From 20ad9ddd3f78f074a629faa561be6a614c263630 Mon Sep 17 00:00:00 2001 From: Kaarina Tungseth Date: Mon, 9 Dec 2024 12:18:59 -0600 Subject: [PATCH 1/7] Adds 9-Dec serverless changelog --- serverless/serverless-changelog.asciidoc | 45 ++++++++++++++++++++++++ 1 file changed, 45 insertions(+) diff --git a/serverless/serverless-changelog.asciidoc b/serverless/serverless-changelog.asciidoc index 5c237a6a0a..aa84e76bff 100644 --- a/serverless/serverless-changelog.asciidoc +++ b/serverless/serverless-changelog.asciidoc @@ -1,10 +1,55 @@ [[serverless-changelog]] [chapter] = Serverless changelog +++++ +Changelog +++++ For serverless API changes, refer to https://www.elastic.co/docs/api/changes[APIs Changelog]. + For serverless changes in Cloud Console, refer to https://www.elastic.co/guide/en/cloud/current/ec-release-notes.html[Elasticsearch Service Documentation: Release notes]. +[discrete] +[[serverless-changelog-12092024]] +== December 9, 2024 + +[discrete] +[[features-enhancements-12092024]] +==== Features and enhancements +* Elastic Observability Serverless adds a new sub-feature for managing private locations ({kibana-pull}201100[#201100]). +* Elastic Observability Serverless adds the ability to configure SLO advanced settings from the UI ({kibana-pull}200822[#200822]). +* Elastic Security Serverless adds support for suppressing EQL sequence alerts ({kibana-pull}189725[#189725]). +* Elastic Security Serverless adds a `/trained_models_list` endpoint to retrieve complete data for the Trained Model UI ({kibana-pull}200977[#200977]). +* Machine Learning adds an action to include log rate analysis in a case ({kibana-pull}199694[#199694]). +* Machine Learning enhances the Kibana API to optimize trained models ({kibana-pull}201549[#201549]). + +[discrete] +[[fixes-deploy@1733724770]] +==== Fixes +* Fixes Slack API connectors not being displayed under the Slack connector type when adding a new connector to a rule in Alerting ({kibana-pull}202315[#202315]). +* Fixes point visibility regression in dashboard visualizations ({kibana-pull}202358[#202358]). +* Improves help text for creator and view count features on the Dashboard listing page ({kibana-pull}202488[#202488]). +* Highlights matching field values when performing a KQL search on a keyword field in Discover ({kibana-pull}201952[#201952]). +* Adds support for the *Inspect* option in saved search embeddables in Discover ({kibana-pull}202947[#202947]). +* Enables the ability to clear user-specific system prompts in Elastic Observability Serverless ({kibana-pull}202279[#202279]). +* Fixes an error when opening the rule flyout in Elastic Observability Serverless ({kibana-pull}202386[#202386]). +* Improves handling of Opsgenie as the default connector in Elastic Observability Serverless ({kibana-pull}201923[#201923]). +* Fixes issues with actions on charts in Elastic Observability Serverless ({kibana-pull}202443[#202443]). +* Adds a flyout to the table view in Infrastructure Inventory in Elastic Observability Serverless ({kibana-pull}202646[#202646]). +* Fixes service names with spaces not being URL-encoded properly for {{context.viewInAppUrl}} in Elastic Observability Serverless ({kibana-pull}202890[#202890]). +* Enhances access query logic to handle user ID and name conditions in Elastic Observability Serverless ({kibana-pull}202833[#202833]). +* Fixes an APM rule error message when a KQL filter is invalid in Elastic Observability Serverless ({kibana-pull}203096[#203096]). +* Restricts and rejects CEF logs in automatic import and redirects them to the CEF integration in Elastic Security Serverless ({kibana-pull}201792[#201792]). +* Updates the copy of the install rules title and message in Elastic Security Serverless ({kibana-pull}202226[#202226]). +* Clears errors on the second entity engine initialization API call in Elastic Security Serverless ({kibana-pull}202903[#202903]). +* Restricts unsupported log formats in Elastic Security Serverless ({kibana-pull}202994[#202994]). +* Removes errors related to Enterprise Search nodes in Elasticsearch Serverless ({kibana-pull}202437[#202437]). +* Ensures consistency in web crawler naming in Elasticsearch Serverless ({kibana-pull}202738[#202738]). +* Fixes editor cursor jumpiness in ES|QL ({kibana-pull}202389[#202389]). +* Implements rollover of data streams on subobject mapper exceptions in Fleet ({kibana-pull}202689[#202689]). +* Fixes trained models to retrieve up to 10,000 models when spaces are synced in Machine Learning ({kibana-pull}202712[#202712]). +* Fixes a Log Rate Analysis embeddable error on the Alerts page in AiOps ({kibana-pull}203093[#203093]). + [discrete] [[serverless-changelog-12032024]] == December 3, 2024 From c4e9cd791a8c6d33763862e7c0ae68c583e822ab Mon Sep 17 00:00:00 2001 From: Kaarina Tungseth Date: Mon, 9 Dec 2024 13:05:09 -0600 Subject: [PATCH 2/7] Adds elastic/docs as codeowner --- .github/CODEOWNERS | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS index 0be5d9ddff..fb6123831e 100644 --- a/.github/CODEOWNERS +++ b/.github/CODEOWNERS @@ -1,2 +1,2 @@ -* @elastic/platform-docs +* @elastic/docs /.github/workflows/co-docs-builder.yml @elastic/docs-engineering \ No newline at end of file From 13b0d36068e840baecd81b2b6555942f8709578d Mon Sep 17 00:00:00 2001 From: Kaarina Tungseth Date: Mon, 9 Dec 2024 13:10:17 -0600 Subject: [PATCH 3/7] Fixes formatting --- serverless/serverless-changelog.asciidoc | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/serverless/serverless-changelog.asciidoc b/serverless/serverless-changelog.asciidoc index aa84e76bff..90df29f14c 100644 --- a/serverless/serverless-changelog.asciidoc +++ b/serverless/serverless-changelog.asciidoc @@ -15,7 +15,7 @@ For serverless changes in Cloud Console, refer to https://www.elastic.co/guide/e [discrete] [[features-enhancements-12092024]] -==== Features and enhancements +=== Features and enhancements * Elastic Observability Serverless adds a new sub-feature for managing private locations ({kibana-pull}201100[#201100]). * Elastic Observability Serverless adds the ability to configure SLO advanced settings from the UI ({kibana-pull}200822[#200822]). * Elastic Security Serverless adds support for suppressing EQL sequence alerts ({kibana-pull}189725[#189725]). @@ -24,8 +24,8 @@ For serverless changes in Cloud Console, refer to https://www.elastic.co/guide/e * Machine Learning enhances the Kibana API to optimize trained models ({kibana-pull}201549[#201549]). [discrete] -[[fixes-deploy@1733724770]] -==== Fixes +[[fixes-12092020]] +=== Fixes * Fixes Slack API connectors not being displayed under the Slack connector type when adding a new connector to a rule in Alerting ({kibana-pull}202315[#202315]). * Fixes point visibility regression in dashboard visualizations ({kibana-pull}202358[#202358]). * Improves help text for creator and view count features on the Dashboard listing page ({kibana-pull}202488[#202488]). From 0f99e923dafdf5d82ee068e628041631f00e440b Mon Sep 17 00:00:00 2001 From: Kaarina Tungseth Date: Mon, 9 Dec 2024 13:52:17 -0600 Subject: [PATCH 4/7] Adds short description --- serverless/serverless-changelog.asciidoc | 2 ++ 1 file changed, 2 insertions(+) diff --git a/serverless/serverless-changelog.asciidoc b/serverless/serverless-changelog.asciidoc index 90df29f14c..32a1ef2141 100644 --- a/serverless/serverless-changelog.asciidoc +++ b/serverless/serverless-changelog.asciidoc @@ -5,6 +5,8 @@ Changelog ++++ +Review the latest improvements and changes to Elastic Cloud Serverless. + For serverless API changes, refer to https://www.elastic.co/docs/api/changes[APIs Changelog]. For serverless changes in Cloud Console, refer to https://www.elastic.co/guide/en/cloud/current/ec-release-notes.html[Elasticsearch Service Documentation: Release notes]. From 7a5d02a877aa19b9c0ee970ecb53062b16378c31 Mon Sep 17 00:00:00 2001 From: Kaarina Tungseth Date: Mon, 9 Dec 2024 15:00:14 -0600 Subject: [PATCH 5/7] Update .github/CODEOWNERS Co-authored-by: shainaraskas <58563081+shainaraskas@users.noreply.github.com> --- .github/CODEOWNERS | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS index fb6123831e..f1a7728201 100644 --- a/.github/CODEOWNERS +++ b/.github/CODEOWNERS @@ -1,2 +1,3 @@ -* @elastic/docs -/.github/workflows/co-docs-builder.yml @elastic/docs-engineering \ No newline at end of file +* @elastic/platform-docs +/.github/workflows/co-docs-builder.yml @elastic/docs-engineering +/serverless/serverless-changelog.asciidoc @elastic/docs \ No newline at end of file From b29622628489b756203b4dee8caf3a8837692772 Mon Sep 17 00:00:00 2001 From: Kaarina Tungseth Date: Tue, 10 Dec 2024 10:42:11 -0600 Subject: [PATCH 6/7] Adds known issue page --- .../index-serverless-changelog.asciidoc | 10 +++ serverless/index.asciidoc | 2 +- .../{ => pages}/serverless-changelog.asciidoc | 7 --- .../pages/serverless-known-issues.asciidoc | 62 +++++++++++++++++++ 4 files changed, 73 insertions(+), 8 deletions(-) create mode 100644 serverless/index-serverless-changelog.asciidoc rename serverless/{ => pages}/serverless-changelog.asciidoc (98%) create mode 100644 serverless/pages/serverless-known-issues.asciidoc diff --git a/serverless/index-serverless-changelog.asciidoc b/serverless/index-serverless-changelog.asciidoc new file mode 100644 index 0000000000..ea22c686b0 --- /dev/null +++ b/serverless/index-serverless-changelog.asciidoc @@ -0,0 +1,10 @@ +[[serverless-changelog]] +== Serverless changelog +++++ +Changelog +++++ + +include::./pages/serverless-changelog.asciidoc[leveloffset=+2] + +include::./pages/serverless-known-issues.asciidoc[leveloffset=+2] + diff --git a/serverless/index.asciidoc b/serverless/index.asciidoc index 0718684cd7..a12b48a16e 100644 --- a/serverless/index.asciidoc +++ b/serverless/index.asciidoc @@ -19,4 +19,4 @@ include::./index-serverless-elasticsearch.asciidoc[] include::{observability-serverless}/index.asciidoc[] include::{security-serverless}/index.asciidoc[] include::./index-serverless-project-settings.asciidoc[] -include::./serverless-changelog.asciidoc[] +include::./index-serverless-changelog.asciidoc[] diff --git a/serverless/serverless-changelog.asciidoc b/serverless/pages/serverless-changelog.asciidoc similarity index 98% rename from serverless/serverless-changelog.asciidoc rename to serverless/pages/serverless-changelog.asciidoc index 32a1ef2141..273287d247 100644 --- a/serverless/serverless-changelog.asciidoc +++ b/serverless/pages/serverless-changelog.asciidoc @@ -1,10 +1,3 @@ -[[serverless-changelog]] -[chapter] -= Serverless changelog -++++ -Changelog -++++ - Review the latest improvements and changes to Elastic Cloud Serverless. For serverless API changes, refer to https://www.elastic.co/docs/api/changes[APIs Changelog]. diff --git a/serverless/pages/serverless-known-issues.asciidoc b/serverless/pages/serverless-known-issues.asciidoc new file mode 100644 index 0000000000..d07131358e --- /dev/null +++ b/serverless/pages/serverless-known-issues.asciidoc @@ -0,0 +1,62 @@ +[[serverless-known-issues]] += Serverless known issues +++++ +Known issues +++++ + +[discrete] +[[known-issues-201820]] +== The {sec-serverless} Exceptions tab fails to load with newline characters in comments + +On December 5, 2024, it was discovered the **Exceptions** tab fails to load when exceptions contain comments with newline characters (`\n`). For details, refer to ({kibana-issue}201820[#201820]). + +*Custom rules workaround* + + +. Go to the **Rules** page, then <> the rule or rules with the exception lists with newline characters. +. Open the `.ndjson` file, then remove the newline characters from the `comments`. +. Go to the **Rules** page, then <> the rules. Make sure to select **Overwrite existing exception lists with conflicting "list_id"**. + +*Prebuilt rules workaround* + + +. For the exception lists with newline characters, fetch the IDs associated with the rule. +.. Go to the **Rules** page. +.. Open the rule details, then go to the page URL. +.. Copy the URL `id`. For example, in the