Adopt 'platform' MP to content packs #19 #39180

ilappe · 2025-03-20T14:04:05Z

Related: https://jira-dc.paloaltonetworks.com/browse/CIAC-12864

Updating the following packs before merging to 'platform-content-support-merge-gateway:

CitrixADC
IronDefense
IronPort
Ironscales
IronscalesEventCollector
IsItPhishing
IvantiConnectSecure
IvantiCriticalVulnerabilities
IvantiHeat
IvantiPulseSecureVTM
JARM
JSONSampleIncidentGenerator
JWT
Ja3er
JamfProtect
Jask
Jira
JoeSecurity
JsonWhoIs
JuniperSRX
KELARaDark
Kafka
KasperskySecurityCenter
KeeperSecretsManager
KeeperSecurity
Kenna
Keyfactor
Kiteworks
KnowBe4KMSAT
KnowBe4_KMSAT
Koodous
Kubernetes
LINENotify
LSASSCredentialDumping
Lacework
Lansweeper
Lastline
Linkshadow
LinuxEventsCollection
LogPoint_SIEM_Integration
LogRhythmRest
LogsignSiem
Logzio

github-actions · 2025-03-20T14:16:57Z

Coverage Report

File	Stmts	Miss	Cover	Missing
Packs/AMP/Integrations/CiscoAMPEventCollector
CiscoAMPEventCollector.py	112	22	80%	54, 60, 81–83, 85, 94–96, 108, 219–223, 225–229, 232–233
Packs/AWS-GuardDuty/Integrations/AWSGuardDutyEventCollector
AWSGuardDutyEventCollector.py	75	2	97%	13, 35
Packs/AWS-Organizations/Integrations/AWSOrganizations
AWSOrganizations.py	209	61	70%	10–11, 130, 175–176, 416–417, 682–684, 686, 688, 690–734, 736, 738–740
Packs/AWS-SecurityHub/Integrations/AWSSecurityHubEventCollector
AWSSecurityHubEventCollector.py	77	11	85%	12–13, 79, 91, 139, 154–155, 158, 167–168, 193
Packs/AWS_SystemManager/Integrations/AWSSystemManager
AWSSystemManager.py	385	109	71%	11–13, 188–189, 258, 279, 385–388, 523, 617–618, 684, 746–747, 823, 895, 955, 1044, 1081, 1085, 1089, 1093, 1156, 1160, 1165, 1198, 1209, 1256, 1332, 1334–1336, 1339, 1387, 1408–1409, 1412, 1415, 1425–1426, 1468, 1475, 1502–1503, 1507–1510, 1512–1518, 1521–1522, 1524, 1531, 1533, 1546, 1548–1549, 1551–1576, 1578–1594
Packs/AbnormalSecurity/Integrations/AbnormalSecurityEventCollector
AbnormalSecurityEventCollector.py	73	29	60%	10, 13, 54, 100, 108, 110–113, 115, 120–122, 124–129, 131–133, 135–136, 140–142, 144–145
Packs/Armis/Integrations/ArmisEventCollector
ArmisEventCollector.py	234	41	82%	58, 63, 118, 149–150, 154, 156–159, 169, 173–176, 178, 196–197, 199–200, 202, 238, 240, 435–436, 471, 500–503, 505–508, 513, 515–516, 518–519, 566, 571
Packs/AzureSecurityCenter/Integrations/MicrosoftDefenderForCloudEventCollector
MicrosoftDefenderForCloudEventCollector.py	73	12	83%	37–39, 63–68, 181–183
Packs/BitwardenPasswordManager/Integrations/BitwardenPasswordManager
BitwardenPasswordManager.py	114	4	96%	90–91, 104, 132
Packs/BloodHoundEnterprise/Integrations/BloodHoundEnterprise
BloodHoundEnterprise.py	91	18	80%	110–112, 119–121, 124, 137–138, 140–142, 144, 146, 298–301
Packs/Box/Integrations/BoxEventsCollector
BoxEventsCollector.py	132	23	82%	49, 53, 123, 130–132, 135, 141, 144, 152, 158, 196–197, 202, 207, 210, 229–232, 240, 249–250
Packs/CarbonBlackDefense/Integrations/CarbonBlackEndpointStandardEventCollector
CarbonBlackEndpointStandardEventCollector.py	84	12	85%	101–102, 117–122, 134, 143–144, 146
Packs/Celonis/Integrations/CelonisEventCollector
CelonisEventCollector.py	87	22	74%	37, 41, 48, 59, 68, 109–113, 141, 167–169, 171, 173–175, 180, 182–183, 188
Packs/CiscoSpark/Integrations/CiscoWebexEventCollector
CiscoWebexEventCollector.py	139	14	89%	155–156, 158, 161, 163–165, 167, 169, 293, 373–375, 422
Packs/CiscoThousandEyes/Integrations/CiscoThousandEyes
CiscoThousandEyes.py	120	10	91%	261–264, 292, 296, 381–383, 386
Packs/CloudIncidentResponse/Scripts/XCloudAdditionalAlertInformationWidget
XCloudAdditionalAlertInformationWidget.py	25	3	88%	10, 12, 43
Packs/CloudflareZeroTrust/Integrations/CloudflareZeroTrustEventCollector
CloudflareZeroTrustEventCollector.py	110	12	89%	64, 67, 72, 78, 109–110, 267, 339–342, 361
Packs/Code42/Integrations/Code42EventCollector
Code42EventCollector.py	179	11	93%	115, 118–120, 152, 199–201, 386–388
Packs/CofenseVision/Integrations/CofenseVision
CofenseVision.py	741	44	94%	496, 536–538, 540, 594, 598, 646, 814, 816, 1041, 1043, 1641, 1696, 1698, 1717, 1722, 1727, 2488, 2490–2497, 2499, 2523–2524, 2526–2527, 2538–2545, 2547, 2550–2552
Packs/CohesityHelios/Integrations/CohesityHeliosEventCollector
CohesityHeliosEventCollector.py	158	46	70%	44–45, 86, 88, 157, 167–170, 209, 269–270, 287–294, 303, 305, 308–309, 311–312, 314–316, 318, 321, 327, 329–333, 335–341, 344–345
Packs/CommonScripts/Scripts/ContentPackInstaller
ContentPackInstaller.py	160	44	72%	51, 68–69, 161–162, 177–178, 192, 194, 196–198, 200–201, 206–207, 209, 225, 228–229, 239–242, 244–246, 248–251, 253, 275–278, 305, 310, 313, 318, 332, 342–344
Packs/CommonScripts/Scripts/DomainReputation
DomainReputation.py	16	1	93%	28
Packs/CommonScripts/Scripts/EmailReputation
EmailReputation.py	10	1	90%	16
Packs/CommonScripts/Scripts/ExportAuditLogsToFile
ExportAuditLogsToFile.py	18	0	100%
Packs/CommonScripts/Scripts/ExportIncidentsToCSV
ExportIncidentsToCSV.py	20	1	95%	48
Packs/CommonScripts/Scripts/ExportIndicatorsToCSV
ExportIndicatorsToCSV.py	12	1	91%	12
Packs/CommonScripts/Scripts/ExtractAttackPattern
ExtractAttackPattern.py	25	6	76%	11, 34, 36, 38–39, 41
Packs/CommonScripts/Scripts/GenerateAsBuilt
GenerateAsBuilt.py	221	52	76%	356–357, 359, 365–367, 371, 394, 397, 400, 412, 415, 442–443, 449–450, 494–495, 512–513, 535–536, 563–566, 587, 589–590, 813, 838, 851, 861, 898–899, 905–907, 919–920, 922–927, 929–930, 932, 948–949, 952
Packs/CommonScripts/Scripts/GetFieldsByIncidentType
GetFieldsByIncidentType.py	31	3	90%	10, 25, 41
Packs/CommonScripts/Scripts/IPReputation
IPReputation.py	10	1	90%	16
Packs/CommonScripts/Scripts/IncidentFields
IncidentFields.py	32	1	96%	28
Packs/CommonScripts/Scripts/PrintToAlert
PrintToAlert.py	8	0	100%
Packs/CommonScripts/Scripts/PrintToIncident
PrintToIncident.py	8	0	100%
Packs/CommonScripts/Scripts/PrintToParentIncident
PrintToParentIncident.py	12	1	91%	40
Packs/CommonScripts/Scripts/ProvidesCommand
ProvidesCommand.py	54	8	85%	31–33, 45–47, 68, 74
Packs/CommonScripts/Scripts/SCPPullFiles
SCPPullFiles.py	16	2	87%	22–23
Packs/CommonScripts/Scripts/ServerLogs
ServerLogs.py	16	2	87%	23–24
Packs/CommonScripts/Scripts/ServerLogsDocker
ServerLogsDocker.py	7	0	100%
Packs/Core/Integrations/CortexCoreXQLQueryEngine
CortexCoreXQLQueryEngine.py	26	5	80%	101–102, 104–106
Packs/Core/Scripts/impossibleTravelerGetDistance
