elastic
diff --git a/‎x-pack/plugins/security_solution/common/detection_engine/schemas/common/schemas.ts‎
Lines changed: 14 additions & 11 deletions b/‎x-pack/plugins/security_solution/common/detection_engine/schemas/common/schemas.ts‎
Lines changed: 14 additions & 11 deletions
diff --git a/‎x-pack/plugins/security_solution/common/detection_engine/schemas/request/add_prepackaged_rules_schema.ts‎
Lines changed: 2 additions & 2 deletions b/‎x-pack/plugins/security_solution/common/detection_engine/schemas/request/add_prepackaged_rules_schema.ts‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎x-pack/plugins/security_solution/common/detection_engine/schemas/request/import_rules_schema.ts‎
Lines changed: 2 additions & 2 deletions b/‎x-pack/plugins/security_solution/common/detection_engine/schemas/request/import_rules_schema.ts‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎x-pack/plugins/security_solution/common/detection_engine/schemas/request/patch_rules_schema.ts‎
Lines changed: 2 additions & 2 deletions b/‎x-pack/plugins/security_solution/common/detection_engine/schemas/request/patch_rules_schema.ts‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎x-pack/plugins/security_solution/common/detection_engine/schemas/request/rule_schemas.ts‎
Lines changed: 2 additions & 2 deletions b/‎x-pack/plugins/security_solution/common/detection_engine/schemas/request/rule_schemas.ts‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎x-pack/plugins/security_solution/common/detection_engine/schemas/response/rules_schema.ts‎
Lines changed: 2 additions & 2 deletions b/‎x-pack/plugins/security_solution/common/detection_engine/schemas/response/rules_schema.ts‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎x-pack/plugins/security_solution/common/detection_engine/schemas/types/default_threat_array.test.ts‎
Lines changed: 3 additions & 3 deletions b/‎x-pack/plugins/security_solution/common/detection_engine/schemas/types/default_threat_array.test.ts‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎x-pack/plugins/security_solution/common/detection_engine/schemas/types/default_threat_array.ts‎
Lines changed: 5 additions & 5 deletions b/‎x-pack/plugins/security_solution/common/detection_engine/schemas/types/default_threat_array.ts‎
Lines changed: 5 additions & 5 deletions
diff --git a/‎x-pack/plugins/security_solution/common/detection_engine/schemas/types/threat.mock.ts‎
Lines changed: 2 additions & 2 deletions b/‎x-pack/plugins/security_solution/common/detection_engine/schemas/types/threat.mock.ts‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎x-pack/plugins/security_solution/public/detections/components/rules/description_step/index.tsx‎
Lines changed: 3 additions & 7 deletions b/‎x-pack/plugins/security_solution/public/detections/components/rules/description_step/index.tsx‎
Lines changed: 3 additions & 7 deletions
@@ -413,6 +413,7 @@ export const threat_tactic = t.type({
   name: threat_tactic_name,
   reference: threat_tactic_reference,
 });
+export type ThreatTactic = t.TypeOf<typeof threat_tactic>;
 export const threat_subtechnique_id = t.string;
 export const threat_subtechnique_name = t.string;
 export const threat_subtechnique_reference = t.string;
@@ -421,6 +422,7 @@ export const threat_subtechnique = t.type({
   name: threat_subtechnique_name,
   reference: threat_subtechnique_reference,
 });
+export type ThreatSubtechnique = t.TypeOf<typeof threat_subtechnique>;
 export const threat_subtechniques = t.array(threat_subtechnique);
 export const threat_technique_id = t.string;
 export const threat_technique_name = t.string;
@@ -439,21 +441,22 @@ export const threat_technique = t.intersection([
     })
   ),
 ]);
+export type ThreatTechnique = t.TypeOf<typeof threat_technique>;
 export const threat_techniques = t.array(threat_technique);
-export const threat = t.array(
-  t.exact(
-    t.type({
-      framework: threat_framework,
-      tactic: threat_tactic,
-      technique: threat_techniques,
-    })
-  )
+export const threat = t.exact(
+  t.type({
+    framework: threat_framework,
+    tactic: threat_tactic,
+    technique: threat_techniques,
+  })
 );
-
 export type Threat = t.TypeOf<typeof threat>;
 
-export const threatOrUndefined = t.union([threat, t.undefined]);
-export type ThreatOrUndefined = t.TypeOf<typeof threatOrUndefined>;
+export const threats = t.array(threat);
+export type Threats = t.TypeOf<typeof threats>;
+
+export const threatsOrUndefined = t.union([threats, t.undefined]);
+export type ThreatsOrUndefined = t.TypeOf<typeof threatsOrUndefined>;
 
 export const threshold = t.exact(
   t.type({
 
@@ -23,7 +23,7 @@ import {
   Tags,
   To,
   type,
-  Threat,
+  Threats,
   threshold,
   ThrottleOrNull,
   note,
@@ -171,7 +171,7 @@ export type AddPrepackagedRulesSchemaDecoded = Omit<
   severity_mapping: SeverityMapping;
   tags: Tags;
   to: To;
-  threat: Threat;
+  threat: Threats;
   throttle: ThrottleOrNull;
   exceptions_list: ListArray;
 };
@@ -25,7 +25,7 @@ import {
   Tags,
   To,
   type,
-  Threat,
+  Threats,
   threshold,
   ThrottleOrNull,
   note,
@@ -193,7 +193,7 @@ export type ImportRulesSchemaDecoded = Omit<
   severity_mapping: SeverityMapping;
   tags: Tags;
   to: To;
-  threat: Threat;
+  threat: Threats;
   throttle: ThrottleOrNull;
   version: Version;
   exceptions_list: ListArray;
 
@@ -31,7 +31,7 @@ import {
   from,
   enabled,
   tags,
-  threat,
+  threats,
   threshold,
   throttle,
   references,
@@ -98,7 +98,7 @@ export const patchRulesSchema = t.exact(
     severity_mapping,
     tags,
     to,
-    threat,
+    threat: threats,
     threshold,
     throttle,
     timestamp_override,
 
@@ -42,7 +42,7 @@ import {
   max_signals,
   risk_score,
   severity,
-  threat,
+  threats,
   to,
   references,
   version,
@@ -167,7 +167,7 @@ const commonParams = {
     max_signals,
     risk_score_mapping,
     severity_mapping,
-    threat,
+    threat: threats,
     to,
     references,
     version,
 
@@ -43,7 +43,7 @@ import {
   timeline_id,
   timeline_title,
   type,
-  threat,
+  threats,
   threshold,
   throttle,
   job_status,
@@ -106,7 +106,7 @@ export const requiredRulesSchema = t.type({
   tags,
   to,
   type,
-  threat,
+  threat: threats,
   created_at,
   updated_at,
   created_by,
 
@@ -8,11 +8,11 @@ import { DefaultThreatArray } from './default_threat_array';
 import { pipe } from 'fp-ts/lib/pipeable';
 import { left } from 'fp-ts/lib/Either';
 import { foldLeftRight, getPaths } from '../../../test_utils';
-import { Threat } from '../common/schemas';
+import { Threats } from '../common/schemas';
 
 describe('default_threat_null', () => {
   test('it should validate an empty array', () => {
-    const payload: Threat = [];
+    const payload: Threats = [];
     const decoded = DefaultThreatArray.decode(payload);
     const message = pipe(decoded, foldLeftRight);
 
@@ -21,7 +21,7 @@ describe('default_threat_null', () => {
   });
 
   test('it should validate an array of threats', () => {
-    const payload: Threat = [
+    const payload: Threats = [
       {
         framework: 'MITRE ATTACK',
         technique: [{ reference: 'https://test.com', name: 'Audio Capture', id: 'T1123' }],
 
@@ -6,16 +6,16 @@
 
 import * as t from 'io-ts';
 import { Either } from 'fp-ts/lib/Either';
-import { Threat, threat } from '../common/schemas';
+import { Threats, threats } from '../common/schemas';
 
 /**
  * Types the DefaultThreatArray as:
  *   - If null or undefined, then an empty array will be set
  */
-export const DefaultThreatArray = new t.Type<Threat, Threat | undefined, unknown>(
+export const DefaultThreatArray = new t.Type<Threats, Threats | undefined, unknown>(
   'DefaultThreatArray',
-  threat.is,
-  (input, context): Either<t.Errors, Threat> =>
-    input == null ? t.success([]) : threat.validate(input, context),
+  threats.is,
+  (input, context): Either<t.Errors, Threats> =>
+    input == null ? t.success([]) : threats.validate(input, context),
   t.identity
 );
@@ -4,9 +4,9 @@
  * you may not use this file except in compliance with the Elastic License.
  */
 
-import { Threat } from '../common/schemas';
+import { Threats } from '../common/schemas';
 
-export const getThreatMock = (): Threat => [
+export const getThreatMock = (): Threats => [
   {
     framework: 'MITRE ATT&CK',
     tactic: {
 
@@ -18,11 +18,7 @@ import {
 } from '../../../../../../../../src/plugins/data/public';
 import { DEFAULT_TIMELINE_TITLE } from '../../../../timelines/components/timeline/translations';
 import { useKibana } from '../../../../common/lib/kibana';
-import {
-  AboutStepRiskScore,
-  AboutStepSeverity,
-  IMitreEnterpriseAttack,
-} from '../../../pages/detection_engine/rules/types';
+import { AboutStepRiskScore, AboutStepSeverity } from '../../../pages/detection_engine/rules/types';
 import { FieldValueTimeline } from '../pick_timeline';
 import { FormSchema } from '../../../../shared_imports';
 import { ListItems } from './types';
@@ -42,7 +38,7 @@ import {
 import { buildMlJobDescription } from './ml_job_description';
 import { buildActionsDescription } from './actions_description';
 import { buildThrottleDescription } from './throttle_description';
-import { Type } from '../../../../../common/detection_engine/schemas/common/schemas';
+import { Threats, Type } from '../../../../../common/detection_engine/schemas/common/schemas';
 import { THREAT_QUERY_LABEL } from './translations';
 import { filterEmptyThreats } from '../../../pages/detection_engine/rules/create/helpers';
 
@@ -179,7 +175,7 @@ export const getDescriptionItem = (
       indexPatterns,
     });
   } else if (field === 'threat') {
-    const threats: IMitreEnterpriseAttack[] = get(field, data);
+    const threats: Threats = get(field, data);
     return buildThreatDescription({ label, threat: filterEmptyThreats(threats) });
   } else if (field === 'threshold') {
     const threshold = get(field, data);