add rollover & archival mechanism for correlation history indices

[sbcd90]

Description

add rollover & archival mechanism for correlation history indices.

improves scoring mechanism of correlated findings.
The scoring mechanism is dependent on the euclidean distance between 2 vectors. Earlier our vectors were dependent on log types so the dimension of these vectors were set to 100. & vectors grew in size as new log types were added.
But we eliminated it now & fixed dimension of vector to 3 which not only prevents vectors from becoming sparse but also improves correlation scores.

Issues Resolved

[List any issues this PR will resolve]

Check List

• New functionality includes testing.
  • All tests pass
• New functionality has been documented.
  • New functionality has javadoc added
• Commits are signed per the DCO using --signoff

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

[codecov]

Codecov Report

Merging #670 (a220021) into main (0dd9787) will decrease coverage by 0.37%.
The diff coverage is 1.90%.

@@             Coverage Diff              @@
##               main     #670      +/-   ##
============================================
- Coverage     25.18%   24.81%   -0.37%     
  Complexity     1021     1021              
============================================
  Files           275      275              
  Lines         12458    12670     +212     
  Branches       1361     1390      +29     
============================================
+ Hits           3137     3144       +7     
- Misses         9053     9258     +205     
  Partials        268      268              

Files	Coverage Δ
...rch/securityanalytics/SecurityAnalyticsPlugin.java	4.65% <ø> (ø)
...yanalytics/settings/SecurityAnalyticsSettings.java	97.29% <100.00%> (+0.42%)	⬆️
...transport/TransportIndexCorrelationRuleAction.java	0.00% <ø> (ø)
...s/transport/TransportIndexCustomLogTypeAction.java	0.00% <ø> (ø)
...lytics/transport/TransportIndexDetectorAction.java	0.00% <ø> (ø)
...yanalytics/transport/TransportIndexRuleAction.java	0.00% <ø> (ø)
...opensearch/securityanalytics/util/RuleIndices.java	0.00% <ø> (ø)
...tics/transport/TransportListCorrelationAction.java	0.00% <0.00%> (ø)
...cs/transport/TransportSearchCorrelationAction.java	0.00% <0.00%> (ø)
.../opensearch/securityanalytics/util/IndexUtils.java	34.40% <12.50%> (-3.10%)	⬇️
... and 4 more

[eirsep]

can we revert wildcard import

[eirsep]

is this failure flaky from before or was this failing from this change?

Tests with failures:
 - org.opensearch.securityanalytics.findings.FindingIT.testGetFindings_rolloverByMaxAge_success