Skip to content

Add File Integrity Monitoring package#3143

Merged
adriansr merged 3 commits intoelastic:mainfrom
adriansr:fim_package
Apr 26, 2022
Merged

Add File Integrity Monitoring package#3143
adriansr merged 3 commits intoelastic:mainfrom
adriansr:fim_package

Conversation

@adriansr
Copy link
Contributor

@adriansr adriansr commented Apr 20, 2022
edited
Loading

What does this PR do?

Adds a new File Integrity Monitoring (internal:fim) package to expose Auditbeat's file_integrity module as
an integration.

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.

Related issues

Screenshots

Screenshot 2022-04-20 at 17-09-15 File Integrity Monitoring - Integrations - Elastic

Screenshot 2022-04-20 at 17-11-43 Add integration - File Integrity Monitoring - Integrations - Elastic

Screenshot 2022-04-20 at 17-12-14 Add integration - File Integrity Monitoring - Integrations - Elastic

Screenshot 2022-04-20 at 17-12-32 Add integration - File Integrity Monitoring - Integrations - Elastic

adriansr added 2 commits April 20, 2022 17:19
@adriansr
Add File Integrity Monitoring package
ca0bc6d 
Adds a new `fim` package to expose Auditbeat's file_integrity module as
an integration.

Closes #2711
@adriansr
pr number
33eb5a0
@adriansr adriansr added Team:Security-External Integrations New Integration Issue or pull request for creating a new integration package. 8.3-candidate 8.3 candidate labels Apr 20, 2022
@elasticmachine
Copy link

elasticmachine commented Apr 20, 2022

Pinging @elastic/security-external-integrations (Team:Security-External Integrations)

@adriansr adriansr changed the title Fim package Add File Integrity Monitoring package Apr 20, 2022
@adriansr adriansr requested a review from a team April 20, 2022 15:28
@elasticmachine
Copy link

elasticmachine commented Apr 20, 2022
edited
Loading

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview preview

Expand to view the summary

Build stats

  • Start Time: 2022-04-20T15:29:53.619+0000

  • Duration: 14 min 32 sec

Test stats 🧪

Test Results
Failed 0
Passed 4
Skipped 0
Total 4

🤖 GitHub comments

To re-run your PR in the CI, just comment with:

  • /test : Re-trigger the build.

efd6
efd6 approved these changes Apr 20, 2022
View reviewed changes
packages/fim/data_stream/event/agent/stream/file_integrity.yml.hbs
Comment on lines +18 to +21
include_files:
{{#each include_files as |expr i|}}
- {{expr}}
{{/each}}
Copy link
Contributor

@efd6 efd6 Apr 20, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Query: Should this be conditional on include_files or is an empty list fine to send?

Copy link
Contributor Author

@adriansr adriansr Apr 21, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Empty list is fine

@adriansr adriansr merged commit 10abf77 into elastic:main Apr 26, 2022
@adriansr adriansr deleted the fim_package branch April 26, 2022 08:41
@jamiehynds
Copy link

jamiehynds commented Apr 26, 2022
edited
Loading

@adriansr this is very minor, but I wonder if we should use a different icon rather than the Elastic logo. Something like this maybe?

illustration-file-integrity-monitoring-128-white-bg@2x

or this icon?

64x64_Color_icon-documents-64-color

@andrewkroh andrewkroh mentioned this pull request May 2, 2022
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@efd6 efd6 efd6 approved these changes

Assignees

No one assigned

Labels

8.3-candidate 8.3 candidate New Integration Issue or pull request for creating a new integration package.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Auditbeat File Integrity Monitoring

4 participants

@adriansr @elasticmachine @jamiehynds @efd6