[Security Solution][Endpoint] Improve endpoint performance with Trusted Apps path wildcards

[ashokaditya]

Summary

Displays a soft warning when the matching path has wildcard executable name. If the wildcard path has a proper executable in the path then it adds a process.name value to the TA artifact.

Linux entries

Mac entries

Windows entries

Checklist

Delete any items that are not applicable to this PR.

• Unit or functional tests were updated or added to match the most common scenarios

Risk Matrix

Delete this section if it is not applicable to this PR.

Before closing this PR, invite QA, stakeholders, and other developers to identify risks that should be tested prior to the change/feature release.

When forming the risk matrix, consider some of the following examples and how they may potentially impact the change:

Risk	Probability	Severity	Mitigation/Notes
Multiple Spaces—unexpected behavior in non-default Kibana Space.	Low	High	Integration tests will verify that all features are still supported in non-default Kibana Space and when user switches between spaces.
Multiple nodes—Elasticsearch polling might have race conditions when multiple Kibana nodes are polling for the same tasks.	High	Low	Tasks are idempotent, so executing them multiple times will not result in logical error, but will degrade performance. To test for this case we add plenty of unit tests around this logic and document manual testing procedure.
Code should gracefully handle cases when feature X or plugin Y are disabled.	Medium	High	Unit tests will verify that any feature flag or plugin combination still results in our service operational.
See more potential risk examples

For maintainers

• This was checked for breaking API changes and was labeled appropriately

[kibana-ci]

💔 Build Failed

• Buildkite Build
• Commit: fb59c64
• Interpreting CI Failures
• Storybooks Preview

Failed CI Steps

• Jest Tests #7

Test Failures

• [job] [logs] Jest Tests #7 / when rendering the PolicyTrustedAppsList should navigate to trusted apps page when view full details action is clicked
• [job] [logs] Jest Tests #7 / when using the ArtifactEntryCard component with exceptions/event filters should display title and who has created and updated it last
• [job] [logs] Jest Tests #7 / when using the ArtifactEntryCard component with trusted apps should display multiple OSs in the criteria conditions
• [job] [logs] Jest Tests #7 / when using the ArtifactEntryCard component with trusted apps should display OS and criteria conditions
• [job] [logs] Jest Tests #7 / when using the ArtifactEntryCard component with trusted apps should display title and who has created and updated it last
• [job] [logs] Jest Tests #7 / when using the ArtifactEntryCardMinified component with trusted apps should collapse/uncollapse critera conditions
• [job] [logs] Jest Tests #7 / When using the RemoveTrustedAppFromPolicyModal component should show success toast and close modal when removed is successful

Metrics [docs]

Async chunks

Total size of all lazy-loaded chunks that will be downloaded as the user navigates the app

id	before	after	diff
securitySolution	4.6MB	4.6MB	+601.0B

History

• 💔 Build #12362 failed 9ed7a59db7b2302b9e2737d4f05729b3577a2bdf
• 💔 Build #12199 failed 1fe5d94627b37723a37e05aee7eee7d74e9f83a5

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

cc @ashokaditya

[ashokaditya]

same as elastic/kibana/pull/120349