Skip to content

Commit 0948111

Browse files
moxarth-rathodmoxarth-rathod
authored
Make security integrations GA (#15298)
The following security integration are made GA: - canva - claroty_xdome - jamf_pro - miniflux - proofpoint_itm - splunk - tenable_ot_security - varonis - websocket
1 parent 7f0bf91 commit 0948111

File tree

111 files changed

+2422
-759
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

111 files changed

+2422
-759
lines changed

packages/canva/_dev/build/build.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,3 +1,3 @@
11
dependencies:
22
ecs:
3-
reference: "git@v8.11.0"
3+
reference: "git@v8.17.0"

packages/canva/changelog.yml

Lines changed: 11 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,4 +1,15 @@
11
# newer versions go on top
2+
- version: "1.0.0"
3+
changes:
4+
- description: Release package as GA.
5+
type: enhancement
6+
link: https://github.com/elastic/integrations/pull/15298
7+
- description: ECS version updated to 8.17.0.
8+
type: enhancement
9+
link: https://github.com/elastic/integrations/pull/15298
10+
- description: Fix dashboard link for Serverless Project.
11+
type: bugfix
12+
link: https://github.com/elastic/integrations/pull/15298
213
- version: "0.7.0"
314
changes:
415
- description: Remove redundant installation instructions.

packages/canva/data_stream/audit/_dev/test/pipeline/test-audit.log-expected.json

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -393,7 +393,7 @@
393393
"id": "Ddb44"
394394
},
395395
"ecs": {
396-
"version": "8.11.0"
396+
"version": "8.17.0"
397397
},
398398
"event": {
399399
"action": "remove_team_from_organization",
@@ -476,4 +476,4 @@
476476
}
477477
}
478478
]
479-
}
479+
}

packages/canva/data_stream/audit/elasticsearch/ingest_pipeline/default.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -4,7 +4,7 @@ processors:
44
- set:
55
field: ecs.version
66
tag: set_ecs_version
7-
value: 8.11.0
7+
value: 8.17.0
88
- set:
99
field: event.kind
1010
tag: set_event_kind

packages/canva/data_stream/audit/fields/base-fields.yml

Lines changed: 6 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -1,20 +1,16 @@
11
- name: data_stream.type
2-
type: constant_keyword
3-
description: Data stream type.
2+
external: ecs
43
- name: data_stream.dataset
5-
type: constant_keyword
6-
description: Data stream dataset.
4+
external: ecs
75
- name: data_stream.namespace
8-
type: constant_keyword
9-
description: Data stream namespace.
6+
external: ecs
107
- name: event.module
118
type: constant_keyword
12-
description: Event module.
139
value: canva
10+
external: ecs
1411
- name: event.dataset
1512
type: constant_keyword
16-
description: Event dataset.
1713
value: canva.audit
14+
external: ecs
1815
- name: '@timestamp'
19-
type: date
20-
description: Event timestamp.
16+
external: ecs

packages/canva/data_stream/audit/sample_event.json

Lines changed: 13 additions & 13 deletions
Original file line numberDiff line numberDiff line change
@@ -1,17 +1,17 @@
11
{
22
"@timestamp": "2024-01-01T01:00:00.123Z",
33
"agent": {
4-
"ephemeral_id": "10166c35-0c59-4fea-976e-8615fb6be40a",
5-
"id": "cfee7fe4-90a0-4cc8-8f00-1699ef5c3603",
6-
"name": "docker-fleet-agent",
4+
"ephemeral_id": "860cd4e2-418c-4cdb-a7ab-60155067bde8",
5+
"id": "d4ca30b3-0f86-4dea-a919-235cb2014360",
6+
"name": "elastic-agent-19022",
77
"type": "filebeat",
8-
"version": "8.13.0"
8+
"version": "8.16.5"
99
},
1010
"aws": {
1111
"s3": {
1212
"bucket": {
13-
"arn": "arn:aws:s3:::elastic-package-canva-bucket-76803",
14-
"name": "elastic-package-canva-bucket-76803"
13+
"arn": "arn:aws:s3:::elastic-package-canva-bucket-57347",
14+
"name": "elastic-package-canva-bucket-57347"
1515
},
1616
"object": {
1717
"key": "audit.log"
@@ -378,19 +378,19 @@
378378
},
379379
"data_stream": {
380380
"dataset": "canva.audit",
381-
"namespace": "91976",
381+
"namespace": "74807",
382382
"type": "logs"
383383
},
384384
"device": {
385385
"id": "Ddb44"
386386
},
387387
"ecs": {
388-
"version": "8.11.0"
388+
"version": "8.17.0"
389389
},
390390
"elastic_agent": {
391-
"id": "cfee7fe4-90a0-4cc8-8f00-1699ef5c3603",
391+
"id": "d4ca30b3-0f86-4dea-a919-235cb2014360",
392392
"snapshot": false,
393-
"version": "8.13.0"
393+
"version": "8.16.5"
394394
},
395395
"event": {
396396
"action": "remove_team_from_organization",
@@ -402,7 +402,7 @@
402402
"duration": 10540800000000000,
403403
"end": "2024-07-06T18:57:27.000Z",
404404
"id": "3849ef51-ca85-4028-bae3-1b8de3ee5738",
405-
"ingested": "2024-08-13T15:05:32Z",
405+
"ingested": "2025-09-11T07:12:05Z",
406406
"kind": "event",
407407
"original": "{\"id\":\"3849ef51-ca85-4028-bae3-1b8de3ee5738\",\"timestamp\":1704070800123,\"actor\":{\"type\":\"USER\",\"user\":{\"id\":\"UXoqDbwwSbQ\",\"display_name\":\"JaneDoe\",\"email\":\"[email protected]\"},\"team\":{\"id\":\"BXeFatjDhdR\",\"display_name\":\"AcmeCorporation\"},\"organization\":{\"id\":\"OXtgecafZvh\"},\"details\":{\"type\":\"SCIM\"}},\"target\":{\"target_type\":\"USER\",\"user\":{\"id\":\"UXoqDbwwSbQ\",\"display_name\":\"JaneDoe\",\"email\":\"[email protected]\"},\"team\":{\"id\":\"BXeFatjDhdR\",\"display_name\":\"AcmeCorporation\"},\"organization\":{\"id\":\"abc\"},\"owner\":{\"type\":\"USER\",\"user\":{\"id\":\"UXoqDbwwSbQ\",\"display_name\":\"JaneDoe\",\"email\":\"[email protected]\"},\"team\":{\"id\":\"BXeFatjDhdR\",\"display_name\":\"AcmeCorporation\"},\"organization\":{\"id\":\"abc\"}},\"resource_type\":\"DESIGN\",\"id\":\"abc123\",\"name\":\"abc\"},\"action\":{\"type\":\"REMOVE_TEAM_FROM_ORGANIZATION\",\"display_name\":\"Marketing\",\"first_name\":\"string\",\"last_name\":\"string\",\"email\":\"[email protected]\",\"email_verified\":true,\"phone_number\":\"string\",\"country_code\":\"string\",\"locale\":\"string\",\"managing_entity\":{\"type\":\"TEAM\",\"team\":{\"id\":\"BXeFatjDhdR\",\"display_name\":\"AcmeCorporation\"},\"organization\":{\"id\":\"Abc11233\"}},\"saml_accounts\":[{\"idp_issuer\":\"string\",\"name_id\":\"string\"}],\"oauth_accounts\":[{\"platform\":\"string\",\"external_user_id\":\"string\"}],\"totp_mfa_enabled\":true,\"sms_mfa_enabled\":true,\"reason\":{\"type\":\"SAML_JIT_PROVISIONING\"},\"changed_fields\":\"ADDRESS\",\"login_type\":\"PASSWORD\",\"oauth_platform\":\"APPLE\",\"user_scope\":\"CURRENT_USER\",\"session_scope\":\"CURRENT_SESSION\",\"app_id\":\"string\",\"app_version\":\"string\",\"app_name\":\"string\",\"permissions\":[\"DESIGN_CONTENT_READ\"],\"old_permissions\":[\"DESIGN_CONTENT_READ\"],\"new_permissions\":[\"DESIGN_CONTENT_READ\"],\"output_type\":\"PDF\",\"create_type\":\"CREATE\",\"title\":\"Myawesomedesign\",\"original_design_id\":\"DAGKs37VOUl\",\"design_type\":\"Presentation(16:9)\",\"view_type\":\"VIEW_IN_EDITOR\",\"changes\":[{\"type\":\"CREATE_DESIGN_ACCESS_INVITE\",\"token_prefix\":\"ZMrbBHL2\",\"recipient\":\"[email protected]\",\"access\":{\"read\":true,\"write\":true}},{\"type\":\"REDEEM_DESIGN_ACCESS_INVITE\",\"token_prefix\":\"ZMrbBHL2\",\"recipient\":\"[email protected]\",\"user\":{\"id\":\"UXoqDbwwSbQ\",\"display_name\":\"JaneDoe\",\"email\":\"[email protected]\"}},{\"type\":\"DELETE_DESIGN_ACCESS_INVITE\",\"token_prefix\":\"ZMrbBHL2\",\"recipient\":\"[email protected]\"},{\"type\":\"UPDATE_DESIGN_OWNER\",\"old_owner\":{\"id\":\"UXoqDbwwSbQ\",\"display_name\":\"JaneDoe\",\"email\":\"[email protected]\"},\"new_owner\":{\"id\":\"UXqwwoQDSbb\",\"display_name\":\"AshDoe\",\"email\":\"[email protected]\"}},{\"type\":\"CREATE_DESIGN_ACCESS_RESTRICTION\"},{\"type\":\"GRANT_USER_DESIGN_ACCESS\",\"access\":{\"read\":true,\"write\":true},\"user\":{\"id\":\"UXoqDbwwSbQ\",\"display_name\":\"JaneDoe\",\"email\":\"[email protected]\"}},{\"type\":\"REVOKE_USER_DESIGN_ACCESS\",\"access\":{\"read\":true,\"write\":true},\"user\":{\"id\":\"UXoqDbwwSbQ\",\"display_name\":\"JaneDoe\",\"email\":\"[email protected]\"}},{\"type\":\"UPDATE_USER_DESIGN_ACCESS\",\"old_access\":{\"read\":true,\"write\":false},\"new_access\":{\"read\":true,\"write\":true},\"user\":{\"id\":\"UXoqDbwwSbQ\",\"display_name\":\"JaneDoe\",\"email\":\"[email protected]\"}},{\"type\":\"GRANT_GROUP_DESIGN_ACCESS\",\"access\":{\"read\":true,\"write\":true},\"group\":\"GADkBZ48E04\"},{\"type\":\"REVOKE_GROUP_DESIGN_ACCESS\",\"access\":{\"read\":true,\"write\":true},\"group\":\"GADkBZ48E04\"},{\"type\":\"UPDATE_GROUP_DESIGN_ACCESS\",\"old_access\":{\"read\":true,\"write\":false},\"new_access\":{\"read\":true,\"write\":true},\"group\":\"GADkBZ48E04\"},{\"type\":\"GRANT_TEAM_DESIGN_ACCESS\",\"access\":{\"read\":true,\"write\":true},\"team\":{\"id\":\"BXeFatjDhdR\",\"display_name\":\"AcmeCorporation\"}},{\"type\":\"REVOKE_TEAM_DESIGN_ACCESS\",\"access\":{\"read\":true,\"write\":true},\"team\":{\"id\":\"BXeFatjDhdR\",\"display_name\":\"AcmeCorporation\"}},{\"type\":\"UPDATE_TEAM_DESIGN_ACCESS\",\"old_access\":{\"read\":true,\"write\":false},\"new_access\":{\"read\":true,\"write\":true},\"team\":{\"id\":\"BXeFatjDhdR\",\"display_name\":\"AcmeCorporation\"}},{\"type\":\"GRANT_ORGANIZATION_DESIGN_ACCESS\",\"access\":{\"read\":true,\"write\":true},\"organization\":{\"id\":\"OXtgecafZvh\"}},{\"type\":\"REVOKE_ORGANIZATION_DESIGN_ACCESS\",\"access\":{\"read\":true,\"write\":true},\"organization\":{\"id\":\"OXtgecafZvh\"}},{\"type\":\"UPDATE_ORGANIZATION_DESIGN_ACCESS\",\"old_access\":{\"read\":true,\"write\":false},\"new_access\":{\"read\":true,\"write\":true},\"organization\":{\"id\":\"OXtgecafZvh\"}},{\"type\":\"GRANT_DESIGN_LINK_ACCESS\",\"access\":{\"read\":true,\"write\":true},\"owning_team_only\":true},{\"type\":\"REVOKE_DESIGN_LINK_ACCESS\",\"access\":{\"read\":true,\"write\":true},\"owning_team_only\":true},{\"type\":\"UPDATE_DESIGN_LINK_ACCESS\",\"old_link_role\":{\"access\":{\"read\":true,\"write\":false},\"owning_team_only\":true},\"new_link_role\":{\"access\":{\"read\":true,\"write\":true},\"owning_team_only\":false}}],\"description\":\"TheAcmeCorporationmarketinggroup.\",\"old_display_name\":\"Marketing\",\"new_display_name\":\"Growth\",\"user\":{\"id\":\"UXoqDbwwSbQ\",\"display_name\":\"JaneDoe\",\"email\":\"[email protected]\"},\"role\":\"ADMIN\",\"new_role\":\"ADMIN\",\"old_role\":\"ADMIN\",\"team_address\":{\"street1\":\"110Kippaxstreet\",\"city\":\"SurryHills\",\"subdivision\":\"AU-NSW\",\"country_code\":\"AU\",\"postcode\":2010},\"approval_status\":\"PENDING\",\"emails\":[\"[email protected]\",\"[email protected]\"],\"report_type\":\"USER\",\"start_timestamp\":1709751447000,\"end_timestamp\":1720292247000,\"old_name\":\"UntitledCorporation\",\"new_name\":\"AcmeCorporation\",\"default_team_id\":\"BXeFatjDhdR\",\"default_team_policy\":\"ADMIN_AND_UP\",\"team\":{\"id\":\"BXeFatjDhdR\",\"display_name\":\"AcmeCorporation\"}},\"outcome\":{\"result\":\"PERMITTED\",\"details\":{\"type\":\"RESOURCE_CREATED\",\"resource_id\":\"DXWEBartcNg\",\"resource_type\":\"DESIGN\",\"user_id\":\"ac343\"}},\"context\":{\"ip_address\":\"81.2.69.142\",\"session\":\"abc111\",\"request_id\":\"fafas\",\"device_id\":\"Ddb44\"}}",
408408
"outcome": "success",
@@ -416,7 +416,7 @@
416416
},
417417
"log": {
418418
"file": {
419-
"path": "https://elastic-package-canva-bucket-76803.s3.us-east-1.amazonaws.com/audit.log"
419+
"path": "https://elastic-package-canva-bucket-57347.s3.us-east-1.amazonaws.com/audit.log"
420420
},
421421
"offset": 0
422422
},
@@ -486,4 +486,4 @@
486486
"id": "UXoqDbwwSbQ"
487487
}
488488
}
489-
}
489+
}

0 commit comments

Comments
 (0)