[Cloud Security] Misconfiguration preview & Refactor CSP Plugin to include new package PHASE 2 #190933
Conversation
|
/ci |
|
/ci |
…m:animehart/kibana into misconfiguration-preview-refactor-phase-2
|
/ci |
|
Pinging @elastic/kibana-cloud-security-posture (Team:Cloud Security) |
animehart
added
v8.16.0
release_note:skip
…orts to be more specific
…be directly from csp common package
…m:animehart/kibana into misconfiguration-preview-refactor-phase-2
…nt for types or interface to be directly from csp package now
…m:animehart/kibana into misconfiguration-preview-refactor-phase-2
| import type { EcsDataStream, EcsEvent } from '@elastic/ecs'; | ||
| import { CspBenchmarkRuleMetadata } from '../types/latest'; | ||
| import { CspBenchmarkRuleMetadata } from './rules'; | ||
|
|
||
| export interface CspFinding { |
There was a problem hiding this comment.
This file doesn't contain schema anymore, only CspFinding interface , maybe make sense to move the code to types.ts?
| @@ -6,44 +6,17 @@ | |||
| */ | |||
|
|
|||
| import { schema, TypeOf } from '@kbn/config-schema'; | |||
| import { CSPM_POLICY_TEMPLATE, KSPM_POLICY_TEMPLATE } from '../../constants'; | |||
|
|
|||
| import { cspBenchmarkRuleMetadataSchema } from '@kbn/cloud-security-posture-common/schema'; | |||
There was a problem hiding this comment.
I still think we need to move the whole common/types with all the versions into our common package. Otherwise the versioning won't work for us. Imagine you need to make a breaking change to the schema. If you do it in the cspBenchmarkRuleMetadataSchema in the package you would break the versioning as it is imported here in the v3. To do it properly you need to introduce the new version of the schema, the same way as we migrated cspBenchmarkRuleMetadataSchema between v2 and v3.
I'm not sure if we can reduce the number of changes caused by moving the whole versioned types and schemas, but without it we are kind of breaking the versioning
There was a problem hiding this comment.
again to not make the change too large, maybe it's ok to proceed with this PR but then create a new PR right away moving the versioned types and schemas to our shared package so that we don't risk
| @@ -6,15 +6,11 @@ | |||
| */ | |||
|
|
|||
| import { schema, TypeOf } from '@kbn/config-schema'; | |||
| import { CspBenchmarkRulesStates } from '@kbn/cloud-security-posture-common'; | |||
| import { ruleStateAttributes, rulesStates } from '@kbn/cloud-security-posture-common/schema'; | |||
There was a problem hiding this comment.
same problem with versioning here. We lose information about the version when importing from our shared package without versioning. Again to make a breaking change you would need to version it somehow on the package level, that's why it's better to move the whole versioned types and schemas to our common package
| import { | ||
| CDR_MISCONFIGURATIONS_INDEX_PATTERN, | ||
| LATEST_FINDINGS_RETENTION_POLICY, | ||
| } from '../../../../common/constants'; | ||
| import { MAX_FINDINGS_TO_LOAD } from '../../../common/constants'; | ||
| CspBenchmarkRulesStates, |
| @@ -6,6 +6,7 @@ | |||
| */ | |||
|
|
|||
| import { Truthy } from 'lodash'; | |||
| import { BaseCspSetupStatus } from '@kbn/cloud-security-posture-common'; | |||
| @@ -5,7 +5,7 @@ | |||
| * 2.0. | |||
| */ | |||
| import { QueryDslQueryContainer } from '@kbn/data-views-plugin/common/types'; | |||
| import { CspBenchmarkRulesStates } from '../types/latest'; | |||
| import { CspBenchmarkRulesStates } from '@kbn/cloud-security-posture-common'; | |||
| @@ -8,6 +8,7 @@ | |||
| import React from 'react'; | |||
|
|
|||
| import { coreMock } from '@kbn/core/public/mocks'; | |||
| import { BaseCspSetupStatus, CspStatusCode } from '@kbn/cloud-security-posture-common'; | |||
| ComplianceDashboardDataV2, | ||
| CspStatusCode, | ||
| } from '../../../common/types_old'; | ||
| import { ComplianceDashboardDataV2 } from '../../../common/types_old'; |
| @@ -5,7 +5,7 @@ | |||
| * 2.0. | |||
| */ | |||
|
|
|||
| import { CspFinding } from '../../../../common/schemas/csp_finding'; | |||
| import { CspFinding } from '@kbn/cloud-security-posture-common'; | |||
| @@ -7,7 +7,7 @@ | |||
|
|
|||
| import type { HttpSetup } from '@kbn/core/public'; | |||
| import React from 'react'; | |||
| import { CspFinding } from '../../../../common/schemas/csp_finding'; | |||
| import { CspFinding } from '@kbn/cloud-security-posture-common'; | |||
…ad of just import
💛 Build succeeded, but was flaky
Failed CI StepsTest Failures
Metrics [docs]Module Count
Public APIs missing comments
Async chunks
Page load bundle
Unknown metric groupsAPI count
History
To update your PR or re-run it, just comment with: |
…clude new package PHASE 3 (#191317) The previous #190105 was way too big and made it hard to review without missing any bugs or potential bugs, Thus we decided we are going to make series of smaller PR to make things more manageable We will be splitting it into 4 PR Phase 1: Creating empty packages for csp and csp-common Phase 2: Move Types from CSP plugin to the Package + Deleting duplicates in the CSP plugin where possible Phase 3: Move Functions, Utils or Helpers, Hooks to Package Phase 4: Misconfiguration Preview feature (with Cypress test and other required test) This is **Phase 3** of the Process, This also includes moving rule versions type This PR is the continuation of this PR #190933 NOTE: Merge phase 2 first before this --------- Co-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>
Summary
The previous #190105 was way too big and made it hard to review without missing any bugs or potential bugs, Thus we decided we are going to make series of smaller PR to make things more manageable
We will be splitting it into 4 PR
Phase 1: Creating empty packages for csp and csp-common
Phase 2: Move Types from CSP plugin to the Package + Deleting duplicates in the CSP plugin where possible
Phase 3: Move Functions, Utils or Helpers, Hooks to Package
Phase 4: Misconfiguration Preview feature (with Cypress test and other required test)
This is Phase 2 of the Process