impossibleTravelerGetDistance.py	28	7	75%	52–56, 58–59
Packs/CyCognito/Integrations/CyCognito
CyCognito.py	433	44	89%	204, 236–238, 240, 281–282, 321, 324, 327, 625, 749, 1053–1054, 1270, 1305–1306, 1308–1309, 1311–1312, 1314, 1316, 1319, 1326–1337, 1339, 1347–1350, 1352–1354
Packs/CybelAngel/Integrations/CybelAngelEventCollector
CybelAngelEventCollector.py	218	22	89%	75–76, 109, 161, 231–232, 246–247, 262, 276, 345–346, 377, 488, 521, 567, 649, 735–739
Packs/CyberArkEPM/Integrations/CyberArkEPMEventCollector
CyberArkEPMEventCollector.py	133	7	94%	40, 115, 245–247, 353–354
Packs/CyberArkIdentity/Integrations/CyberArkIdentityEventCollector
CyberArkIdentityEventCollector.py	78	6	92%	129, 147, 206–207, 228–229
Packs/Darktrace/Integrations/DarktraceEventCollector
DarktraceEventCollector.py	110	28	74%	51, 81–82, 84–87, 93–99, 101–102, 104–107, 151, 166–167, 181–183, 185, 230
Packs/DataminrPulse/Integrations/DataminrPulse
DataminrPulse.py	299	51	82%	149–150, 172–173, 175, 206–208, 210–211, 224–226, 270–271, 283, 429–431, 433, 616, 684, 856, 859–860, 863–864, 867, 870–871, 874, 880, 882, 885–898, 900, 903–905
Packs/DigitalGuardian/Integrations/DigitalGuardianARCEventCollector
DigitalGuardianARCEventCollector.py	89	17	80%	91, 127–128, 130, 132–133, 135, 137–138, 140–141, 143–144, 148, 150–151, 153
Packs/DigitalShadows/Integrations/ReliaQuestGreyMatterDRPEventCollector
ReliaQuestGreyMatterDRPEventCollector.py	249	38	84%	77, 79–80, 101, 103, 118–119, 197, 217, 256–257, 274–279, 296–298, 440, 446, 450, 477–480, 483–486, 529, 532–533, 535, 538–540
Packs/Dropbox/Integrations/DropboxEventCollector
DropboxEventCollector.py	101	23	77%	103, 107–112, 114, 117, 122–124, 128–129, 150, 154, 157, 161, 164, 167–168, 191–192
Packs/Druva/Integrations/DruvaEventCollector
DruvaEventCollector.py	90	7	92%	90–91, 197, 221–224
Packs/DuoAdminApi/Integrations/DuoEventCollector
DuoEventCollector.py	234	31	86%	66–67, 70–71, 75–79, 81, 83, 130, 171, 284–286, 292–293, 311, 419, 426, 438–439, 443, 447–450, 457, 459–460
Packs/FeedCyCognito/Integrations/FeedCyCognito
FeedCyCognito.py	188	36	80%	81–83, 85, 124–126, 334, 427, 441–442, 462, 470, 472–473, 475–478, 482, 489–501, 503, 505–506
Packs/FeedDomainTools/Integrations/FeedDomainTools
FeedDomainTools.py	149	25	83%	42, 60, 62, 74, 78, 81–82, 95, 130, 172–173, 233, 238–240, 317, 337–338, 371–373, 375, 377, 379–380
Packs/FeedFeedly/Integrations/FeedFeedly
FeedFeedly.py	316	73	76%	135–136, 143, 227, 229, 385–386, 388, 394, 404–405, 450–451, 453, 459, 470–471, 480, 482, 488, 497–498, 507, 513, 522–523, 532, 534, 540, 553–554, 565, 572, 574–575, 585, 588, 590, 600–603, 605, 607–608, 619, 629, 639–640, 643, 653–654, 661, 671, 676, 685–686, 698–699, 701–702, 717, 799, 807, 891, 895, 899–900, 904–906, 908, 986
Packs/FeedGitHub/Integrations/FeedGitHub
FeedGitHub.py	250	56	77%	27–30, 32, 36–38, 149–150, 198–200, 221, 239, 242–243, 373, 405–417, 451, 455, 457, 468–473, 475–476, 478–481, 483–487, 509–511, 518, 534
Packs/FireEyeETP/Integrations/FireEyeETPEventCollector
FireEyeETPEventCollector.py	273	28	89%	228–229, 232, 319, 368, 371, 381, 384, 444, 512–513, 573–574, 586–588, 630, 659, 684–688, 696–699, 701
Packs/FireEyeHX/Integrations/FireEyeHXEventCollector
FireEyeHXEventCollector.py	71	21	70%	48, 50–53, 55, 67, 70–72, 99–100, 141–143, 153, 162–164, 180, 182
Packs/ForcepointDLP/Integrations/ForcepointEventCollector
ForcepointEventCollector.py	90	17	81%	82–85, 87, 91, 94–95, 100–101, 103, 112, 116–117, 147, 214–215
Packs/GenericAPIEventCollector/Integrations/GenericAPIEventCollector
GenericAPIEventCollector.py	269	77	71%	137, 139, 174, 187, 191–201, 203–204, 206, 208, 212–218, 223–232, 235–238, 240, 243–246, 250, 253, 256, 258, 262–263, 266, 329–332, 334, 364–365, 369–373, 375, 377, 385–388, 482, 486–488, 503, 505, 507
Packs/GenetecSecurityCenter/Integrations/GenetecSecurityCenterEventCollector
GenetecSecurityCenterEventCollector.py	79	4	94%	97, 105, 123–124
Packs/GitGuardian/Integrations/GitGuardianEventCollector
GitGuardianEventCollector.py	105	14	86%	106, 145–147, 150, 153, 224–225, 231, 233–235, 237, 239
Packs/GitHub/Integrations/GitHubEventCollector
GitHubEventCollector.py	57	17	70%	38–39, 63–64, 73, 75–76, 78–87
Packs/GitLab/Integrations/GitLabEventCollector
GitLabEventCollector.py	122	16	86%	34–40, 132, 137–140, 257, 266, 284–285
Packs/GoogleApigee/Integrations/GoogleApigeeEventCollector
GoogleApigeeEventCollector.py	117	37	68%	68–73, 75, 80, 82–83, 89–90, 92, 101–102, 105–106, 108–109, 112, 117–120, 245–252, 279, 308–311
Packs/HPEArubaCentral/Integrations/HPEArubaCentralEventCollector
HPEArubaCentralEventCollector.py	240	29	87%	100–103, 105, 152, 246–250, 257, 275–276, 294–296, 324–325, 382, 441, 450, 530, 534, 550, 576, 583, 629, 633
Packs/HelloWorld/Integrations/HelloWorldEventCollector
HelloWorldEventCollector.py	41	8	80%	92–94, 96, 158–161
Packs/IBMMaaS360Security/Integrations/IBMMaaS360SecurityEventCollector
IBMMaaS360SecurityEventCollector.py	150	10	93%	87, 218–222, 229, 267, 314, 333
Packs/IBMSecurityVerify/Integrations/IBMSecurityVerify
IBMSecurityVerify.py	107	26	75%	36, 38–40, 42–43, 58, 117–118, 120–121, 123, 135, 140, 168–169, 186, 205–209, 221–224
Packs/Illumio/Integrations/IllumioCore
IllumioCore.py	422	86	79%	92–94, 96, 111, 253–254, 332, 441, 622, 695–705, 707, 795–797, 799, 861, 925–935, 937, 976, 1073–1083, 1085, 1131, 1137–1141, 1165–1166, 1168–1170, 1172–1174, 1177–1179, 1183–1185, 1187, 1189–1190, 1193, 1195–1196, 1198, 1212–1215, 1217–1219
Packs/InfobloxBloxOne/Integrations/InfobloxBloxOneThreatDefenseEventCollector
InfobloxBloxOneThreatDefenseEventCollector.py	60	0	100%
Packs/IronscalesEventCollector/Integrations/IronscalesEventCollector
IronscalesEventCollector.py	86	10	88%	130, 249–253, 255–256, 262–263
Packs/JamfProtect/Integrations/JamfProtectEventCollector
JamfProtectEventCollector.py	184	28	84%	40–45, 57–59, 72–81, 94–95, 108, 112, 131–133, 456, 547
Packs/Jira/Integrations/JiraEventCollector
JiraEventCollector.py	125	12	90%	80–81, 88–91, 98, 102, 169–170, 188–189
Packs/KeeperSecurity/Integrations/KeeperSecurity
KeeperSecurity.py	191	23	87%	110, 113, 122, 134, 144, 159, 162, 166–167, 170, 173, 266, 361, 371, 381–382, 465–466, 470–471, 477–478, 484
Packs/KnowBe4_KMSAT/Integrations/KnowBe4KMSATEventCollector
KnowBe4KMSATEventCollector.py	70	12	82%	111, 118–119, 127–128, 142–144, 146–147, 149, 165
TOTAL	9744	1581	83%

Tests	Skipped	Failures	Errors	Time
423	0 💤	0 ❌	0 🔥	2m 10s ⏱️

ilappe · 2025-03-23T09:00:49Z

LGTM

Packs/Jira/pack_metadata.json

* batch_1 (#39162) * Adopt 'platform' MP to content packs #2 (#39163) * batch_2 * revert incorrect changes * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #3 (#39164) * batch_3 * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * batch_4 (#39165) * Adopt 'platform' MP to content packs #6 (#39167) * batch_6 * revert incorrect changes * batch_7 (#39168) * Adopt 'platform' MP to content packs #8 (#39169) * batch_8 * revert incorrect changes * Update Packs/CommonScripts/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * Adopt 'platform' MP to content packs #9 (#39170) * batch_9 * revert quick actions * revert incorrect changes * revert incorrect changes * batch_5 (#39232) * batch_10 (#39171) * batch_11 (#39172) * Adopt 'platform' MP to content packs #12 (#39173) * batch_12 * revert incorrect changes * batch_13 (#39174) * Adopt 'platform' MP to content packs #14 (#39175) * batch_14 * revert incorrect changes * Adopt 'platform' MP to content packs #15 (#39176) * batch_15 * Update Packs/FiltersAndTransformers/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_16 (#39177) * batch_17 (#39178) * Adopt 'platform' MP to content packs #18 (#39179) * batch_18 * revert incorrect changes * Adopt 'platform' MP to content packs #19 (#39180) * batch_19 * Update Packs/Jira/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_20 (#39181) * Adopt 'platform' MP to content packs #21 (#39182) * batch_21 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #22 (#39183) * batch_22 * revert incorrect changes * Update Packs/Office365AndAzureAuditLog/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_24 (#39185) * Adopt 'platform' MP to content packs #25 (#39186) * batch_25 * Update Packs/PingIdentity/pack_metadata.json * Update Packs/PrismaAccess/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * Adopt 'platform' MP to content packs #26 (#39187) * batch_26 * revert incorrect changes * Adopt 'platform' MP to content packs #27 (#39188) * batch_27 * revert incorrect changes * Adopt 'platform' MP to content packs #28 (#39189) * batch_28 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #29 (#39190) * batch_29 * revert incorrect changes * Update Packs/Slack/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_30 (#39191) * batch_31 (#39192) * Adopt 'platform' MP to content packs #32 (#39193) * batch_32 * Update Packs/Workday/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_33 (#39194) * Adopt 'platform' MP to content packs #23 (#39184) * batch_23 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * fix json * limit common scripts * fix Core layouts * fix Core layouts --------- Co-authored-by: Israel Lappe <[email protected]> Co-authored-by: darbel <[email protected]>

* Added first draft for Quick action: Create Issue in Jira * Added first draft for Quick action: Create ServiceNow Ticket * Fixing Items in JIRA quick action * Adding Corrects Fields in Open Service Now Ticket * Quick Action Slack Integration * Quick Action MSFT Teams Integration * re-format the ${issue} syntax after clarifications * Adding Platform to pack_metadata.json * Updating pack_metadata.json for all Packs, according to platform-content-support * update supportsquickactions to higher scope adding hidden to relevant quiack-action cmds * Update slack to slackV3 * Remove deprecated arguments from JIRA cmd * Update default Value in Jira * Update Docker images versions * Update Release notes for quick actions Packs * Adding supports quick action for slack V3 * Change order of pre-defined options * Change defaultValue to predefined * Change pretty name for short_description in ServiceNowv2.yml * Remove prettyname for non required params * Update JiraV3.yml according to design changes * Update MicrosoftTeams.yml according to design changes * Update SlackV3.yml according to design changes * Update ServiceNowv2.yml according to design changes * Change from issue to alert keyword * Fixes After demo: Remove user option from teams and slack. Remove defaultValue from Servicenow TicketType * After Server fix - change from alert to issue keyword * Update Packs/Slack/ReleaseNotes/3_5_11.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Slack/ReleaseNotes/3_5_11.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/ServiceNow/ReleaseNotes/2_7_8.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/ServiceNow/Integrations/ServiceNowv2/ServiceNowv2.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Jira/Integrations/JiraV3/JiraV3.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Jira/Integrations/JiraV3/JiraV3.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Jira/ReleaseNotes/3_2_16.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MicrosoftTeams/ReleaseNotes/1_5_17.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MicrosoftTeams/ReleaseNotes/1_5_17.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/ServiceNow/Integrations/ServiceNowv2/ServiceNowv2.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MicrosoftTeams/ReleaseNotes/1_5_17.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MicrosoftTeams/ReleaseNotes/1_5_17.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/ServiceNow/Integrations/ServiceNowv2/ServiceNowv2.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * Update release note file name * Update description after pre commit notes * Create 3_5_12.md * Update Descriptions and params after product meeting * Revert "Create 3_5_12.md" This reverts commit 348e186. * Because of ST failed - update description in commands * batch_1 (#39162) * Adopt 'platform' MP to content packs #2 (#39163) * batch_2 * revert incorrect changes * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #3 (#39164) * batch_3 * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * batch_4 (#39165) * Adopt 'platform' MP to content packs #6 (#39167) * batch_6 * revert incorrect changes * batch_7 (#39168) * Adopt 'platform' MP to content packs #8 (#39169) * batch_8 * revert incorrect changes * Update Packs/CommonScripts/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * Adopt 'platform' MP to content packs #9 (#39170) * batch_9 * revert quick actions * revert incorrect changes * revert incorrect changes * batch_5 (#39232) * batch_10 (#39171) * batch_11 (#39172) * Adopt 'platform' MP to content packs #12 (#39173) * batch_12 * revert incorrect changes * batch_13 (#39174) * Adopt 'platform' MP to content packs #14 (#39175) * batch_14 * revert incorrect changes * Adopt 'platform' MP to content packs #15 (#39176) * batch_15 * Update Packs/FiltersAndTransformers/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_16 (#39177) * batch_17 (#39178) * Adopt 'platform' MP to content packs #18 (#39179) * batch_18 * revert incorrect changes * Adopt 'platform' MP to content packs #19 (#39180) * batch_19 * Update Packs/Jira/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_20 (#39181) * Adopt 'platform' MP to content packs #21 (#39182) * batch_21 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #22 (#39183) * batch_22 * revert incorrect changes * Update Packs/Office365AndAzureAuditLog/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_24 (#39185) * Adopt 'platform' MP to content packs #25 (#39186) * batch_25 * Update Packs/PingIdentity/pack_metadata.json * Update Packs/PrismaAccess/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * Adopt 'platform' MP to content packs #26 (#39187) * batch_26 * revert incorrect changes * Adopt 'platform' MP to content packs #27 (#39188) * batch_27 * revert incorrect changes * Adopt 'platform' MP to content packs #28 (#39189) * batch_28 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #29 (#39190) * batch_29 * revert incorrect changes * Update Packs/Slack/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_30 (#39191) * batch_31 (#39192) * Adopt 'platform' MP to content packs #32 (#39193) * batch_32 * Update Packs/Workday/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_33 (#39194) * Adopt 'platform' MP to content packs #23 (#39184) * batch_23 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * fix json * limit common scripts * Revert "Merge branch 'test-platform-mp' into nivbs/CIAC-13013_Quick_Actions" This reverts commit 78e897c, reversing changes made to d2885a5. * Update release notes before pre commit * Update release notes before pre commit * Update current version in pack_metadata.json * Applying changes to adjust pre-commit tests * Making sure that send slack message and send teams message dont run as one action * Updating SlackV3_test.py to support new version * Revert docker changes in slack and teams because of build not supporting new versions * Revert slack test changes becuase docker versions were not updated * Remove Unnecessary description in Teams --------- Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: Israel Lappe <[email protected]> Co-authored-by: darbel <[email protected]> Co-authored-by: barryyosi-panw <[email protected]> Co-authored-by: barryyosi-panw <[email protected]>

* batch_1 (demisto#39162) * Adopt 'platform' MP to content packs #2 (demisto#39163) * batch_2 * revert incorrect changes * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #3 (demisto#39164) * batch_3 * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * batch_4 (demisto#39165) * Adopt 'platform' MP to content packs #6 (demisto#39167) * batch_6 * revert incorrect changes * batch_7 (demisto#39168) * Adopt 'platform' MP to content packs #8 (demisto#39169) * batch_8 * revert incorrect changes * Update Packs/CommonScripts/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * Adopt 'platform' MP to content packs #9 (demisto#39170) * batch_9 * revert quick actions * revert incorrect changes * revert incorrect changes * batch_5 (demisto#39232) * batch_10 (demisto#39171) * batch_11 (demisto#39172) * Adopt 'platform' MP to content packs #12 (demisto#39173) * batch_12 * revert incorrect changes * batch_13 (demisto#39174) * Adopt 'platform' MP to content packs #14 (demisto#39175) * batch_14 * revert incorrect changes * Adopt 'platform' MP to content packs #15 (demisto#39176) * batch_15 * Update Packs/FiltersAndTransformers/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_16 (demisto#39177) * batch_17 (demisto#39178) * Adopt 'platform' MP to content packs #18 (demisto#39179) * batch_18 * revert incorrect changes * Adopt 'platform' MP to content packs #19 (demisto#39180) * batch_19 * Update Packs/Jira/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_20 (demisto#39181) * Adopt 'platform' MP to content packs #21 (demisto#39182) * batch_21 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #22 (demisto#39183) * batch_22 * revert incorrect changes * Update Packs/Office365AndAzureAuditLog/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_24 (demisto#39185) * Adopt 'platform' MP to content packs #25 (demisto#39186) * batch_25 * Update Packs/PingIdentity/pack_metadata.json * Update Packs/PrismaAccess/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * Adopt 'platform' MP to content packs #26 (demisto#39187) * batch_26 * revert incorrect changes * Adopt 'platform' MP to content packs #27 (demisto#39188) * batch_27 * revert incorrect changes * Adopt 'platform' MP to content packs #28 (demisto#39189) * batch_28 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #29 (demisto#39190) * batch_29 * revert incorrect changes * Update Packs/Slack/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_30 (demisto#39191) * batch_31 (demisto#39192) * Adopt 'platform' MP to content packs #32 (demisto#39193) * batch_32 * Update Packs/Workday/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_33 (demisto#39194) * Adopt 'platform' MP to content packs #23 (demisto#39184) * batch_23 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * fix json * limit common scripts * fix Core layouts * fix Core layouts --------- Co-authored-by: Israel Lappe <[email protected]> Co-authored-by: darbel <[email protected]>

* Added first draft for Quick action: Create Issue in Jira * Added first draft for Quick action: Create ServiceNow Ticket * Fixing Items in JIRA quick action * Adding Corrects Fields in Open Service Now Ticket * Quick Action Slack Integration * Quick Action MSFT Teams Integration * re-format the ${issue} syntax after clarifications * Adding Platform to pack_metadata.json * Updating pack_metadata.json for all Packs, according to platform-content-support * update supportsquickactions to higher scope adding hidden to relevant quiack-action cmds * Update slack to slackV3 * Remove deprecated arguments from JIRA cmd * Update default Value in Jira * Update Docker images versions * Update Release notes for quick actions Packs * Adding supports quick action for slack V3 * Change order of pre-defined options * Change defaultValue to predefined * Change pretty name for short_description in ServiceNowv2.yml * Remove prettyname for non required params * Update JiraV3.yml according to design changes * Update MicrosoftTeams.yml according to design changes * Update SlackV3.yml according to design changes * Update ServiceNowv2.yml according to design changes * Change from issue to alert keyword * Fixes After demo: Remove user option from teams and slack. Remove defaultValue from Servicenow TicketType * After Server fix - change from alert to issue keyword * Update Packs/Slack/ReleaseNotes/3_5_11.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Slack/ReleaseNotes/3_5_11.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/ServiceNow/ReleaseNotes/2_7_8.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/ServiceNow/Integrations/ServiceNowv2/ServiceNowv2.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Jira/Integrations/JiraV3/JiraV3.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Jira/Integrations/JiraV3/JiraV3.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Jira/ReleaseNotes/3_2_16.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MicrosoftTeams/ReleaseNotes/1_5_17.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MicrosoftTeams/ReleaseNotes/1_5_17.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/ServiceNow/Integrations/ServiceNowv2/ServiceNowv2.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MicrosoftTeams/ReleaseNotes/1_5_17.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MicrosoftTeams/ReleaseNotes/1_5_17.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/ServiceNow/Integrations/ServiceNowv2/ServiceNowv2.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * Update release note file name * Update description after pre commit notes * Create 3_5_12.md * Update Descriptions and params after product meeting * Revert "Create 3_5_12.md" This reverts commit 348e186. * Because of ST failed - update description in commands * batch_1 (demisto#39162) * Adopt 'platform' MP to content packs #2 (demisto#39163) * batch_2 * revert incorrect changes * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #3 (demisto#39164) * batch_3 * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * batch_4 (demisto#39165) * Adopt 'platform' MP to content packs #6 (demisto#39167) * batch_6 * revert incorrect changes * batch_7 (demisto#39168) * Adopt 'platform' MP to content packs #8 (demisto#39169) * batch_8 * revert incorrect changes * Update Packs/CommonScripts/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * Adopt 'platform' MP to content packs #9 (demisto#39170) * batch_9 * revert quick actions * revert incorrect changes * revert incorrect changes * batch_5 (demisto#39232) * batch_10 (demisto#39171) * batch_11 (demisto#39172) * Adopt 'platform' MP to content packs #12 (demisto#39173) * batch_12 * revert incorrect changes * batch_13 (demisto#39174) * Adopt 'platform' MP to content packs #14 (demisto#39175) * batch_14 * revert incorrect changes * Adopt 'platform' MP to content packs #15 (demisto#39176) * batch_15 * Update Packs/FiltersAndTransformers/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_16 (demisto#39177) * batch_17 (demisto#39178) * Adopt 'platform' MP to content packs #18 (demisto#39179) * batch_18 * revert incorrect changes * Adopt 'platform' MP to content packs #19 (demisto#39180) * batch_19 * Update Packs/Jira/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_20 (demisto#39181) * Adopt 'platform' MP to content packs #21 (demisto#39182) * batch_21 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #22 (demisto#39183) * batch_22 * revert incorrect changes * Update Packs/Office365AndAzureAuditLog/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_24 (demisto#39185) * Adopt 'platform' MP to content packs #25 (demisto#39186) * batch_25 * Update Packs/PingIdentity/pack_metadata.json * Update Packs/PrismaAccess/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * Adopt 'platform' MP to content packs #26 (demisto#39187) * batch_26 * revert incorrect changes * Adopt 'platform' MP to content packs #27 (demisto#39188) * batch_27 * revert incorrect changes * Adopt 'platform' MP to content packs #28 (demisto#39189) * batch_28 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #29 (demisto#39190) * batch_29 * revert incorrect changes * Update Packs/Slack/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_30 (demisto#39191) * batch_31 (demisto#39192) * Adopt 'platform' MP to content packs #32 (demisto#39193) * batch_32 * Update Packs/Workday/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_33 (demisto#39194) * Adopt 'platform' MP to content packs #23 (demisto#39184) * batch_23 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * fix json * limit common scripts * Revert "Merge branch 'test-platform-mp' into nivbs/CIAC-13013_Quick_Actions" This reverts commit 78e897c, reversing changes made to d2885a5. * Update release notes before pre commit * Update release notes before pre commit * Update current version in pack_metadata.json * Applying changes to adjust pre-commit tests * Making sure that send slack message and send teams message dont run as one action * Updating SlackV3_test.py to support new version * Revert docker changes in slack and teams because of build not supporting new versions * Revert slack test changes becuase docker versions were not updated * Remove Unnecessary description in Teams --------- Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: Israel Lappe <[email protected]> Co-authored-by: darbel <[email protected]> Co-authored-by: barryyosi-panw <[email protected]> Co-authored-by: barryyosi-panw <[email protected]>

…39230) * "contribution update to pack 'Microsoft Sentinel'" * Revert unwanted changes * Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml Co-authored-by: inbalapt1 <[email protected]> * Update Packs/AzureSentinel/Integrations/AzureSentinel/README.md Co-authored-by: inbalapt1 <[email protected]> * Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml Co-authored-by: inbalapt1 <[email protected]> * Revert unwanted changes part 2 * Aligned tests to the input type change * update release notes * fix unittest * Update Packs/AzureSentinel/ReleaseNotes/1_5_60.md Co-authored-by: inbalapt1 <[email protected]> * fix * Added a note to the readme regarding the debugger panel (#39243) * CRTX-133204-Trellix_ePO-fix (#39248) * changed metadata file * added release notes * added release notes --------- Co-authored-by: Shahaf Ben Yakir <[email protected]> * fix: get mapping fields function does not except any arguments (#38786) (#39261) * fix: get mapping fields function does not except any arguments * feat: add Bryan van der Net to CONTRIBUTORS.json * fix: update SentinelOne V2 integration to resolve mapping fields error and enhance configuration sections * fix: update Docker image version for SentinelOne V2 integration * docs: update Docker image version in release notes for SentinelOne V2 integration * Update Packs/SentinelOne/Integrations/SentinelOne-V2/SentinelOne-V2.yml * Update Packs/SentinelOne/Integrations/SentinelOne-V2/SentinelOne-V2.yml * Update Packs/SentinelOne/ReleaseNotes/3_2_37.md * Update Packs/SentinelOne/Integrations/SentinelOne-V2/SentinelOne-V2.yml * style: pr still showing changes on the release notes * Bump version and generate release notes * revert: revert config changes * chore: bump version and update release notes * style: undo random formatting changes --------- Co-authored-by: bryanster <[email protected]> Co-authored-by: inbalapt1 <[email protected]> Co-authored-by: Jelle Hol <[email protected]> * Modeling rules modification - CRTX-151278 (#39103) * Modified modeling rule after the modification of the integration * Fixed schema file * Added release note and modified modeling rule * Pack's version update * Update Packs/qualys/ReleaseNotes/3_2_4.md Co-authored-by: ShirleyDenkberg <[email protected]> * Modified modeling rule * Bump pack from version qualys to 3.2.5. * Added xdm.event.type to assets events * Added tag * Fixed schema file * Fixed schema file --------- Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: Content Bot <[email protected]> * Update Pan-OS playbook for supporting version 11 (#39249) * added itamar (#39265) * Added the validate-validation-config-file hook to content (#39260) * Added the validate-validation-config-file hook to content * fixes * fix validations * Automation research releases (#39270) * new playbook - First Azure AD PowerShell operation for a user (#39159) * new playbook * RN * description fixed * added ignore * Bump pack from version CortexResponseAndRemediation to 1.1.25. * Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-First_Azure_AD_PowerShell_operation_for_a_user.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-First_Azure_AD_PowerShell_operation_for_a_user.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-First_Azure_AD_PowerShell_operation_for_a_user.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-First_Azure_AD_PowerShell_operation_for_a_user.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-First_Azure_AD_PowerShell_operation_for_a_user.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-First_Azure_AD_PowerShell_operation_for_a_user.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-First_Azure_AD_PowerShell_operation_for_a_user.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-First_Azure_AD_PowerShell_operation_for_a_user.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-First_Azure_AD_PowerShell_operation_for_a_user.yml Co-authored-by: ShirleyDenkberg <[email protected]> * task description * position fix * fix for old link to documentation * continue on error * fix * skip if * fix * fix * added issilent: true --------- Co-authored-by: Content Bot <[email protected]> Co-authored-by: Adi Peretz <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> * Automation Research Release - 1 (#39269) * fix: get mapping fields function does not except any arguments (#38786) (#39261) * fix: get mapping fields function does not except any arguments * feat: add Bryan van der Net to CONTRIBUTORS.json * fix: update SentinelOne V2 integration to resolve mapping fields error and enhance configuration sections * fix: update Docker image version for SentinelOne V2 integration * docs: update Docker image version in release notes for SentinelOne V2 integration * Update Packs/SentinelOne/Integrations/SentinelOne-V2/SentinelOne-V2.yml * Update Packs/SentinelOne/Integrations/SentinelOne-V2/SentinelOne-V2.yml * Update Packs/SentinelOne/ReleaseNotes/3_2_37.md * Update Packs/SentinelOne/Integrations/SentinelOne-V2/SentinelOne-V2.yml * style: pr still showing changes on the release notes * Bump version and generate release notes * revert: revert config changes * chore: bump version and update release notes * style: undo random formatting changes --------- Co-authored-by: bryanster <[email protected]> Co-authored-by: inbalapt1 <[email protected]> Co-authored-by: Jelle Hol <[email protected]> * Modeling rules modification - CRTX-151278 (#39103) * Modified modeling rule after the modification of the integration * Fixed schema file * Added release note and modified modeling rule * Pack's version update * Update Packs/qualys/ReleaseNotes/3_2_4.md Co-authored-by: ShirleyDenkberg <[email protected]> * Modified modeling rule * Bump pack from version qualys to 3.2.5. * Added xdm.event.type to assets events * Added tag * Fixed schema file * Fixed schema file --------- Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: Content Bot <[email protected]> * Update Pan-OS playbook for supporting version 11 (#39249) * added itamar (#39265) --------- Co-authored-by: content-bot <[email protected]> Co-authored-by: bryanster <[email protected]> Co-authored-by: inbalapt1 <[email protected]> Co-authored-by: Jelle Hol <[email protected]> Co-authored-by: yasta5 <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: Content Bot <[email protected]> Co-authored-by: Niv Ben Salmon <[email protected]> Co-authored-by: EyalPintzov <[email protected]> --------- Co-authored-by: Karina Fishman <[email protected]> Co-authored-by: Content Bot <[email protected]> Co-authored-by: Adi Peretz <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: content-bot <[email protected]> Co-authored-by: bryanster <[email protected]> Co-authored-by: inbalapt1 <[email protected]> Co-authored-by: Jelle Hol <[email protected]> Co-authored-by: yasta5 <[email protected]> Co-authored-by: Niv Ben Salmon <[email protected]> Co-authored-by: EyalPintzov <[email protected]> * add codeowner (#39272) * [GenericPolling] Update docs (#39250) * RN * Update Packs/CommonPlaybooks/ReleaseNotes/2_6_55.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/CommonPlaybooks/ReleaseNotes/2_6_55.md Co-authored-by: Arad Carmi <[email protected]> --------- Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: Arad Carmi <[email protected]> * edit readme file (#39196) * edit readme file * documentation after tech writing fixes * fix to soft break (line break) * improve images resolution * change permission list to bullet style * [Code owners] Update ContentManagement with talzich (#39284) * Platform content support merge gateway (#39268) * batch_1 (#39162) * Adopt 'platform' MP to content packs #2 (#39163) * batch_2 * revert incorrect changes * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #3 (#39164) * batch_3 * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * batch_4 (#39165) * Adopt 'platform' MP to content packs #6 (#39167) * batch_6 * revert incorrect changes * batch_7 (#39168) * Adopt 'platform' MP to content packs #8 (#39169) * batch_8 * revert incorrect changes * Update Packs/CommonScripts/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * Adopt 'platform' MP to content packs #9 (#39170) * batch_9 * revert quick actions * revert incorrect changes * revert incorrect changes * batch_5 (#39232) * batch_10 (#39171) * batch_11 (#39172) * Adopt 'platform' MP to content packs #12 (#39173) * batch_12 * revert incorrect changes * batch_13 (#39174) * Adopt 'platform' MP to content packs #14 (#39175) * batch_14 * revert incorrect changes * Adopt 'platform' MP to content packs #15 (#39176) * batch_15 * Update Packs/FiltersAndTransformers/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_16 (#39177) * batch_17 (#39178) * Adopt 'platform' MP to content packs #18 (#39179) * batch_18 * revert incorrect changes * Adopt 'platform' MP to content packs #19 (#39180) * batch_19 * Update Packs/Jira/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_20 (#39181) * Adopt 'platform' MP to content packs #21 (#39182) * batch_21 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #22 (#39183) * batch_22 * revert incorrect changes * Update Packs/Office365AndAzureAuditLog/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_24 (#39185) * Adopt 'platform' MP to content packs #25 (#39186) * batch_25 * Update Packs/PingIdentity/pack_metadata.json * Update Packs/PrismaAccess/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * Adopt 'platform' MP to content packs #26 (#39187) * batch_26 * revert incorrect changes * Adopt 'platform' MP to content packs #27 (#39188) * batch_27 * revert incorrect changes * Adopt 'platform' MP to content packs #28 (#39189) * batch_28 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #29 (#39190) * batch_29 * revert incorrect changes * Update Packs/Slack/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_30 (#39191) * batch_31 (#39192) * Adopt 'platform' MP to content packs #32 (#39193) * batch_32 * Update Packs/Workday/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_33 (#39194) * Adopt 'platform' MP to content packs #23 (#39184) * batch_23 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * fix json * limit common scripts * fix Core layouts * fix Core layouts --------- Co-authored-by: Israel Lappe <[email protected]> Co-authored-by: darbel <[email protected]> * IBM HA - add "haIntegrationEventID" to multiple integrations (#38846) * add haIntegrationEventID key to qradar incidents * added rn * fixes * in progress * reverts & preperation * tests fixes * added haIntegrationEventID to more itnegrations * added rns * fixes * fixes * added sections to uptycs * work in progress, save before testing * working windows integration * done all 9 integrations * added rns * fix proof point * fix unit test * validations fixes * validations fixes * reverts * update uptycs contacts * update rns * update rns * revert ms atp * reverts * reverts * updated docker * fixed empty offset issue * added rn * reverts * Add ICDM Integration (#38982) (#39283) * Add ICDM Integration * Fix Formatting and Pipeline errors * Update Sections * Minor changes and refactors to address Review comments * Fix Unit test for network indicator * do not use deprecated method utcnow() * Fix context path and format readable output of Protection Commands * Update Readme * Fix version info in Readme Co-authored-by: rundssoar <[email protected]> * Box Quick Update (#39267) * Updated README and pack_metadata * Updated README * Update Packs/Box/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Box/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Box/README.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Box/README.md Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: ShirleyDenkberg <[email protected]> * [Trellix_ePO] Remove MP xsoar (#39296) * hide pack (#39290) (#39294) Co-authored-by: johnnywilkes <[email protected]> * CortexCoreIR: added `quick actions` commands (#38663) * added prettynames placeholder * added quickaction * update prettypredefined * capital prettyPredefined * update prettypredefined * JUST FOR TEST SDK FIX * correct prettypredefined * test script * uuse sdk from branch * added supportedModules * adding the wrapper commands * remove "platform" properties from script * revert poetry changes * remove quick action from the orig command * correct the name of quick actions * fix wrong * update CoreIR integration with IA related & py code * PM changes * restore pack_metadata * replace placeholders * run ruff format after merge master * added RN * fix alert * update the RN --------- Co-authored-by: Danny_Fried <[email protected]> * drop CortexVulnerabilityManagement from platform (#39299) * Nivbs/ciac 13013 quick actions (#38979) * Added first draft for Quick action: Create Issue in Jira * Added first draft for Quick action: Create ServiceNow Ticket * Fixing Items in JIRA quick action * Adding Corrects Fields in Open Service Now Ticket * Quick Action Slack Integration * Quick Action MSFT Teams Integration * re-format the ${issue} syntax after clarifications * Adding Platform to pack_metadata.json * Updating pack_metadata.json for all Packs, according to platform-content-support * update supportsquickactions to higher scope adding hidden to relevant quiack-action cmds * Update slack to slackV3 * Remove deprecated arguments from JIRA cmd * Update default Value in Jira * Update Docker images versions * Update Release notes for quick actions Packs * Adding supports quick action for slack V3 * Change order of pre-defined options * Change defaultValue to predefined * Change pretty name for short_description in ServiceNowv2.yml * Remove prettyname for non required params * Update JiraV3.yml according to design changes * Update MicrosoftTeams.yml according to design changes * Update SlackV3.yml according to design changes * Update ServiceNowv2.yml according to design changes * Change from issue to alert keyword * Fixes After demo: Remove user option from teams and slack. Remove defaultValue from Servicenow TicketType * After Server fix - change from alert to issue keyword * Update Packs/Slack/ReleaseNotes/3_5_11.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Slack/ReleaseNotes/3_5_11.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/ServiceNow/ReleaseNotes/2_7_8.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/ServiceNow/Integrations/ServiceNowv2/ServiceNowv2.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Jira/Integrations/JiraV3/JiraV3.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Jira/Integrations/JiraV3/JiraV3.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/Jira/ReleaseNotes/3_2_16.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MicrosoftTeams/ReleaseNotes/1_5_17.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MicrosoftTeams/ReleaseNotes/1_5_17.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/ServiceNow/Integrations/ServiceNowv2/ServiceNowv2.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MicrosoftTeams/ReleaseNotes/1_5_17.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/MicrosoftTeams/ReleaseNotes/1_5_17.md Co-authored-by: ShirleyDenkberg <[email protected]> * Update Packs/ServiceNow/Integrations/ServiceNowv2/ServiceNowv2.yml Co-authored-by: ShirleyDenkberg <[email protected]> * Apply suggestions from code review Co-authored-by: ShirleyDenkberg <[email protected]> * Update release note file name * Update description after pre commit notes * Create 3_5_12.md * Update Descriptions and params after product meeting * Revert "Create 3_5_12.md" This reverts commit 348e186. * Because of ST failed - update description in commands * batch_1 (#39162) * Adopt 'platform' MP to content packs #2 (#39163) * batch_2 * revert incorrect changes * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #3 (#39164) * batch_3 * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * batch_4 (#39165) * Adopt 'platform' MP to content packs #6 (#39167) * batch_6 * revert incorrect changes * batch_7 (#39168) * Adopt 'platform' MP to content packs #8 (#39169) * batch_8 * revert incorrect changes * Update Packs/CommonScripts/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * Adopt 'platform' MP to content packs #9 (#39170) * batch_9 * revert quick actions * revert incorrect changes * revert incorrect changes * batch_5 (#39232) * batch_10 (#39171) * batch_11 (#39172) * Adopt 'platform' MP to content packs #12 (#39173) * batch_12 * revert incorrect changes * batch_13 (#39174) * Adopt 'platform' MP to content packs #14 (#39175) * batch_14 * revert incorrect changes * Adopt 'platform' MP to content packs #15 (#39176) * batch_15 * Update Packs/FiltersAndTransformers/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_16 (#39177) * batch_17 (#39178) * Adopt 'platform' MP to content packs #18 (#39179) * batch_18 * revert incorrect changes * Adopt 'platform' MP to content packs #19 (#39180) * batch_19 * Update Packs/Jira/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_20 (#39181) * Adopt 'platform' MP to content packs #21 (#39182) * batch_21 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #22 (#39183) * batch_22 * revert incorrect changes * Update Packs/Office365AndAzureAuditLog/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_24 (#39185) * Adopt 'platform' MP to content packs #25 (#39186) * batch_25 * Update Packs/PingIdentity/pack_metadata.json * Update Packs/PrismaAccess/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * Adopt 'platform' MP to content packs #26 (#39187) * batch_26 * revert incorrect changes * Adopt 'platform' MP to content packs #27 (#39188) * batch_27 * revert incorrect changes * Adopt 'platform' MP to content packs #28 (#39189) * batch_28 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * Adopt 'platform' MP to content packs #29 (#39190) * batch_29 * revert incorrect changes * Update Packs/Slack/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_30 (#39191) * batch_31 (#39192) * Adopt 'platform' MP to content packs #32 (#39193) * batch_32 * Update Packs/Workday/pack_metadata.json --------- Co-authored-by: Dean Arbel <[email protected]> * batch_33 (#39194) * Adopt 'platform' MP to content packs #23 (#39184) * batch_23 * revert incorrect changes * remove identity_threat --------- Co-authored-by: darbel <[email protected]> * fix json * limit common scripts * Revert "Merge branch 'test-platform-mp' into nivbs/CIAC-13013_Quick_Actions" This reverts commit 78e897c, reversing changes made to d2885a5. * Update release notes before pre commit * Update release notes before pre commit * Update current version in pack_metadata.json * Applying changes to adjust pre-commit tests * Making sure that send slack message and send teams message dont run as one action * Updating SlackV3_test.py to support new version * Revert docker changes in slack and teams because of build not supporting new versions * Revert slack test changes becuase docker versions were not updated * Remove Unnecessary description in Teams --------- Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: Israel Lappe <[email protected]> Co-authored-by: darbel <[email protected]> Co-authored-by: barryyosi-panw <[email protected]> Co-authored-by: barryyosi-panw <[email protected]> * Fix validate content tpb (#39297) * Increase timeout * fix tpb yml * FormatURL does not correctly extract URLs from URLs of type ProofPoint URLDefense v3 (#39086) * first commit * add rn * add tests- urls are from api * Bump pack from version CommonScripts to 1.19.34. * improve code * Bump pack from version ApiModules to 2.2.43. * add rn * fix docker * fix code * fix pre-commit * fix pre-commit * fix pre-commit * fix pre-commit * fix test * Bump pack from version CommonScripts to 1.19.35. * fix test * fix test playbook * fix warnings * fix warnings * fix warnings * fix warnings --------- Co-authored-by: Content Bot <[email protected]> * Modified readme file - Proofpoint TAP (#39289) * Modified readme file * Update Packs/ProofpointTAP/README.md Co-authored-by: ShirleyDenkberg <[email protected]> --------- Co-authored-by: ShirleyDenkberg <[email protected]> * Improve handling of command execution timeout using timed thread in QualysV2 (#39074) * Updated Silverfort Pack README (#38764) (#39304) * Updated Silverfort README * Updated based on ilaredo's feedback * Trigger build workflow Co-authored-by: Frank Gasparovic <[email protected]> * Fix for list of techniques in InvestigationDetailedSummaryToTable (#39291) * fix for customer issue * FeedDomainTools Release v1.0.1 (#39280) (#39305) * Add release notes * Removed release notes * Add domain discovery feed. * Added domainrdap feeds * Add test cases for domainrdap feeds * Revert hardcoded indicator type * Remove unnecessary comment * Update README * Update release notes Co-authored-by: Bri <[email protected]> * Fix upload flow core packs validation (#39306) * update the RN * empty * Intense sso failures fix (#39301) * Change 90 days to 1 day * Change 90 days to 1 day * RN --------- Co-authored-by: ROCCO <[email protected]> Co-authored-by: ispRM <[email protected]> Co-authored-by: inbalapt1 <[email protected]> Co-authored-by: [email protected] <[email protected]> Co-authored-by: Shachar Kidor <[email protected]> Co-authored-by: sdaniel6 <[email protected]> Co-authored-by: Shahaf Ben Yakir <[email protected]> Co-authored-by: content-bot <[email protected]> Co-authored-by: bryanster <[email protected]> Co-authored-by: Jelle Hol <[email protected]> Co-authored-by: yasta5 <[email protected]> Co-authored-by: ShirleyDenkberg <[email protected]> Co-authored-by: Content Bot <[email protected]> Co-authored-by: Niv Ben Salmon <[email protected]> Co-authored-by: EyalPintzov <[email protected]> Co-authored-by: Yuval Hayun <[email protected]> Co-authored-by: Daniel Rezvani <[email protected]> Co-authored-by: Karina Fishman <[email protected]> Co-authored-by: Adi Peretz <[email protected]> Co-authored-by: Jacob Levy <[email protected]> Co-authored-by: Arad Carmi <[email protected]> Co-authored-by: lironcohen272 <[email protected]> Co-authored-by: Menachem Weinfeld <[email protected]> Co-authored-by: barryyosi-panw <[email protected]> Co-authored-by: Israel Lappe <[email protected]> Co-authored-by: darbel <[email protected]> Co-authored-by: rundssoar <[email protected]> Co-authored-by: eepstain <[email protected]> Co-authored-by: johnnywilkes <[email protected]> Co-authored-by: Danny_Fried <[email protected]> Co-authored-by: barryyosi-panw <[email protected]> Co-authored-by: Tal Zichlinsky <[email protected]> Co-authored-by: Tal Carmeli <[email protected]> Co-authored-by: Kamal Qarain <[email protected]> Co-authored-by: Frank Gasparovic <[email protected]> Co-authored-by: Andrew Shamah <[email protected]> Co-authored-by: Bri <[email protected]> Co-authored-by: Tomer Haimof <[email protected]> Co-authored-by: RotemAmit <[email protected]>

batch_19

b845b26

ilappe self-assigned this Mar 20, 2025

ilappe requested a review from barryyosi-panw March 23, 2025 09:00

DeanArbel reviewed Mar 24, 2025

View reviewed changes

Packs/Jira/pack_metadata.json Outdated Show resolved Hide resolved

Update Packs/Jira/pack_metadata.json

a400ece

DeanArbel merged commit c919e38 into platform-content-support-merge-gateway Mar 24, 2025
11 of 13 checks passed

DeanArbel deleted the ilappe/CIAC-12864/platform_updated_packs_batch_19 branch March 24, 2025 11:43

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Adopt 'platform' MP to content packs #19 #39180

Adopt 'platform' MP to content packs #19 #39180

ilappe commented Mar 20, 2025

github-actions bot commented Mar 20, 2025 •

edited

Loading

ilappe commented Mar 23, 2025

Adopt 'platform' MP to content packs #19 #39180

Adopt 'platform' MP to content packs #19 #39180

Conversation

ilappe commented Mar 20, 2025

github-actions bot commented Mar 20, 2025 • edited Loading

ilappe commented Mar 23, 2025

github-actions bot commented Mar 20, 2025 •

edited

Loading