-
Notifications
You must be signed in to change notification settings - Fork 392
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
updated Github Secret Scanning fingerprint with resolved_at #3802
Conversation
Pinging @elastic/security-external-integrations (Team:Security-External Integrations) |
🌐 Coverage report
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Changes look okay. But the test data does not test the change made. It's missing the resolved_at
field and value.
@r00tu53r Any suggestion where I can add this test? Pipeline tests doesn't seem to contain |
@kcreddy am curious why compute hash to assign it as the document id ? Why not use what elasticsearch generates ? |
@r00tu53r The reason why we are using |
I tested that |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Requesting a change for performance
packages/github/data_stream/secret_scanning/elasticsearch/ingest_pipeline/default.yml
Outdated
Show resolved
Hide resolved
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM
What does this PR do?
Fixes bug in Github Secret Scanning alerts where events are not getting ingested into ES when an alert is resolved.
resolved_at
timestamp intofingerprint
processor to ingest the resolved eventsChecklist
changelog.yml
file.Related issues