Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Security Solution] Prebuilt rule upgrade and installation endpoints, initial implementation #148392

Merged
merged 3 commits into from
Mar 8, 2023
Merged

[Security Solution] Prebuilt rule upgrade and installation endpoints, initial implementation #148392

merged 3 commits into from
Mar 8, 2023

Conversation

banderror
Copy link
Contributor

@banderror banderror commented Jan 4, 2023
edited
Loading

Addresses: #148181, #148182, #148185
Partially addresses: #148183, #148189

Summary

Based on the POC, this PR adds 4 endpoints for the new upgrade and installation workflows for prebuilt rules:

  • GET /internal/detection_engine/prebuilt_rules/status
  • POST /internal/detection_engine/prebuilt_rules/upgrade/_review
  • POST /internal/detection_engine/prebuilt_rules/installation/_review
  • POST /internal/detection_engine/prebuilt_rules/_generate_assets (temporary helper endpoint for development and testing)

The new endpoints are hidden behind a feature flag and can be enabled by the following config setting:

xpack.securitySolution.enableExperimental: ['prebuiltRulesNewUpgradeAndInstallationWorkflowsEnabled']

In the next episodes

Will be done later in follow-up PRs:

@banderror banderror added release_note:skip Skip the PR/issue when compiling release notes backport:skip This commit does not require backporting Team:Detections and Resp Security Detection Response Team Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. Team:Detection Rule Management Security Detection Rule Management Team Feature:Prebuilt Detection Rules Security Solution Prebuilt Detection Rules v8.7.0 labels Jan 4, 2023
@banderror banderror self-assigned this Jan 4, 2023
@banderror banderror changed the title [Security Solution] Rule upgrade and installation endpoints, initial implementation [Security Solution] Prebuilt rule upgrade and installation endpoints, initial implementation Jan 4, 2023
@banderror banderror mentioned this pull request Jan 4, 2023
Closed
12 tasks
@banderror banderror force-pushed the rule-upgrade-and-installation-endpoints-initial-implementation branch 6 times, most recently from 3a25d9a to 8193a41 Compare January 16, 2023 08:47
@banderror banderror force-pushed the rule-upgrade-and-installation-endpoints-initial-implementation branch 7 times, most recently from bb12c80 to 02a174b Compare January 23, 2023 17:48
@banderror banderror force-pushed the rule-upgrade-and-installation-endpoints-initial-implementation branch 6 times, most recently from c4eb9b1 to 04bcdf9 Compare January 27, 2023 11:37
@banderror banderror marked this pull request as draft February 20, 2023 18:26
@banderror banderror force-pushed the rule-upgrade-and-installation-endpoints-initial-implementation branch 4 times, most recently from 8242cba to 1b7ff44 Compare February 28, 2023 11:03
@banderror banderror force-pushed the rule-upgrade-and-installation-endpoints-initial-implementation branch 3 times, most recently from dad0970 to eea46c0 Compare March 7, 2023 11:31
@banderror
Copy link
Contributor Author

Files by Code Owner

elastic/security-detections-response

  • x-pack/plugins/security_solution/server/routes/index.ts

elastic/security-detections-response-alerts

  • x-pack/plugins/security_solution/common/detection_engine/rule_schema/model/build_rule_schemas.ts
  • x-pack/plugins/security_solution/common/detection_engine/rule_schema/model/common_attributes/misc_attributes.ts
  • x-pack/plugins/security_solution/common/detection_engine/rule_schema/model/rule_schemas.ts

elastic/security-detections-response-rules

  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/api/get_prebuilt_rules_status/response_schema.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/api/review_rule_installation/response_schema.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/api/review_rule_upgrade/response_schema.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/api/urls.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/index.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/diffable_rule/build_schema.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/diffable_rule/diffable_field_types.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/diffable_rule/diffable_rule.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/rule_diff/fields_diff.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/rule_diff/rule_diff.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/three_way_diff/three_way_diff.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/three_way_diff/three_way_diff_outcome.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/three_way_diff/three_way_merge_outcome.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/prebuilt_rule.ts
  • x-pack/plugins/security_solution/common/detection_engine/rule_schema/model/build_rule_schemas.ts
  • x-pack/plugins/security_solution/common/detection_engine/rule_schema/model/common_attributes/misc_attributes.ts
  • x-pack/plugins/security_solution/common/detection_engine/rule_schema/model/rule_schemas.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/generate_assets/route.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/get_prebuilt_rules_and_timelines_status/route.test.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/get_prebuilt_rules_and_timelines_status/route.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/get_prebuilt_rules_status/route.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/install_prebuilt_rules_and_timelines/route.test.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/install_prebuilt_rules_and_timelines/route.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/register_routes.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/review_rule_installation/route.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/review_rule_upgrade/route.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/index.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/calculate_rule_diff.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/calculation/algorithms/simple_diff_algorithm.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/calculation/calculate_rule_fields_diff.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/calculation/diff_calculation_helpers.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/convert_rule_to_diffable.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/extract_building_block_object.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/extract_rule_data_query.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/extract_rule_data_source.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/extract_rule_name_override_object.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/extract_rule_schedule.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/extract_timeline_template_reference.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/extract_timestamp_override_object.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/get_latest_prebuilt_rules.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/get_rules_to_install.test.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/get_rules_to_install.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/get_rules_to_update.test.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/get_rules_to_update.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_asset/rule_asset_saved_objects_client.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_assets/prebuilt_rule_assets_client.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_assets/prebuilt_rule_assets_type.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_assets/prebuilt_rule_assets_validation.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_objects/create_prebuilt_rules.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_objects/prebuilt_rule_objects_client.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_objects/update_prebuilt_rules.test.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_objects/update_prebuilt_rules.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/utils.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/mocks.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/model/rule_assets/prebuilt_rule_asset.mock.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/model/rule_assets/prebuilt_rule_asset.test.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/model/rule_assets/prebuilt_rule_asset.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/model/rule_assets/prebuilt_rule_asset_validate_type_dependents.test.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/model/rule_assets/prebuilt_rule_asset_validate_type_dependents.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/model/rule_versions/get_version_buckets.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/model/rule_versions/prebuilt_rule_version_info.ts

elastic/security-solution

  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/api/get_prebuilt_rules_status/response_schema.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/api/review_rule_installation/response_schema.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/api/review_rule_upgrade/response_schema.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/api/urls.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/index.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/diffable_rule/build_schema.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/diffable_rule/diffable_field_types.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/diffable_rule/diffable_rule.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/rule_diff/fields_diff.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/rule_diff/rule_diff.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/three_way_diff/three_way_diff.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/three_way_diff/three_way_diff_outcome.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/diff/three_way_diff/three_way_merge_outcome.ts
  • x-pack/plugins/security_solution/common/detection_engine/prebuilt_rules/model/prebuilt_rule.ts
  • x-pack/plugins/security_solution/common/detection_engine/rule_schema/model/build_rule_schemas.ts
  • x-pack/plugins/security_solution/common/detection_engine/rule_schema/model/common_attributes/misc_attributes.ts
  • x-pack/plugins/security_solution/common/detection_engine/rule_schema/model/rule_schemas.ts
  • x-pack/plugins/security_solution/common/experimental_features.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/generate_assets/route.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/get_prebuilt_rules_and_timelines_status/route.test.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/get_prebuilt_rules_and_timelines_status/route.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/get_prebuilt_rules_status/route.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/install_prebuilt_rules_and_timelines/route.test.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/install_prebuilt_rules_and_timelines/route.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/register_routes.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/review_rule_installation/route.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/api/review_rule_upgrade/route.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/index.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/calculate_rule_diff.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/calculation/algorithms/simple_diff_algorithm.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/calculation/calculate_rule_fields_diff.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/calculation/diff_calculation_helpers.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/convert_rule_to_diffable.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/extract_building_block_object.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/extract_rule_data_query.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/extract_rule_data_source.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/extract_rule_name_override_object.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/extract_rule_schedule.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/extract_timeline_template_reference.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/diff/normalization/extract_timestamp_override_object.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/get_latest_prebuilt_rules.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/get_rules_to_install.test.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/get_rules_to_install.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/get_rules_to_update.test.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/get_rules_to_update.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_asset/rule_asset_saved_objects_client.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_assets/prebuilt_rule_assets_client.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_assets/prebuilt_rule_assets_type.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_assets/prebuilt_rule_assets_validation.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_objects/create_prebuilt_rules.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_objects/prebuilt_rule_objects_client.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_objects/update_prebuilt_rules.test.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/rule_objects/update_prebuilt_rules.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/logic/utils.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/mocks.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/model/rule_assets/prebuilt_rule_asset.mock.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/model/rule_assets/prebuilt_rule_asset.test.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/model/rule_assets/prebuilt_rule_asset.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/model/rule_assets/prebuilt_rule_asset_validate_type_dependents.test.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/model/rule_assets/prebuilt_rule_asset_validate_type_dependents.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/model/rule_versions/get_version_buckets.ts
  • x-pack/plugins/security_solution/server/lib/detection_engine/prebuilt_rules/model/rule_versions/prebuilt_rule_version_info.ts
  • x-pack/plugins/security_solution/server/routes/index.ts
  • x-pack/plugins/security_solution/server/saved_objects.ts
  • x-pack/test/detection_engine_api_integration/utils/prebuilt_rules/create_prebuilt_rule_saved_objects.ts

elastic/security-threat-hunting

  • x-pack/plugins/security_solution/server/routes/index.ts

@banderror banderror mentioned this pull request Mar 7, 2023
Closed
@banderror banderror force-pushed the rule-upgrade-and-installation-endpoints-initial-implementation branch from 3b36a04 to 5f9d3c9 Compare March 7, 2023 17:54
@banderror banderror marked this pull request as ready for review March 7, 2023 17:55
@banderror banderror requested a review from xcrzx March 7, 2023 17:55
@banderror banderror force-pushed the rule-upgrade-and-installation-endpoints-initial-implementation branch from 5f9d3c9 to e68a7fc Compare March 7, 2023 18:07
kqualters-elastic
kqualters-elastic approved these changes Mar 7, 2023
View reviewed changes
Copy link
Contributor

@kqualters-elastic kqualters-elastic left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

threat hunting changes lgtm 👍

@banderror banderror enabled auto-merge (squash) March 7, 2023 18:09
xcrzx
xcrzx approved these changes Mar 7, 2023
View reviewed changes
Copy link
Contributor

@xcrzx xcrzx left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM! Thank you, @banderror 🙌

@banderror
Copy link
Contributor Author

buildkite test this

@xcrzx xcrzx force-pushed the rule-upgrade-and-installation-endpoints-initial-implementation branch from e68a7fc to 5af6476 Compare March 8, 2023 10:44
@kibana-ci
Copy link
Collaborator

💛 Build succeeded, but was flaky

Failed CI Steps

Test Failures

  • [job] [logs] Security Solution Tests #4 / Exceptions flyout "after each" hook for "Warns users about mapping conflicts on problematic field selection"

Metrics [docs]

Module Count

Fewer modules leads to a faster build time

id before after diff
securitySolution 3752 3751 -1

Async chunks

Total size of all lazy-loaded chunks that will be downloaded as the user navigates the app

id before after diff
securitySolution 15.7MB 15.7MB -930.0B

Page load bundle

Size of the bundles that are downloaded on every page load. Target size is below 100kb

id before after diff
securitySolution 53.6KB 53.6KB +58.0B
Unknown metric groups

ESLint disabled line counts

id before after diff
securitySolution 428 433 +5

Total ESLint disabled count

id before after diff
securitySolution 505 510 +5

History

  • 💔 Build #112554 failed e68a7fc0670357bd482776a4792c42bd33a3bfd8
  • 💔 Build #112488 failed e68a7fc0670357bd482776a4792c42bd33a3bfd8
  • 💚 Build #112350 succeeded eb1a386f42cd626b335d4fbb12da45ff14e39451
  • 💔 Build #111679 failed dad09708fd66ce30f1290a6b9923ac4c100f2e50
  • 💔 Build #111283 failed 110b847bb50d7fbe6e16d08fac3a0238344448ff

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

cc @banderror

@banderror banderror merged commit 03cdec3 into elastic:main Mar 8, 2023
bmorelli25 pushed a commit to bmorelli25/kibana that referenced this pull request Mar 10, 2023
@banderror @bmorelli25
[Security Solution] Prebuilt rule upgrade and installation endpoints,…
ebc623a 
… initial implementation (elastic#148392)

**Addresses:** elastic#148181,
elastic#148182,
elastic#148185
**Partially addresses:**
elastic#148183,
elastic#148189

## Summary

Based on the [POC](elastic#144060), this
PR adds 4 endpoints for the new upgrade and installation workflows for
prebuilt rules:

- `GET /internal/detection_engine/prebuilt_rules/status`
- `POST /internal/detection_engine/prebuilt_rules/upgrade/_review`
- `POST /internal/detection_engine/prebuilt_rules/installation/_review`
- `POST /internal/detection_engine/prebuilt_rules/_generate_assets`
(temporary helper endpoint for development and testing)

The new endpoints are hidden behind a feature flag and can be enabled by
the following config setting:

```yaml
xpack.securitySolution.enableExperimental: ['prebuiltRulesNewUpgradeAndInstallationWorkflowsEnabled']
```

## In the next episodes

Will be done later in follow-up PRs:

- Implementation of some additional response properties for the
`upgrade/_review` endpoint:
  - elastic#148183
- Making base versions optional for diff calculation (we need to support
this in order to be able to still show diffs for rule assets coming from
packages without historical versions):
  - elastic#148189
- Further development of the diff algorithm:
  - elastic#148191
- Test coverage:
  - elastic#148192
@banderror banderror deleted the rule-upgrade-and-installation-endpoints-initial-implementation branch March 20, 2023 09:16
@banderror banderror mentioned this pull request Sep 13, 2023
Closed
2 tasks
@jpdjere jpdjere mentioned this pull request Apr 5, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kqualters-elastic kqualters-elastic kqualters-elastic approved these changes

@marshallmain marshallmain marshallmain approved these changes

@xcrzx xcrzx xcrzx approved these changes

Assignees

@banderror banderror

Labels
backport:skip This commit does not require backporting Feature:Prebuilt Detection Rules Security Solution Prebuilt Detection Rules release_note:skip Skip the PR/issue when compiling release notes Team:Detection Rule Management Security Detection Rule Management Team Team:Detections and Resp Security Detection Response Team Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. v8.8.0
Projects
None yet
Milestone
No milestone
6 participants
@banderror @elasticmachine @kibana-ci @xcrzx @marshallmain @kqualters-elastic