Change Prebuilt Security Rules Changelog Reference

[terrancedejesus]

Summary

This PR changes the URL reference link from Kibana UI to downloadable updates security docs site. The current link directs the user to the security doc updates that relate to file system rule updates, which is now deprecated. This update would point the user to the downloadable OOB package updates which is how we currently release prebuilt rules.

Existing: https://www.elastic.co/guide/en/security/master/prebuilt-rules-changelog.html (docs built from filesystem rules - deprecated)
Proposed: https://www.elastic.co/guide/en/security/master/prebuilt-rules-downloadable-updates.html (aligns with OOB packages - currently how we release and build docs)

[spong]

Change makes sense and LGTM, however I don't see any references for this being used in the app when searching for the ruleChangeLog key. Is this intended to update an existing link in the app, or just as used within the docs over in:

kibana/api_docs/kbn_doc_links.devdocs.json

Lines 527 to 540 in 8181b0c

	{
	"parentPluginId": "@kbn/doc-links",
	"id": "def-common.DocLinks.siem",
	"type": "Object",
	"tags": [],
	"label": "siem",
	"description": [],
	"signature": [
	"{ readonly privileges: string; readonly guide: string; readonly gettingStarted: string; readonly ml: string; readonly ruleChangeLog: string; readonly detectionsReq: string; readonly networkMap: string; readonly troubleshootGaps: string; readonly ruleApiOverview: string; }"
	],
	"path": "packages/kbn-doc-links/src/types.ts",
	"deprecated": false,
	"trackAdoption": false
	},

Approving for now, but let me know if you want to update any links within Kibana and happy to take another look 🙂

[elasticmachine]

Pinging @elastic/security-detections-response (Team:Detections and Resp)

[elasticmachine]

Pinging @elastic/security-solution (Team: SecuritySolution)

[spong]

Also, if we need to target 8.8.0, we'll need to add the backport:prev-minor label so it'll be automatically backported.

[terrancedejesus]

@spong - The release notes link in the following image is where we are attempting to change the link. Any ideas?

Re-create:

1. Load cloud stack 8.6.0
2. Force install outdated rules

POST kbn:/api/fleet/epm/packages/security_detection_engine/8.6.1
{
  "force": true
}

3. Security > Manage > Rules

Notification box should pop-up.

[spong]

@spong - The release notes link in the following image is where we are attempting to change the link. Any ideas?

Something must've been up with my IDE when I was checking this, as I'm seeing the reference fine now. It's over in

kibana/x-pack/plugins/security_solution/public/detections/components/rules/pre_packaged_rules/update_callout.tsx

Line 50 in 21de750

<EuiLink href={`${services.docLinks.links.siem.ruleChangeLog}`} target="_blank">

So we should be all good here! Sorry for the confusion @terrancedejesus, and thanks for verifying! 🙂

[terrancedejesus]

So we should be all good here! Sorry for the confusion @terrancedejesus, and thanks for verifying! 🙂

Fantastic, glad we got it squared away and thank you for always taking the time to review!

[kibana-ci]

💚 Build Succeeded

• Buildkite Build
• Commit: 33c4cd8

Metrics [docs]

Async chunks

Total size of all lazy-loaded chunks that will be downloaded as the user navigates the app

id	before	after	diff
lists	158.9KB	158.9KB	+11.0B

Page load bundle

Size of the bundles that are downloaded on every page load. Target size is below 100kb

id	before	after	diff
core	365.5KB	365.5KB	+11.0B

Unknown metric groups

ESLint disabled line counts

id	before	after	diff
enterpriseSearch	19	21	+2
securitySolution	400	404	+4
total			+6

Total ESLint disabled count

id	before	after	diff
enterpriseSearch	20	22	+2
securitySolution	480	484	+4
total			+6

History

• 💚 Build #128252 succeeded 4d609a6
• 💚 Build #125588 succeeded 78085d1

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

cc @terrancedejesus

[lcawl]

LGTM