mirror of
https://github.com/elastic/kibana.git
synced 2025-04-25 02:09:32 -04:00
8139c7bafe
# Backport This will backport the following commits from `main` to `8.x`: - [[Security Solution][Event Filters] Warning callout for incomplete code signature entries (#193749)](https://github.com/elastic/kibana/pull/193749) <!--- Backport version: 9.4.3 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sqren/backport) <!--BACKPORT [{"author":{"name":"Candace Park","email":"56409205+parkiino@users.noreply.github.com"},"sourceCommit":{"committedDate":"2024-10-04T06:26:39Z","message":"[Security Solution][Event Filters] Warning callout for incomplete code signature entries (#193749)\n\n## Summary\r\nNavigate to Security Solution > Manage > Event Filters > Add Event\r\nFilter\r\n\r\n- [x] Warning callout shown when code signature field is incomplete\r\n(i.e. `process.code_signature.subject_name` w/o\r\n`process.code_signature.trusted` or vice versa)\r\n- [x] For mac operating systems, `process.code_signature.team_id` is\r\nalso accepted as an equivalent to `subject_name`\r\n- [x] Warning callout is also shown for nested entries for this code\r\nsignature field: `process.Ext.code_signature`\r\n- [x] Unit Tests\r\n\r\n# Screenshots\r\n\r\n\r\n\r\nFollowup prs: need to address user being allowed to choose the nested\r\nfield: `process.Ext.code_signature` for a non-nested entry, need to\r\naddress what happens when a user chooses `false` instead of true for the\r\n`trusted` field option\r\n\r\n---------\r\n\r\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"61c9137a1eeb1548e1878110194abc173fe64724","branchLabelMapping":{"^v9.0.0$":"main","^v8.16.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","v9.0.0","Team:Defend Workflows","backport:prev-minor","v8.16.0"],"title":"[Security Solution][Event Filters] Warning callout for incomplete code signature entries","number":193749,"url":"https://github.com/elastic/kibana/pull/193749","mergeCommit":{"message":"[Security Solution][Event Filters] Warning callout for incomplete code signature entries (#193749)\n\n## Summary\r\nNavigate to Security Solution > Manage > Event Filters > Add Event\r\nFilter\r\n\r\n- [x] Warning callout shown when code signature field is incomplete\r\n(i.e. `process.code_signature.subject_name` w/o\r\n`process.code_signature.trusted` or vice versa)\r\n- [x] For mac operating systems, `process.code_signature.team_id` is\r\nalso accepted as an equivalent to `subject_name`\r\n- [x] Warning callout is also shown for nested entries for this code\r\nsignature field: `process.Ext.code_signature`\r\n- [x] Unit Tests\r\n\r\n# Screenshots\r\n\r\n\r\n\r\nFollowup prs: need to address user being allowed to choose the nested\r\nfield: `process.Ext.code_signature` for a non-nested entry, need to\r\naddress what happens when a user chooses `false` instead of true for the\r\n`trusted` field option\r\n\r\n---------\r\n\r\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"61c9137a1eeb1548e1878110194abc173fe64724"}},"sourceBranch":"main","suggestedTargetBranches":["8.x"],"targetPullRequestStates":[{"branch":"main","label":"v9.0.0","branchLabelMappingKey":"^v9.0.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/193749","number":193749,"mergeCommit":{"message":"[Security Solution][Event Filters] Warning callout for incomplete code signature entries (#193749)\n\n## Summary\r\nNavigate to Security Solution > Manage > Event Filters > Add Event\r\nFilter\r\n\r\n- [x] Warning callout shown when code signature field is incomplete\r\n(i.e. `process.code_signature.subject_name` w/o\r\n`process.code_signature.trusted` or vice versa)\r\n- [x] For mac operating systems, `process.code_signature.team_id` is\r\nalso accepted as an equivalent to `subject_name`\r\n- [x] Warning callout is also shown for nested entries for this code\r\nsignature field: `process.Ext.code_signature`\r\n- [x] Unit Tests\r\n\r\n# Screenshots\r\n\r\n\r\n\r\nFollowup prs: need to address user being allowed to choose the nested\r\nfield: `process.Ext.code_signature` for a non-nested entry, need to\r\naddress what happens when a user chooses `false` instead of true for the\r\n`trusted` field option\r\n\r\n---------\r\n\r\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"61c9137a1eeb1548e1878110194abc173fe64724"}},{"branch":"8.x","label":"v8.16.0","branchLabelMappingKey":"^v8.16.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Candace Park <56409205+parkiino@users.noreply.github.com>
22 lines
1 KiB
TypeScript
22 lines
1 KiB
TypeScript
/*
|
|
* Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
|
|
* or more contributor license agreements. Licensed under the "Elastic License
|
|
* 2.0", the "GNU Affero General Public License v3.0 only", and the "Server Side
|
|
* Public License v 1"; you may not use this file except in compliance with, at
|
|
* your election, the "Elastic License 2.0", the "GNU Affero General Public
|
|
* License v3.0 only", or the "Server Side Public License, v 1".
|
|
*/
|
|
|
|
export * from './src/search_bar';
|
|
export * from './src/empty_viewer_state';
|
|
export * from './src/pagination/pagination';
|
|
// export * from './src/exceptions_utility/exceptions_utility';
|
|
export * from './src/exception_items';
|
|
export * from './src/exception_item_card';
|
|
export * from './src/value_with_space_warning';
|
|
export * from './src/types';
|
|
export * from './src/list_header';
|
|
export * from './src/header_menu';
|
|
export * from './src/generate_linked_rules_menu_item';
|
|
export * from './src/wildcard_with_wrong_operator_callout';
|
|
export * from './src/partial_code_signature_callout';
|