[Security Solution] Add ability to bulk update all rules that don't have conflicts (DRAFT) #180589
Labels
Feature:Prebuilt Detection Rules
Security Solution Prebuilt Detection Rules
Team:Detection Rule Management
Security Detection Rule Management Team
Team:Detections and Resp
Security Detection Response Team
Team: SecuritySolution
Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc.
triage_needed
Comments
jpdjere
added
triage_needed
Team:Detections and Resp
|
Pinging @elastic/security-detections-response (Team:Detections and Resp) |
|
Pinging @elastic/security-solution (Team: SecuritySolution) |
|
Pinging @elastic/security-detection-rule-management (Team:Detection Rule Management) |
jpdjere
added
the
Feature:Prebuilt Detection Rules
banderror
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Epics: https://github.com/elastic/security-team/issues/1974 (internal), #174168
Design Discussion context: #178211
Design: ?
馃毀 Ticket under construction 馃毀
Summary
In the Rule Updates table, the user should have the ability to fast-forward upgrade all rules that have no conflicts in their updates. This means that all of the fields of the rule returned with a
CONFLICTvalue ofNOfrom the/upgrade/_reviewendpoint.By using this functionality, all the rules should be updates to the merged version of the field with no other intervention needed by the user.
Background
TBD
Acceptance criteria
TBD
The text was updated successfully, but these errors were encountered: