From c40e421c0ca68049973182c11263237d9e99435e Mon Sep 17 00:00:00 2001
From: Maxim Palenov <maxim.palenov@elastic.co>
Date: Wed, 2 Jul 2025 16:10:01 +0200
Subject: [PATCH] [Security Solution] Move license level independent tests to
 the common folder (#225495)

**Relates to:** https://github.com/elastic/kibana/pull/219831

## Summary

This PR moves prebuilt rules license independent integration tests to the `prebuilt_rules/common` folder.

(cherry picked from commit 55e329206dae0e4ba76a5eebdd759dec6c8dd46f)

# Conflicts:
#	x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/install_prebuilt_rules/install_mocked_prebuilt_rule_assets.ts
#	x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/revert_prebuilt_rules.ts
---
 .buildkite/ftr_security_stateful_configs.yml  |   3 +-
 .../common/configs/ess_air_gapped.config.ts   |   7 ++-
 .../ess_air_gapped_large_package.config.ts    |  10 ++--
 .../{import => }/fixtures/packages/README.md  |   0
 .../security_detection_engine-100.0.0.zip     | Bin
 .../security_detection_engine-99.0.0.zip      | Bin 0 -> 7948 bytes
 ...ecurity_detection_engine-99.0.1-beta.1.zip | Bin
 .../security_detection_engine-90.0.0.zip      | Bin 7946 -> 0 bytes
 .../import/import_with_installing_package.ts  |  10 ++--
 .../prebuilt_rules/common/index.ts            |   3 ++
 .../install_prebuilt_rules/index.ts           |   0
 .../install_mocked_prebuilt_rule_assets.ts    |  50 +++++++-----------
 .../air_gapped/index.ts                       |   3 +-
 .../air_gapped/install_bundled_package.ts     |   0
 .../install_large_bundled_package.ts          |   0
 .../air_gapped/prerelease_packages.ts         |  15 ++++--
 .../bootstrap_prebuilt_rules.ts               |   0
 .../prebuilt_rules_package/index.ts           |   0
 .../install_package_from_epr.ts               |   0
 .../prebuilt_rules_package/update_package.ts  |   0
 .../get_prebuilt_rule_base_version.ts         |   0
 .../revert_prebuilt_rules/index.ts            |   0
 .../revert_prebuilt_rules.ts                  |  50 +++++++-----------
 .../status/get_prebuilt_rules_status.ts       |   0
 .../status/index.ts                           |   0
 .../legacy/get_prebuilt_timelines_status.ts   |   0
 .../customization_enabled/index.ts            |   3 --
 .../configs/ess_air_gapped.config.ts          |  32 -----------
 .../security_detection_engine-99.0.0.zip      | Bin 20201 -> 0 bytes
 29 files changed, 69 insertions(+), 117 deletions(-)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled/prebuilt_rules_package/air_gapped => common}/configs/ess_air_gapped_large_package.config.ts (83%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/{import => }/fixtures/packages/README.md (100%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled/prebuilt_rules_package/air_gapped => common}/fixtures/packages/large/security_detection_engine-100.0.0.zip (100%)
 create mode 100644 x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/fixtures/packages/security_detection_engine-99.0.0.zip
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled/prebuilt_rules_package/air_gapped => common}/fixtures/packages/security_detection_engine-99.0.1-beta.1.zip (100%)
 delete mode 100644 x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import/fixtures/packages/security_detection_engine-90.0.0.zip
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/install_prebuilt_rules/index.ts (100%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/install_prebuilt_rules/install_mocked_prebuilt_rule_assets.ts (93%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/prebuilt_rules_package/air_gapped/index.ts (83%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/prebuilt_rules_package/air_gapped/install_bundled_package.ts (100%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/prebuilt_rules_package/air_gapped/install_large_bundled_package.ts (100%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/prebuilt_rules_package/air_gapped/prerelease_packages.ts (90%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/prebuilt_rules_package/bootstrap_prebuilt_rules.ts (100%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/prebuilt_rules_package/index.ts (100%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/prebuilt_rules_package/install_package_from_epr.ts (100%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/prebuilt_rules_package/update_package.ts (100%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/revert_prebuilt_rules/get_prebuilt_rule_base_version.ts (100%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/revert_prebuilt_rules/index.ts (100%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/revert_prebuilt_rules/revert_prebuilt_rules.ts (91%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/status/get_prebuilt_rules_status.ts (100%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/status/index.ts (100%)
 rename x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/{customization_enabled => common}/status/legacy/get_prebuilt_timelines_status.ts (100%)
 delete mode 100644 x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/configs/ess_air_gapped.config.ts
 delete mode 100644 x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/fixtures/packages/security_detection_engine-99.0.0.zip

diff --git a/.buildkite/ftr_security_stateful_configs.yml b/.buildkite/ftr_security_stateful_configs.yml
index a9e5e6a889e82..b83da9c8a6b22 100644
--- a/.buildkite/ftr_security_stateful_configs.yml
+++ b/.buildkite/ftr_security_stateful_configs.yml
@@ -62,12 +62,11 @@ enabled:
   - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_update/basic_license_essentials_tier/configs/ess.config.ts
   - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_basic_license.config.ts
   - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_air_gapped.config.ts
+  - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_air_gapped_large_package.config.ts
   - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_disabled/configs/ess_basic_license.config.ts
   - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/configs/ess.config.ts
   - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/common_fields/configs/ess.config.ts
   - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/upgrade_prebuilt_rules/diffable_rule_fields/type_specific_fields/configs/ess.config.ts
-  - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/configs/ess_air_gapped_large_package.config.ts
-  - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/configs/ess_air_gapped.config.ts
   - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_bulk_actions/trial_license_complete_tier/configs/ess.config.ts
   - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/trial_license_complete_tier/configs/ess.config.ts
   - x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/rule_delete/basic_license_essentials_tier/configs/ess.config.ts
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_air_gapped.config.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_air_gapped.config.ts
index 52346ea21899e..c5b7a0134766b 100644
--- a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_air_gapped.config.ts
+++ b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_air_gapped.config.ts
@@ -10,7 +10,7 @@ import path from 'path';
 
 const SECURITY_DETECTION_ENGINE_PACKAGES_PATH = path.join(
   path.dirname(__filename),
-  '../import/fixtures/packages'
+  '../fixtures/packages'
 );
 
 export default async function ({ readConfigFile }: FtrConfigProviderContext) {
@@ -20,7 +20,10 @@ export default async function ({ readConfigFile }: FtrConfigProviderContext) {
 
   return {
     ...functionalConfig.getAll(),
-    testFiles: [require.resolve('../import/import_with_installing_package')],
+    testFiles: [
+      require.resolve('../import/import_with_installing_package'),
+      require.resolve('../prebuilt_rules_package/air_gapped'),
+    ],
     kbnTestServer: {
       ...functionalConfig.get('kbnTestServer'),
       serverArgs: [
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/configs/ess_air_gapped_large_package.config.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_air_gapped_large_package.config.ts
similarity index 83%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/configs/ess_air_gapped_large_package.config.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_air_gapped_large_package.config.ts
index 0e30ec5175923..417afdfa71e53 100644
--- a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/configs/ess_air_gapped_large_package.config.ts
+++ b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/configs/ess_air_gapped_large_package.config.ts
@@ -10,15 +10,19 @@ import path from 'path';
 
 export const BUNDLED_PACKAGE_DIR = path.join(
   path.dirname(__filename),
-  './../fixtures/packages/large'
+  '../fixtures/packages/large'
 );
 
 export default async function ({ readConfigFile }: FtrConfigProviderContext) {
-  const functionalConfig = await readConfigFile(require.resolve('../../../configs/ess.config'));
+  const functionalConfig = await readConfigFile(
+    require.resolve('../../../../../../config/ess/config.base.basic')
+  );
 
   return {
     ...functionalConfig.getAll(),
-    testFiles: [require.resolve('../install_large_bundled_package')],
+    testFiles: [
+      require.resolve('../prebuilt_rules_package/air_gapped/install_large_bundled_package'),
+    ],
     kbnTestServer: {
       ...functionalConfig.get('kbnTestServer'),
       serverArgs: [
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import/fixtures/packages/README.md b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/fixtures/packages/README.md
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import/fixtures/packages/README.md
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/fixtures/packages/README.md
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/fixtures/packages/large/security_detection_engine-100.0.0.zip b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/fixtures/packages/large/security_detection_engine-100.0.0.zip
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/fixtures/packages/large/security_detection_engine-100.0.0.zip
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/fixtures/packages/large/security_detection_engine-100.0.0.zip
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/fixtures/packages/security_detection_engine-99.0.0.zip b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/fixtures/packages/security_detection_engine-99.0.0.zip
new file mode 100644
index 0000000000000000000000000000000000000000..99cff031837c3b6e63a8737722f51ab58bca8ab1
GIT binary patch
literal 7948
zcmb`M1ys~qx4;K!5b5p?8B)4KQicZU?ijiyq((xzO9bhVR8l~?6a>kkB&9(FLG%rJ
zuX3;6`|-W^X4aYc&sww2Z|{Bf+2`!NRTSY7&;S>&V66e&Zx4TbPy@&St`=tQE;er7
zM&=f77G`cXU`HbhM=Kjg3!s1i8wVQ)yQT&z0KQ&I-uhy=d!Ym15RTvg00cbPBq~3q
zj{e)!OjnuO&c@Wl(d0X!4>tS7_(wwA-w3?_1>uL1F7Eag-+3c2*23?37n-2}rh}$+
z(-aq;@4<e}!4y{hU-R57T-|_9E*7TlHui473lV@OY__go$8V;c(KN8W7=KedDQ*Dt
zk^}4Z@h7x_0f>fbWXLo*y2l<Oeu=&nQ{D;oXC`UQujDc0R*{q0u4@e3tvpfA*!N$$
zUSIeW1jUgbyp706hO_V>+|kA9VUeWlW8BZVofQkhx(TLDp&{Pa(oZ86R!O)etxhag
zdW(WYYA~&M-XMHDQ+ly6MYqhvrecM(H@b+YaQ;Gu{B(c$iTj6<p2AQcxqwKM0$vPw
z8H2+y*|Eu8$B9a!A%NHe$^lf}FRdupFALqLnwb{i`!$&pjr|NgRJZD=JfLrvTr%)%
zFdZxuQWf*baVTn(KZD}G?qA>R6X}&hx9rRCJw(57rSFEHfEnKKScu{S%<wD!--b8+
zY4~xN(J#g?h980%{(8^uJ+zy$(uEP!xz5tl7}<baW~CuZ9wkA>siJ}wA?Ftrkj>q%
z*fS0I0EM1jjY5b-O9wDvkY7hwB_XI^I9bFjtG8P%q*^N`Vf#K=Z<GDZFx?Fi1+-Tl
zoC473^_Lk0beQ11q1Iqfo8z-$Ui=T!wWkopf_CH7Q~so{H~aCXr8u%zM%Gf&kOphi
z$nwiyhN(R}d7@l&IN_pKo~j=#mKFd)_EIsbd897vO_9_xP93j9uZUzol#)g7m4l_9
zoxJ2KNzwD#F>n)=nA%0R=h-xQLK!zD=bI+E_c8N#*(qPsO}XJ|I<x!3{WLxlW_%N+
zb=9V806-KO0Kj$?uQ#(cakR3q2V1duJJ^47>P47c-~DRap)@7e3=XWY-B0*J2~sn`
z5^}~-m1!SG)9T-BP{x`Bj~g4u$|VFC#cq#LCYS_gMFd-Y4$2SLKHFhC04AOwlX`W^
zl$MOeYO5p}mz=H=wBGxA<c;bcq()l{Ep>EyyYTUF01~slLNTaio!=uWp+}+_7@}K%
z$t9~oLXtSeJ*%z6Cy`WFywMFE{K(BpEib%UMH=V^93VTY_C@CizV1F<G(8#Vzw>rH
zwLY5b)$3YBTkFj`B(?B>LDy)-w(1OqE{tT$<9oUN;q+zE#YdyZt`={%`xQ&0V?xJd
zp0u)HtVVBXkNQIiLMeeAd$G=oLn5s$ea7$e<9ZmwnTD|nSs26^Fj|~!Av6L~nMJ8I
zq72cD;k{=5Vf;#*pM(XK<laaL52PjFAF@&#z&n$n1sowMV^=b+@{b0}koa`qo8l#4
zlSeWWXpGuv9CAXUNYWO0N<T5Ffo46NlWawAaMIBV5+rc46w_ve%WI=Qh})3s;<(Yr
z(kN-}Dj~JJgC$VB?4~p`n^Yr3faNLZM4tz-_OId+Jg9{{76|3sOD(<61mVdz;%YP*
zYem6{w_wfB^IGOqEb`q(a~_sU-T-8|H|aaYM<tKMS=|qLdwf@h&$s-XipIBF=M^r>
z^qUk5x4J1|>Z3*2AF6_>{NdlRzU*nw+n_}5SvqGv_E<+fq3>L*3e|G(ugo4c4(E7L
zRG6aviGsU6c%ikJ7aEGR-SBzKbTUD<YQos2zrIv*<0zn=!JV?KR89)@(ZnY@YsCgt
z3sDMoo$HZ;vjoto`L;6Wa0`}6xrB<vQr$i^U7Is8Zx0tMLV&suef{BNY!UJna%qri
z!E-8NR-A(hFy}l~RdP(KMBOR$c2QPqiZ3N0uVIgC&zNx28ihi=Cx(a4QLmNn80Klt
zP-CczW-IQA(a)o9-zP&07Mgy%7_PEK%)w@^-wz&5PX%+9bIHGlou6CqVt(5krY=-i
z?AwP8_AAe?c3VPP={B2#`L{iI0jmFX4<^M*D0XsSh3=l?!?!%|qJto}2NxbuK_HtB
z`&e(P$a$3%xTcm~@G034HbZ&_o4r5Hl`iruSkVkPi6>m!=i7=K;qXQV_nDTJ98=^%
z!%QeTiiYGpQR43PDi6myyGNA1p*cUu-J&dicxUxsWZyKRf;OB|TjY>vHz~b9e(7;a
zcPX1{BwChk`FK`ygXT=j-JMV|Gk#o9^;-Lmxy<qF(>|R_y<Q?4dmgh~X8Q?a)->E(
zLvU$*?o~Dm)M7dM<__EQ+kp?U1#<ct7?5R2WGGK4<-?j^K0=F;qeI$use%_|V}74z
zPzH^lnbFj{M%B}bF#VN<yRg#Eiy@eerupQ0pym<$Kd&hLRV;4fVD(=ts6YT#IW;V%
z;vxV55?7u6&ua@17FxkTGq63_1;~5L$&1a^!|LCbI5a^CocTS>svpP88GlBM)PAa3
z?cgH+M8Sr=#i0$Z7NIignD%Qc{D901uPU%}a&T`@h&$GR(olDjc!IBf0JShGa05+`
z*B~h&M{K7fQJ<Zy+F!f9mHA#)g0#a81lu<nbz)f_(Npu&QXnD@IXuH<vVK(K^om#V
z+vk=Px6jVAcj)UXA`r}2B|qbFiPb7S^JkB>E6*EIBp?jDd4?C}1QvX!HP<L0ToKJ~
zD@V8DR2&-7g&)EZ=tFmumqPFnvBT-wN%u3$kqpyKlCLE7_0=XOdYc`&WvqgyF;!1C
zBD+S@lKANBJ0{dc({JZ(5@|}PuP)Ql1kDLG@d|9%TY(ClY*{@v8f<0~TqnaFXH09S
z(uR{)G>%hy(>h`rvbX9<3-CpCmN99m_5|nVSKUQ{)xD1wq1<Dthb=WT7;w8<24C%=
zilA<X$Rk7B{%-uhbPsJSU723XP;!YuzF~N_ML4B92^#WU>JE|>3lc+fzI4Q_$lQ5R
zu5Q+`5yKi>FQ1A#r*qJ&7mHVmQxgt_$R0*UjZ$uocW0&_f7-Du7@No)mUtt}r9)-L
z;?7bhLnf*2g|*+;iOQ<ZQi#uFFP_OnZxzUba63)1kLXL_9n)5`Fh1btf$bsSSq{M$
zPajsdJ|0b06Mcv{X9;dl^g>`RSFR*F!-xIOA{-_eC;R?hZ{=|5jfk(Mw2>tnFUfhQ
z_9)r>zq$VR%hpA(p(BED$HM$_3>^Ttc@^ITDQn0}-DY$1a{D(g+}3P&%#*`vImD;W
zVZfp5rsf^QnBkYP3r6IhBFot6{&1rJ*eIX)V%~OZkfCAAq<VTlE^f)OWUlnMgeh6y
zwItM@dXu!GEL6C~V@bs>HHwi<8beiArAuDcF4ag(UoZI`zm_UGVj-wH+m`7p*@Vpv
z2~OcLKRiNNooMkcA0Kk=W@~f7ffqN}$I!`THdYPFG-o?<&`qt2d-~F+7}14_&70vd
zwZ%)gAa7&@nVIKA60}TU{1;)5S9AJmnb&au`S0edKt$X5yma|N>uF4R2Rc}HAIQ*d
zCD$&uHDUXaDig2dmyvZaISc13unVGRmY62Vf)!Jcmu=fN=~fil)tFdvypIJJ@TJeK
zLq;Le#X{wl+^-tYOWO7ea92+(7KH4%@)Es09osg>d;06+A1J7B-ICD4Qj?-q7(qEl
za~+8XIfYJggZ+B$t_Z5XckOXy_Vk;md^#7OU?Y!e^@VY3&&_u3(V;F`%wv)3^lN2!
z+bYgo!Z-+b*T!1NY2SJ+A!x1$eW7DI4|EFH(t@`gIa0`*Qv5PV>MaRBpSO$e^S}wt
z70L+&XEpWTB#%MrWDb5m+|X3s-I*0_71E@g9C{uy)S&maDeX+A(rITFK*J#4LpOT}
zVlkDPjzxQ$|E5~x?%Ri+vbkaYrW1B^`v>?p$Ze`bNlPBOn$eZZdoJ)=qvqd3EW1k_
zuBaq!=SL+TM?_n0;+0tT0UdM$iJMA6o&_>8K(`&UzNTYEKR9{s4S!JH=XlOW5;-E-
zp4)b5R^XTg#BigJB!U%gjA493-Bi;b2FLb3KF5}IHsRO^CPkAdH_W}JUWg&f&9o{;
zX`Xe86JAjtgbHu)k%T>|fy}-x`XT95(2|lFmJ@{4ZRMW3R21{M`So$a$m{IQV+SYH
zZ}|<53?dW#dQC>vT#P@X^FbOo7nAHsKAGmLPH~ywG5Zk?kt!<qSs($|ET7@<4NUFi
z!W9NI`grHt-mgpfY)W(xL9o{^H~^Pd!JfphW+T?;xDc$&<!pt&iE`kkDIBJQ;C!Qr
z^&TW;1V_f?;aVI<jB^#}7|~dofT0UF|0YTT;|VP&nO8bsr<&;%^-!5t(@ZD!TvwlI
zjZt@>$RH=Xyz^tTOgjXi8b=6W5r03%ByT@~op9Kp7cQZ4eO*Lkr*XyTb;-$49c=cG
z863e-(U~XSAs-Y&l$Okss1<9Y<CjQu_HR5!78Y;4!AB}(5$ane%6-&M0~N8@KW_|l
zZ`6_T5{P+P?bP~UScA#73iVw%#()#)oUD{q1XG$t$MAUjJ3%h(F!s(Dx3LQ!#8t^9
z(7eoxW~o`SdT*8~%NwGTNh+nK(^v;IW3<eNM_HvGA?~`1K`D5jdbRmgUQXcCs16L%
z6^1D}KlCqk?5|nYYIjc<GS~PpQp$~`&k2pP_c&kJyNGu`wBv4EGkOnA36JVgpI><f
zYMUC{Zzgt^6UYVi6=v@$>kDSx`Ql&z>VE1nT-~;QI(_anM{HC_2^{H2*_K6@cws5_
zMW5+KEoHg#8Mgm!&-~ebz+_CorJ(l?mgJ-}suLZ;?r_Pl8y4^?LC?X&(Z&*%$^Xc4
zHeh$Fi}APoQ7N|FF_`0e*seF)JmaGzhJ2T~9d%DiwDy6rP=u+1Jl|79H0x)}iU(`Q
zYh{m>?=VHfF^Rucy5qyg)|H*8rjOZLTr-l)XWmy76r<?PqFf;Bd?&ABE4nI!iRnYp
zIsuX}BHqcJ>y_;h@xjL;VlUfmed)3%#9d~>8&J<pyN~=T4k^SZc~nLgN?XjZ<CQ}d
zshw5DVqBT|UKoy_rRIzpi)f{Z3`ubWk;(KuuaO*<7Fs^a9-~Ooi^`@+|9~5pLX-W$
z?mbCc4`964rimqt^N|6!YPsrY;MZGQc^w0b?;1}y^jcDfY7CwWu<BD7e*IPk`gxpK
zjSkroAOQe)m;eClRV;f4c9?+F|KoWQtvygN%X=NVc@x2$&uJBDo2}^sT&?(P0*S_T
zHM0S;qv`mYeea%^evt{NG#ZssIM^(Z2tuDF)}z71?2{TkZb2IvJ7_7c!_f72zen3y
zNjdi-$so$i>+Hj=SBIK~>J!r<M}Ds-&(!@-1Vu(9n|<i#$LlEas(D)dYkD8t=%2J9
z)+e=Eai=HblXpMX9aztQ@4KNZid{!}U!y**t|t0H_Y@Vl(ep4#DPXg^E5nx%U5i?D
zN%vr<x!KpkOm6jw`^UO38pnXWK;>P6@tzfT^k+$#S-Tliw;FNW*zP<tmxlT@Kas_*
zmn;<#>7yXp!E<_q6sy3?APsg@?@W*ovCF0C|Imkk$mt_OV>o3EreL{-^y%IW`q^kK
zvnN{ajCP2OfWxK=+RO*NBNz-Nom~OyhyFtJonR_s74#(tV37iHxDdMp$=VMr^1DS6
zw$CU;_}GySLYAoM357g5htCbJ1fAK_im-UVV=o0~DsAOUzL#3apAKC@DGIjMh|$AV
zbrmkxaz1#DBDQUA*HPw!o5Bs8Fry02yY)7!+H+`@@v+Gh-q!4}@Oss5N5!`_h7WHb
zSc@Kj{Mdvj4HF2fHym@36mBd-xQMYyQ?epP5oqXW9H{o{Go3RfC8%wUEWqPa&}qZs
z;pYo)sP7(`1Ca0c+Lw0)pzW~C>%12QDkFdWv<c4dEtSEHh`@gB+J&kx%fDpI;*(^z
zNr>O>aH3YTa`&cyj)qV;=K)aXxc^Zxriz_Kmk<0rxX}Y%lez&BazrkwZl+nSE;j%e
z)U<7TbVi}AcdN)gi%>!pm}=rC>Z0{Y^7LWU=Ss(Swf?y?sm4!}MhsSZpnOyO2;zO^
zaq5=hnZ)8*SbBBo@rkp6uj?t&K)1P{ch^#hHNdl%Ft^qa*!P`RS?KYH1Q?HD(8hu6
zInQeNu;&sEmwmzFcs*Ol5|-5OR)M=nk}>b6s&(kW0#9)S=@+Qj^+_Pi`0$3IkGH3J
zsa%NM%#8Dl6sUSo?xWxy<l&sY5)#p)!DFo))!~>aZl&LH(=?wcP7mlmPY`rL!!GF1
zAR+F_3<Y_D=G^Ht^C@QU?(MUxS06c2iAf$Uc9k3KIpx%JKQI*K#v^`MMWl-{j&ycM
zGq)H|HvYZ2+Z)RDVPjU+gd_<h7GsLWh9$LQJR!zt3x(xZWk5<fJGHz@W;?PJ9v@UX
z@Ts)i$&F?eGyeWQ#;9g2rwWb0s-<2)^Sw@4vxa_cndh`0^Jz}Pokem4_aQrl?;qV{
zsMD7j)1X0boEINPItxvIOln-(U0wAQ|61(y`lCCW8hL&NX~{OguG;qLZrO5qdFwa<
zlevvx_iJD@Bcm5_(Yh*3KoJ^J!-;fW1dy(a&ONro3<5(^MFFH2hO)aFN==A7Z!jI-
zVv+zEM$#A7rO+8tq!%r%7v>6<3HnsoO{Z8n9_E`O2i_9Xa#YSd6b<o=V5u|G!}g7A
zB&HZ%I$-P7@}9oU&uGh_0F4TvRG@u@madP#OYRsUf0$TUEj6z?U<C!~2-2nPt3zkk
zO^5|M32jhxY{wqSktXrof*^YH$1U8Q91ZMJS<PBqF?|;O(h8pFZjjGC<Y%n*6X-R2
zS&q>>-tKwWz72RqDd<W3X$W>Uw>vrq(2w3?(sv9z@iJuJIZh-;EUR{bY8$b*Cs{!J
zst!zI)n3v_;>NWMAo{gOP5{dTY<!kLX0OF?X+jdB()jLmZ-HETWwbVwQ*}&I^W4ax
zJ3d+sBc$Y6m|4W0n<|UrpPH&yUuiroJ=hl)*SaaN6fS;RUL}-T$hAp}DG`1=CVrnt
zPkw5yZp+&jbshe5(s3D)`2k=pqH`G+;`}<I;LM&UT#~0|Cb3u(5T99sWu3gYjvX4M
z??Fof#m$Z0uWcbByQ3(C>9E5aZvUpO&2rx<E}#wo-+8|b#S+Y0+vArpVg}4h?q%?P
zawq4RMv|5+nY3h3qk_iBxq%qDPl^ui8jCn?c_-D^*Gd}b(4MWn#2tID^B(i(sMczP
zI&4^z3ypIXmd`?;=>~KxS4wNOO;1SqdQF8z2f#{~aMvi{|Ea%0^hcEj3(zKU@%U#(
z{V&}P#P8jXzn$urF~9aYeqy#I^sa*W(fNSUe%tl<snoB1kIS@{|AO{I`9HcKF!n_k
z<hPoBKhA&cfqZAf?o5FEARz4P$DIGvKKet`AOHKt{+EsjOsL;<L%y5;yHLOO2QCX$
z04uWmfc;;E`m<XA6Y4jeg3ChvS~tHe6fG>f{*OZat%?p~UR2S4yE@<9{ntX|WzUd7
zz5?@)vLuXkQ7!x}>*vMpuSLnr`W0N6b*V)8Z_wW>NDsKIAQ9>n6#QPL`#022{r*~`
zyR4t*RZ)K~^6x8lR}<r}<(SK2;9kFi#+QpT{~7peDs&l$f_(+xUlSu3@;6D*<*jnz
jwtvkLE+b8Gu7LbY#_&%{BEoVI000B_CW1Z9eS`cDr*D^2

literal 0
HcmV?d00001

diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/fixtures/packages/security_detection_engine-99.0.1-beta.1.zip b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/fixtures/packages/security_detection_engine-99.0.1-beta.1.zip
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/fixtures/packages/security_detection_engine-99.0.1-beta.1.zip
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/fixtures/packages/security_detection_engine-99.0.1-beta.1.zip
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import/fixtures/packages/security_detection_engine-90.0.0.zip b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import/fixtures/packages/security_detection_engine-90.0.0.zip
deleted file mode 100644
index 348657801f6508e9d07856561763e55fd6a3fd15..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 7946
zcmb`M1z40>)PM(RkZzFf7*gr(92)5wYG7cH5|ES{NohflR6@EWm2OZ%=@0?w6j2fV
zhjmxk)!k+P|DW%<Gv7SV_nh~fbI-l^JLhPrA){ac&ORXq1IEAI{QgA`xB_su1$(+d
zJbWx{Y&~qj9uSy|g{_M{#KjgU!pn`gc=Yu!0myZ7Dh_AE(;FLrgmQ!g0H6>fglK&i
z9rG8_Y!?yj1hKYqvHC{nLr6axe@lq}3qkNd5WXAf<_Wd^#v4Jf7Jtn<vkU_O*BvnC
zv^WUeMf{sb7_9lf=6Tq<djMVCY^^;ZP!Hgl3P3AvM|YUZZ?2`2RB<>Pe=$5cegM?L
zi?49}5o=%oo?WaU>(O(Y+D|5oV}hceEdWIdOZ#P@efOPe1-2&lomm@}2}O(|9W3vD
z%-q>1P6BIsDq(9)X+q68^2MZ){8)v8<+&?O((pCvE-!4AF%0peWP0^$t4YAUp-mar
z5N}f2HWMofap#?Ng1pfXQMt@@`i&rP`sUYbl)Sh-h5n1FlH%M~FZlx>-I?Kfch7mq
zomThlv!*$_t~K8e^a1xYU-Ta<6lO^Jv#oX&-qR}Y&qgB~sEQ&i7a&Y^20nnv#d|Fn
z*d>YC&j;^miSJXXee8i5YSPHqn^!1L&8AzNMbbCF#~}Rv&@l)35aIWg|8Kur|L{8p
z!sln>C%^Zd`8|BsCo(<`o*l_RFU)X+rWvHQA}r_Br6x-AL|%V^TC<K*w!!~vLfU@q
zC9U){Xd*?TZ<rH(n6_8_6KAAi*RosfEG9j*7@m1MtTPnsQ{<7(Vnj5)NyHCkt+A%#
z))>=qnebqH8Y3ZOdsRMcwC|=pJ_V^g>ayv5FP{9BQ&rIO#D<|yGwXqUdc~ll&t1W|
z(xHHTwX7HTJV##D)>Ouy*+09Bwq|}xN6q|54$<=hvDVooXIvv6t>5BmI|*I<Tu+?E
zKPnuKi)<RJjG^vBy|C`uTQ%(0DGOsLk}?Ok_{k>Pj%n+?Ed7M~!}sj!1IA1CI1Wvh
z0D$N#008$zVjk>Z<zjCOh1qlaI75F6X$d|R2T8>Ei))9{W@7K3x%QY{aXPAw?6svF
zMuS<cQ1W!~2DUJ-+AMQW#njGI|CmIm`-@1Ugi>u{c66v@z;h{qdnSc@cy)X5(ge?k
z*@Zb}(i1~NK);hOn}>wygkiF4gH4bdua@4Q48Y^oNN5HP3d6|!ZkLT#p&-Td(#QwX
zk<_pq*w>ev2*_mKOcQ+LVs}E3au@A^&m6$UNt>iFWtFk@vYVa}CzUharv|a|_7bOu
z0pWF=+A<T%vU${i>?|tNO9po7mxT=1=XM{K(4<tnYSdO+;K?_?$;tCrNHRqhlJ>D`
z)UYO3D)Hcc8P};dfkH$yHf*PITOnMRHAX^EL_Q!~Sf6i-53;PFE4RE(u_WKM+{Xvu
z7m-h?5a@(N_O0$iWYcMujD|Bx?%89mQ^Mb9O+F^`j`Wt`>xmD)I@<fD4F64N^qQgi
z)9eKEy!1Gk%Z2e2X4UC&47Q!NZ?6}vzQJeY&js^^1gUQHu4+3v()00C7m+g)7%5zb
zw`Gjsr-{ica)>;F+;4L8A`b0L#x?8f1*cn-M8}E`z3~QFU2bXBms##ir+&xZXr(8K
zr<-8Qm7nKrqjFbgVwz-0oX)5lAiC*AVb4SX%wv2W%3iu#8SV1Q_@kBj`{?Qitjje`
zJOgWvl}4%?9f$|O5mpCi-A1u-Atqx|xOH78W;@$2i1yUrd0_0)#wByf%r;!BfOt)w
zrUMB(YxFjM6WCxd<@VFhTh^0_CY2MGkbbYnI>kqUZ7iO&r-_j{C@(hs2y2ojdyC2A
zQn|wws9mCVwgR&!>N`fSK|_aM?dg}vGndqy%00-O{fOE+4q~75fhvz9zYnPnPHAkW
zqu|mxD2DMZ&{Yz~-IHti<jgP*S{P`F!=@^K(?I0-V9p(nd8Ua}!$9I-ismTflf8g@
zuB^c>$``U92i?B!eFMbK^!>wfktJdS1G|4acJyzm+Hjo8{&i{mSb}Hr9kbZFFcDkd
zK4S1(SiX*ejJ$>dx3kS}Yw!%j&i&IGOuj3l*2#+>wtGr~+*04g1V?WRDLA5o!#ADx
z@y9Bu1vOOpr<R@xX+X%D;XQ-RJ|E{FzrMC;&oJOBop@<qXe)k%*9RTeXI)Z!Op`Mg
zZbj2xIHYnDBi_GPb2#CKXXN8ChSP(bE!xsp_0@xsee1|F#t7Q$5{Klw$?1<&mU2_O
zA9HI*VPzVZzRYZH(4T2B+zFEc3lo8=-nQ-7C?3D~)Mr#~(n}73UIXW_Lnkb`(ul4O
zA*J<sRzeo(rLs(IoVORYgJKCpvicfW(3L0^X+O}agg19&W5p>mp>4ZWB8zgfZ={)(
z%tbQH=$l-k>v@VY{gp$YpxnuuC4`%y`NQQP{UhYRpHb$EcpTzv{~sn)BoM!p9<iqq
zp#T6f7Zv}<OA8ROwZed47!>9P6uj!{&F$`G|4&mKmZ$;CINN4FlIR{MC|iC;jk;c;
zUFGbi@=z7R)8gEURD)6;ea!gvDe{2gjG#8Kb8>KRP)y*i8LheTB*lbK-2i4mbkI7M
ziJ)0>VwTiSdy**+cU8dkwx{g=nThhwxG0WedbLuSUNKV(({dnkUS(qQ<tzP|mg!~B
zRkly<XcSIPAM7yKmPMj~xnw^R^GnreJPF{r>r|RIqDD#<#Cbv-?g|rqV=&(+B3>55
z<EYHE;#w3I*+mk{8|2G$l$T2S9<|-|(ueLRb|d$#Hz~hT*40&6S($9M=ag`Xeu}Gn
zxE|FtnwBiYT-QFKE19m4w@I!qqr1Ay$Phd))+8vh4z&jrxH@uqtv5hs65S^wTxP6m
zrqYH}R`ibV^`^DQH9Xj=qk2RlX|#;TNVg|Czp&~l39RbPeLW{Iu6@{2J%fX^Yhd;j
zI;RHec8)qSckJ&b2}<|6Zf~sEYZpc>Gbl8S%>5ckLp@PXrAyaYwro*mX#N%x1sA$N
zUbMT1!`;YXJ^qdg=^N?1%(_L=RnqiiL!nBCQPHEcn=iXF(vLsx*gYDb$QhOyQ{p$G
z19NzC)GA())%C{T@9V_m(&Z>1VS`F%urb>QaiA!q$@Y<d2~xLy3Jw<nejeB!0-j`%
ze!1z(<<WOdpUcV=F3nd=6dbb{l*6ARi_P+Gzq62#P0<zF-|M3pA-^8^^)X{q@p=cf
z;M5*1cffC<|LtAtY_nk^hYQ?A#N{|P0Kj>X*aT_nsmLjCdw6^NQxtCNx4Gmg<F_1=
zFlVt4GIi4n4&uxRD>{Xs3Qt|RztjB=_YtsBCF$9M<JKTc!<JRm^nh~wl1uUY<Ktqs
z6jS%&Fev>dRar@xc#GGPmeajxR&IG5ZDXx26(y&87E-1rDQ|=gw6ReOKvfSM*-lcd
zxINI2RC9%qQA%nhi*|*C&~rAQHa|M>7J&JhySmNZ)tO_PcN{tBrZ*<~)Ztr%>PE-y
z!;(vH+kq79gN~v&Q%^3#$Oa>M7M{DB)mOv5MhM7%vrq{l-_93g$`4*kW6L`*!Z*C5
z$hehKv)tN5;76rNv65eMrJe1Dc-A71D0W7%b+QsnEfsy)v2~MaMYT<bjU&tFSagv@
z{?s9K6fR#RR%$2kyaBtob^j63>Id6JF(`jtlFv<-*7cV?{dEa<RJHi8${675$kD5g
zV4PyPk0gLx!zKk_em#aOqPiRIJ?`u`{U*vQ<`WVjDwy_PShw~(9OttSjjzPzN?c}s
zTSC08b)!q15XJEAcndY-EAJ%~{S~n<Ol+q?u7O(y$c`gNs(DjtUk0gsWRVy0c1e8i
zxFWgF@d06(P5qqIacG_FAsfRDO{LwPnKAaEP1jSxPD6(pOkOpmohX*O?#u!hSX6qL
zW)DFe)^gK#v0mkmRY@4WioL0n6CPka;WWR0K!QsRsg$HDj&%n!m8#ra6m-DM_eU);
zq=-<{kazN<la426EVc4ZDtU(u!bKCHQ&r)Bj|?zv$F03JvS%Kg^dA!r&ikCe*GQ>M
zuGFL8lx7c$TSSepcuy%>=D`{+G}KKu{cdo4?|nUi(hV!#^$;p7nNstdOS%O(N&;-F
zQnWUip9mw$>Vh$m&E8Y;BsW}v*2ctAO$9G$fbm`7Tpla_o^sLbr#6>gl0{wSX&yiL
zK>teE?8q!C$*<RHRL9NoGqw=Cf$w!Pl=7o>zV;Nq6*0RX*$|bQs-G<y@U7hwLZN}F
zogAcsz(!x6e8=0hsh_RM4<bqT`b7tj^2&IUS>8gV`dk)6H2H7XlWbxfc<76V8=>65
zZQ}BWr;ZRRTE)JN$BDa92|7l#lqY5BBFg8)NM!xM2ucx@58SC@drm)8;@vdUNig5l
zXI*X4-6t`~$D?v17o6dQ0@UFRB`Xx}$C(uDCv_4JKlCOd)2yqFjOw&38@(($8D>Pl
z^Zq_>$eiTNL!Z!hYM~lSHp%pAH8BZGlt%lwx#;53PjQ8)<ZQ!kl}HL4wK2>|*zTV;
z26;9bDSC^<RaCh?y)&%G=2(gOrW9wum1<r|&LEO4&9;5`W!oE3{_Ej9ozD~q3hu;L
zDkm~@<i&7QFWGN^Gn52FjWVd@42&9UfnZj<d}NGO<`If6LmXPs+w`l=&-1c^Dx%wQ
ztXEj3l>M;3)bhOGcw4jkfhFUu5Kd~TrTi(G#e+S*XHYlk?pP;*#<vz5bEy&0J-Q1k
zPe83x<NM7Np2{LQpuU0!yPBq=nd)Dh%|P81Zo^frYoDf1z2_+`YH5KZ?Wx;J*fP)T
zq`sK4J*%ND)jS~x*zH+3*$<qI3p}^!F(Hy19WPU<vjj5*@rDJw$foCP<pQxo<niBg
z905drbM@yON8|1QsFU~dS=zp<P0N_0I(BV~V5?|!93@Jeqla45PXgk=>D8y==I$R&
zS`&|{TMpn*b|7VG;3Vphm*q<e;i2?=afBmcJKk|p>#}K}aqsdNS6B;gEVf86ChAak
z5LpDKBtu8_m`ZQ!Ong?(1b@bzR6=FDue?Gzw1f2~JZAIAOo9?umz~``N=$1i`9~DW
z8hd<7$A(fKyJa2f9!y&&PIYW#y4mpNM=NFa7H0dK)2ehB`LtTHXGbm|`EXjRNTybz
zf2PV#6WO_*Xzfv`#u8~DyR?@T4%YJ)^>22O95?5&IV=$>17T0pIea*mKAs&X_M=0N
zq-X#DF&+TGbrH|1BMuXg?!TTVG1mvmW(6<LZE~X62)VAJZF4uhL#mN}K`PU@rUM=T
zA5AB4_Pwcp{6#Ua++tKt^<eXnOfdE=g$V;5UZ33XaSPVS_(4liEsk-3r$1w7Iqm$j
zWV2|n_sP4f&kywrbSI`Ij{IIsp6CXA5S18_ZT4kecv(x6S9R@aKy~jO-2O=jg(;Q&
ziYGIfkc#KA@xWUC#;tW@NrGD1+j@2Jwbe0qx~J%1jW-XIH3B!gyYAm2!#1FoTrxh`
zX>Pt{3szoz==r|(i{3F{FGzEj^kvVAC-#%%jLhBpQ&$@aJ-F4M*vQZMHa}D%sFQsx
zA<;)ezC-MqjdoX6kVPKmqT87$BjJ=o)Bmmy1(nZNg28;s0Y<}d3GJglF7s>*KKP-5
zC#w@GE8wuHj4|U*?+6Y{ac5Vc?qPr!b0>_>QVV+t4tPxiKU}=K1kc<LD)hTb8NSad
zMwaWs1izA`e{&9=eTtkDQVu$SGD>iGArmZxWN2*V%WlXm=1+$$VHAcq=*5{3XuFG-
z8r(Rj$B^2#acVE|B}x?lPJrn`@~*zhthzZg%bIKTQ1I!4@Q6C?ZWpyz)#kCdC=QYb
zAU|#~TJuD*s&$tfG*#SXI6nmeRcdDBC<+4;gEQS;UB-<JSs8jq3tQOBskv$MqT%|*
zF?z!z8vy$4UTA4oAl44Yg3*Q~P!s*@$4yv%?_)*0$Vh@0?p>Iwv%*W39KOj;n`9(y
z&L4EDR}48tjP%4J_zr+Z$Nkwwcv?=jUB1W*utqOrefkDe_z|_FE?B=xS9t(1sPEXC
zeL{2H<Z2-_lT1b%c+bj1(#_zb?5Ei1&*d&}Y65a*?panOkC?6W%n3~iqe%Ca#_QTi
zXHZCI;+xc_CnU`Vy{Mx}11Sj9ch}HKH6Zg8vp=mSh4!6R+L{Q523n5eFvf$Rd?(dH
z1oMf9%eP?C#64T+GIsQDR)M={vT++zRYuG(kqSal=0!RlQ%X2H39@-u?)J1Gog29a
z*fP&Tm97WlHU`l_9^t3wViG0{#9Za0M!YjcPnowo^lfH}(gXWX6Gh#y2p+ZTQBw3|
zgn@2?<~^D8^J!)c_x8DTtBzdgq-2j?ca@s$xn@;&-!YdIAf|||Bsa!+iFTr{pHoDv
zl(1prF-E&KY{{jam@I?FVM){2u%vTLEXEpRtGfKW1W2pwq?1?9?sO&fnlC03?329m
z2i#^YuyB7LYjiWdYnfh9<x(%8*}qc>+|Ykrv7YgLKEsEI8xmQf`|zEDjciVqT2sYw
zJqGN?1?ge5ld$w$D$B>+Rh1Pam+nrlWvg%M<@r5IOMw8pYTBl|l}c4q9O6Z+=GQ|!
zFTt=ZES|;37;CWsB^ap8C(;E`K*nxH{@h9TNzJL$M9`j@EA8rOG@)J_!*h9sM+syZ
zNnc!(!)8g9e{JWmIR9vwv`?GIdWwrTHs2aO=&F=~i)O~5Wa!OEj#>*7f?H9I6g0z2
z2i&~|KGO=qtd1<IbJ3x+s*KOE(oIQrsa+yf4wDM1<QB9C?B_s6qD*P~x^uH@RurP0
zWDpD^$MI}ss$`+7a8w`R_(j9X(V#A^)y&lu>nAZC_Q>Rh!M^_JPq?5H*wuTPE-}}9
zJo5-{H4qo3VkZlyp*TSl+B*lZk6z(1w+}q@Hs{$nPNGIFsdAgUZo%Q1Yzz0RJg~Z}
z)4?E16yGv{>em)E0W1xK_%4CKFQkYVLKCCYg#5d=KyJN?2J4#ljI8eEc~H;o_!=~f
zP*G>%Wm4SS)O!8$V^h`YbG?ek2m8{}2Am>G5z?PZE5+^=@NY8W$wVBFOW!6pQJI>r
z-SWAGxrY2X`M8AK<^b?EvU8aTe&a>tqZ8=02-$1ZGf74IfP{=<e20|1HG;5cQ!hr!
zIij4H{hAi?E9z=uc+NY55zw*LR=a)I_`q5Ka_8+53_F-$O^@IG5il?>rI*F$p?cO6
zy<`KWEAq0zjjDPhr)E;rzNtn;Z#kriN;~PkzR=Lap6l7_OWJ{YpZ3_)V>;-N8FAxJ
zE;i1W**yt+VjS4MTrO|WIz1tG%X=z3CJ;$W4e1gM^51ng$bYZW-~(D^&Tjw6sQ;nY
zf%>i2@t4ZwdCbq9jvtt98Iy}(zV|&4v|si-ei-$0*W)~`<v-BA8~=L`1i?P*f&9|a
zzw3Z}V<X;~0Qtc{#Lst`f7d+v-O}&R{l@->eh5OTU-Ux0x&QCl1Lu``h$ymrhy7ob
z`lDHZQ0f<rg7ZrKTsJ?j6g?ul{#T{`Qbk8F&#LIZoSkps{&OMnd}PR@Ux4|0SrWlI
zs}}x}^`lPk=c43!`|>Z$I#;6nC+M#YWCol!kQDO*27as3{S)ekeSfaeowv{PqNqP6
z`PUV@i>dMFa?E)(2rgg1;`7Cse+T}Y3Y`a{5nKTH=fntsJWGuJC6xZ0Bb-NC5?%oL
Yr;Oq6j6_A`AOHXk;vz@f&He`YA6Nu-b^rhX

diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import/import_with_installing_package.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import/import_with_installing_package.ts
index db4f93b0db548..107a0016a5426 100644
--- a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import/import_with_installing_package.ts
+++ b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/import/import_with_installing_package.ts
@@ -32,8 +32,8 @@ export default ({ getService }: FtrProviderContext): void => {
     rule_id: PREBUILT_RULE_ID_A,
     version: 3,
     type: 'query',
-    name: 'Mock rule A from mock 90.0.0 package',
-    description: 'Mock rule A from mock 90.0.0 package',
+    name: 'Mock rule A from mock 99.0.0 package',
+    description: 'Mock rule A from mock 99.0.0 package',
     risk_score: 47,
     severity: 'medium',
     from: 'now-30m',
@@ -53,7 +53,7 @@ export default ({ getService }: FtrProviderContext): void => {
     rule_id: PREBUILT_RULE_ID_B,
     version: 3,
     type: 'eql',
-    name: 'Mock rule B from mock 90.0.0 package',
+    name: 'Mock rule B from mock 99.0.0 package',
     description: 'Custom description',
     tags: ['custom-tag'],
     risk_score: 47,
@@ -252,7 +252,7 @@ async function installMockPrebuiltRulesPackageWithTestRules(
   supertest: SuperTest.Agent
 ): Promise<void> {
   const buffer = fs.readFileSync(
-    path.join(path.dirname(__filename), './fixtures/packages/security_detection_engine-90.0.0.zip')
+    path.join(path.dirname(__filename), '../fixtures/packages/security_detection_engine-99.0.0.zip')
   );
   const response = await supertest
     .post('/api/fleet/epm/packages')
@@ -270,7 +270,7 @@ async function installMockPrebuiltRulesPackageWithTestRules(
 
 function deleteMockPrebuiltRulesPackage(supertest: SuperTest.Agent): SuperTest.Test {
   return supertest
-    .delete('/api/fleet/epm/packages/security_detection_engine/90.0.0')
+    .delete('/api/fleet/epm/packages/security_detection_engine/99.0.0')
     .set('kbn-xsrf', 'xxxx')
     .set('elastic-api-version', '2023-10-31')
     .send();
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/index.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/index.ts
index b450ece788e49..adaa0368691c6 100644
--- a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/index.ts
+++ b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/index.ts
@@ -11,5 +11,8 @@ export default ({ loadTestFile }: FtrProviderContext): void => {
   describe('Rules Management - Prebuilt Rules (Common tests)', function () {
     this.tags('skipFIPS');
     loadTestFile(require.resolve('./import'));
+    loadTestFile(require.resolve('./install_prebuilt_rules'));
+    loadTestFile(require.resolve('./status'));
+    loadTestFile(require.resolve('./revert_prebuilt_rules'));
   });
 };
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/install_prebuilt_rules/index.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/install_prebuilt_rules/index.ts
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/install_prebuilt_rules/index.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/install_prebuilt_rules/index.ts
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/install_prebuilt_rules/install_mocked_prebuilt_rule_assets.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/install_prebuilt_rules/install_mocked_prebuilt_rule_assets.ts
similarity index 93%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/install_prebuilt_rules/install_mocked_prebuilt_rule_assets.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/install_prebuilt_rules/install_mocked_prebuilt_rule_assets.ts
index 13986710caf32..268941d9989c4 100644
--- a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/install_prebuilt_rules/install_mocked_prebuilt_rule_assets.ts
+++ b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/install_prebuilt_rules/install_mocked_prebuilt_rule_assets.ts
@@ -18,7 +18,6 @@ import {
   getPrebuiltRulesStatus,
   installPrebuiltRules,
   getInstalledRules,
-  getWebHookAction,
 } from '../../../../utils';
 import { deleteAllRules, deleteRule } from '../../../../../../../common/utils/security_solution';
 
@@ -204,40 +203,19 @@ export default ({ getService }: FtrProviderContext): void => {
         ]);
         await installPrebuiltRulesAndTimelines(es, supertest);
 
-        // create connector/action
-        const createConnector = async (payload: Record<string, unknown>) =>
-          (
-            await supertest
-              .post('/api/actions/action')
-              .set('kbn-xsrf', 'true')
-              .send(payload)
-              .expect(200)
-          ).body;
-
-        const createWebHookConnector = () => createConnector(getWebHookAction());
-
-        const webHookAction = await createWebHookConnector();
-
-        const defaultRuleAction = {
-          id: webHookAction.id,
-          action_type_id: '.webhook' as const,
-          group: 'default' as const,
-          params: {
-            body: '{"test":"a default action"}',
-          },
-          frequency: {
-            notifyWhen: 'onThrottleInterval' as const,
-            summary: true,
-            throttle: '1h' as const,
-          },
-          uuid: 'd487ec3d-05f2-44ad-8a68-11c97dc92202',
-        };
-
         await securitySolutionApi
           .patchRule({
             body: {
               rule_id: 'rule-1',
-              actions: [defaultRuleAction],
+              actions: [
+                // use a pre-configured connector
+                {
+                  group: 'default',
+                  id: 'my-test-email',
+                  action_type_id: '.email',
+                  params: {},
+                },
+              ],
             },
           })
           .expect(200);
@@ -257,7 +235,15 @@ export default ({ getService }: FtrProviderContext): void => {
         });
 
         // Check the actions field of existing prebuilt rules is not overwritten
-        expect(prebuiltRule.actions).toEqual([defaultRuleAction]);
+        expect(prebuiltRule.actions).toEqual([
+          expect.objectContaining({
+            action_type_id: '.email',
+            frequency: { notifyWhen: 'onActiveAlert', summary: true, throttle: null },
+            group: 'default',
+            id: 'my-test-email',
+            params: {},
+          }),
+        ]);
       });
 
       it('should NOT overwrite existing exceptions lists', async () => {
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/index.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/index.ts
similarity index 83%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/index.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/index.ts
index 888e27843cc19..8959e2bf853b2 100644
--- a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/index.ts
+++ b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/index.ts
@@ -8,7 +8,8 @@
 import { FtrProviderContext } from '../../../../../../../ftr_provider_context';
 
 export default ({ loadTestFile }: FtrProviderContext): void => {
-  describe('Air-gapped environment with pre-bundled packages', () => {
+  describe('Air-gapped environment with pre-bundled packages', function () {
+    this.tags('skipFIPS');
     loadTestFile(require.resolve('./install_bundled_package'));
     loadTestFile(require.resolve('./prerelease_packages'));
   });
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/install_bundled_package.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/install_bundled_package.ts
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/install_bundled_package.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/install_bundled_package.ts
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/install_large_bundled_package.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/install_large_bundled_package.ts
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/install_large_bundled_package.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/install_large_bundled_package.ts
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/prerelease_packages.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/prerelease_packages.ts
similarity index 90%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/prerelease_packages.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/prerelease_packages.ts
index f7116cc9fae32..67873a8e3e09f 100644
--- a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/prerelease_packages.ts
+++ b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/air_gapped/prerelease_packages.ts
@@ -52,8 +52,13 @@ export default ({ getService }: FtrProviderContext): void => {
         retryService
       );
 
-      expect(fleetPackageInstallationResponse.items.length).toBe(1);
-      expect(fleetPackageInstallationResponse.items[0].id).toBe('rule_99.0.0'); // Name of the rule in package 99.0.0
+      expect(fleetPackageInstallationResponse.items.length).toBe(2);
+      expect(fleetPackageInstallationResponse.items).toEqual(
+        expect.arrayContaining([
+          expect.objectContaining({ id: 'test-prebuilt-rule-a' }),
+          expect.objectContaining({ id: 'test-prebuilt-rule-b' }),
+        ])
+      ); // Name of the rule in package 99.0.0
 
       // Get the installed package and check if the version is 99.0.0
       const prebuiltRulesFleetPackage = await getPrebuiltRulesFleetPackage(supertest);
@@ -63,7 +68,7 @@ export default ({ getService }: FtrProviderContext): void => {
       // Get status of our prebuilt rules (nothing should be instaled yet)
       const statusAfterPackageInstallation = await getPrebuiltRulesStatus(es, supertest);
       expect(statusAfterPackageInstallation.stats.num_prebuilt_rules_installed).toBe(0);
-      expect(statusAfterPackageInstallation.stats.num_prebuilt_rules_to_install).toBe(1); // 1 rule in package 99.0.0
+      expect(statusAfterPackageInstallation.stats.num_prebuilt_rules_to_install).toBe(2); // 1 rule in package 99.0.0
       expect(statusAfterPackageInstallation.stats.num_prebuilt_rules_to_upgrade).toBe(0);
 
       // Install prebuilt rules
@@ -71,7 +76,7 @@ export default ({ getService }: FtrProviderContext): void => {
 
       // Verify that status is updated after package installation
       const statusAfterRulesInstallation = await getPrebuiltRulesStatus(es, supertest);
-      expect(statusAfterRulesInstallation.stats.num_prebuilt_rules_installed).toBe(1); // 1 rule in package 99.0.0
+      expect(statusAfterRulesInstallation.stats.num_prebuilt_rules_installed).toBe(2); // 1 rule in package 99.0.0
       expect(statusAfterRulesInstallation.stats.num_prebuilt_rules_to_install).toBe(0);
       expect(statusAfterRulesInstallation.stats.num_prebuilt_rules_to_upgrade).toBe(0);
 
@@ -79,7 +84,7 @@ export default ({ getService }: FtrProviderContext): void => {
       const rulesResponse = await getInstalledRules(supertest);
 
       // Assert that installed rules are from package 99.0.0 and not from prerelease (beta) package
-      expect(rulesResponse.data.length).toBe(1);
+      expect(rulesResponse.data.length).toBe(2);
       expect(rulesResponse.data[0].name).not.toContain('beta');
       expect(rulesResponse.data[0].name).toContain('99.0.0');
     });
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/bootstrap_prebuilt_rules.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/bootstrap_prebuilt_rules.ts
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/bootstrap_prebuilt_rules.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/bootstrap_prebuilt_rules.ts
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/index.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/index.ts
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/index.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/index.ts
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/install_package_from_epr.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/install_package_from_epr.ts
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/install_package_from_epr.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/install_package_from_epr.ts
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/update_package.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/update_package.ts
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/update_package.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/prebuilt_rules_package/update_package.ts
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/revert_prebuilt_rules/get_prebuilt_rule_base_version.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/get_prebuilt_rule_base_version.ts
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/revert_prebuilt_rules/get_prebuilt_rule_base_version.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/get_prebuilt_rule_base_version.ts
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/revert_prebuilt_rules/index.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/index.ts
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/revert_prebuilt_rules/index.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/index.ts
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/revert_prebuilt_rules/revert_prebuilt_rules.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/revert_prebuilt_rules.ts
similarity index 91%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/revert_prebuilt_rules/revert_prebuilt_rules.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/revert_prebuilt_rules.ts
index ef1d6dd1c82db..4f5f18f2d6128 100644
--- a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/revert_prebuilt_rules/revert_prebuilt_rules.ts
+++ b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/revert_prebuilt_rules/revert_prebuilt_rules.ts
@@ -14,7 +14,6 @@ import {
   deleteAllPrebuiltRuleAssets,
   installPrebuiltRules,
   getCustomQueryRuleParams,
-  getWebHookAction,
 } from '../../../../utils';
 import { revertPrebuiltRule } from '../../../../utils/rules/prebuilt_rules/revert_prebuilt_rule';
 
@@ -132,40 +131,19 @@ export default ({ getService }: FtrProviderContext): void => {
       });
 
       it('does not modify `actions` field', async () => {
-        // create connector/action
-        const createConnector = async (payload: Record<string, unknown>) =>
-          (
-            await supertest
-              .post('/api/actions/action')
-              .set('kbn-xsrf', 'true')
-              .send(payload)
-              .expect(200)
-          ).body;
-
-        const createWebHookConnector = () => createConnector(getWebHookAction());
-
-        const webHookAction = await createWebHookConnector();
-
-        const defaultRuleAction = {
-          id: webHookAction.id,
-          action_type_id: '.webhook' as const,
-          group: 'default' as const,
-          params: {
-            body: '{"test":"a default action"}',
-          },
-          frequency: {
-            notifyWhen: 'onThrottleInterval' as const,
-            summary: true,
-            throttle: '1h' as const,
-          },
-          uuid: 'd487ec3d-05f2-44ad-8a68-11c97dc92202',
-        };
-
         const { body: customizedPrebuiltRule } = await securitySolutionApi.patchRule({
           body: {
             rule_id: 'rule_1',
             description: 'new description',
-            actions: [defaultRuleAction],
+            actions: [
+              // use a pre-configured connector
+              {
+                group: 'default',
+                id: 'my-test-email',
+                action_type_id: '.email',
+                params: {},
+              },
+            ],
           },
         });
 
@@ -181,7 +159,15 @@ export default ({ getService }: FtrProviderContext): void => {
               is_customized: false,
               type: 'external',
             },
-            actions: [defaultRuleAction],
+            actions: [
+              expect.objectContaining({
+                id: 'my-test-email',
+                action_type_id: '.email',
+                frequency: { notifyWhen: 'onActiveAlert', summary: true, throttle: null },
+                group: 'default',
+                params: {},
+              }),
+            ],
           }),
         ]);
       });
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/status/get_prebuilt_rules_status.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/get_prebuilt_rules_status.ts
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/status/get_prebuilt_rules_status.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/get_prebuilt_rules_status.ts
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/status/index.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/index.ts
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/status/index.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/index.ts
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/status/legacy/get_prebuilt_timelines_status.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/legacy/get_prebuilt_timelines_status.ts
similarity index 100%
rename from x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/status/legacy/get_prebuilt_timelines_status.ts
rename to x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/common/status/legacy/get_prebuilt_timelines_status.ts
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/index.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/index.ts
index 10ca4133b7e73..2d8c904977d22 100644
--- a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/index.ts
+++ b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/index.ts
@@ -11,9 +11,6 @@ export default ({ loadTestFile }: FtrProviderContext): void => {
   describe('Rules Management - Prebuilt Rules (Customization Enabled)', function () {
     loadTestFile(require.resolve('./customization'));
     loadTestFile(require.resolve('./export'));
-    loadTestFile(require.resolve('./install_prebuilt_rules'));
-    loadTestFile(require.resolve('./status'));
     loadTestFile(require.resolve('./upgrade_prebuilt_rules'));
-    loadTestFile(require.resolve('./revert_prebuilt_rules'));
   });
 };
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/configs/ess_air_gapped.config.ts b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/configs/ess_air_gapped.config.ts
deleted file mode 100644
index b8b6d36ec10eb..0000000000000
--- a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/configs/ess_air_gapped.config.ts
+++ /dev/null
@@ -1,32 +0,0 @@
-/*
- * Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
- * or more contributor license agreements. Licensed under the Elastic License
- * 2.0; you may not use this file except in compliance with the Elastic License
- * 2.0.
- */
-
-import { FtrConfigProviderContext } from '@kbn/test';
-import path from 'path';
-
-export const BUNDLED_PACKAGE_DIR = path.join(path.dirname(__filename), './../fixtures/packages');
-
-export default async function ({ readConfigFile }: FtrConfigProviderContext) {
-  const functionalConfig = await readConfigFile(require.resolve('../../../configs/ess.config'));
-
-  return {
-    ...functionalConfig.getAll(),
-    testFiles: [require.resolve('..')],
-    kbnTestServer: {
-      ...functionalConfig.get('kbnTestServer'),
-      serverArgs: [
-        ...functionalConfig.get('kbnTestServer.serverArgs'),
-        /*  Tests in this directory simulate an air-gapped environment in which the instance doesn't have access to EPR.
-         *  To do that, we point the Fleet url to an invalid URL, and instruct Fleet to fetch bundled packages at the
-         *  location defined in BUNDLED_PACKAGE_DIR.
-         */
-        `--xpack.fleet.isAirGapped=true`,
-        `--xpack.fleet.developer.bundledPackageLocation=${BUNDLED_PACKAGE_DIR}`,
-      ],
-    },
-  };
-}
diff --git a/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/fixtures/packages/security_detection_engine-99.0.0.zip b/x-pack/test/security_solution_api_integration/test_suites/detections_response/rules_management/prebuilt_rules/customization_enabled/prebuilt_rules_package/air_gapped/fixtures/packages/security_detection_engine-99.0.0.zip
deleted file mode 100644
index 7c725ce134e426990f7084dfa290c84cf151a490..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 20201
zcmeHP&2J-VTF<h(uoSFVY3G0h67PCo>CU>!F1zg5p}Pksai+bUFC6y_!_3esSG~4t
zVpn;q%K2Edg1+%};Dm%YaOvwx9Jz6V8yAH512`ZqNO0iJ?|DDUWha@g$@Fgeu$j)p
z_4T~Z_s3h$<CAA!{n|Sl^z%QT{p|<hgZkfhHhys<;oc$+(yJFfPq~){QTT#~;~?Z_
zyKPmiYUTOh>l<Hre(`<(M8NsR4RFdu;2iXJyGN&8E4@rJklm@9q=Cl{0*{9YXEm#8
z7|;6$+ia4i^JKeHxwyEnxV+2qqRLd<7=+`BI%&!?+%VpKmvuak&r>(_aJX~D771=-
z>4dW+8l@L*%**U5S}=DUbI#I;xzj0&M&gc?$FqdFq0hW1^aJ8U!iIbrU04G2ZZyA&
zgYhKQxEjU)faU5@%*L@Brild4!YDNPr8flv=U6k2uH0#QWsb0HnO#Kj)V~OPUN-2y
zWHFRL+~E{g=~N0>$%w~vMy(*wT_m`{10rSS2T2+S!$pcSGxv-e?ztOGB?uy79`iZq
zWj>FCb2kMVwC-7=$z3ue2pM<13G-a=AIN+LB>-;>V%s#B1u32;Ufj-_gXLX@@e%kt
zbFV;03M8U)(77T3VtYCXVxZ{8X}|#(|JWo-QtmS_a^{BanEOV;<8ufb{F-nOBBUr!
zX}Adl%;SVz1nGpi5Pgyep@vsPM*=-a19!?2o`PyY&xpI}BF36nXS4`~w!2d(|2kVB
z^E@H5h{Whk+;EJ);Jsutpm;&-EoSFD1kW;c;OvZFtuA1I&4PqX5s9CqjG9?7r&S2E
zXqdnxIXJ!sgh?QV79JqFDGL%}2-z+eIJ{cNV~rFjB9EbxVzu)6a+!HaJrfEqZvyf$
z2^Atq3}rK!@~;tRu?|p&a5P)>jsNi{e*+Q4uFq#KDI-u<8fTC-&gZyMD!r@B?!-;O
z+vM|%O#+8p79q4<aBVK0V&2pZVAM;&kigu~$ezIQkbBXLw2*8KNMzUWnGCDUCN9J>
z1I}213^3u-DR?r1fwEB)8;MJH8_ecWoC+%u56ELkWL4_7SR361v~IOF!C-JpVP~<y
zWO>B=2n3M9dC(xi0b`v5&=XQN&n2mVv>}HwjbivmsWh|54@O|Vv~}>s^|cdJzCbIT
z#d;$F3pW8II2z67q^iU%!Tk$_6G%<6ACzJ3JQH9Fa$#YH@V3g43FFn*W@J%NGXgAW
z5w1H{2bvK=0D0ij4}&JD47fz}3g6B{9~w8CaX)~1Os_N{s}v+gvVb>qCH6Njx(<o3
z5bl*lAvim6rz66hxML{p$RKj0>_<A6MUpZ^Ju-E{B+wd#@Y9osjX7coaDcC0asle4
z3{T5~jpArV>lp4dx%O0!cr34^CIl^=goYx6;*8J<LIf>%Z0MU1sn7~=6Nr$jmdh{w
z5B$yynF2(mJOhK*O=Zwk8Yits!^w+EvxFVvY|Q!;T&1CBBJ(4m*081Nl|V@8KQIx`
zfNkVfBRs$_5%Q7*_lZahoP&^jzJ?`N8$c6+P-uC^5n&Oz9D#^G52C5KOOdRh!1_r$
z=n>c-nViDNFB{6C$NCfnCgd0HB8_H%<ssPs-xUH}Xdkgd0)PUkXen|CL&h}4RzgCU
zT835`+>qhJ;}o|kk;yJfoOAvmj0{i%9t(cetIT(=pk5<71-J+X9;XaJXrYv(Qv8hH
zf|MaQVjhGfWAHcTX&kwTq36Pwo<<iO-Upsgx(A640nKEfmLwJ~0g<H>IS{aNIf&V7
zv@9VAJfs&B9MK3;{K$B_#&crT9DH|4Q(^ZapF4_>$hpISqQ7Bmb`myn;q_Fsa4(3Z
z(M3`w{Im3td>zFKid;xckat82^7&T`$t5L#uvRj8l|V`<tq57*PkI9fJjMDl=#UV|
zhY%#+ogx3hB5^?Jt3fMByVFWYL7RY*7UCn+nOw-4YsiPgvj7}G3N+<o@K!`cYg2Gx
zkB@>-Cc84kZf<IQ+}tD;r**(JnIa+Lsf1divZQcxQ@fMw!KI&AVFASnkf-z2>z*1a
zB-{|KMI52PiWHQxjv$5fHaEd9tP*n|B%%hv2aN%;%>^g~Qxwi3(-$~X)|si129mjc
zi8C!Gc_bf)wMP&T409d_JdNUH63lbykmhR?kKHi%p>!C+h)AH6Z<AEZY>q-e)*87R
ziMQ~P!as^27y)rIAcOMuEPO%b5FqK=NUXfP2wj{Z-stPXV-QFqkB-GQH`N`WamG<t
zu;?NL-#`lKOfFL<9}7Q1%ybiE&BEU!UDC`@YBz_WLjfb?!EhXi8Msj<?ILIkYm1;o
z6flsEo+CA-Y!Xz!Sr83|aNZX|0w=hus6$#tCZRxLB@!orUy4ebI_MxKXjJv-%<ls;
zZBImsR!hm!wUDs62_woF1Noygf!5LUh&_s>IT$hj!6FbwK#>~k!<|cqFL2G$+YD@W
z20lYoHDDO>UuiuF(!MEtk4Ux?%Q$)V3*Q+3>%V;V&aZ52(C_VK_xFmF-ABg*6y7UU
z_nxlwS${D_I=`%KYt@>~R8gLAH%6@6u|5D@rfH(yg+qWb_zOsV2o1%vEG7tSh#&+P
z6J}-m7`|~aM8!U<>`WJYz}?w_J4`AGDO1R&rkkd&cV=8n0;~bJ>;AxHrNiE!q=PAC
zynKBz2rEm8Nhh{}Co7#m;bi64J$Dm04nz}|?FUr&utQN@#wGTk+Vl}Sha=PVJ=b(v
zE<Sl%ZF4m8M~+t?+Pv*P6!79ml$LuzBJyjfG~f-~<ZOx}9FRQEZjQFL9JA3LwN0m4
z^Uc<<-7@{!mgo6S!)|j=Ldq~Z%%$6;MznE}B!LV^YzHX{98Ln*TTZp%`y<<IdM$1`
zw#Utu-5LSkA$OZY&*gq=4R%MCQRFh&=>!QcX*8jH>JKS+1M0|k+;$syHtl*9u&On)
zJsP#lR;@j3wO!t-+9LsV5F;yuWcLu-rxAiE%R_&jAW{Kb+qdniH>{hDkux+MukD({
z_NZYt>Z7V_Z&kNkZa*{($aA@QvedZ;-a}Ta+HKbLBR7WGz0cz)am(y@>W<h`>=Hx>
zgT@JEPT&!!g4AhG0M13_dSxWS*wFzaQKQFHqr(Y^&;dt>2clu>BF<4ffhQ6<H5>uJ
zWX^%S7Mxz>QElME_)*nEi=;~*1*GE-$eWZ-RRLdmC>HTK;*HESnZA@I21rOz+lXC;
zd`#1M!?NBJK3Cd5FgM_nWc`i39a0qR_sqB;YfhU*$z*l^2QFMWLE%s;@Saqo5~WZg
zU94;DRLG7*N)%v|MzBbPQB)o?fr`GDI6Yd#A(jMF$mK@}>XZcQZ6a~|D56}6*b6tW
z%0}2CS*$yxO%39?AWtW>#BLz~%FC2gW#Y*aluuJxpNd+95_xj=NULNG0_t+RJ1RNQ
zwMixf_^iRxE;~KmAAH#9cUkY0o%D}C=<Rj)SgCW0<5HP@*c&`Oem-Ehqu)6ie8i6T
zS?A~@_N;fbS7zPcKk0W*PuX$b=pCLM^tw3LJK8;XzSlc?pY7l|_*Qn%gI)vZ;F!^Z
z3RJI)=l0oQx4-)okUKlQgWlkyva#PA91+a@<38)KlTIJb`T0So&rY8APmWK!Sbh&+
zk9tS@eXP<w>>dqJDjeY)>wbU(cKWn)a6n5Lo#(*5Px!Ij<CBm2z4xCE*wf>Ky)I7f
zbb(oC=b$T>0#UmMo!()Y?R5@2?-O=?b_^(egKm@9u@9ei=@hNk!N1)>@A!zw*gZZP
z^l?}QmHk2X=!d=2ZkcuZy;EYye*gHeY!Ex~1fT;5o;&JFD8y>PpiCmTg&6i6L~C5w
zUbk}qSP;*VAW`4^<s#7jDeZCdgU-%rWy+&4@ZIDm5qUZvo+?kyup;UsQeF8e$weNw
zT5Yy$UN_s^Z<>y?<(clV=9xp@bXu*N?KNw)*SX7DmF=67EJk#_S^p?~#+&kwdhavy
zD%t_w#XnM^_h$TK=1}Ad0FB)j^pD1xe?&<6nScD5e-y6ur|BQ5YWU4x{nPrt{nEw;
z{oY<RSVgJ^`L1IcjjgNMG<#k5E(<voe<)Ka5lh%OqNG2K=El1e47=N?b;X7h?M+}q
z&WyP{&YpO{t+B=6>r&UMK15NL22*5Za})zeCMn^Fx$EP_2eKGdYhWeh;R?bwldmNW
zrryUS+xW<siC0~T7YB37d$(C%t(&N~o2qnJ%zfl{;sM6et2y7sP60L%Jx<x4IzJ7<
zv*ioOTqUDkIaY!&<;Xn6UU_A{m`*E=mgD4cY*|gKCW*A)c1#;q?X5$xzRFCX__i{$
zwu-4^Id2;?>+NeOzNO5pZ>?gwWxZ|2Q`=gTH&A>#nOSQ#R+-s+`<U6h<}=?~W?pkh
zZ$dNg5@>2o^49coJ$&VYWXo#2NzJ?)ro^KHm^xPd4fxDEq1f0ejN+R!^E+W$ZxzM#
zO+@p%pja)cna-Px=6AxhR#5EqHxkY7h9cz=1&jwM-mhj>tJR{I-jkU-ZN$Pt%yiyJ
zjJ$)q9qjWLL$Q8uC{~*!zXB>*yFV0bg+dOJw&s0Vwo|nWO4`0JHr5-(>_xEgo@~0_
zXf%sxqm35kdkTp4TCtd2C2hPP9Ft1jZWl5cf#f~qytS=ryQr-13&m!&P>2B=?=9P{
z)oX>=C~&+VeXQ8+TA{p0;CMf>PAYbzu+7x(tF*D}&7yW)zbEHYv1{!@c{qf9Z&{CR
zZ+!tAO`o4*g5~qKrcZL);<U>x$-^sqIfo;6s+GUHLn>+8*ow~QX~V^M6kO&vgT#uj
zLvug4%y#7oO+@>;Rh1pb*{F~y+JC+bvTLQ-ZO9hmtn7~Xsi0jb`@s0rYaIabc~$o4
z=%k*VyK}YOTGiQ`nELv(XjhE8$kr6m<b^k{Xk<pa*0W%UHY%YJ^pZ!tyYasS!bLMB
zXs*zN*JYhK+;cB$82VVJ`t8phOsmx{EOm+I>!N55%>+{>=%7=5HFz^c?KWC3gqhu)
zy<0{7tY+`)BI_>R(WQ97r(W8Td(f!<c7hjiYLF1`)@YFMCxbY>@N^IV>-YZh*Ecrk
zSHAG1!N&C|$L|(-;fao~q{ygar7*C5x3hQHwPt?q^(lP+aDh%l>IxB4m*}k1%#yvB
zqHAi&LD^oZ8J(a98J%d<hz7fpkTm1f8%~l1T~|$<%Y{B(0+nL<^uaANmg5D6_9{F?
zv!+C{LcYI}J#VV{Q0i7b5BP;ONoUiC)Nn-&Vi(~wa>XQ{eA&8mAn0jBpV}EZl23U`
zQz8jkWS`)$M<WGj`g$#QRA2JurbTQD*~fCq>I+aZ!@MbvD}t@&A~2VY%Yuq`33pTT
zRz|mnVsuan0?tG<lIO%GnE~oCe|n(CSdYY<4|;N-qo4iVgMa$puWW44@9jGJTSe3=
zn2n35Xs0MFEngGw`6JVdrcrD*o%yAeoR2f5ee~Yt3<DYRjsN2k3hEN<+CyJrIDTAu
zKG-)~rT3l~kMIl{AN_RlxI{2YXwjsJ9(_cLvJ+iCE>&5TH68pb<$>BIhGoL!afy^t
z&HY}~E%dTiYS?0|0KB?o`;uJuO*h)@cDo|3mYxWw^XNOKiFQ)7ySuQQZFYLbDSkDP
zPNHkI<}_*#(Kw*ZAQ4xoXPKF%0w5yBliL{es3Nb+#i#+{iFA#=>>ZcuS&v{lxFqiy
zv%r5`x(#9p6I5|@#vhk32#nrZd1NZaf=lQ{o$8D9S?K8F68dw)$oCc9l>R-E&G}es
z7@=1i(lUn;#6lt{u`BWaOkR0um7YAR(6bU>0ZQWhejF|4C7R#FbaE8W9+$*N8ZCN&
zQE~B8W{&#wFo%l(f-$}c13HJcUAF7&0Dl@*v*pwsyVd5V?XUx9>!wo}SlY#v`j%C-
zZQR>tb;sIrnp=3X?ATVb>eO3xht;cP2XOI6fybXeC<%6-PTV=TDVg`~erL;Zx<n`8
zw4`$t&1$*cu<Gqrz1;>>0Bx~@T0{S7G}&&;s;i%}0|qpjj#J-azydp<EvQ$$frA_n
zh0F;S&2X{zb~-!N*WqHXFAqX@?Y8Aqn^n73D?3%I-K>ETHp8uT>?gI+%HNhpRm-UX
z8Fcm^NH{m)Q3vXdeI1WSm9bJ>`tXSC@CmuK_8))i$KU?i#s>Y~?$#a@aYbh$om}^9
zH%0R17XYU%>;-x5b>KIBiNXGzfzt{vWLuK;8T!pL-}y%{`4T1_<fML5+Gccy&Mh!H
z7UTG1af~x6UYEr2r)7CtuB8e0mJTCCPg+cLN2Ta4hgDMpH(4V!F`<1bSzvBJJx<f1
z^jsKSnDy#RpT=knzs#>q{p}bhNX<=k3-CcmNX)3-Y;3NgG{p@3g4+H8_iVxAD-Bh(
zpwoGsd+2a@Ueh<BvJp=%DY0cmDY=*3hCvAeq>q0f7QzW~bE$<ME*JAj+k~FwF3@p~
zW`Cc_i)xHA-tJz?Cbrx)%s2CK6kly$@L}#W4Kbo=?32<Fzc2^n-l(g*4@Q4d%H4)Z
zJj4dRjrm2I*7zjU=!roz#6)mDCs7?%D6_O?frp_6%npc=7#^C7q#_2X&{>cEF|_%U
zmf|}jMA212o1Od?2ttG;{vO58$NIWC*D{8rUb~KdD$D0ga0}rcQ?&tUO=X6!jxa}P
z;g<=|`thm)U@Y<M1twu)k`Uao)Kp;tflopcA6MlGVIgwh8jS=Tk1%M?8Dz%}pk!=+
z%0;Ji)>BueVI856H2whM#o(J7lfsZ1Vj?Dx(9n%J4QPVw8Kk)^Iir9vGNKLbc{E+A
zX1J)Y5Rfb_vINRP-+Dqw(M0$nvyRjquZU3_rX&>n-knAZU%|oQp_VLBv^-6NZ9%w*
zF!^_gj&r0Ru+`<|Q|=w-g^1fn!FVB?3R#DAdX??zglaCJt38JFB*L4FVwe?;8xl2`
zM!>j3XE6Bg?z3z?;E8c73?bu=<%2jYMK<VE@meZ(H?C+??Owt?AkdSEtlp8SJuR!X
zP|kHh-_w|j>`ktlROA{JNfn{}Bh67lj(d|ZfSKnAq<iwXF0r*6^{o|Da_9>4rLSh#
zBh^5*F2qG``N)FO^`{Dwps@oLw04dNkfA&{W1p%|@{IQ3X@HU8)Sb;=P`wnRv?6v%
zUj>!GHLkU(L@hmZRr)(+S}OI%c`C~V*Ob`SEiHRq$39`tCF4h;5cv)7um0lCetu(v
zesAv%Hj6|-1e;(4%vYL&m2<_&5q0F6*^a<+9$H+G(cV&2ZL>e5UfHUV3w7JeLNKd2
zbJeYmE-)ccLK`Cbr7tpw^v<tp1eitAm;^sWqp#h(wB`Oy5_{XMLe*5ps2eIEAx+t2
z70^gFr9R(7k)ppoWSgcQ1J58s+0LlF_BBd|7`G*s$WCH(9LujWsvuIS+CRZKyy%k#
zOf*ItqN>QTL6e#*JNxiviJ{P2_9Gh^7gU=x<!aWW@jv`E%1`<|dG?i`d*`dSe;pL1
zT^k$U+W7Ad{nh-rM%4{p4kh90%ql;@N?#A9e_p+OS_JM*UlyfN*GuHv-Dwn7|Gawn
zj~JVME$TN6#;&iB-(RA(dHwV1<^TO!ffZyhhia|ZiC%<&-LzFD7a<A!XRE*>>l;_A
zV#x14(AJgydG)g1E(-kmM%L$%Ksy;r68`*m3aqlWudzx&zR;kZ4gK@#<-Zq&tyST3
z_c=a~CMsi=G`YW9fTrt3&FywaWz7=&-+uw{nzCy}&MFV{uAj;r{qySOH(}-(kj&ez
zeFL1LCA*K}j@UxGvFOo^)MlFZJ``Q_&#RZ;hAYT`-nRISvF7C2*Ac}wHhvlZ{WB`i
JZ+@SS{vVP4BDw$o