RecordedFutureV3 pack updates

[recordedfuture-dev]

Contributing to Cortex XSOAR Content

Make sure to register your contribution by filling the contribution registration form

The Pull Request will be reviewed only after the contribution registration form is filled.

Status

• In Progress
• Ready
• In Hold - (Reason for hold)

Related Issues

Description

Recorded Future Alerts

• Added the rf-alert-lookup command to retrieve full Classic Alert and Playbook Alert details.
• Improved rf-alert-images to fail early with a clear error when run from the Playground War Room instead of an incident War Room.

Must have

• Tests
• Documentation

relates: https://jira-dc.paloaltonetworks.com/browse/CIAC-16362

[content-bot]

Thank you for your contribution. Your generosity and caring are unrivaled! Make sure to register your contribution by filling the Contribution Registration form, so our content wizard @kamalq97 will know the proposed changes are ready to be reviewed.
For your convenience, here is a link to the contributions SLAs document.

[content-bot]

Hi @recordedfuture-dev, thanks for contributing to the XSOAR marketplace. To receive credit for your generous contribution please follow this link.

[content-bot]

🤖 AI-Powered Code Review Available

Hi @kamalq97, you can leverage AI-powered code review to assist with this PR!

Available Commands:

• @marketplace-ai-reviewer start review - Initiate a full AI code review
• @marketplace-ai-reviewer re-review - Incremental review for new commits

[marketplace-ai-reviewer]

🤖 Analysis started. Please wait for results...

[content-bot]

For the Reviewer: Trigger build request has been accepted for this contribution PR.

[content-bot]

For the Reviewer: Successfully created a pipeline in GitLab with url: https://gitlab.xdr.pan.local/xdr/cortex-content/content/-/pipelines/7897191

[content-bot]

Validate summary
The following errors were thrown as a part of this pr: RM110.
The following errors can be ignored: RM110.
If the AG100 validation in the pre-commit GitHub Action fails, the pull request cannot be force-merged.

Verdict: PR can be force merged from validate perspective? ❌

[marketplace-ai-reviewer]

🤖 AI Review Disclaimer

This review was generated by an AI-powered tool and may contain inaccuracies. Please be advised, and we extend our sincere apologies for any inconvenience this may cause.

[marketplace-ai-reviewer]

Thanks for contributing to the Recorded Future integration! I've reviewed your PR and have a few suggestions to help polish the new alert lookup functionality.

Please make sure to wrap the command response in a CommandResults object, add the missing unit tests for the new command, and update the YML outputs and README to match our formatting standards.

Let me know if you have any questions!

@kamalq97 please review and approve the results generated by the AI Reviewer by responding 👍 on this comment.

[MosheEichler]

Hi @recordedfuture-dev,
Thank you for your contribution!
Good work :)

Please go overt the review comments and fix them

Please feel free to reach out to me with any questions - I'm available here or on slack :)
Thanks again

[recordedfuture-dev]

Hi there, @MosheEichler !

I've addressed all the comments (either updated the code, or explained my reasoning in the replies)

Please take a look!

Thank you!

[aommm]

Hi @MosheEichler, could you take a look at this?

[MosheEichler]

Hi @aommm, @recordedfuture-dev the code looks good!

We're ready for a demo. Please check this page, and let me know when you're available for one over DFIR.
Feel free also to send me a recording of a demo.

[aommm]

Hi @MosheEichler, I've sent you a demo video over slack. Please let me know if you require anything further!

[github-actions]

Thank you for your contribution. Your external PR has been merged and the changes are now included in an internal PR for further review. The internal PR will be merged to the master branch within 3 business days.