Update ewsv2 exc2019 (demisto#26670)

* update

* test

* changes

* changes

* final commands changes

* clean code

* update TPBs

* rvert name change

* revert name change

* cr changes

* fix name

* fix TPBs

* remove skip of perm_set field

* fix tpb and validations

* revert arg removal

* remove added tpb

* update memory threshold

* fix ut

* fix ut

* Fix urllib.parse import in CommonServerPython (#27252)

* Allow applying a new profile over an existing one in ***pan-os-apply-security-profile*** command (#27237)

* Add XSOAR support for updating existing profile types

* RN

* fix UT

* Update Packs/PAN-OS/ReleaseNotes/1_17_5.md

Co-authored-by: Guy Afik <53861351+GuyAfik@users.noreply.github.com>

* fix CR

* RN

* UT was added

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <53861351+GuyAfik@users.noreply.github.com>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <53861351+GuyAfik@users.noreply.github.com>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <53861351+GuyAfik@users.noreply.github.com>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <53861351+GuyAfik@users.noreply.github.com>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <53861351+GuyAfik@users.noreply.github.com>

* fix

* flake8

* UT stability

---------

Co-authored-by: Guy Afik <53861351+GuyAfik@users.noreply.github.com>

* Update Docker Image To demisto/splunksdk-py3  (#27263)

* Updated Metadata Of Pack SplunkPy

* Added release notes to pack SplunkPy

* Packs/SplunkPy/Integrations/SplunkPy/SplunkPy.yml Docker image update

* Updated domain extraction playbook - changing .zip to a valid TLD (#27264)

* Updated domain extraction playbook

* some formatting.

* Update playbook-Domain_extraction_test.yml

* Update playbook-Domain_extraction_test.yml

* Update Docker Image To demisto/duoadmin3  (#27268)

* Updated Metadata Of Pack DuoAdminApi

* Added release notes to pack DuoAdminApi

* Packs/DuoAdminApi/Integrations/DuoEventCollector/DuoEventCollector.yml Docker image update

* Packs/DuoAdminApi/Integrations/DuoAdminApi/DuoAdminApi.yml Docker image update

* Update Docker Image To demisto/googleapi-python3  (#27267)

* Updated Metadata Of Pack GoogleDrive

* Added release notes to pack GoogleDrive

* Packs/GoogleDrive/Integrations/GoogleDrive/GoogleDrive.yml Docker image update

* Update Docker Image To demisto/python3  (#27266)

* Updated Metadata Of Pack Darktrace

* Added release notes to pack Darktrace

* Packs/Darktrace/Integrations/DarktraceMBs/DarktraceMBs.yml Docker image update

* Packs/Darktrace/Integrations/DarktraceAIA/DarktraceAIA.yml Docker image update

* Updated Metadata Of Pack CybleEvents

* Added release notes to pack CybleEvents

* Packs/CybleEvents/Integrations/CybleEvents/CybleEvents.yml Docker image update

* Updated Metadata Of Pack Censys

* Added release notes to pack Censys

* Packs/Censys/Integrations/CensysV2/CensysV2.yml Docker image update

* Updated Metadata Of Pack VirusTotal

* Added release notes to pack VirusTotal

* Packs/VirusTotal/Integrations/FeedLivehunt/FeedLivehunt.yml Docker image update

* Packs/VirusTotal/Integrations/FeedRetrohunt/FeedRetrohunt.yml Docker image update

* Updated Metadata Of Pack CofenseIntelligenceV2

* Added release notes to pack CofenseIntelligenceV2

* Packs/CofenseIntelligenceV2/Integrations/CofenseIntelligenceV2/CofenseIntelligenceV2.yml Docker image update

* Updated Metadata Of Pack CheckPointDome9

* Added release notes to pack CheckPointDome9

* Packs/CheckPointDome9/Integrations/CheckPointDome9/CheckPointDome9.yml Docker image update

* Updated Metadata Of Pack Reco

* Added release notes to pack Reco

* Packs/Reco/Integrations/Reco/Reco.yml Docker image update

* Updated Metadata Of Pack CimTrak-SystemIntegrityAssurance

* Added release notes to pack CimTrak-SystemIntegrityAssurance

* Packs/CimTrak-SystemIntegrityAssurance/Integrations/CimTrak/CimTrak.yml Docker image update

* Update Docker Image To demisto/python3  (#27272)

* Updated Metadata Of Pack FeedProofpoint

* Added release notes to pack FeedProofpoint

* Packs/FeedProofpoint/Integrations/FeedProofpoint/FeedProofpoint.yml Docker image update

* Updated Metadata Of Pack FortiSIEM

* Added release notes to pack FortiSIEM

* Packs/FortiSIEM/Integrations/FortiSIEM/FortiSIEM.yml Docker image update

* Updated Metadata Of Pack Ipstack

* Added release notes to pack Ipstack

* Packs/Ipstack/Integrations/Ipstack/Ipstack.yml Docker image update

* Updated Metadata Of Pack SafeBreach

* Added release notes to pack SafeBreach

* Packs/SafeBreach/Integrations/SafeBreach_v2/SafeBreach_v2.yml Docker image update

* Updated Metadata Of Pack RedCanary

* Added release notes to pack RedCanary

* Packs/RedCanary/Integrations/RedCanary/RedCanary.yml Docker image update

* Updated Metadata Of Pack PiHole

* Added release notes to pack PiHole

* Packs/PiHole/Integrations/PiHole/PiHole.yml Docker image update

* Updated Metadata Of Pack FeedDShield

* Added release notes to pack FeedDShield

* Packs/FeedDShield/Integrations/FeedDShield/FeedDShield.yml Docker image update

* Updated Metadata Of Pack SafeNet_Trusted_Access

* Added release notes to pack SafeNet_Trusted_Access

* Packs/SafeNet_Trusted_Access/Integrations/SafeNetTrustedAccess/SafeNetTrustedAccess.yml Docker image update

* Updated Metadata Of Pack OpenPhish

* Added release notes to pack OpenPhish

* Packs/OpenPhish/Integrations/OpenPhish_v2/OpenPhish_v2.yml Docker image update

* Updated Metadata Of Pack NistNVD

* Added release notes to pack NistNVD

* Packs/NistNVD/Integrations/NistNVD/NistNVD.yml Docker image update

* Updated Metadata Of Pack Cognni

* Added release notes to pack Cognni

* Packs/Cognni/Integrations/Cognni/Cognni.yml Docker image update

* Updated Metadata Of Pack PANOSPolicyOptimizer

* Added release notes to pack PANOSPolicyOptimizer

* Packs/PANOSPolicyOptimizer/Integrations/PANOSPolicyOptimizer/PANOSPolicyOptimizer.yml Docker image update

* Updated Metadata Of Pack DeveloperTools

* Added release notes to pack DeveloperTools

* Packs/DeveloperTools/Integrations/CreateIncidents/CreateIncidents.yml Docker image update

* Packs/DeveloperTools/Integrations/CustomIndicatorDemo/CustomIndicatorDemo.yml Docker image update

* Packs/DeveloperTools/Integrations/APIMetricsValidation/APIMetricsValidation.yml Docker image update

* Updated Metadata Of Pack NozomiNetworks

* Added release notes to pack NozomiNetworks

* Packs/NozomiNetworks/Integrations/NozomiNetworks/NozomiNetworks.yml Docker image update

* Updated Metadata Of Pack ANYRUN

* Added release notes to pack ANYRUN

* Packs/ANYRUN/Integrations/ANYRUN/ANYRUN.yml Docker image update

* Updated Metadata Of Pack Carbon_Black_Enterprise_Response

* Added release notes to pack Carbon_Black_Enterprise_Response

* Packs/Carbon_Black_Enterprise_Response/Integrations/CarbonBlackResponseV2/CarbonBlackResponseV2.yml Docker image update

* Updated Metadata Of Pack Absolute

* Added release notes to pack Absolute

* Packs/Absolute/Integrations/Absolute/Absolute.yml Docker image update

* Updated Metadata Of Pack Ironscales

* Added release notes to pack Ironscales

* Packs/Ironscales/Integrations/Ironscales/Ironscales.yml Docker image update

* Updated Metadata Of Pack FeedURLhaus

* Added release notes to pack FeedURLhaus

* Packs/FeedURLhaus/Integrations/FeedURLhaus/FeedURLhaus.yml Docker image update

* Updated Metadata Of Pack Lokpath_Keylight

* Added release notes to pack Lokpath_Keylight

* Packs/Lokpath_Keylight/Integrations/Lockpath_KeyLight_v2/Lockpath_KeyLight_v2.yml Docker image update

* Updated Metadata Of Pack FeedMISP

* Added release notes to pack FeedMISP

* Packs/FeedMISP/Integrations/FeedMISP/FeedMISP.yml Docker image update

* Updated Metadata Of Pack FraudWatch

* Added release notes to pack FraudWatch

* Packs/FraudWatch/Integrations/FraudWatch/FraudWatch.yml Docker image update

* Updated Metadata Of Pack AbnormalSecurity

* Added release notes to pack AbnormalSecurity

* Packs/AbnormalSecurity/Integrations/AbnormalSecurityEventCollector/AbnormalSecurityEventCollector.yml Docker image update

* Updated Metadata Of Pack CovalenceManagedSecurity

* Added release notes to pack CovalenceManagedSecurity

* Packs/CovalenceManagedSecurity/Integrations/CovalenceManagedSecurity/CovalenceManagedSecurity.yml Docker image update

* Updated Metadata Of Pack IllusiveNetworks

* Added release notes to pack IllusiveNetworks

* Packs/IllusiveNetworks/Integrations/IllusiveNetworks/IllusiveNetworks.yml Docker image update

* Updated Metadata Of Pack Edgescan

* Added release notes to pack Edgescan

* Packs/Edgescan/Integrations/Edgescan/Edgescan.yml Docker image update

* Updated Metadata Of Pack PerceptionPoint

* Added release notes to pack PerceptionPoint

* Packs/PerceptionPoint/Integrations/PerceptionPoint/PerceptionPoint.yml Docker image update

* Updated Metadata Of Pack Druva

* Added release notes to pack Druva

* Packs/Druva/Integrations/Druva/Druva.yml Docker image update

* Updated Metadata Of Pack APIVoid

* Added release notes to pack APIVoid

* Packs/APIVoid/Integrations/APIVoid/APIVoid.yml Docker image update

* Updated Metadata Of Pack PingIdentity

* Added release notes to pack PingIdentity

* Packs/PingIdentity/Integrations/PingOne/PingOne.yml Docker image update

* Updated Metadata Of Pack cisco-ise

* Added release notes to pack cisco-ise

* Packs/cisco-ise/Integrations/cisco-ise/cisco-ise.yml Docker image update

* Updated Metadata Of Pack SailPointIdentityIQ

* Added release notes to pack SailPointIdentityIQ

* Packs/SailPointIdentityIQ/Integrations/SailPointIdentityIQ/SailPointIdentityIQ.yml Docker image update

* Updated Metadata Of Pack Cymulate

* Added release notes to pack Cymulate

* Packs/Cymulate/Integrations/Cymulate/Cymulate.yml Docker image update

* Packs/Cymulate/Integrations/Cymulate_v2/Cymulate_v2.yml Docker image update

* Updated Metadata Of Pack XSOARmirroring

* Added release notes to pack XSOARmirroring

* Packs/XSOARmirroring/Integrations/XSOARmirroring/XSOARmirroring.yml Docker image update

* Updated Metadata Of Pack XMatters

* Added release notes to pack XMatters

* Packs/XMatters/Integrations/xMatters/xMatters.yml Docker image update

* Updated Metadata Of Pack Zimperium

* Added release notes to pack Zimperium

* Packs/Zimperium/Integrations/Zimperium/Zimperium.yml Docker image update

* Updated Metadata Of Pack RSANetWitnessEndpoint

* Added release notes to pack RSANetWitnessEndpoint

* Packs/RSANetWitnessEndpoint/Integrations/RSANetWitnessEndpoint/RSANetWitnessEndpoint.yml Docker image update

* Updated Metadata Of Pack SymantecBlueCoatMalwareAnalysis

* Added release notes to pack SymantecBlueCoatMalwareAnalysis

* Packs/SymantecBlueCoatMalwareAnalysis/Integrations/SymantecBlueCoatMalwareAnalysis/SymantecBlueCoatMalwareAnalysis.yml Docker image update

* Updated Metadata Of Pack InfoArmor_VigilanteATI

* Added release notes to pack InfoArmor_VigilanteATI

* Packs/InfoArmor_VigilanteATI/Integrations/InfoArmorVigilanteATI/InfoArmorVigilanteATI.yml Docker image update

* Updated Metadata Of Pack AccentureCTI

* Added release notes to pack AccentureCTI

* Packs/AccentureCTI/Integrations/ACTIVulnerabilityQuery/ACTIVulnerabilityQuery.yml Docker image update

* Updated Metadata Of Pack PingCastle

* Added release notes to pack PingCastle

* Packs/PingCastle/Integrations/PingCastle/PingCastle.yml Docker image update

* Updated Metadata Of Pack MaxMind_GeoIP2

* Added release notes to pack MaxMind_GeoIP2

* Packs/MaxMind_GeoIP2/Integrations/MaxMind_GeoIP2/MaxMind_GeoIP2.yml Docker image update

* Updated Metadata Of Pack Maltiverse

* Added release notes to pack Maltiverse

* Packs/Maltiverse/Integrations/Maltiverse/Maltiverse.yml Docker image update

* Updated Metadata Of Pack CarbonBlackDefense

* Added release notes to pack CarbonBlackDefense

* Packs/CarbonBlackDefense/Integrations/CarbonBlackEndpointStandard/CarbonBlackEndpointStandard.yml Docker image update

* Updated Metadata Of Pack AlienVault_USM_Anywhere

* Added release notes to pack AlienVault_USM_Anywhere

* Packs/AlienVault_USM_Anywhere/Integrations/AlienVault_USM_Anywhere/AlienVault_USM_Anywhere.yml Docker image update

* Updated Metadata Of Pack ProofpointServerProtection

* Added release notes to pack ProofpointServerProtection

* Packs/ProofpointServerProtection/Integrations/ProofpointProtectionServerV2/ProofpointProtectionServerV2.yml Docker image update

* Updated Metadata Of Pack OpsGenie

* Added release notes to pack OpsGenie

* Packs/OpsGenie/Integrations/OpsGenieV3/OpsGenieV3.yml Docker image update

* Fixed lint and validate

---------

Co-authored-by: sberman <sberman@paloaltonetworks.com>

* Ignore modeling/parsing rules suffix error (#27274)

* [EDL] Fixed a typo in the description (#27269)

* Fixed a typo in the description

* Update the docker image

* Macos Regex Fix (#27270)

* Updated ModelingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Updated ModelingRules

* Updated ModelingRules

* Cs falcon add tags to cs-falcon-upload-custom-ioc command (#27234)

* CS Flacon add tags to upload-custom-ioc command

* added RNs

* Align credentials stores part 11 (#27253)

* Align credentials part 11

* Trend Micro Apex

* ignore

* adding tests to hostlo

* Trend Micro Apex tests

* trend more test

* change test

* Syslogv2 was removed from xsiam marketplace (#27278)

* remove Syslogv2 from xsiam marketplace

* RN

* known_words

* Update Packs/Syslog/ReleaseNotes/2_0_16.md

Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com>

* DO

---------

Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com>

* Microsoft Graph Single User - Edit documentation (#27275)

* edit documentation

* edit documentation

* RN and DO

* fix doc

* mistake

* ExtraHop release v2.1.0 (#27056) (#27279)

* Update .devcontainer.json name

* added changes related to ExtrHop 2.1.0 release

---------

Co-authored-by: Crest Data Systems <60967033+crestdatasystems@users.noreply.github.com>
Co-authored-by: crestdatasystems <crestdatasystems@users.noreply.github.com>

* Recordedfuture listapi v1.0.0 (#26996) (#27281)

* First version/implementation of new List Integration

* Added new List integration

* Updated validation step requirements and fixed tests to be working as expected

* Updated test Coverage

* Version bump and fixed frombersion for list app

* Added custom content, incident type and classifier for coderepo leakage

* Updated some documentation and fixed dockerimages

* Bumped version of playbook alert app

* Fixed changelog for 1.6.0 to not include an old change

* fixed type0 in changelog

* removed base64 import

* Updated release notes

* Update based on review

* Removed references to old playbook alerts documentation from creation of integration

---------

Co-authored-by: recordedfuture-simonhornestedt <109588368+recordedfuture-simonhornestedt@users.noreply.github.com>
Co-authored-by: michal-dagan <109464765+michal-dagan@users.noreply.github.com>

* fix bug by convert the password to bytes (#27283)

* fix bug by convert the password to bytes

* commit

* update RN and Docker

* comment corrections

* commit

* [greynoise-266] - Add greynoise-similar and greynoise-timeline commands (#27067) (#27291)

* add sim and timeline updates

* fix test file prints

* update readme fix tests

* updates to readme for pre-commit

* updates from pre-commit run

* more linting updates

* update secrets

* fix url in timeline

Co-authored-by: Brad Chiappetta <38439955+bradchiappetta@users.noreply.github.com>

* [ASM] -  Expandr 4075 (#27258) (#27287)

* init

* RN

* fix RN

* Apply suggestions from code review



---------

Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* [Panorama] Tags Management (#27044)

* panorama tag commands

* release notes

* release notes

* tpb

* fix tpb

* fix

* add kew_words and update description

* fix device-group

* revert non-relevat change

* bump version

* - Added device group location to the tags result
- Added list request when editing tags to get the properties that are not given in arguments

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* docs fixes

* fix UT

* pre-commit fix

* bump version

* pre-commit

* CR fix

---------

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Xdrir fix polling timeout (#27238)

* XDRIR fix polling timeout parameter

* Added RNs

* Update Docker Image To demisto/bottle  (#27303)

* Updated Metadata Of Pack WebFileRepository

* Added release notes to pack WebFileRepository

* Packs/WebFileRepository/Integrations/WebFileRepository/WebFileRepository.yml Docker image update

* Update Docker Image To demisto/python3  (#27302)

* Updated Metadata Of Pack DelineaSS

* Added release notes to pack DelineaSS

* Packs/DelineaSS/Integrations/DelineaSS/DelineaSS.yml Docker image update

* Updated Metadata Of Pack Lumu

* Added release notes to pack Lumu

* Packs/Lumu/Integrations/Lumu/Lumu.yml Docker image update

* Updated Metadata Of Pack FlashpointFeed

* Added release notes to pack FlashpointFeed

* Packs/FlashpointFeed/Integrations/FlashpointFeed/FlashpointFeed.yml Docker image update

* Updated Metadata Of Pack FeedLOLBAS

* Added release notes to pack FeedLOLBAS

* Packs/FeedLOLBAS/Integrations/FeedLOLBAS/FeedLOLBAS.yml Docker image update

* Updated Metadata Of Pack Grafana

* Added release notes to pack Grafana

* Packs/Grafana/Integrations/Grafana/Grafana.yml Docker image update

* Updated Metadata Of Pack FireMonSecurityManager

* Added release notes to pack FireMonSecurityManager

* Packs/FireMonSecurityManager/Integrations/FireMonSecurityManager/FireMonSecurityManager.yml Docker image update

* Updated Metadata Of Pack Gatewatcher-AionIQ

* Added release notes to pack Gatewatcher-AionIQ

* Packs/Gatewatcher-AionIQ/Integrations/GCenter/GCenter.yml Docker image update

* Updated Metadata Of Pack McAfeeNSM

* Added release notes to pack McAfeeNSM

* Packs/McAfeeNSM/Integrations/McAfeeNSMv2/McAfeeNSMv2.yml Docker image update

* Updated Metadata Of Pack DeHashed

* Added release notes to pack DeHashed

* Packs/DeHashed/Integrations/DeHashed/DeHashed.yml Docker image update

* Updated Metadata Of Pack IronscalesEventCollector

* Added release notes to pack IronscalesEventCollector

* Packs/IronscalesEventCollector/Integrations/IronscalesEventCollector/IronscalesEventCollector.yml Docker image update

* Update Docker Image To demisto/sixgill  (#27304)

* Updated Metadata Of Pack Sixgill-Darkfeed

* Added release notes to pack Sixgill-Darkfeed

* Packs/Sixgill-Darkfeed/Integrations/Sixgill_Darkfeed_Enrichment/Sixgill_Darkfeed_Enrichment.yml Docker image update

* Packs/Sixgill-Darkfeed/Integrations/Sixgill_Darkfeed/Sixgill_Darkfeed.yml Docker image update

* Update Docker Image To demisto/slackv3  (#27301)

* Updated Metadata Of Pack Slack

* Added release notes to pack Slack

* Packs/Slack/Integrations/SlackV3/SlackV3.yml Docker image update

* MOVEit Transfer pack enhancement (#27225)

* Majorbreach pack RN update and minor fix to the playbook description

* Majorbreach pack RN update and minor fix to the playbook description

* fix RN

* updates

* updates

* updates the pack readme

* Service now auto closing incidents when using the Mirrored XSOAR Ticket custom close state code parameter (#27288)

* Fixed issue where incidents would auto close after using the Mirrored XSOAR Ticket custom close state code parameter

* Added RN

* Fixed RN and added documentation in code

* Fixed documentation in code

* Creating modeling and parsing rules for Cisco ISR (#27239)

* Creating modeling and parsing rules for Cisco ISR

* Change readme

* Change readme

* Added ipv6 mapping to modeling rules

* fixed const for ip protocol

* unified user regex to 1 statement

* modified readme file

* Modified release notes.

* Add zdl ti fusion pack (#26981) (#27286)

* Add ZeroDayLiveTIFusion Pack

* Formatting updates

* Remove .lock, set default repotation value

* Remove th pipefile

* Rename Pack to contain feed - adhere to PA conventions

* Reuse existing CSV API module

* Metadata updates - post review

* Update descriptions

Co-authored-by: grzegorzpapkala <grzegorzpapkala@gmail.com>

* [MSGraphDeviceMgmt] fix bool parsing (#27296)

* ObserveIT Severity Update (#27282)

* Updated ModelingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Updated ModelingRules

* Update Docker Image To demisto/python3  (#27300)

* Updated Metadata Of Pack AutoFocus

* Added release notes to pack AutoFocus

* Packs/AutoFocus/Integrations/FeedAutofocus/FeedAutofocus.yml Docker image update

* Packs/AutoFocus/Integrations/AutofocusV2/AutofocusV2.yml Docker image update

* Updated Metadata Of Pack CrowdStrikeFalconX

* Added release notes to pack CrowdStrikeFalconX

* Packs/CrowdStrikeFalconX/Integrations/CrowdStrikeFalconX/CrowdStrikeFalconX.yml Docker image update

* Updated Metadata Of Pack CVESearch

* Added release notes to pack CVESearch

* Packs/CVESearch/Integrations/CVESearchV2/CVESearchV2.yml Docker image update

* Updated Metadata Of Pack Slack

* Added release notes to pack Slack

* Packs/Slack/Scripts/SlackAskV2/SlackAskV2.yml Docker image update

* Bump pack from version Slack to 3.1.39.

---------

Co-authored-by: Content Bot <bot@demisto.com>

* Qradar/fix/deprecated playbook (#27198)

* replaced depracted playbook

* updated RN

* changed more TPB

* updated RN

* Pass the comment to fetch-credential command. (#27305)

* Pass the comment to fetch-credential command. (#27249)

* Pass the comment to fetch-credential command.
Added auto comment feature to delinea-secret-password-get command.

* Updated docker image version

* change docker image version

* Adhere to RN XSOAR known tempaltes.

* Updated the unit test case

---------

Co-authored-by: Danny_Fried <dfried@paloaltonetworks.com>

* Bump version.

---------

Co-authored-by: Suhasini <97945981+suhasini-b@users.noreply.github.com>
Co-authored-by: Danny_Fried <dfried@paloaltonetworks.com>

* LOLBAS - Added "Plug & Fetch" tag (#27309)

* added needed tags to pack

* Added lolbas to "Free Feeds" pack

* Remove CommonServerUser Scripts from `NonSupported` Pack (#27311)

* Remove common-server-user scripts

* Delete READMEs (moved to content-docs)

* Sysaid delete-file, get, add-note, record-attach-file (#27285)

* Orca Integration: Remove video from the description (#27259) (#27314)

* Use orca score as source for the demisto score
Update output for the commands

* Upgrade docker version.

---------

Co-authored-by: Viktor Poltorak <90267674+viktor-orca@users.noreply.github.com>
Co-authored-by: Danny_Fried <dfried@paloaltonetworks.com>

* SimpleSFTP upload-file command added. (#27315)

* SimpleSFTP upload-file command added. (#27208)

* SimpleSFTP upload-file command added.

* Removing print

* Updated Readme. Added ReleaseNotes and unified arguments to snake case instead of camel case

* Fixed name in integration YAML.

* Fixing linting errors.

* Update docker image.
Include docker image in RN.

---------

Co-authored-by: Fahad Yousuf <fahadysf@gmail.com>
Co-authored-by: Danny_Fried <dfried@paloaltonetworks.com>

* WildFire Fix condition to exclude encoded pdf files (#27105)

* Fix condition to exclude encoded pdf files

* Update release notes

* Update missing playbook image

* Fix playbook logic to exclude base64 encoded

* Update release notes and playbook image

* Update playbook-Detonate_File_-_WildFire.yml

Fix review comments

* Update playbook image and description

* Update playbook readme

* Update Docker Image To demisto/boto3py3  (#27335)

* Updated Metadata Of Pack AWS-GuardDuty

* Added release notes to pack AWS-GuardDuty

* Packs/AWS-GuardDuty/Integrations/AWSGuardDutyEventCollector/AWSGuardDutyEventCollector.yml Docker image update

* Packs/AWS-GuardDuty/Integrations/AWSGuardDuty/AWSGuardDuty.yml Docker image update

* Update Docker Image To demisto/py42  (#27336)

* Updated Metadata Of Pack Code42

* Added release notes to pack Code42

* Packs/Code42/Integrations/Code42/Code42.yml Docker image update

* Update incidentfield-Darktrace_Model_Breach_CommentCount.json (#27103)

* Update incidentfield-Darktrace_Model_Breach_CommentCount.json

* Update pack_metadata.json

* Create 2_0_6.md

* Update 2_0_6.md

* Update 2_0_6.md

* RN

* RN

* RN

* AWS Lambda enhancement 6 commands (#27095)

* Added get policy command

* change from AWS-Lambda to AWS_Lambda

* Added UT for policy

* Fix UT

* Fix UT

* del duplicate code

* Added list-versions and url_config

* update yml

* added 3 commands

* added 3 commands

* update docker

* lint MD

* fix yml

* update RN

* improve

* added readme and some improve

* del copy

* added docstring

* fix line to long

* test playbook and update docker

* update fromVersion

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* change  List of strings to list

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* change md

* autofix on

* autofix

* autofix

* Apply automatic changes

* Revert "autofix on"

This reverts commit 1039a09e18c740fa906a53cc3a742e45fa560199.

* Revert "autofix on"

This reverts commit 1039a09e18c740fa906a53cc3a742e45fa560199.

* undo pre-commit

* update docker

* fix demo

* update yml

* change file name

* change file name to aws_lambda

* update docker  and UT

* fix mypy

* fix

* undo fix

* update docker and cr

* added Principal

* update docker

---------

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: shmuel44 <shmuel44@users.noreply.github.com>

* [panOS] Add Security Rule does not take list as paramter (#27040)

* Change source_user arg to list

* Update yml file

* Update yml changes to pan-os and panorama

* Update release notes

* Update 1_17_5.md

* Rename 1_17_5.md to 1_17_6.md

* Delete 1_17_6.md

* Update RN

* Add UT for PR changes

* Update README.md

* Update Packs/PAN-OS/ReleaseNotes/1_17_6.md

Co-authored-by: Guy Afik <53861351+GuyAfik@users.noreply.github.com>

* Version bump

* Update docker image

* Update RN

---------

Co-authored-by: Guy Afik <53861351+GuyAfik@users.noreply.github.com>

* custom user agent on builds (#27284)

* custom user agent on builds

* Cofense Triage Release 2.1.13 (#27265) (#27317)

* Update .devcontainer.json name

* Added cofense-report-attachment-payload-list command

* Updated context example in report attachment payload list command

* Updated docker images in all YML files

* Updated release notes

---------

Co-authored-by: Crest Data Systems <60967033+crestdatasystems@users.noreply.github.com>
Co-authored-by: crestdatasystems <crestdatasystems@users.noreply.github.com>
Co-authored-by: michal-dagan <109464765+michal-dagan@users.noreply.github.com>

* Associate "Action" indicator field to all indicator types (#27321)

* Associate "Action" field to all types

* RN

* fix execution metrics in scripts (#27214)

* Align credentials stores part 10 (#27221)

* Align credentials stores part 10

* SumoLogic

* Proofpoint Feed

* required change

* adding tests

* add fetch logs to nightly build fetch integrations (#27124)

* add fetch logs to nightly build fetch integrations

* fix QRadar tests

* update release notes and docker files

* fix expansev2

* rn

* fix logs

* fix flask8

* added date field to skip incident log

* resolve conflict

* Bump pack from version QRadar to 2.4.22.

---------

Co-authored-by: Content Bot <bot@demisto.com>

* add fetch log part2 (#27196)

* cortexDataLake

* update docker

* GenericSQL logs

* update rn

* md-atp logs

* update docker

* adding time to skip incidents

* update docker

* AWS Feed - added support for IPv6 (#27141)

* AWS Feed - added support for IPv6

* added tests

* cr

* tests an rn

* validation

* rn

* cr

* di

* Bump sane-pdf-report docker image (#27318)

* Bump sane-pdf-report docker image

* Bump pack from version Base to 1.32.11.

---------

Co-authored-by: Content Bot <bot@demisto.com>

* Fixed file name to be "indicatorfield" (#27342)

* fixed file name

* RN

* RN

* Update 3_3_74.md

* Update setup poetry step in pre-commit (#27224)

* update setup poetry

* use pip

* change Setup Poetry to use Gr1N

* change Setup Poetry to use Gr1N in pre commit

* adding root .editorconfig file. (#27280)

https://editorconfig.org/

* fixing unbound local variable on search dependencies (#27327)

* update readme file (#27356)

* Core rest api add xsoar hosted (#27355)

* bug fix

* RN update

---------

Co-authored-by: xsoar-bot <xsoar-bot@paloaltonetworks.com>

* Updated pb to use cve command (#27341)

* MSGraphTeams fix path in the documentation (#27353)

* fix docs

* RN

* Fix common server python mypy (#27351)

* fixed a mypy issue

* added rn

* fix

* Marketplace doc-howto (#27349)

* Duo fields enhancement (#27308)

* Enhancement for modeling rules.

* added telephony modeling rule

* modified modeling rule

* modified shcema file.

* Added release notes.

* Added release notes.

* updated pack metadata release notes.

* Free enrichers tags - "Plug & Enrich" (#27320)

* "Plug & Enrich" tags and FreeEnrichers pack

* Added tags to approved list

* Updated and corrected the readme.

* Another small fix of a typo in readme

* Reverted accidentally removing pack name

* Better formatting

* Added "Free Enricher" to all "Plug & Fetch" enrichers

* ignore modeling/parsing rules suffix validate (#27373)

* Fix RTIR issue (#27360)

* fix type

* Add UTs for changed add_reply function

* add credential defaults, improve UT

---------

Co-authored-by: samuelFain <65926551+samuelFain@users.noreply.github.com>

* Added code for integration of events (#26519) (#27379)

* Added code for integration of events

* Code review Feedback

* changes in fetch incident

* PR Review change

* PR Review change

* changes in read me file

* Changed read me file based on the review

* Changes for playbook and intergration

* changes in the read me file

* PR changes

* changes in image and docker image

* change in services in alert

* changes for alert

* Changes in docker image

* Changes for docker image

* Update Packs/CybleThreatIntel/Integrations/CybleThreatIntel/CybleThreatIntel.yml



* Update Packs/CybleEventsV2/Integrations/CybleEventsV2/CybleEventsV2.yml



---------

Co-authored-by: cyble-dev <101622497+cyble-dev@users.noreply.github.com>
Co-authored-by: RotemAmit <71597826+RotemAmit@users.noreply.github.com>

* CSP - Added `Rank` class (new grid field) and `rank` to the Domain class (new grid field) (#27352)

* Added rank to domain

* RN

* Update CommonServerPython.py

* RN

* Splunk py raise timezone exception (#27316)

* SplunkPy - fix uninformative error message when missing timezone in mirroring

* Added RNs

* Updated readme

* CR updates

* Update Packs/SplunkPy/ReleaseNotes/3_0_20.md

Co-authored-by: yuvalbenshalom <ybenshalom@paloaltonetworks.com>

* Updated Docker Image

---------

Co-authored-by: yuvalbenshalom <ybenshalom@paloaltonetworks.com>

* qradar return error with traceback (#27229)

* Zscaler ZIA enhancement: Add IP Destination group commands (#27386)

* Zscaler ZIA enhancement: Add IP Destination group commands (#26447)

* ZIA Enhancement: IP destination group commands

* Included 3 new commands for Zscaler Integration as follows::
 - Added zscaler-list-ip-destination-groups
 - Added zscaler-create-ip-destination-groups
 - Added zscaler-edit-ip-destination-groups

---------

Co-authored-by: rootbid <rootbid@users.noreply.github.com>

* ZIA Enhancement: IP destination group commands
* Included 2 new commands for Zscaler Integration as follows::
 - Added zscaler-list-ip-destination-groups-lite
 - Added zscaler-delete-ip-destination-groups

---------

Author: pallavi-garad <pallavi.garad.77@gmail.com>
Co-authored-by: rootbid <rootbid@users.noreply.github.com>

* Minor updates and fixes

* Update and add documentation links for Zscaler ZIA

* Zscaler ZIA Enhancement - Update with requested changes

* Update .devcontainer.json name

* merge list-ip-destination-groups and lite command

* fixed minor issues

* update lite argument description

---------

Co-authored-by: rootbid <rootbid@users.noreply.github.com>

* Update .devcontainer/devcontainer.json

Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>

* Update as per review comments

- Fix exceptions
- Use CommandResults
- Refactor zscaler-list-ip-destination-groups and zscaler-edit-ip-destination-group commands
- Update release notes

* Regenerate README after updating Zscaler.yml and unit test bug fixes

* Resolve merge conflicts

* Fix type annotations and update docker image

* Update Packs/Zscaler/ReleaseNotes/1_3_10.md

Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>

---------

Co-authored-by: Shambo Samanta <samantashambo@gmail.com>
Co-authored-by: rootbid <rootbid@users.noreply.github.com>
Co-authored-by: pallavi-garad <125474609+pallavi-garad@users.noreply.github.com>
Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

---------

Co-authored-by: Deepansh <34774585+rootbid@users.noreply.github.com>
Co-authored-by: Shambo Samanta <samantashambo@gmail.com>
Co-authored-by: rootbid <rootbid@users.noreply.github.com>
Co-authored-by: pallavi-garad <125474609+pallavi-garad@users.noreply.github.com>
Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* XSIAM | ForcepointSWG Pack (#26706)

* XSIAM | ForcepointSWG Pack

* Added pack files

* Added pack-ignore and secrets-ignore

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Updated ModelingRules

---------

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: evisochek <72695126+evisochek@users.noreply.github.com>

* AzureSentinel - keywords argument from 'comma separate' to 'str' in azure-sentinel-threat-indicator-query (#27380)

* keywords argument from comma separate to str in azure-sentinel-threat
-indicator-query command

* RN

* DO

* Update Packs/AzureSentinel/Integrations/AzureSentinel/README.md

Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com>

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml

Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com>

* Update Packs/AzureSentinel/ReleaseNotes/1_5_8.md

Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com>

* under sources

* additional info for clarification

* Update Packs/AzureSentinel/Integrations/AzureSentinel/README.md

Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com>

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml

Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com>

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml

Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com>

* validate yml

* validate yml

* revert and Dor's solution

* revert README

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.py

Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com>

* add instance name for the TPB

---------

Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com>

* Update Docker Image To demisto/py3-tools  (#27396)

* Updated Metadata Of Pack MailListener

* Added release notes to pack MailListener

* Packs/MailListener/Integrations/MailListenerV2/MailListenerV2.yml Docker image update

* Remove content items with toversion less than 6.5.0 (#27325)

* remove playbooks

* remove scripts

* remove integrations

* remove integrations

* remove README

* remove script/integration packs

* fix UT

* False

* Align credentials stores part 5 (#27126)

* Align credentials stores part 5

* adding IBM

* RL

* checking new docker image

* update

* docker to fix pre-commit

* fix docker

* update docker in rl

* add test req

* old docker

* rl

* docker

---------

Co-authored-by: ilan <ierukhimovic@paloaltonetworks.com>

* Zscaler add reliability (#27197)

* Zscaler - add reliability parameter

* added RNs

* pre-commit hooks

* updated docker image

* Changed reliability to Reliability in outputs

* updated docker image

* updated RNs

* updated RNs

* hide EWS Pack (#27231)

* added hidden key

* removed ews from dependencies

* added ,

* added ,

* removed dependencies to EWS Mail Sender

* removed dependencies to EWS Mail Sender

* commented a line, to revert  after testing

* commented a line, to revert  after testing

* reverted commmenting

* added intergration

* Squid testdata (#26659)

* Update modeling rules

* Updated release notes.

* update release notes.

* new line after alter for the xdm mapping.

* Align credentials stores  part 14 (#27361)

* Align credentials stores for all Cortex Marketplace integrations- part 13

* fix pack

* remove ignore

* correct ignore

* added commands to read me

* [ASM] - Expander - Expander v2 Pack enhancements - batch 1 (#27398)

* [ASM] - Expander - Expander v2 Pack enhancements - batch 1 (#27006)

* initial additional of new Ev2 content

* adding playbook readmes

* layout update and release notes

* validation fixes

* widget validation and release notes style

* playbook validation errors

* Update incidenttype-Xpanse_Alert.json

fixed incident type playbook assignment

* validation issues

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment_README.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Handler.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update widget logic

* Update Widget logic

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* update from_version

* Apply suggestions from code review

Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com>

* Apply suggestions from code review

Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com>

* Update Packs/CortexXpanse/IncidentTypes/incidenttype-Xpanse_Alert.json

Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com>

* back to 6.8 fromversion

* README enhancements

* Playbook cleanup

* README img fix

* Dashboard fix and incident type version validation fix

* README images

* release notes error

* release notes validation

---------

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Handler.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/README.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

---------

Co-authored-by: Andrew Scott <77340714+andrew-paloalto@users.noreply.github.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com>
Co-authored-by: RotemAmit <71597826+RotemAmit@users.noreply.github.com>

* Align credentials stores part 16 (#27367)

* XSIAM | Fix for Windows Events Modeling Rules (#27129)

* [VirusTotal] Fix error when optional parameter extended_data is not present in command calls (#27414)

* [VirusTotal] Fix error when optional parameter extended_data is not present in command calls (#27411)

* Fix error when optional parameter extended_data is not present in command calls

* release notes

* docker image update

* updated rn

---------

Co-authored-by: Daniel Pascual <danielvazquez@google.com>
Co-authored-by: michal-dagan <mdagan@paloaltonetworks.com>

* ironPort modeling rules (#27133)

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* ignore rules suffix validate (#27397)

* added marketplaces to event collector yml (#27400)

* added marketplaces to event collector yml

* rn

* removed rn

* rn and docker

* Email ask user add using argument (#27401)

* Added the usingSender argument to enable using only one instance to send the email

* Release Notes, Metadata

* RM param, add generic fix

* Align credentials stores part 15 (#27364)

* Align credentials stores - part 15

* Akamai WAF

* docker

* adding an error

* revert irrelevant change

* revert irrelevant change

* update docker

* fix autodiscovery

* fix validations

* final changes

* validation fix

* add ut increase timeout

* increase timeout and test tpb

* add ut

* cr last fixes

* changed task ids for testing

* test tpb change

---------

Co-authored-by: tkatzir <tkatzir@paloaltonetworks.com>
Co-authored-by: rshunim <102469772+rshunim@users.noreply.github.com>
Co-authored-by: Guy Afik <53861351+GuyAfik@users.noreply.github.com>
Co-authored-by: content-bot <55035720+content-bot@users.noreply.github.com>
Co-authored-by: Dror Avrahami <davrahami@paloaltonetworks.com>
Co-authored-by: sberman <sberman@paloaltonetworks.com>
Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>
Co-authored-by: Menachem Weinfeld <90556466+mmhw@users.noreply.github.com>
Co-authored-by: eepstain <116078117+eepstain@users.noreply.github.com>
Co-authored-by: darkushin <61732335+darkushin@users.noreply.github.com>
Co-authored-by: Mai Morag <81917647+maimorag@users.noreply.github.com>
Co-authored-by: dorschw <81086590+dorschw@users.noreply.github.com>
Co-authored-by: Crest Data Systems <60967033+crestdatasystems@users.noreply.github.com>
Co-authored-by: crestdatasystems <crestdatasystems@users.noreply.github.com>
Co-authored-by: recordedfuture-simonhornestedt <109588368+recordedfuture-simonhornestedt@users.noreply.github.com>
Co-authored-by: michal-dagan <109464765+michal-dagan@users.noreply.github.com>
Co-authored-by: israelpoli <72099621+israelpoli@users.noreply.github.com>
Co-authored-by: Brad Chiappetta <38439955+bradchiappetta@users.noreply.github.com>
Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: Yaakov Praisler <59408745+yaakovpraisler@users.noreply.github.com>
Co-authored-by: Ben Melamed <bmelamed@paloaltonetworks.com>
Co-authored-by: anas-yousef <44998563+anas-yousef@users.noreply.github.com>
Co-authored-by: yasta5 <112320333+yasta5@users.noreply.github.com>
Co-authored-by: grzegorzpapkala <grzegorzpapkala@gmail.com>
Co-authored-by: Content Bot <bot@demisto.com>
Co-authored-by: Arad Carmi <62752352+AradCarmi@users.noreply.github.com>
Co-authored-by: Suhasini <97945981+suhasini-b@users.noreply.github.com>
Co-authored-by: Danny_Fried <dfried@paloaltonetworks.com>
Co-authored-by: Michael Yochpaz <8832013+MichaelYochpaz@users.noreply.github.com>
Co-authored-by: Viktor Poltorak <90267674+viktor-orca@users.noreply.github.com>
Co-authored-by: Fahad Yousuf <fahadysf@gmail.com>
Co-authored-by: Erez FelmanDar <102903097+efelmandar@users.noreply.github.com>
Co-authored-by: Edi Katsenelson <85438368+edik24@users.noreply.github.com>
Co-authored-by: Shmuel Kroizer <69422117+shmuel44@users.noreply.github.com>
Co-authored-by: shmuel44 <shmuel44@users.noreply.github.com>
Co-authored-by: samuelFain <65926551+samuelFain@users.noreply.github.com>
Co-authored-by: Koby Meir <kobymeir@users.noreply.github.com>
Co-authored-by: eli sharf <57587340+esharf@users.noreply.github.com>
Co-authored-by: jbabazadeh <132264628+jbabazadeh@users.noreply.github.com>
Co-authored-by: MLainer1 <93524335+MLainer1@users.noreply.github.com>
Co-authored-by: Liron Michalevich <73780437+lmichalevich@users.noreply.github.com>
Co-authored-by: Adi Daud <46249224+adi88d@users.noreply.github.com>
Co-authored-by: Dan Sterenson <38375556+dansterenson@users.noreply.github.com>
Co-authored-by: xsoar-bot <xsoar-bot@paloaltonetworks.com>
Co-authored-by: merit-maita <49760643+merit-maita@users.noreply.github.com>
Co-authored-by: cyble-dev <101622497+cyble-dev@users.noreply.github.com>
Co-authored-by: RotemAmit <71597826+RotemAmit@users.noreply.github.com>
Co-authored-by: yuvalbenshalom <ybenshalom@paloaltonetworks.com>
Co-authored-by: ilaner <88267954+ilaner@users.noreply.github.com>
Co-authored-by: Deepansh <34774585+rootbid@users.noreply.github.com>
Co-authored-by: Shambo Samanta <samantashambo@gmail.com>
Co-authored-by: rootbid <rootbid@users.noreply.github.com>
Co-authored-by: pallavi-garad <125474609+pallavi-garad@users.noreply.github.com>
Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>
Co-authored-by: nkanon <109467661+nkanon@users.noreply.github.com>
Co-authored-by: evisochek <72695126+evisochek@users.noreply.github.com>
Co-authored-by: ilan <ierukhimovic@paloaltonetworks.com>
Co-authored-by: Andrew Scott <77340714+andrew-paloalto@users.noreply.github.com>
Co-authored-by: Daniel Pascual <danielvazquez@google.com>
Co-authored-by: michal-dagan <mdagan@paloaltonetworks.com>
Co-authored-by: guytamir10 <106061479+guytamir10@users.noreply.github.com>
Co-authored-by: EyalPintzov <91007713+eyalpalo@users.noreply.github.com>
Co-authored-by: Andrew Shamah <42912128+amshamah419@users.noreply.github.com>
Co-authored-by: yucohen <yucohen@paloaltonetworks.com>

Packs/MicrosoftExchangeOnPremise/Integrations/EWSv2/EWSv2.yml

@@ -1016,8 +1016,8 @@ script:
       name: query
       required: true
       secret: false
-    deprecated: false
-    description: Starts a compliance search.
+    deprecated: true
+    description: This command is deprecated. Use the o365-sc-start-search command from Security And Compliance V2 instead. Starts a compliance search.
     execution: false
     name: ews-o365-start-compliance-search
     outputs:
@@ -1045,8 +1045,8 @@ script:
       - 'False'
       required: false
       secret: false
-    deprecated: false
-    description: Returns the status and results of a compliance search.
+    deprecated: true
+    description: This command is deprecated. Use the o365-sc-get-search command Security And Compliance V2 instead. Returns the status and results of a compliance search.
     execution: false
     name: ews-o365-get-compliance-search
     outputs:
@@ -1069,8 +1069,8 @@ script:
       name: search-name
       required: true
       secret: false
-    deprecated: false
-    description: Purges the results found in the compliance search.
+    deprecated: true
+    description: This command is deprecated. Use the o365-sc-new-search-action command from Security And Compliance V2. Purges the results found in the compliance search.
     execution: false
     name: ews-o365-purge-compliance-search-results
     outputs:
@@ -1084,8 +1084,8 @@ script:
       name: search-name
       required: true
       secret: false
-    deprecated: false
-    description: Removes the compliance search.
+    deprecated: true
+    description: This command is deprecated. Use the o365-sc-remove-search command from Security And Compliance V2. Removes the compliance search.
     execution: false
     name: ews-o365-remove-compliance-search
     outputs:
@@ -1099,8 +1099,8 @@ script:
       name: search-name
       required: true
       secret: false
-    deprecated: false
-    description: Checks the status of the purge operation on the compliance search.
+    deprecated: true
+    description: This command is deprecated. Use the o365-sc-get-search-action command from Security And Compliance V2 instead .Checks the status of the purge operation on the compliance search.
     execution: false
     name: ews-o365-get-compliance-search-purge-status
     outputs:
@@ -1301,19 +1301,20 @@ script:
     description: Replies to an email using EWS.
     execution: false
     name: reply-mail
-  dockerimage: demisto/py-ews:1.0.0.49868
+  dockerimage: demisto/py-ews:5.0.2.63879
   feed: false
   isfetch: true
   longRunning: false
   longRunningPort: false
   runonce: false
   script: '-'
-  subtype: python2
+  subtype: python3
   type: python
 tests:
 - pyEWS_Test
 - EWS V2 Send Mail Test
 - EWS V2 Send Mail Test 2
+- EWS Public Folders Test
 defaultmapperin: EWS v2-mapper
 defaultclassifier: EWS v2
 fromversion: 5.0.0

Packs/MicrosoftExchangeOnPremise/Integrations/EWSv2/EWSv2_test.py

@@ -107,7 +107,8 @@ def order_by(self, *args):
             return [Message(), Message(), Message(), Message(), Message()]
 
     client = TestNormalCommands.MockClient()
-    mocker.patch.object(dateparser, 'parse', return_value=datetime.datetime(2021, 5, 23, 13, 18, 14, 901293))
+    mocker.patch.object(dateparser, 'parse', return_value=datetime.datetime(2021, 5, 23, 13, 18, 14, 901293,
+                                                                            datetime.timezone.utc))
     mocker.patch.object(EWSv2, 'get_folder_by_path', return_value=MockObject())
 
     mocker.patch.object(MockObject, 'filter')
@@ -206,33 +207,33 @@ def test_dateparser():
             message_id='message1',
             text_body='Hello World',
             body='message1',
-            datetime_received=EWSDateTime(2021, 7, 14, 13, 00, 00, tzinfo=EWSTimeZone.timezone('UTC')),
-            datetime_sent=EWSDateTime(2021, 7, 14, 13, 00, 00, tzinfo=EWSTimeZone.timezone('UTC')),
-            datetime_created=EWSDateTime(2021, 7, 14, 13, 00, 00, tzinfo=EWSTimeZone.timezone('UTC'))
+            datetime_received=EWSDateTime(2021, 7, 14, 13, 00, 00, tzinfo=EWSTimeZone('UTC')),
+            datetime_sent=EWSDateTime(2021, 7, 14, 13, 00, 00, tzinfo=EWSTimeZone('UTC')),
+            datetime_created=EWSDateTime(2021, 7, 14, 13, 00, 00, tzinfo=EWSTimeZone('UTC'))
             ),
     Message(subject='message2',
             message_id='message2',
             text_body='Hello World',
             body='message2',
-            datetime_received=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone.timezone('UTC')),
-            datetime_sent=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone.timezone('UTC')),
-            datetime_created=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone.timezone('UTC'))
+            datetime_received=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone('UTC')),
+            datetime_sent=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone('UTC')),
+            datetime_created=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone('UTC'))
             ),
     Message(subject='message3',
             message_id='message3',
             text_body='Hello World',
             body='message3',
-            datetime_received=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone.timezone('UTC')),
-            datetime_sent=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone.timezone('UTC')),
-            datetime_created=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone.timezone('UTC'))
+            datetime_received=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone('UTC')),
+            datetime_sent=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone('UTC')),
+            datetime_created=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone('UTC'))
             ),
     Message(subject='message4',
             message_id='message4',
             text_body='Hello World',
             body='message4',
-            datetime_received=EWSDateTime(2021, 7, 14, 13, 10, 00, tzinfo=EWSTimeZone.timezone('UTC')),
-            datetime_sent=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone.timezone('UTC')),
-            datetime_created=EWSDateTime(2021, 7, 14, 13, 11, 00, tzinfo=EWSTimeZone.timezone('UTC'))
+            datetime_received=EWSDateTime(2021, 7, 14, 13, 10, 00, tzinfo=EWSTimeZone('UTC')),
+            datetime_sent=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone('UTC')),
+            datetime_created=EWSDateTime(2021, 7, 14, 13, 11, 00, tzinfo=EWSTimeZone('UTC'))
             ),
 ]
 CASE_FIRST_RUN_NO_INCIDENT = (
@@ -453,11 +454,23 @@ def test_categories_parse_item_as_dict():
                       message_id='message4',
                       text_body='Hello World',
                       body='message4',
-                      datetime_received=EWSDateTime(2021, 7, 14, 13, 10, 00, tzinfo=EWSTimeZone.timezone('UTC')),
-                      datetime_sent=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone.timezone('UTC')),
-                      datetime_created=EWSDateTime(2021, 7, 14, 13, 11, 00, tzinfo=EWSTimeZone.timezone('UTC')),
+                      datetime_received=EWSDateTime(2021, 7, 14, 13, 10, 00, tzinfo=EWSTimeZone('UTC')),
+                      datetime_sent=EWSDateTime(2021, 7, 14, 13, 9, 00, tzinfo=EWSTimeZone('UTC')),
+                      datetime_created=EWSDateTime(2021, 7, 14, 13, 11, 00, tzinfo=EWSTimeZone('UTC')),
                       categories=['Purple category', 'Orange category']
                       )
 
     return_value = parse_item_as_dict(message, False)
     assert return_value.get("categories") == ['Purple category', 'Orange category']
+
+
+def test_get_entry_for_object_empty():
+    from EWSv2 import get_entry_for_object
+    obj = {}
+    assert get_entry_for_object("test", "keyTest", obj) == "There is no output results"
+
+
+def test_get_entry_for_object():
+    from EWSv2 import get_entry_for_object
+    obj = {"a": 1, "b": 2}
+    assert get_entry_for_object("test", "keyTest", obj)['HumanReadable'] == '### test\n|a|b|\n|---|---|\n| 1 | 2 |\n'

Packs/MicrosoftExchangeOnPremise/ReleaseNotes/2_0_0.md

@@ -0,0 +1,12 @@
+
+#### Integrations
+
+##### EWS v2
+- Updated the Docker image to: *demisto/py-ews:5.0.2.63879*.
+Updated integration to support Exchange 2019, and use python3.
+- Command ***ews-o365-purge-compliance-search-results*** is deprecated. Use o365-sc-new-search-action command from Security And Compliance V2 instead.
+- Command ***ews-o365-get-compliance-search-purge-status*** is deprecated. Use o365-sc-get-search-action command from Security And Compliance V2 instead.
+- Command ***ews-o365-remove-compliance-search*** is deprecated. Use ews-o365-remove-compliance-search instead.
+- Command ***ews-o365-get-compliance-search*** is deprecated. Use o365-sc-get-search command Security And Compliance V2 instead.
+- Command ***ews-o365-start-compliance-search*** is deprecated. Use o365-sc-start-search command from Security And Compliance V2 instead.
+

Packs/MicrosoftExchangeOnPremise/TestPlaybooks/playbook-EWS-V2-send-mail-Test.yml

@@ -5,18 +5,20 @@ starttaskid: "0"
 tasks:
   "0":
     id: "0"
-    taskid: 21aaed67-8b83-4255-8f91-5686ea984c61
+    taskid: b6a30efd-f6f6-451b-8c46-92d8921fd224
     type: start
     task:
-      id: 21aaed67-8b83-4255-8f91-5686ea984c61
+      id: b6a30efd-f6f6-451b-8c46-92d8921fd224
       version: -1
       name: ""
       iscommand: false
       brand: ""
+      description: ''
     nexttasks:
       '#none#':
       - "8"
     separatecontext: false
+    continueonerrortype: ""
     view: |-
       {
         "position": {
@@ -33,10 +35,10 @@ tasks:
     isautoswitchedtoquietmode: false
   "1":
     id: "1"
-    taskid: 5c5c9851-198d-4275-8860-8886f4dc899a
+    taskid: c556fd47-93f7-49d6-8f98-82c96426c0be
     type: regular
     task:
-      id: 5c5c9851-198d-4275-8860-8886f4dc899a
+      id: c556fd47-93f7-49d6-8f98-82c96426c0be
       version: -1
       name: Test send mail
       script: EWS v2|||send-mail
@@ -49,17 +51,12 @@ tasks:
     scriptarguments:
       attachIDs:
         simple: ${File.EntryID}
-      attachNames: {}
-      bcc: {}
-      body: {}
-      cc: {}
-      htmlBody: {}
-      replyTo: {}
       subject:
         simple: test
       to:
         simple: buildtests@demisto.int
     separatecontext: false
+    continueonerrortype: ""
     view: |-
       {
         "position": {
@@ -76,10 +73,10 @@ tasks:
     isautoswitchedtoquietmode: false
   "2":
     id: "2"
-    taskid: 371db546-d62c-437e-8ae5-b5d62b48cde1
+    taskid: 25e6d467-8660-4058-8ad3-f8c47a4bb5e2
     type: regular
     task:
-      id: 371db546-d62c-437e-8ae5-b5d62b48cde1
+      id: 25e6d467-8660-4058-8ad3-f8c47a4bb5e2
       version: -1
       name: Get file
       scriptName: http
@@ -90,22 +87,16 @@ tasks:
       '#none#':
       - "1"
     scriptarguments:
-      body: {}
       filename:
         simple: test_file
-      headers: {}
-      insecure: {}
       method:
         simple: GET
-      password: {}
-      proxy: {}
       saveAsFile:
         simple: "yes"
-      unsecure: {}
       url:
         simple: https://raw.githubusercontent.com/demisto/content/master/TestData/ParseEmailFiles_test_email.eml
-      username: {}
     separatecontext: false
+    continueonerrortype: ""
     view: |-
       {
         "position": {
@@ -122,19 +113,21 @@ tasks:
     isautoswitchedtoquietmode: false
   "3":
     id: "3"
-    taskid: 81e8e117-3c88-42c4-8bab-e87a8e9fbe91
+    taskid: 1500bd1b-66d7-4586-85c4-089dcf371cc9
     type: title
     task:
-      id: 81e8e117-3c88-42c4-8bab-e87a8e9fbe91
+      id: 1500bd1b-66d7-4586-85c4-089dcf371cc9
       version: -1
       name: Test success after failure
       type: title
       iscommand: false
       brand: ""
+      description: ''
     nexttasks:
       '#none#':
       - "4"
     separatecontext: false
+    continueonerrortype: ""
     view: |-
       {
         "position": {
@@ -151,10 +144,10 @@ tasks:
     isautoswitchedtoquietmode: false
   "4":
     id: "4"
-    taskid: 0c7e82c3-ac71-42ae-801d-9d492d673f7c
+    taskid: 0cd75765-297c-4ea1-872c-17d1c5436cd9
     type: regular
     task:
-      id: 0c7e82c3-ac71-42ae-801d-9d492d673f7c
+      id: 0cd75765-297c-4ea1-872c-17d1c5436cd9
       version: -1
       name: Send Bad Email (Should fail)
       description: Sends an email using EWS.
@@ -166,21 +159,15 @@ tasks:
       '#none#':
       - "5"
     scriptarguments:
-      attachCIDs: {}
       attachIDs:
         simple: bad
-      attachNames: {}
-      bcc: {}
-      body: {}
-      cc: {}
-      htmlBody: {}
-      replyTo: {}
       subject:
         simple: Bad Email That Fails
       to:
         simple: buildtests@demisto.int
-    continueonerror: true
     separatecontext: false
+    continueonerror: true
+    continueonerrortype: ""
     view: |-
       {
         "position": {
@@ -197,31 +184,25 @@ tasks:
     isautoswitchedtoquietmode: false
   "5":
     id: "5"
-    taskid: 1ce3f82a-9aea-4edc-8891-ee721c063342
+    taskid: 98514559-3405-440a-81e5-886dd9a653bd
     type: regular
     task:
-      id: 1ce3f82a-9aea-4edc-8891-ee721c063342
+      id: 98514559-3405-440a-81e5-886dd9a653bd
       version: -1
       name: Send Good Email
       script: EWS v2|||send-mail
       type: regular
       iscommand: true
       brand: EWS v2
     scriptarguments:
-      attachCIDs: {}
       attachIDs:
         simple: ${File.EntryID}
-      attachNames: {}
-      bcc: {}
-      body: {}
-      cc: {}
-      htmlBody: {}
-      replyTo: {}
       subject:
         simple: test
       to:
         simple: buildtests@demisto.int
     separatecontext: false
+    continueonerrortype: ""
     view: |-
       {
         "position": {
@@ -238,10 +219,10 @@ tasks:
     isautoswitchedtoquietmode: false
   "8":
     id: "8"
-    taskid: 3e9a3f05-6619-4700-86e7-57ca4e3ae7e3
+    taskid: 42c66f7d-f513-4a63-8b77-073fe64f11b0
     type: regular
     task:
-      id: 3e9a3f05-6619-4700-86e7-57ca4e3ae7e3
+      id: 42c66f7d-f513-4a63-8b77-073fe64f11b0
       version: -1
       name: DeleteContext
       description: Delete field from context
@@ -255,11 +236,8 @@ tasks:
     scriptarguments:
       all:
         simple: "yes"
-      index: {}
-      key: {}
-      keysToKeep: {}
-      subplaybook: {}
     separatecontext: false
+    continueonerrortype: ""
     view: |-
       {
         "position": {