Skip to content

[windows] Only try to extract extension when there is a dot in the file name in defender data stream.#14891

Merged
marc-gr merged 1 commit intoelastic:mainfrom
marc-gr:fix/defender
Aug 21, 2025
Merged

[windows] Only try to extract extension when there is a dot in the file name in defender data stream.#14891
marc-gr merged 1 commit intoelastic:mainfrom
marc-gr:fix/defender

Conversation

@marc-gr
Copy link
Copy Markdown
Contributor

@marc-gr marc-gr commented Aug 11, 2025

Proposed commit message

Only try to extract extension when there is a dot in the file name in defender data stream.

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.
  • I have verified that any added dashboard complies with Kibana's Dashboard good practices

@marc-gr marc-gr added Integration:windows Windows bugfix Pull request that fixes a bug issue Team:Security-Windows Platform Security Windows Platform team [elastic/sec-windows-platform] labels Aug 11, 2025
@marc-gr marc-gr marked this pull request as ready for review August 11, 2025 12:44
@marc-gr marc-gr requested review from a team as code owners August 11, 2025 12:44
@marc-gr marc-gr requested review from AndersonQ and mauri870 August 11, 2025 12:44
@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Aug 11, 2025

Pinging @elastic/sec-windows-platform (Team:Security-Windows Platform)

@elastic-vault-github-plugin-prod
Copy link
Copy Markdown

elastic-vault-github-plugin-prod bot commented Aug 11, 2025

🚀 Benchmarks report

To see the full report comment with /test benchmark fullreport

@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Aug 11, 2025

💚 Build Succeeded

@elastic-sonarqube
Copy link
Copy Markdown

elastic-sonarqube bot commented Aug 11, 2025

Quality Gate passed Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
50.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube

@marc-gr marc-gr merged commit 130ffe1 into elastic:main Aug 21, 2025
9 checks passed
@marc-gr marc-gr deleted the fix/defender branch August 21, 2025 09:00
@elastic-vault-github-plugin-prod
Copy link
Copy Markdown

elastic-vault-github-plugin-prod bot commented Aug 21, 2025

Package windows - 3.1.1 containing this change is available at https://epr.elastic.co/package/windows/3.1.1/

tehbooom pushed a commit to tehbooom/integrations that referenced this pull request Nov 19, 2025
@marc-gr
Only try to extract extension when there is a dot in the file name in…
ca155e5 
… defender data stream. (elastic#14891)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AndersonQ AndersonQ AndersonQ approved these changes

@gogochan gogochan gogochan approved these changes

@mauri870 mauri870 mauri870 approved these changes

@ricardo-estc ricardo-estc ricardo-estc approved these changes

Assignees

No one assigned

Labels

bugfix Pull request that fixes a bug issue Integration:windows Windows Team:Security-Windows Platform Security Windows Platform team [elastic/sec-windows-platform]

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@marc-gr @elasticmachine @AndersonQ @gogochan @mauri870 @ricardo-estc