Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Edit related_integrations field for custom rules in UI [classic] #5151

Open
wants to merge 7 commits into
base: main
Choose a base branch
from
Open

Edit related_integrations field for custom rules in UI [classic] #5151

wants to merge 7 commits into from

Conversation

joepeeples
Copy link
Contributor

@joepeeples joepeeples commented May 1, 2024
edited

Important

Do not merge to main until after 8.14.0 release, maybe until 8.15 feature freeze. This is to avoid adding 8.15 features into previous versions' branches (since those branches would be cut from main).

Contributes to #5099 by adding a step for Related integrations in the rule creation docs.

Preview

Create a detection rule

Twin PR for serverless

Related

@joepeeples joepeeples added Team: Detections/Response Detections and Response Feature: Rules Docset: ESS Issues that apply to docs in the Stack release v8.15.0 labels May 1, 2024
@joepeeples joepeeples self-assigned this May 1, 2024
@github-actions GitHub Actions
Copy link

github-actions bot commented May 1, 2024

A documentation preview will be available soon.

Request a new doc build by commenting
  • Rebuild this PR: run docs-build
  • Rebuild this PR and all Elastic docs: run docs-build rebuild

run docs-build is much faster than run docs-build rebuild. A rebuild should only be needed in rare situations.

If your PR continues to fail for an unknown reason, the doc build pipeline may be broken. Elastic employees can check the pipeline status here.

@joepeeples joepeeples mentioned this pull request May 1, 2024
Open
@joepeeples joepeeples marked this pull request as ready for review May 1, 2024 19:37
@joepeeples joepeeples requested a review from a team as a code owner May 1, 2024 19:37
@jpdjere jpdjere self-requested a review May 3, 2024 08:21
benironside
benironside reviewed May 7, 2024
View reviewed changes
Copy link
Contributor

@benironside benironside left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Left a few small suggestions for your consideration, overall 🆒 🆒 🆒

@joepeeples
Copy link
Contributor Author

joepeeples commented May 8, 2024
edited

This PR is ready to merge, but I don't think I should yet. If I merge now, then main will contain changes that won't be available in stateful until the 8.15 Stack release. Normally that's OK, since main always equals the next minor release. BUT if someone needs to update the same files with changes for 8.14 Stack release, they'll end up merging to main and then backporting to 8.14 and that's a problem, because the backport will bring this PR's 8.15 changes into the 8.14 branch.... I think? Or maybe not, if the backport is able to cherry-pick only the new changes intended for 8.14, not any and all diffs between main and 8.14...

joepeeples added a commit that referenced this pull request May 22, 2024
@joepeeples
Edit related_integrations field for custom rules in UI [serverless] (#…
8786250 
…337)

* Add new step to all rule types

* Revise step, use variable for URL

* Mention type-ahead

* Explain related integrations

Also links to more info, and moves that info to a more generic location (no longer just prebuilt)

* Apply changes from Ben's review

Review from #5151
@banderror banderror removed the request for review from jpdjere May 28, 2024 12:06
@joepeeples joepeeples mentioned this pull request May 30, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@benironside benironside benironside approved these changes

@maximpn maximpn Awaiting requested review from maximpn

@approksiu approksiu Awaiting requested review from approksiu

Assignees

@joepeeples joepeeples

Labels
Docset: ESS Issues that apply to docs in the Stack release Feature: Rules Team: Detections/Response Detections and Response v8.15.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@joepeeples @benironside