Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update security telemetry allowlist. #103471

Merged
merged 1 commit into from
Jun 29, 2021
Merged

Update security telemetry allowlist. #103471

merged 1 commit into from
Jun 29, 2021

Conversation

pjhampton
Copy link
Contributor

Summary

Security researchers (I&A) have requested additional telemetry fields to help us triage alerts and determine whether they are true/false positives.

Checklist

Delete any items that are not applicable to this PR.

For maintainers

@pjhampton pjhampton added v8.0.0 release_note:skip Skip the PR/issue when compiling release notes Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. v7.14.0 auto-backport Deprecated - use backport:version if exact versions are needed labels Jun 28, 2021
@pjhampton pjhampton requested a review from bm11100 June 28, 2021 12:06
@pjhampton pjhampton self-assigned this Jun 28, 2021
@pjhampton pjhampton requested a review from a team as a code owner June 28, 2021 12:06
@elasticmachine
Copy link
Contributor

Pinging @elastic/security-solution (Team: SecuritySolution)

@kibanamachine
Copy link
Contributor

💚 Build Succeeded

Metrics [docs]

✅ unchanged

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

cc @pjhampton

@pjhampton pjhampton merged commit b774e37 into master Jun 29, 2021
kibanamachine pushed a commit to kibanamachine/kibana that referenced this pull request Jun 29, 2021
@pjhampton @kibanamachine
Update security telemetry allowlist. (elastic#103471)
70ed37d
@kibanamachine kibanamachine mentioned this pull request Jun 29, 2021
Merged
@kibanamachine
Copy link
Contributor

💚 Backport successful

Status Branch Result
7.x

This backport PR will be merged automatically after passing CI.

kibanamachine added a commit that referenced this pull request Jun 29, 2021
@kibanamachine @pjhampton
Update security telemetry allowlist. (#103471) (#103626)
c9aa40f 
Co-authored-by: Pete Hampton <pjhampton@users.noreply.github.com>
@spalger spalger deleted the pjhampton/add-additional-allowlist-entries branch May 8, 2022 22:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Bamieh Bamieh Bamieh approved these changes

@cnasikas cnasikas cnasikas approved these changes

@bm11100 bm11100 Awaiting requested review from bm11100

Assignees

@pjhampton pjhampton

Labels
auto-backport Deprecated - use backport:version if exact versions are needed release_note:skip Skip the PR/issue when compiling release notes Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. v7.14.0 v8.0.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@pjhampton @elasticmachine @kibanamachine @Bamieh @cnasikas