http://host.name/app/security/rules/id/167a5f6f-2148-4792-8226-b5e7a58ef46e URL, copy the `167a5f6f-2148-4792-8226-b5e7a58ef46e` `id`. +.. To specify the `id` when fetching the rule details, use the {api-kibana-serverless}/operation/operation-readrule[retrieve a detection rule API]. For example: ++ +[source,console] +---- +curl -H 'Authorization: ApiKey API_KEY_HERE' -H 'kbn-xsrf: true' -H 'elastic-api-version: 2023-10-31' KIBANA_URL/api/detection_engine/rules?id=167a5f6f-2148-4792-8226-b5e7a58ef46e +---- ++ +The JSON response contains the `id`, `list_id`, and `namespace_type` values in the `exceptions_list` key: ++ +[source,console] +---- +{ + "id": "167a5f6f-2148-4792-8226-b5e7a58ef46e", + "exceptions_list": [ + { + "id": "490525a2-eb66-4320-95b5-88bdd1302dc4", + "list_id": "f75aae6f-0229-413f-881d-81cb3abfbe2d", + "namespace_type": "single" + } + ] +} +---- ++ +. To retrieve the exception list with newline characters, use the export exceptions API with the `id`, `list_id`, and `namespace_type` values: ++ +[source,console] +---- +curl -XPOST -H 'Authorization: ApiKey API_KEY_HERE' -H 'kbn-xsrf: true' -H 'elastic-api-version: 2023-10-31' 'KIBANA_URL/api/exception_lists/_export?list_id=f75aae6f-0229-413f-881d-81cb3abfbe2d&id=490525a2-eb66-4320-95b5-88bdd1302dc4&namespace_type=single' -o list.ndjson +---- ++ +. Open the `.ndjson` file, then remove the newline characters from the `comments[].comment` values. +. Go to the <> page. +. To re-import the exception list, use the **Import exception lists** option. ++ +Since the exception list exists, the import fails, and the option to overwrite the existing list appears. +. Select the overwrite option, then resubmit the request to import the exception list. + +NOTE: To export and re-import exceptions for the Elastic Endpoint rule, use the <> page. \ No newline at end of file From 882898e39ad3b006172845fa9c774dae6f199bdb Mon Sep 17 00:00:00 2001 From: Kaarina Tungseth Date: Tue, 10 Dec 2024 12:03:18 -0600 Subject: [PATCH 7/7] Fixes known issue formatting --- serverless/pages/serverless-known-issues.asciidoc | 10 ++++++---- 1 file changed, 6 insertions(+), 4 deletions(-) diff --git a/serverless/pages/serverless-known-issues.asciidoc b/serverless/pages/serverless-known-issues.asciidoc index d07131358e..50417fe963 100644 --- a/serverless/pages/serverless-known-issues.asciidoc +++ b/serverless/pages/serverless-known-issues.asciidoc @@ -6,9 +6,9 @@ [discrete] [[known-issues-201820]] -== The {sec-serverless} Exceptions tab fails to load with newline characters in comments +== Exceptions tab fails to load -On December 5, 2024, it was discovered the **Exceptions** tab fails to load when exceptions contain comments with newline characters (`\n`). For details, refer to ({kibana-issue}201820[#201820]). +On December 5, 2024, it was discovered the {sec-serverless} **Exceptions** tab fails to load when exceptions contain comments with newline characters (`\n`). For details, refer to ({kibana-issue}201820[#201820]). *Custom rules workaround* + @@ -21,8 +21,10 @@ On December 5, 2024, it was discovered the **Exceptions** tab fails to load when . For the exception lists with newline characters, fetch the IDs associated with the rule. .. Go to the **Rules** page. .. Open the rule details, then go to the page URL. -.. Copy the URL `id`. For example, in the http://host.name/app/security/rules/id/167a5f6f-2148-4792-8226-b5e7a58ef46e URL, copy the `167a5f6f-2148-4792-8226-b5e7a58ef46e` `id`. -.. To specify the `id` when fetching the rule details, use the {api-kibana-serverless}/operation/operation-readrule[retrieve a detection rule API]. For example: +.. Copy the URL id string. ++ +For example, in the http://host.name/app/security/rules/id/167a5f6f-2148-4792-8226-b5e7a58ef46e URL, copy the `167a5f6f-2148-4792-8226-b5e7a58ef46e` id string. +.. To specify the `id` when fetching the rule details, use the {api-kibana-serverless}/operation/operation-readrule[retrieve a detection rule API]: + [source,console] ----