-
Notifications
You must be signed in to change notification settings - Fork 8.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Security Solution]: Incorrect color code is displaying on Alert treemap for medium risk score. #139195
Comments
Pinging @elastic/security-solution (Team: SecuritySolution) |
Thanks for creating this issue @samratbhadra-qasource! The component is currently working as-designed; the color breakpoints used by the treemap align with the values in the Rule Configuration page, per in the animated gif below: The selection in the animated gif above defaults to
as shown in the following (composite) screenshot: To verify the treemap is currently aligned with the breakpoints above, a response containing one alert for each risk score in the range of Click me - Simulated response to reproduce 139195 const getBucket = (riskScore: number) => ({
key: `Bucket ${riskScore}`,
doc_count: 1,
maxRiskSubAggregation: {
value: riskScore,
},
stackByField1: {
doc_count_error_upper_bound: 0,
sum_other_doc_count: 0,
buckets: [
{
key: 'example-host',
doc_count: 1,
},
],
},
});
const alertsData: AlertSearchResponse<unknown, AlertsTreeMapAggregation> = {
took: 1,
timeout: false,
_shards: {
total: 1,
successful: 1,
skipped: 0,
failed: 0,
},
hits: {
total: {
value: 100,
relation: 'eq',
},
max_score: null,
hits: [],
},
aggregations: {
stackByField0: {
buckets: [...Array(100).keys()].map(getBucket),
},
},
}; Given the simulated response above, the treemap displays the expected color at each of the breakpoints, per the screenshot below: Above: With mock data, the treemap displays the expected colors at the current breakpoints Why are the treemap color breakpoints aligned with the rule configuration page?The treemap color breakpoints are aligned with the rule configuration page to ensure that, by default, the color of the alert in the treemap matches the color selection in the rule configuration page. Next steps: please consider opening a documentation issue@samratbhadra-qasource we will close this issue because the code is working as intended, but please consider opening a documentation issue, because the correct color mappings are:
Thank you! |
Thanks for confirming the behavior. Thanks! |
* Big first draft Adds new subtopic Updates & adds new images Updates "Manage detection alerts" * Revise topic title * Another tiny edit * Update screenshots: Manage rules button * More edits, rename GIF * More. edits. * Clean out comments, final (?) edits * Apply suggestions from Nastasha's review Co-authored-by: nastasha-solomon <79124755+nastasha-solomon@users.noreply.github.com> * Apply suggestions from review * Corrects risk score ranges for tile colors Per elastic/kibana/issues/139195 Co-authored-by: nastasha-solomon <79124755+nastasha-solomon@users.noreply.github.com>
* Big first draft Adds new subtopic Updates & adds new images Updates "Manage detection alerts" * Revise topic title * Another tiny edit * Update screenshots: Manage rules button * More edits, rename GIF * More. edits. * Clean out comments, final (?) edits * Apply suggestions from Nastasha's review Co-authored-by: nastasha-solomon <79124755+nastasha-solomon@users.noreply.github.com> * Apply suggestions from review * Corrects risk score ranges for tile colors Per elastic/kibana/issues/139195 Co-authored-by: nastasha-solomon <79124755+nastasha-solomon@users.noreply.github.com> (cherry picked from commit 5ef68f8)
* Big first draft Adds new subtopic Updates & adds new images Updates "Manage detection alerts" * Revise topic title * Another tiny edit * Update screenshots: Manage rules button * More edits, rename GIF * More. edits. * Clean out comments, final (?) edits * Apply suggestions from Nastasha's review Co-authored-by: nastasha-solomon <79124755+nastasha-solomon@users.noreply.github.com> * Apply suggestions from review * Corrects risk score ranges for tile colors Per elastic/kibana/issues/139195 Co-authored-by: nastasha-solomon <79124755+nastasha-solomon@users.noreply.github.com> (cherry picked from commit 5ef68f8) Co-authored-by: Joe Peeples <joe.peeples@elastic.co>
Describe the bug:
Incorrect color code is displaying on Alert treemap for medium risk score.
Build Details:
Preconditions
Steps to Reproduce
Actual Result
Incorrect color code is displaying on Alert treemap for medium risk score.
Expected Result
Correct color code should display on Alert treemap for medium risk score.
What's Working:
![Screenshot (827)](https://user-images.githubusercontent.com/84007952/185910970-0e3a9f2f-1d5b-44eb-a2b5-13d15a0fad41.png)
Yellow color code should be available for risk score between (22 - 47)
Correct color code for each alerts is mentioned on the below doc:
https://security-docs_2280.docs-preview.app.elstc.co/guide/en/security/master/visualize-alerts.html
Screenshot:
![Screenshot (825)](https://user-images.githubusercontent.com/84007952/185910292-1b849a9d-8c75-473b-9e26-163898a3b381.png)
The text was updated successfully, but these errors were encountered: