemediationGuidance key regardless if the Remediation guidance is available or not. So, we will always have this key set. Hence, made this required for the Email/Jira/ServiceNow playbooks
@@ -283,7 +237,12 @@ inputs: | |||
required: true | |||
description: The Jira project key to associate with the issue. | |||
playbookInputQuery: | |||
- key: RemediationGuidance | |||
value: {} | |||
required: true |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Does this need to be required?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Same as above
@@ -258,7 +213,12 @@ inputs: | |||
required: true | |||
description: Body of the notification (email or ticket) sent to the potential service owner. | |||
playbookInputQuery: | |||
- key: RemediationGuidance | |||
value: {} | |||
required: true |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Does this need to be required?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Same as above
dfed641
into
demisto:contrib/capanw_EXPANDR-1576
* Remediaiton guidance API changes * Release notes updates * Fixes * Update readme * Misc changes to release notes * Misc changes * Update docker tags * Updated results and response files * Reverting few changes * Updated logic * Updated wording on inputs * Misc changes * Updated release version * Udpated if logic condition * Description changes * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_ServiceNow_Notification_README.md * Update Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_8.md * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Jira_Notification_README.md * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Jira_Notification.yml * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_ASM_Alert.yml * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Email_Notification.yml * Update Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_8.md * Update Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_8.md * Read me updates --------- Co-authored-by: Chait A <112722030+capanw@users.noreply.github.com> Co-authored-by: John <40349459+BigEasyJ@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>
* Remediaiton guidance API changes * Release notes updates * Fixes * Update readme * Misc changes to release notes * Misc changes * Update docker tags * Updated results and response files * Reverting few changes * Updated logic * Updated wording on inputs * Misc changes * Updated release version * Udpated if logic condition * Description changes * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_ServiceNow_Notification_README.md * Update Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_8.md * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Jira_Notification_README.md * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Jira_Notification.yml * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_ASM_Alert.yml * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Email_Notification.yml * Update Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_8.md * Update Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_8.md * Read me updates --------- Co-authored-by: Chait A <112722030+capanw@users.noreply.github.com> Co-authored-by: John <40349459+BigEasyJ@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>
* Remediaiton guidance API changes * Release notes updates * Fixes * Update readme * Misc changes to release notes * Misc changes * Update docker tags * Updated results and response files * Reverting few changes * Updated logic * Updated wording on inputs * Misc changes * Updated release version * Udpated if logic condition * Description changes * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_ServiceNow_Notification_README.md * Update Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_8.md * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Jira_Notification_README.md * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Jira_Notification.yml * Update Packs/CortexAttackSurfaceManagement/Integrations/CortexAttackSurfaceManagement/README.md * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_ASM_Alert.yml * Update Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_Email_Notification.yml * Update Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_8.md * Update Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_8.md * Read me updates --------- Co-authored-by: Chait A <112722030+capanw@users.noreply.github.com> Co-authored-by: John <40349459+BigEasyJ@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>
Contributing to Cortex XSOAR Content
Make sure to register your contribution by filling the contribution registration form
The Pull Request will be reviewed only after the contribution registration form is filled.
Status
Related Issues
https://jira-dc.paloaltonetworks.com/browse/EXPANDR-1576
Description
Makes changes to use Remediation Guidance API.
Must have