Release/v10.8.1 #1226
Merged
Release/v10.8.1 #1226
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…laying "tags" column
… unnecessary debug logs
… the historical context based on counts
…ice365 integration.
…into release/v10.8.1 # Conflicts: # CHANGELOG.md # version.yml
…P threat intelligence integration."
…ource and destination IPs."
# Conflicts: # CHANGELOG.md # backend/src/main/resources/config/liquibase/changelog/20250507003_add_o365_pipeline.xml
dayat81
pushed a commit
to dayat81/utmstack
that referenced
this pull request
Aug 9, 2025
* fix(compliance-schedule): fix standard and section selection issue in report creation * chore: Update CHANGELOG.md * chore: update version.yml * fix(ui): display array fields as a single field without numeric suffixes * chore: update CHANGELOG.md * fix(alert-field-render): resolve persistent loading spinner when displaying "tags" column * chore: Update CHANGELOG.md * fix: Resolve false positive checkbox selection when editing tagging rules * feat: implement alert correlation and context building for enhanced alert analysis * add debug logging for GPT request * feat: add debug logging for alert processing and related alerts retrieval * fix: update to return schema.Alert and adjust related logic * refactor: simplify body creation in ElasticSearch function and remove unnecessary debug logs * fix: optimize alert correlation logic and improve classification handling * fix: update of the logic of correlation of alerts and construction of the historical context based on counts * fix: improve log handling in GPT request and ensure last log entry is used * feat: update macOS install steps with `utmstack-macos-agent.pkg` * fix: add pipeline for aws, sophos-central and o365 integrations * fix: remove logging of debug * Migrate from correlation service to direct Logstash connection in aws integration. * Migrate from correlation service to direct Logstash connection in office365 integration. * Migrate from correlation service to direct Logstash connection in sophos integration. * fix: add pipeline for aws, sophos-central and o365 integrations * chore: resolve merge conflicts * chore: integrate recent UI improvements * add datasource in macos agent logs * include logstash ports in installer for aws, o365 and sophos * fix: update TagRulesApplied field type to slice and join in conversion * fix: change TagRulesApplied field type from string to slice of int * Refactoring the event sending format to Logstash in the AWS plugin. * Refactoring the event sending format to Logstash in the Sophos plugin. * Refactoring the event sending format to Logstash in the office365 plugin. * fix: add pipeline for aws, sophos-central and o365 integrations * "Update blocklist processing to support severity levels and enhance IP threat intelligence integration." * "Add IP validation using net.ParseIP to ensure proper processing of source and destination IPs." * "Fix path in Dockerfile COPY command for the correlation binary." * fix: add pipeline for aws, sophos-central and o365 integrations * Update correlation Dockerfile * fix: add pipeline for aws, sophos-central and o365 integrations * fix: add pipeline for aws, sophos-central and o365 integrations * fix: filter only valid IPs when parsing coordinate map chart data * fix: update display name for Sophos integration * Implement Sophos Central filter (v1.0.0). * Refactor AWS filter (v2.0.0) to use JSON instead of Grok. * Refactor Office 365 filter (v2.0.0) by simplifying the structure. * fix: corrected typo in compliance status label from "Complaint" to "Compliant" * send logs from new windows channels in arm agent * fix: hide sorting action for assets filters * fix: improve CSV export limit parameters * fix: correct uninstalling command for macOs agent * feat: add Windows ARM64 support to agent installation platforms * set correct api url environment * fix: update filter for winevent log agent * fix: update wineventlog filter * fix: update wineventlog filter * fix: add pipeline for aws, sophos-central and o365 integrations --------- Co-authored-by: Yadian Llada Lopez <yadian.llada@gmail.com> Co-authored-by: JocLRojas <joc.l.rojas02@gmail.com> Co-authored-by: Kbayero <yorjakbayero@gmail.com> Co-authored-by: Osmany Montero <osmontero@icloud.com> Co-authored-by: Yorjander Hernandez Vergara <99102374+Kbayero@users.noreply.github.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
5 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
PLEASE READ BEFORE CONTINUING
To help us understand your contribution, please include the following in your pull request: