Skip to content

Commit a4fcbd7

Browse files
elasticmachineelasticmachine
authored
Merge branch 'master' into 62217
2 parents a7cb102 + ffc8741 commit a4fcbd7

425 files changed

Lines changed: 4869 additions & 3085 deletions

File tree

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

docs/development/plugins/data/public/kibana-plugin-plugins-data-public.datapublicpluginstart.actions.md

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -8,6 +8,7 @@
88

99
```typescript
1010
actions: {
11-
createFiltersFromEvent: typeof createFiltersFromEvent;
11+
createFiltersFromValueClickAction: typeof createFiltersFromValueClickAction;
12+
createFiltersFromRangeSelectAction: typeof createFiltersFromRangeSelectAction;
1213
};
1314
```

docs/development/plugins/data/public/kibana-plugin-plugins-data-public.datapublicpluginstart.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,7 @@ export interface DataPublicPluginStart
1414

1515
| Property | Type | Description |
1616
| --- | --- | --- |
17-
| [actions](./kibana-plugin-plugins-data-public.datapublicpluginstart.actions.md) | <code>{</code><br/><code> createFiltersFromEvent: typeof createFiltersFromEvent;</code><br/><code> }</code> | |
17+
| [actions](./kibana-plugin-plugins-data-public.datapublicpluginstart.actions.md) | <code>{</code><br/><code> createFiltersFromValueClickAction: typeof createFiltersFromValueClickAction;</code><br/><code> createFiltersFromRangeSelectAction: typeof createFiltersFromRangeSelectAction;</code><br/><code> }</code> | |
1818
| [autocomplete](./kibana-plugin-plugins-data-public.datapublicpluginstart.autocomplete.md) | <code>AutocompleteStart</code> | |
1919
| [fieldFormats](./kibana-plugin-plugins-data-public.datapublicpluginstart.fieldformats.md) | <code>FieldFormatsStart</code> | |
2020
| [indexPatterns](./kibana-plugin-plugins-data-public.datapublicpluginstart.indexpatterns.md) | <code>IndexPatternsContract</code> | |

docs/development/plugins/data/public/kibana-plugin-plugins-data-public.fieldformats.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -10,7 +10,7 @@
1010
fieldFormats: {
1111
FieldFormat: typeof FieldFormat;
1212
FieldFormatsRegistry: typeof FieldFormatsRegistry;
13-
serialize: (agg: import("./search").AggConfig) => import("../../expressions/common").SerializedFieldFormat<object>;
13+
serialize: (agg: import("./search").AggConfig) => import("../../expressions").SerializedFieldFormat<object>;
1414
DEFAULT_CONVERTER_COLOR: {
1515
range: string;
1616
regex: string;

docs/development/plugins/data/server/kibana-plugin-plugins-data-server.fieldformats.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -10,7 +10,7 @@
1010
fieldFormats: {
1111
FieldFormatsRegistry: typeof FieldFormatsRegistry;
1212
FieldFormat: typeof FieldFormat;
13-
serializeFieldFormat: (agg: import("../public/search").AggConfig) => import("../../expressions/common").SerializedFieldFormat<object>;
13+
serializeFieldFormat: (agg: import("../public/search").AggConfig) => import("../../expressions").SerializedFieldFormat<object>;
1414
BoolFormat: typeof BoolFormat;
1515
BytesFormat: typeof BytesFormat;
1616
ColorFormat: typeof ColorFormat;

docs/images/clone_panel.gif

798 KB
Loading

docs/management/advanced-options.asciidoc

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -217,6 +217,8 @@ might increase the search time. This setting is off by default. Users must opt-i
217217
[horizontal]
218218
`siem:defaultAnomalyScore`:: The threshold above which Machine Learning job anomalies are displayed in the SIEM app.
219219
`siem:defaultIndex`:: A comma-delimited list of Elasticsearch indices from which the SIEM app collects events.
220+
`siem:ipReputationLinks`:: A JSON array containing links for verifying the reputation of an IP address. The links are displayed on
221+
{siem-guide}/siem-ui-overview.html#network-ui[IP detail] pages.
220222
`siem:enableNewsFeed`:: Enables the security news feed on the SIEM *Overview*
221223
page.
222224
`siem:newsFeedUrl`:: The URL from which the security news feed content is

docs/settings/ml-settings.asciidoc

Lines changed: 8 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -8,7 +8,6 @@
88
You do not need to configure any settings to use {kib} {ml-features}. They are
99
enabled by default.
1010

11-
[float]
1211
[[general-ml-settings-kb]]
1312
==== General {ml} settings
1413

@@ -19,3 +18,11 @@ If set to `false` in `kibana.yml`, the {ml} icon is hidden in this {kib}
1918
instance. If `xpack.ml.enabled` is set to `true` in `elasticsearch.yml`, however,
2019
you can still use the {ml} APIs. To disable {ml} entirely, see the
2120
{ref}/ml-settings.html[{es} {ml} settings].
21+
22+
[[data-visualizer-settings]]
23+
==== {data-viz} settings
24+
25+
`xpack.ml.file_data_visualizer.max_file_size`::
26+
Sets the file size limit when importing data in the {data-viz}. The default
27+
value is `100MB`. The highest supported value for this setting is `1GB`.
28+

docs/siem/images/cases-ui.png

305 KB
Loading

docs/siem/siem-ui.asciidoc

Lines changed: 17 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -35,7 +35,7 @@ image::siem/images/network-ui.png[]
3535

3636
[float]
3737
[[detections-ui]]
38-
=== Detections (Beta)
38+
=== Detections (beta)
3939

4040
The Detections feature automatically searches for threats and creates
4141
signals when they are detected. Signal detection rules define the conditions
@@ -50,6 +50,22 @@ or the Detections API.
5050
[role="screenshot"]
5151
image::siem/images/detections-ui.png[]
5252

53+
[float]
54+
[[cases-ui]]
55+
=== Cases (beta)
56+
57+
Cases are used to open and track security issues directly in SIEM.
58+
Cases list the original reporter and all users who contribute to a case
59+
(`participants`). Case comments support Markdown syntax, and allow linking to
60+
saved Timelines. Additionally, you can send cases to external systems from
61+
within SIEM (currently ServiceNow).
62+
63+
For information about opening, updating, and closing cases, see
64+
{siem-guide}/cases-overview.html[Cases] in the SIEM Guide.
65+
66+
[role="screenshot"]
67+
image::siem/images/cases-ui.png[]
68+
5369
[float]
5470
[[timelines-ui]]
5571
=== Timeline

docs/user/dashboard.asciidoc

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -98,6 +98,24 @@ to the new dimensions.
9898
* To delete a panel, open the panel menu and select *Delete from dashboard.* Deleting a panel from a
9999
dashboard does *not* delete the saved visualization or search.
100100

101+
[float]
102+
[[cloning-a-panel]]
103+
=== Clone dashboard elements
104+
105+
In *Edit* mode, you can clone any panel on a dashboard.
106+
107+
To clone an existing panel, open the panel menu of the element you wish to clone, then select *Clone panel*.
108+
109+
* Cloned panels appear beside the original, and will move other panels down to make room if necessary.
110+
111+
* Clones support all of the original panel's functionality, including renaming, editing, and cloning.
112+
113+
* All cloned visualizations will appear in the visualization list.
114+
115+
[role="screenshot"]
116+
image:images/clone_panel.gif[clone panel]
117+
118+
101119
[float]
102120
[[viewing-detailed-information]]
103121
=== Inspect and edit elements

0 commit comments

Comments
 (0)