Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update CSP mapping fields #4016

Merged
merged 1 commit into from
Sep 13, 2022
Merged

Update CSP mapping fields #4016

merged 1 commit into from
Sep 13, 2022

Conversation

olegsu
Copy link
Contributor

@olegsu olegsu commented Aug 17, 2022

What does this PR do?

Update the mapping CSP uses based on elastic/cloudbeat#346

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.

Author's Checklist

  • [ ]

How to test this PR locally

Related issues

Screenshots

@olegsu olegsu added enhancement New feature or request deprecation labels Aug 17, 2022
@olegsu olegsu requested a review from a team as a code owner August 17, 2022 12:14
@elasticmachine
Copy link

elasticmachine commented Aug 17, 2022
edited
Loading

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview preview

Expand to view the summary

Build stats

  • Start Time: 2022-09-12T10:29:36.982+0000

  • Duration: 14 min 19 sec

Test stats 🧪

Test Results
Failed 0
Passed 2
Skipped 0
Total 2

🤖 GitHub comments

To re-run your PR in the CI, just comment with:

  • /test : Re-trigger the build.

@eyalkraft
Copy link
Contributor

Note that the change log and the manifest must be updated as well
see for example 015e88d

@andrewkroh andrewkroh added the Integration:cloud_security_posture Security Posture Management label Aug 17, 2022
@olegsu olegsu force-pushed the csp-findings-mapping branch 2 times, most recently from 8c1ebc6 to 5e238fd Compare August 17, 2022 15:39
@elasticmachine
Copy link

elasticmachine commented Aug 17, 2022
edited
Loading

🌐 Coverage report

Name Metrics % (covered/total) Diff
Packages 100.0% (0/0) 💚
Files 100.0% (0/0) 💚
Classes 100.0% (0/0) 💚
Methods 25.0% (1/4)
Lines 100.0% (0/0) 💚
Conditionals 100.0% (0/0) 💚

kfirpeled
kfirpeled requested changes Aug 22, 2022
View reviewed changes
packages/cloud_security_posture/data_stream/findings/fields/fields.yml Outdated
@@ -1,4 +1,18 @@
- name: cluster_id
type: keyword
- name: cycle_id
type: keyword
- name: event.category
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

please place these fields' definition in ecs.yml
Also, consider adding the actual type they have, otherwise it uses the default which is keyword.

for example: event.created is of type date

@olegsu olegsu force-pushed the csp-findings-mapping branch 2 times, most recently from 1a77c4c to 672d76d Compare August 30, 2022 10:44
@orouz orouz mentioned this pull request Aug 30, 2022
Merged
@olegsu olegsu force-pushed the csp-findings-mapping branch 5 times, most recently from e001f0b to b49a6e4 Compare September 12, 2022 10:00
@olegsu olegsu requested a review from a team as a code owner September 12, 2022 10:00
@olegsu
Copy link
Contributor Author

olegsu commented Sep 12, 2022

/test

@olegsu olegsu merged commit a5d0772 into elastic:main Sep 13, 2022
@kfirpeled kfirpeled added the Team:Cloud Security Label for the Cloud Security team label Jun 26, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kfirpeled kfirpeled kfirpeled approved these changes

Assignees
No one assigned
Labels
deprecation enhancement New feature or request Integration:cloud_security_posture Security Posture Management Team:Cloud Security Label for the Cloud Security team
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
6 participants
@olegsu @elasticmachine @eyalkraft @kfirpeled @andrewkroh @mtojek