github-mirrors/kibana
1
0
Fork 0
mirror of https://github.com/elastic/kibana.git synced 2025-04-23 17:28:26 -04:00
Code Issues Projects Releases Packages Wiki Activity

[8.18] Advanced policy opt-out for scan-on-event (#218354) (#218612)

Browse source 
# Backport

This will backport the following commits from `main` to `8.18`:
- [Advanced policy opt-out for scan-on-event
(#218354)](https://github.com/elastic/kibana/pull/218354)

<!--- Backport version: 9.6.6 -->

### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sorenlouv/backport)

<!--BACKPORT [{"author":{"name":"Gabriel
Landau","email":"42078554+gabriellandau@users.noreply.github.com"},"sourceCommit":{"committedDate":"2025-04-17T19:00:15Z","message":"Advanced
policy opt-out for scan-on-event (#218354)\n\n## Summary\n\nAllow users
to opt out of scan-on-event to help troubleshoot and
resolve\nperformance issues.\n\n## Release note\n\n{elastic-defend}
users can now opt out of event-driven Memory Protection\nscanning via
advanced policy.\n\n### Checklist\n\nCheck the PR satisfies following
conditions. \n\nReviewers should verify this PR satisfies this list as
well.\n\n- [x] Any text added follows [EUI's
writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing),
uses\nsentence case text and includes
[i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n-
[x] The PR description includes the appropriate Release Notes
section,\nand the correct `release_note:*` label is applied per
the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n---------\n\nCo-authored-by:
Konrad Szwarc
<konrad.szwarc@elastic.co>","sha":"906c8978e7b0a2e9e503bc10a758d3b6a03f237d","branchLabelMapping":{"^v9.1.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:enhancement","Team:Defend
Workflows","backport:version","v9.1.0","v8.18.1","v9.0.1","v8.17.6"],"title":"Advanced
policy opt-out for
scan-on-event","number":218354,"url":"https://github.com/elastic/kibana/pull/218354","mergeCommit":{"message":"Advanced
policy opt-out for scan-on-event (#218354)\n\n## Summary\n\nAllow users
to opt out of scan-on-event to help troubleshoot and
resolve\nperformance issues.\n\n## Release note\n\n{elastic-defend}
users can now opt out of event-driven Memory Protection\nscanning via
advanced policy.\n\n### Checklist\n\nCheck the PR satisfies following
conditions. \n\nReviewers should verify this PR satisfies this list as
well.\n\n- [x] Any text added follows [EUI's
writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing),
uses\nsentence case text and includes
[i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n-
[x] The PR description includes the appropriate Release Notes
section,\nand the correct `release_note:*` label is applied per
the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n---------\n\nCo-authored-by:
Konrad Szwarc
<konrad.szwarc@elastic.co>","sha":"906c8978e7b0a2e9e503bc10a758d3b6a03f237d"}},"sourceBranch":"main","suggestedTargetBranches":["8.18","9.0","8.17"],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/218354","number":218354,"mergeCommit":{"message":"Advanced
policy opt-out for scan-on-event (#218354)\n\n## Summary\n\nAllow users
to opt out of scan-on-event to help troubleshoot and
resolve\nperformance issues.\n\n## Release note\n\n{elastic-defend}
users can now opt out of event-driven Memory Protection\nscanning via
advanced policy.\n\n### Checklist\n\nCheck the PR satisfies following
conditions. \n\nReviewers should verify this PR satisfies this list as
well.\n\n- [x] Any text added follows [EUI's
writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing),
uses\nsentence case text and includes
[i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n-
[x] The PR description includes the appropriate Release Notes
section,\nand the correct `release_note:*` label is applied per
the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n---------\n\nCo-authored-by:
Konrad Szwarc
<konrad.szwarc@elastic.co>","sha":"906c8978e7b0a2e9e503bc10a758d3b6a03f237d"}},{"branch":"8.18","label":"v8.18.1","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"9.0","label":"v9.0.1","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.17","label":"v8.17.6","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"}]}]
BACKPORT-->

Co-authored-by: Gabriel Landau <42078554+gabriellandau@users.noreply.github.com>
This commit is contained in:
Kibana Machine 2025-04-21 18:41:04 +02:00 committed by GitHub
parent 06b5855b1e
commit 025cff5840
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 55 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

55
x-pack/solutions/security/plugins/security_solution/public/management/pages/policy/models/advanced_policy_schema.ts
View file

@ -2378,4 +2378,59 @@ export const AdvancedPolicySchema: AdvancedPolicySchemaType[] = [
}
),
},
{
key: 'linux.advanced.memory_protection.scan_on_network_event',
first_supported_version: '8.17.6',
documentation: i18n.translate(
'xpack.securitySolution.endpoint.policy.advanced.linux.advanced.memory_protection.scan_on_network_event',
{
defaultMessage:
'Allow Memory Protection to perform memory scans in response to network activity. Default: true',
}
),
},
{
key: 'mac.advanced.memory_protection.scan_on_network_event',
first_supported_version: '8.17.6',
documentation: i18n.translate(
'xpack.securitySolution.endpoint.policy.advanced.mac.advanced.memory_protection.scan_on_network_event',
{
defaultMessage:
'Allow Memory Protection to perform memory scans in response to network activity. Default: true',
}
),
},
{
key: 'windows.advanced.memory_protection.scan_on_network_event',
first_supported_version: '8.17.6',
documentation: i18n.translate(
'xpack.securitySolution.endpoint.policy.advanced.windows.advanced.memory_protection.scan_on_network_event',
{
defaultMessage:
'Allow Memory Protection to perform memory scans in response to network activity. Default: true',
}
),
},
{
key: 'windows.advanced.memory_protection.scan_on_api_event',
first_supported_version: '8.17.6',
documentation: i18n.translate(
'xpack.securitySolution.endpoint.policy.advanced.windows.advanced.memory_protection.scan_on_api_event',
{
defaultMessage:
'Allow Memory Protection to perform memory scans in response to API events. Default: true',
}
),
},
{
key: 'windows.advanced.memory_protection.scan_on_image_load_event',
first_supported_version: '8.17.6',
documentation: i18n.translate(
'xpack.securitySolution.endpoint.policy.advanced.windows.advanced.memory_protection.scan_on_image_load_event',
{
defaultMessage:
'Allow Memory Protection to perform memory scans in response to image loads. Default: true',
}
),
},
];