[Security Solution] Skip all Detection & Response Cypress tests in Serverless

[banderror]

Resolves: #164441

Summary

Skips all Cypress tests owned by @elastic/security-detection-rule-management and @elastic/security-detection-engine teams in Serverless using the new @skipInServerless tag.

• Adds a new @skipInServerless tag
• Updates x-pack/test/security_solution_cypress/cypress/README.md to explain when to use what tags
• Explicitly adds missing tags to all D&R tests
• Adds // TODO: comments to tests with links to follow-up tickets
• Fixes the x-pack/plugins/security_solution/scripts/run_cypress/parallel.ts script (see below)

Follow-up work:

• [Security Solution] Enable Cypress tests in Serverless: Rule Management area #161540
• [Security Solution] Enable Cypress tests in Serverless: Detection Engine area #161539

Context

Serverless test failures will soon block PR merge

During the development of the serverless test infrastructure, we decided that serverless tests will only soft-fail. That means you see the test failure in your PR but you're still able to merge. We did that mainly in order to not block delivery of stateful features and bug fixes while serverless tests and pipelines were implemented and stabilized.
We now have the major building blocks for the serverless test infrastructure in place and will integrate serverless tests in our regular pipelines. As part of this process, we're skipping failing and flaky serverless tests that came in during the soft-fail phase. Once this is done, a PR with serverless test failures can no longer be merged, similar to how we have it for stateful test failures.

We plan to merge this in the next few days and we'll send out another notification when it's done.

Fixing parallel.ts

There were two problems with the x-pack/plugins/security_solution/scripts/run_cypress/parallel.ts script we use for running Cypress tests:

• The script was broken in ES Serverless support for FTR serverless tests. SSL support in kbn/es. kbn/es DX improvements. #162673 (here on this line)
• I think it has never supported situations when all tests matching a spec pattern (such as ./cypress/e2e/!(investigations|explore)/**/*.cy.ts) end up being skipped via Cypress tags (such as @skipInServerless)

Both the issues are fixed in this PR.

Code owners are added for this script in the CODEOWNERS file to prevent breaking this script in future PRs.

[elasticmachine]

Pinging @elastic/security-detections-response (Team:Detections and Resp)

[elasticmachine]

Pinging @elastic/security-solution (Team: SecuritySolution)

[banderror]

FYI @MadameSheema @patrykkopycinski @oatkiller @maximpn

See the PR description for motivation.

[banderror]

I also changed the pattern because it doesn't seem we need to support any nested subfolder structures which could be supported by **

[maximpn]

@elasticmachine merge upstream

[yctercero]

Should we add @skipInEss? If we need to skip for ESS right now we have to skip for all right?

[banderror]

@yctercero This is a good point. I think we will need this tag eventually. And yes, if we need to skip for ESS right now we have to skip for all.

I'm not sure about adding it now because I think that "now we have to skip for all" is exactly what we should be doing now. Until we basically eliminate flakiness in our tests, we should treat a flaky test in ESS as being in general not yet fixed. Then, when we can say something like "ok, the rule creation Cypress tests have been all fixed and not flaky anymore in ESS and Serverless", then we could start skipping them in either environment if flakiness ever occurs again.

[MadameSheema]

security-engineering-productivity changes LGTM!!

Lots of thanks for doing this effort 🙏

[yctercero]

LGTM - thanks for the changes! Ready to help with the next step of re-enabling these for DE.

[banderror]

Most of the tests passed in https://buildkite.com/elastic/kibana-pull-request/builds/157714. The failed ones look like flaky tests. Also, the Serverless Security Cypress Tests job didn't run any tests and exited early, which is expected and exactly what we were aiming for when fixing the parallel.ts script.

info Config spec pattern: ./cypress/e2e/**/*.cy.ts
--
  | info Arguments spec pattern: ./cypress/e2e/!(investigations\|explore)/**/*.cy.ts
  | info Resulting spec pattern: ./cypress/e2e/!(investigations\|explore)/**/*.cy.ts
  | @cypress/grep: filtering using tag(s) "@serverless --@brokenInServerless --@skipInServerless"
  | @cypress/grep: will omit filtered tests
  | grep and/or grepTags has eliminated all specs
  | grepTags: @serverless --@brokenInServerless --@skipInServerless
  | Will leave all specs to run to filter at run-time
  | info Resolved spec files or pattern after grep: ./cypress/e2e/!(investigations\|explore)/**/*.cy.ts
  | info No tests found - all tests could have been skipped via Cypress tags
  | Done in 7.91s.

I also tested locally that if I enable at least one test using Cypress tags, the job will run it.

I will remove the "all cypress tests" label and restart the build - hope it takes less time after that.

[spong]

Thank you for the detailed description, updated docs, and providing context/next steps -- appreciate it @banderror! LGTM 👍

[maximpn]

Cool! This PR also fixes Threat Intelligence Cypress Tests cc @PhilippeOberti

[kibana-ci]

💔 Build Failed

• Buildkite Build
• Commit: 23ed5fc
• Interpreting CI Failures

Failed CI Steps

• Explore - Security Solution Cypress Tests #1
• Security Solution Cypress tests, burning changed specs #1

Test Failures

• [job] [logs] Explore - Security Solution Cypress Tests #1 / Cases Creates a new case with timeline and opens the timeline Creates a new case with timeline and opens the timeline

Metrics [docs]

Unknown metric groups

ESLint disabled line counts

id	before	after	diff
securitySolution	452	453	+1

Total ESLint disabled count

id	before	after	diff
securitySolution	519	520	+1

History

• 💔 Build #157814 failed 9be0ae5cc79d33e47c0f12f448ad43cde8f49b7a
• 💔 Build #157753 failed 22c2ab13a3dfe0369859b4661e0cdbe3330f9ebc
• 💔 Build #157714 failed e1f4fa270ea4671ad674dbdf5bd16bf3a7b8c53d
• 💔 Build #157601 failed ef8562a39afa4bc51709775f82bcdcce424d63c0
• 💔 Build #157578 failed 90c3bfc26936c9bd69cfcba4510868e69c1fae1b

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

cc @banderror

[tomsonpl]

Hey folks, this PR introduced a SKIP for all tests that do not contain tags yet. Please take a look eg. at this https://buildkite.com/elastic/kibana-pull-request/builds/157814#018a769b-185b-4d22-bb6d-e2bf155745c6

We have some false passes around :P