[Security Solution] Users can Customize Prebuilt Detection Rules: Milestone 4 (DRAFT) #179907
Open
1 of 45 tasks
Labels
Feature:Prebuilt Detection Rules
Security Solution Prebuilt Detection Rules
Meta
Team:Detection Rule Management
Security Detection Rule Management Team
Team:Detections and Resp
Security Detection Response Team
Team: SecuritySolution
Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc.
Epic: https://github.com/elastic/security-team/issues/1974 (internal)
Milestones: << • >>
Status: Draft.
Summary
Milestone 4: Improve prebuilt rule customization, upgrade, and installation UX.
This meta ticket is created to simplify tracking of various tickets related to the epic, and to make this public information so our users can track the progress.
Useful info:
Product and UX improvements
Rule customization UX
Rule installation and upgrade UX
Rule upgrade, diff algorithms
"Last Updated" field in the UI
source_updated_at
to Rule Schema as a Build Time Field detection-rules#2826source_updated_at
field toPrebuiltRuleAsset
#176286source_updated_at
field toRuleResponse
viaResponseFields
#174740Bugs
Bugs: rule installation and upgrade
Bugs: rule import and export
Bugs: misc
See what's new in Prebuilt Security Detection Rules
link onAdd Elastic Rules
page works with clicking anywhere on the blank space available on the right side of the page. #194275Technical improvements and debt
Schema migration from
immutable
torule_source
ruleSource
field (BLOCKED) #184113rule_source
(BLOCKED) #180126immutable
as optional in the internal rule schema and stop writing it to rules (BLOCKED) #182573immutable
field (DRAFT)(BLOCKED) #180269Fleet package with prebuilt rules
Refactoring
DetectionRulesClient
refactoring. Part 3 #187656Tests
Performance
/upgrade/_perform
performance improvements #199101Misc
The text was updated successfully, but these errors were encountered: