XDR integrations - adding terminate commands #35226
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…35004) * Added external last updated time incident field to the commontypes * RN * fomated the incident field * RN modified * changed from verison * RN * commit * unsearchable true
* Updated the MP to support only the right one * Update rn
* Revert "Revert "[Marketplace Contribution] FTP (#34659) (#35177)" (#35199)" This reverts commit c34a2a4. * added noqa --------- Co-authored-by: RotemAmit <[email protected]>
* Update PaloAltoNetworks_Cortex_XDR_Incident_Sync_README.md * Update Packs/CortexXDR/Playbooks/PaloAltoNetworks_Cortex_XDR_Incident_Sync_README.md Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: Mai Morag <[email protected]>
* [SplunkPy] Update the Troubleshooting * Update Packs/SplunkPy/Integrations/SplunkPy/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/SplunkPy/Integrations/SplunkPy/README.md Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: ShirleyDenkberg <[email protected]>
* import problematic packs * update * changes * import problematic packs * update dockers * update dockers * added rns * reverts * update dockers * cr fixes
* fix ComonServerPython docstring * RN
* New pack for CVE-2024-6387 * exclude-known-url * adjust the playbook and pack readme * adjust the playbook and pack readme --------- Co-authored-by: Chanan Welt <[email protected]>
* Fixed an issue with the data collection tasks to send emails to the corresponding roles in XSIAM (Investigator) and XSOAR (Analyst). * RN * Removed administrator role from the data collection tasks * udpated RN
* Creating modeling rules * Updating schema * Removing url portal link * Adding release notes and test data
* update image * bump image * Update Packs/ProofpointEmailSecurity/ReleaseNotes/1_0_2.md * Update Packs/ProofpointEmailSecurity/Integrations/ProofpointEmailSecurityEventCollector/ProofpointEmailSecurityEventCollector.yml
* updated the classifier and layout of the qradar integration * added the release notes * commit * RN
* improved implementation of IsIncidentPartOfCampaign * was found * docker update * skip none string
* Zerofox/add cac data (#35183) * add compromised credentials command (#138) * fix mypy check and tests * Fix yml file format * Add period to yaml description * Include PR comments - fix release notes comment - add unit test - format code * update docker * update RN --------- Co-authored-by: Diego Ramirez R <[email protected]> Co-authored-by: ipolishuk <[email protected]>
* fixed xpanse * add RN * fixed * adding rn * fix test * fix test * fix testcommonserver pyton * fix unit tests and revert changes in demistomock * add xplanatory docstring * Bump pack from version Base to 1.34.24. * adding memory threshold to incident enrichment --------- Co-authored-by: sapirshuker <[email protected]> Co-authored-by: Content Bot <[email protected]>
* added client credentials flow - working * updated readme and description * changed to default value for token_retrieval_url * created release notes and run pre commit * changed redme and description after code review * updated docker image * changed some mistakes in readme * changed some mistakes in discription --------- Co-authored-by: noy <nodavidi.paloaltonetworks.com>
* changed yml file * added client credentials to py * added client credentials to py * added release note * changed readme and description for client credentials * run pre commit * updated docker image * changed some mistakes in readme * changed some mistakes in discription --------- Co-authored-by: noy <nodavidi.paloaltonetworks.com>
updated integration logo to align with Prisma Cloud V2 Co-authored-by: epartington <[email protected]> Co-authored-by: Danny Fried <[email protected]>
* changed the py file to match client credentials * changed the yml file to match client cre4dentials * changed the scope for client credentails * changed the scope * py * getting 203 error from api * made the final changes for client credentials * changed description * changed some description and added client credentials for README * ran precommit and created release nores * added global var for scope * fixed pre commit * made changes in readme and in description after doc review * removed in description and in readme 'using cortex xsoar azure app' * changed to default value for token_retrieval_url * changed condition for scope * changed test test_generate_login_urlplaybook to match the new scope * changes cope global name * updated docker image * deleted the word Demisto - not relevant * changed docker image and removed demisto word from description --------- Co-authored-by: noy <nodavidi.paloaltonetworks.com>
* fix + RN + test * RN * fix ruff * CR changes * fix pre commit * CR changes
* fixed token to be with ? * RN * pre commit and docker * fixed test AzureStorageTable_test.py * fixed test AzureStorageQueue_test.py * fixed test AzureStorageFileShare_test.py * fixed test AzureStorageContainer_test.py --------- Co-authored-by: okarkkatz <[email protected]>
eyalpalo
requested changes
Sep 19, 2024
Co-authored-by: EyalPintzov <[email protected]>
Co-authored-by: EyalPintzov <[email protected]>
|
@eyalpalo Doc review completed. |
Co-authored-by: ShirleyDenkberg <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Status
Related Issues
fixes: https://jira-dc.paloaltonetworks.com/browse/CIAC-11041.
Description
Adding support in 2 new API endpoints as commands