Skip to content

[windows] Add support for fully rendered security events#12551

Merged
marc-gr merged 1 commit intoelastic:mainfrom
marc-gr:win/rendered-evts-support
Feb 5, 2025
Merged

[windows] Add support for fully rendered security events#12551
marc-gr merged 1 commit intoelastic:mainfrom
marc-gr:win/rendered-evts-support

Conversation

@marc-gr
Copy link
Copy Markdown
Contributor

@marc-gr marc-gr commented Jan 31, 2025
edited
Loading

Proposed commit message

Add support for fully rendered security events

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.
  • I have verified that any added dashboard complies with Kibana's Dashboard good practices

@marc-gr marc-gr added enhancement New feature or request Team:Security-Windows Platform Security Windows Platform team [elastic/sec-windows-platform] Integration:windows Windows Integration:system System labels Jan 31, 2025
@marc-gr marc-gr force-pushed the win/rendered-evts-support branch 2 times, most recently from f8eebc3 to 13771e3 Compare February 3, 2025 09:03
@marc-gr marc-gr changed the title [windowsAdd support for fully rendered security events [windows] Add support for fully rendered security events Feb 3, 2025
@marc-gr marc-gr marked this pull request as ready for review February 3, 2025 09:31
@marc-gr marc-gr requested review from a team and faec February 3, 2025 09:31
@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Feb 3, 2025

Pinging @elastic/sec-windows-platform (Team:Security-Windows Platform)

@marc-gr marc-gr requested a review from VihasMakwana February 3, 2025 09:31
@elastic-vault-github-plugin-prod
Copy link
Copy Markdown

elastic-vault-github-plugin-prod bot commented Feb 3, 2025
edited
Loading

🚀 Benchmarks report

Package system 👍(2) 💚(0) 💔(1)

Expand to view
Data stream Previous EPS New EPS Diff (%) Result
syslog 250000 200000 -50000 (-20%) 💔

To see the full report comment with /test benchmark fullreport

@qcorporation qcorporation requested review from a team as code owners February 4, 2025 03:56
@andrewkroh andrewkroh added Integration:1password 1Password (Partner supported) Integration:abnormal_security Abnormal AI New Integration Issue or pull request for creating a new integration package. Team:Security-Service Integrations Security Service Integrations team [elastic/security-service-integrations] labels Feb 4, 2025
@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Feb 4, 2025

Pinging @elastic/security-service-integrations (Team:Security-Service Integrations)

@marc-gr marc-gr force-pushed the win/rendered-evts-support branch from 13771e3 to 078b840 Compare February 4, 2025 11:18
@marc-gr marc-gr removed request for a team February 4, 2025 12:14
@marc-gr marc-gr removed request for a team, VihasMakwana and faec February 4, 2025 12:14
@marc-gr marc-gr force-pushed the win/rendered-evts-support branch from 078b840 to 36825ad Compare February 5, 2025 07:42
@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Feb 5, 2025

💚 Build Succeeded

History

  • 💚 Build #21593 succeeded 078b8402dfe07fe701b62fea42f0d8815062bd8e
  • 💚 Build #21446 succeeded 13771e3ebc6760e66849c0152e42eb03cb2de976
  • 💔 Build #21371 failed f8eebc3e1961ee3a27d064b68fc7226f4491abe6

@elastic-sonarqube
Copy link
Copy Markdown

elastic-sonarqube bot commented Feb 5, 2025

Quality Gate passed Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
100.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube

matthewscherer
matthewscherer approved these changes Feb 5, 2025
View reviewed changes
Copy link
Copy Markdown
Contributor

@matthewscherer matthewscherer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Just yml changes. LGTM.

@marc-gr marc-gr merged commit 6aa13dd into elastic:main Feb 5, 2025
@marc-gr marc-gr deleted the win/rendered-evts-support branch February 5, 2025 13:56
@elastic-vault-github-plugin-prod
Copy link
Copy Markdown

elastic-vault-github-plugin-prod bot commented Feb 5, 2025

Package system - 1.65.0 containing this change is available at https://epr.elastic.co/package/system/1.65.0/

@elastic-vault-github-plugin-prod
Copy link
Copy Markdown

elastic-vault-github-plugin-prod bot commented Feb 5, 2025

Package windows - 2.4.0 containing this change is available at https://epr.elastic.co/package/windows/2.4.0/

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@matthewscherer matthewscherer matthewscherer approved these changes

Assignees

No one assigned

Labels

enhancement New feature or request Integration:abnormal_security Abnormal AI Integration:system System Integration:windows Windows Integration:1password 1Password (Partner supported) New Integration Issue or pull request for creating a new integration package. Team:Security-Service Integrations Security Service Integrations team [elastic/security-service-integrations] Team:Security-Windows Platform Security Windows Platform team [elastic/sec-windows-platform]

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@marc-gr @elasticmachine @matthewscherer @andrewkroh