[Automatic Migrations] Migrations page with nav

[kqualters-elastic]

Summary

This pr moves the migration creation flow from a tab within onboarding to it's own dedicated page, keeping as much of the logic from onboarding in place as possible, including using the context provider. Also adds a redirect from the old route, and a link from the card page for migrations, and removes the 3 top level cards from onboarding per UX.

There will be 1 small follow up pr to restructure the navigation tree with these new changes and the soon to come launchpad section.

Checklist

Check the PR satisfies following conditions.

Reviewers should verify this PR satisfies this list as well.

• Any text added follows EUI's writing guidelines, uses sentence case text and includes i18n support
• The PR description includes the appropriate Release Notes section, and the correct release_note:* label is applied per the guidelines

[logeekal]

I would suggest rename siemMigrationsCreate back to siemMigrationsLanding.

Also, do we need to siem_migrations/create route, since we already have /siem_migrationsas landing route.

Please correct me if i am missing something.

[kqualters-elastic]

The reason I did that is because landing lives at /siem_migrations/landing, and having a card (typically pointing to a child route), there that links to the parent route of /siem_migrations/ seemed odd/could cause issues in the future with nav/breadcrumbs etc. I can change if you'd like.

[logeekal]

Refering to this comment. Why do we need this new page/link?

[kqualters-elastic]

We don't need it, as all of this is arbitrary, I just was thinking that a page of link cards, at migrations/landing, should not link to it's "parent" route at migrations/, as this doesn't make a whole lot of sense from an information hierarchy perspective, can cause issues with hypothetical future breadcrumb or other nav changes, etc, but it's all arbitrary and I can change it if you'd like

[elasticmachine]

Pinging @elastic/security-threat-hunting-investigations (Team:Threat Hunting:Investigations)

[logeekal]

I did Desk Testing and here are some issues:

Links

• I am not sure of the difference between /app/security/siem_migrations & /app/security/siem_migrations/landing. imo landing is redundant

• /siem_migrations/create page makes sense but in url imo start or manage may fit better since we can also see the results of the migrations, delete them as well, etc.

Redirection.

1. If I open kibana with URL /app/security/siem_migrations, they are redirected to /app/get_started#migration_rules.

2. From Translated Rules Page, when user clicks on Add another Migration, they are redirected to /siem_migrations/create, it should be siem_migration/create#migrate_rule.

Demo

Screen.Recording.2026-04-01.at.12.58.14.mov

3. Same as point 2 for dashboards.

4. Nit : Start Automatic Migration should also redirect to siem_migrations/create#migration_rules.

UI

1. Cards are of full width on new pages while they are of proper readability with on original Get Started Page. I think that is better.

2. Too much gap below Automatic Migrations header ( screenshot below ). It will be great add a divider like other pages such as Translated Rules.

Automatic Migrations	Translated Rules

[logeekal]

Previously Onboarding body was implementing 2 tabs ( based on topics ). Is that supported with this change. It seems now there is not ability to add more topics to the Get started Page.

[logeekal]

it seems concept of topic changed from being a tab to a separate page. I think this breaks Onboarding.

Do you think we can reuse Onboarding Config by passing topic Map. Get Started page can then manage its own topics with interference from other pages.

[logeekal]

Additionally, It seems navigation is also not working in Solution view.

Screen.Recording.2026-04-01.at.13.43.10.mov

[coderabbitai]

📝 Walkthrough

Walkthrough

This pull request restructures the onboarding system by removing header card components (DemoCard, TeammatesCard, VideoCard) and their associated translations across multiple languages, alongside their styling and tests. The OnboardingBody component is refactored to require an explicit topicId prop. A new SIEM migrations creation flow is introduced with SiemMigrationsCreatePage, MigrationsCallout, and IconAgent components. New deep-link and route constants support navigation to the SIEM migrations create endpoint. The onboarding router is updated to redirect SIEM migrations paths and provide topic-specific configuration. Navigation trees and link configurations are extended to include the migrations create page.

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

• 🛠️ Update Documentation: Commit on current branch
• 🛠️ Update Documentation: Create PR

Warning

Review ran into problems

🔥 Problems

Git: Failed to clone repository. Please run the @coderabbitai full review command to re-trigger a full review. If the issue persists, set path_filters to include or exclude specific files.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 2

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/cards/common/integrations/callouts/integration_card_top_callout.tsx (1)

37-44: ⚠️ Potential issue | 🟡 Minor

MigrationsCallout rendered unconditionally but gated by unrelated early return.

The early return (Line 37-39) doesn't account for MigrationsCallout. If showAgentlessCallout, showEndpointCallout, and showActiveCallout are all false, the component returns null — MigrationsCallout never renders.

If MigrationsCallout should always appear, update the early return:

- if (!showAgentlessCallout && !showEndpointCallout && !showActiveCallout) {
+ const showMigrationsCallout = true; // or actual condition
+ if (!showAgentlessCallout && !showEndpointCallout && !showActiveCallout && !showMigrationsCallout) {
    return null;
  }

If this is intentional (show migrations callout only alongside other callouts), please confirm.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/cards/common/integrations/callouts/integration_card_top_callout.tsx`
around lines 37 - 44, The early return currently checks showAgentlessCallout,
showEndpointCallout, and showActiveCallout and returns null, which prevents
MigrationsCallout from ever rendering; update the conditional logic in the
component that returns early (the block surrounding showAgentlessCallout,
showEndpointCallout, showActiveCallout) so that MigrationsCallout is rendered
unconditionally (or adjust the condition to include a showMigrationsCallout
flag) — specifically, modify the early-return condition used before rendering
MigrationsCallout/EuiSpacer or add an explicit check for MigrationsCallout so
MigrationsCallout is not skipped when the other three flags are false.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In
`@x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/hooks/use_body_config.test.ts`:
- Around line 40-43: The test in use_body_config.test.ts asserts the hook result
against the wrong variable; update the expectation to compare result.current to
the config entry used by the map (defaultBodyConfig) instead of bodyConfig.
Locate the test that calls renderHook(() =>
useBodyConfig(OnboardingTopicId.default)) and replace the expected value to
defaultBodyConfig so the assertion matches the actual config returned by
useBodyConfig.

In
`@x-pack/solutions/security/plugins/security_solution/public/siem_migrations/links.ts`:
- Around line 27-40: The new nav link object for
SecurityPageName.siemMigrationsCreate is missing the hideWhenExperimentalKey
used by other SIEM migrations links; add hideWhenExperimentalKey:
'siemMigrationsDisabled' to the link definition (the same key used on the other
sub-links) so the link is hidden when the feature flag for SIEM migrations is
disabled; update the object that contains id:
SecurityPageName.siemMigrationsCreate, title, path: SIEM_MIGRATIONS_CREATE_PATH
and capabilities referencing SIEM_MIGRATIONS_FEATURE_ID to include
hideWhenExperimentalKey.

---

Outside diff comments:
In
`@x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/cards/common/integrations/callouts/integration_card_top_callout.tsx`:
- Around line 37-44: The early return currently checks showAgentlessCallout,
showEndpointCallout, and showActiveCallout and returns null, which prevents
MigrationsCallout from ever rendering; update the conditional logic in the
component that returns early (the block surrounding showAgentlessCallout,
showEndpointCallout, showActiveCallout) so that MigrationsCallout is rendered
unconditionally (or adjust the condition to include a showMigrationsCallout
flag) — specifically, modify the early-return condition used before rendering
MigrationsCallout/EuiSpacer or add an explicit check for MigrationsCallout so
MigrationsCallout is not skipped when the other three flags are false.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository YAML (base), Organization UI (inherited)

Review profile: CHILL

Plan: Pro

Run ID: 7b0bc200-33d6-41db-99d4-fff0790ba7ce

📥 Commits

Reviewing files that changed from the base of the PR and between 442280c and 58270a6.

⛔ Files ignored due to path filters (8)

• x-pack/solutions/security/plugins/security_solution/public/common/icons/agent/icon.svg is excluded by !**/*.svg
• x-pack/solutions/security/plugins/security_solution/public/common/icons/agent/icon_dark.svg is excluded by !**/*.svg
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/images/demo_card.png is excluded by !**/*.png
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/images/demo_card_dark.png is excluded by !**/*.png
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/images/teammates_card.png is excluded by !**/*.png
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/images/teammates_card_dark.png is excluded by !**/*.png
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/images/video_card.png is excluded by !**/*.png
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/images/video_card_dark.png is excluded by !**/*.png

📒 Files selected for processing (35)

• src/platform/packages/shared/deeplinks/security/deep_links.ts
• x-pack/platform/plugins/private/translations/translations/de-DE.json
• x-pack/platform/plugins/private/translations/translations/fr-FR.json
• x-pack/platform/plugins/private/translations/translations/ja-JP.json
• x-pack/platform/plugins/private/translations/translations/zh-CN.json
• x-pack/solutions/security/plugins/security_solution/common/constants.ts
• x-pack/solutions/security/plugins/security_solution/public/common/icons/agent/index.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/body_config.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/cards/common/integrations/callouts/integration_card_top_callout.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/cards/common/integrations/callouts/migrations_callout.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/hooks/use_body_config.test.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/hooks/use_body_config.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/onboarding_body.test.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/onboarding_body.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/common/link_card.styles.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/common/link_card.test.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/common/link_card.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/demo_card.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/index.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/translations.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/index.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/teammates_card.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/translations.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/index.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/translations.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/video_card.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/video_modal.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/onboarding_header.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/onboarding_header_topic_selector.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_router.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/constants.ts
• x-pack/solutions/security/plugins/security_solution/public/siem_migrations/create.tsx
• x-pack/solutions/security/plugins/security_solution/public/siem_migrations/links.ts
• x-pack/solutions/security/plugins/security_solution/public/siem_migrations/routes.tsx
• x-pack/solutions/security/plugins/security_solution_serverless/public/navigation/navigation_tree.ts

💤 Files with no reviewable changes (19)

• x-pack/platform/plugins/private/translations/translations/de-DE.json
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/index.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/index.ts
• x-pack/platform/plugins/private/translations/translations/zh-CN.json
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/common/link_card.styles.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/demo_card.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/translations.ts
• x-pack/platform/plugins/private/translations/translations/fr-FR.json
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/onboarding_header.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/common/link_card.test.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/translations.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/index.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/video_card.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/onboarding_header_topic_selector.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/translations.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/teammates_card.tsx
• x-pack/platform/plugins/private/translations/translations/ja-JP.json
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/common/link_card.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/video_modal.tsx

[coderabbitai]

⚠️ Potential issue | 🟡 Minor

Test assertion uses wrong variable.

The config map contains defaultBodyConfig, but the assertion compares against bodyConfig. This will cause the test to fail.

     it('should return the body config for the selected topic', () => {
       const { result } = renderHook(() => useBodyConfig(OnboardingTopicId.default));
-      expect(result.current).toEqual(bodyConfig);
+      expect(result.current).toEqual(defaultBodyConfig);
     });

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	it('should return the body config for the selected topic', () => {
	const { result } = renderHook(() => useBodyConfig());
	const { result } = renderHook(() => useBodyConfig(OnboardingTopicId.default));
	expect(result.current).toEqual(bodyConfig);
	});
	it('should return the body config for the selected topic', () => {
	const { result } = renderHook(() => useBodyConfig(OnboardingTopicId.default));
	expect(result.current).toEqual(defaultBodyConfig);
	});

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/hooks/use_body_config.test.ts`
around lines 40 - 43, The test in use_body_config.test.ts asserts the hook
result against the wrong variable; update the expectation to compare
result.current to the config entry used by the map (defaultBodyConfig) instead
of bodyConfig. Locate the test that calls renderHook(() =>
useBodyConfig(OnboardingTopicId.default)) and replace the expected value to
defaultBodyConfig so the assertion matches the actual config returned by
useBodyConfig.

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Missing hideWhenExperimentalKey may expose link when feature is disabled.

Other SIEM migrations sub-links include hideWhenExperimentalKey: 'siemMigrationsDisabled' (lines 54, 72), but this new link doesn't. When the feature flag is disabled, the route won't exist but the nav link may still appear.

     path: SIEM_MIGRATIONS_CREATE_PATH,
     capabilities: [[SECURITY_UI_SHOW_PRIVILEGE, `${SIEM_MIGRATIONS_FEATURE_ID}.all`]],
     skipUrlState: true,
     hideTimeline: true,
+    hideWhenExperimentalKey: 'siemMigrationsDisabled',
   },

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@x-pack/solutions/security/plugins/security_solution/public/siem_migrations/links.ts`
around lines 27 - 40, The new nav link object for
SecurityPageName.siemMigrationsCreate is missing the hideWhenExperimentalKey
used by other SIEM migrations links; add hideWhenExperimentalKey:
'siemMigrationsDisabled' to the link definition (the same key used on the other
sub-links) so the link is hidden when the feature flag for SIEM migrations is
disabled; update the object that contains id:
SecurityPageName.siemMigrationsCreate, title, path: SIEM_MIGRATIONS_CREATE_PATH
and capabilities referencing SIEM_MIGRATIONS_FEATURE_ID to include
hideWhenExperimentalKey.

[coderabbitai]

📝 Walkthrough

Walkthrough

This change introduces a new SIEM migrations create page (SiemMigrationsCreatePage) accessible via a new deeplink (siemMigrationsCreate). A new IconAgent component and MigrationsCallout component are added to support the migrations feature. The onboarding body is refactored to accept topicId as a prop parameter instead of deriving it internally. The onboarding header's demo, teammates, and video cards are removed along with their associated styling and test files. Related translation strings for these removed components are cleaned from German, French, Japanese, and Chinese locale files. The new migrations create route is integrated into the routing structure and navigation tree.

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

• 🛠️ Update Documentation: Commit on current branch
• 🛠️ Update Documentation: Create PR

Warning

Tools execution failed with the following error:

Failed to run tools: 13 INTERNAL: Received RST_STREAM with code 2 (Internal server error)

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 2

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/cards/common/integrations/callouts/integration_card_top_callout.tsx (1)

37-39: ⚠️ Potential issue | 🟠 Major

Migrations callout is blocked by the existing early return

On Line 37, the return null path still triggers when the three legacy callouts are false, so the new MigrationsCallout (Line 43) never renders in that state.

Suggested fix

-  if (!showAgentlessCallout && !showEndpointCallout && !showActiveCallout) {
-    return null;
-  }
+  const showAnyLegacyCallout = showAgentlessCallout || showEndpointCallout || showActiveCallout;

   return (
     <>
       <MigrationsCallout />
-      <EuiSpacer size="s" />
+      {showAnyLegacyCallout && <EuiSpacer size="s" />}
       {showEndpointCallout && <EndpointCallout />}
       {showAgentlessCallout && <AgentlessAvailableCallout />}
       {showActiveCallout && (
         <ActiveIntegrationsCallout
           isAgentRequired={isAgentRequired}
           activeIntegrationsCount={activeIntegrationsCount}
         />
       )}
     </>
   );

Also applies to: 43-44

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/cards/common/integrations/callouts/integration_card_top_callout.tsx`
around lines 37 - 39, The early return currently checks only
showAgentlessCallout, showEndpointCallout, and showActiveCallout so
MigrationsCallout never renders; update the conditional that returns null to
also consider the migrations flag (e.g., include showMigrationsCallout) or
compute/inline the same predicate used to decide rendering of MigrationsCallout
and include it (so change "if (!showAgentlessCallout && !showEndpointCallout &&
!showActiveCallout) return null" to also check the migrations condition), or
alternatively move the MigrationsCallout render above the early return; refer to
the showAgentlessCallout, showEndpointCallout, showActiveCallout, and
MigrationsCallout symbols to locate the changes.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In
`@x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/hooks/use_body_config.test.ts`:
- Around line 40-43: The test for useBodyConfig is asserting the wrong expected
value: when calling useBodyConfig(OnboardingTopicId.default) the hook returns
the mapped config defaultBodyConfig (mapped under OnboardingTopicId.default) but
the test asserts against bodyConfig; update the assertion to expect
defaultBodyConfig instead of bodyConfig so the titles match (refer to
useBodyConfig, OnboardingTopicId.default, bodyConfig, and defaultBodyConfig).

In
`@x-pack/solutions/security/plugins/security_solution/public/siem_migrations/links.ts`:
- Around line 29-31: The i18n translate key
xpack.securitySolution.appLinks.automaticMigrations.title is duplicated with
conflicting defaultMessage values in the i18n.translate calls around the title
for "Automatic migrations" and the other "Migrations"; change one of the keys to
a new unique key (e.g. xpack.securitySolution.appLinks.migrations.title or
xpack.securitySolution.appLinks.automaticMigrations.title_short) in the
i18n.translate invocation(s) in links.ts, update the corresponding
defaultMessage to match the intended text, and then update any usages or imports
that reference the old key so all references use the new unique key.

---

Outside diff comments:
In
`@x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/cards/common/integrations/callouts/integration_card_top_callout.tsx`:
- Around line 37-39: The early return currently checks only
showAgentlessCallout, showEndpointCallout, and showActiveCallout so
MigrationsCallout never renders; update the conditional that returns null to
also consider the migrations flag (e.g., include showMigrationsCallout) or
compute/inline the same predicate used to decide rendering of MigrationsCallout
and include it (so change "if (!showAgentlessCallout && !showEndpointCallout &&
!showActiveCallout) return null" to also check the migrations condition), or
alternatively move the MigrationsCallout render above the early return; refer to
the showAgentlessCallout, showEndpointCallout, showActiveCallout, and
MigrationsCallout symbols to locate the changes.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository YAML (base), Organization UI (inherited)

Review profile: CHILL

Plan: Pro

Run ID: 81e04755-e664-407e-8730-981075cfd641

📥 Commits

Reviewing files that changed from the base of the PR and between 442280c and 58270a6.

⛔ Files ignored due to path filters (8)

• x-pack/solutions/security/plugins/security_solution/public/common/icons/agent/icon.svg is excluded by !**/*.svg
• x-pack/solutions/security/plugins/security_solution/public/common/icons/agent/icon_dark.svg is excluded by !**/*.svg
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/images/demo_card.png is excluded by !**/*.png
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/images/demo_card_dark.png is excluded by !**/*.png
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/images/teammates_card.png is excluded by !**/*.png
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/images/teammates_card_dark.png is excluded by !**/*.png
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/images/video_card.png is excluded by !**/*.png
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/images/video_card_dark.png is excluded by !**/*.png

📒 Files selected for processing (35)

• src/platform/packages/shared/deeplinks/security/deep_links.ts
• x-pack/platform/plugins/private/translations/translations/de-DE.json
• x-pack/platform/plugins/private/translations/translations/fr-FR.json
• x-pack/platform/plugins/private/translations/translations/ja-JP.json
• x-pack/platform/plugins/private/translations/translations/zh-CN.json
• x-pack/solutions/security/plugins/security_solution/common/constants.ts
• x-pack/solutions/security/plugins/security_solution/public/common/icons/agent/index.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/body_config.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/cards/common/integrations/callouts/integration_card_top_callout.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/cards/common/integrations/callouts/migrations_callout.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/hooks/use_body_config.test.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/hooks/use_body_config.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/onboarding_body.test.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/onboarding_body.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/common/link_card.styles.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/common/link_card.test.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/common/link_card.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/demo_card.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/index.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/translations.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/index.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/teammates_card.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/translations.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/index.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/translations.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/video_card.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/video_modal.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/onboarding_header.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/onboarding_header_topic_selector.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_router.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/constants.ts
• x-pack/solutions/security/plugins/security_solution/public/siem_migrations/create.tsx
• x-pack/solutions/security/plugins/security_solution/public/siem_migrations/links.ts
• x-pack/solutions/security/plugins/security_solution/public/siem_migrations/routes.tsx
• x-pack/solutions/security/plugins/security_solution_serverless/public/navigation/navigation_tree.ts

💤 Files with no reviewable changes (19)

• x-pack/platform/plugins/private/translations/translations/ja-JP.json
• x-pack/platform/plugins/private/translations/translations/zh-CN.json
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/index.ts
• x-pack/platform/plugins/private/translations/translations/fr-FR.json
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/index.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/onboarding_header.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/common/link_card.styles.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/index.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/translations.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/teammates_card.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/demo_card/demo_card.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/teammates_card/translations.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/common/link_card.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/translations.ts
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/common/link_card.test.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/video_card.tsx
• x-pack/platform/plugins/private/translations/translations/de-DE.json
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/cards/video_card/video_modal.tsx
• x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_header/onboarding_header_topic_selector.tsx

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

Test assertion uses wrong variable — will fail.

The config on line 15 maps OnboardingTopicId.default to { body: defaultBodyConfig }, but line 42 asserts against bodyConfig. These have different titles ('Default Group 1' vs 'Group 1').

Proposed fix

     it('should return the body config for the selected topic', () => {
       const { result } = renderHook(() => useBodyConfig(OnboardingTopicId.default));
-      expect(result.current).toEqual(bodyConfig);
+      expect(result.current).toEqual(defaultBodyConfig);
     });

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	it('should return the body config for the selected topic', () => {
	const { result } = renderHook(() => useBodyConfig());
	const { result } = renderHook(() => useBodyConfig(OnboardingTopicId.default));
	expect(result.current).toEqual(bodyConfig);
	});
	it('should return the body config for the selected topic', () => {
	const { result } = renderHook(() => useBodyConfig(OnboardingTopicId.default));
	expect(result.current).toEqual(defaultBodyConfig);
	});

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@x-pack/solutions/security/plugins/security_solution/public/onboarding/components/onboarding_body/hooks/use_body_config.test.ts`
around lines 40 - 43, The test for useBodyConfig is asserting the wrong expected
value: when calling useBodyConfig(OnboardingTopicId.default) the hook returns
the mapped config defaultBodyConfig (mapped under OnboardingTopicId.default) but
the test asserts against bodyConfig; update the assertion to expect
defaultBodyConfig instead of bodyConfig so the titles match (refer to
useBodyConfig, OnboardingTopicId.default, bodyConfig, and defaultBodyConfig).

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Duplicate i18n key with conflicting default messages.

Line 29 and line 85 both use xpack.securitySolution.appLinks.automaticMigrations.title but with different defaultMessage values:

• Line 29: 'Automatic migrations'
• Line 85: 'Migrations'

This causes non-deterministic text at runtime. Use distinct keys.

Proposed fix

   {
     id: SecurityPageName.siemMigrationsCreate,
-    title: i18n.translate('xpack.securitySolution.appLinks.automaticMigrations.title', {
+    title: i18n.translate('xpack.securitySolution.appLinks.siemMigrationsCreate.title', {
       defaultMessage: 'Automatic migrations',
     }),
-    description: i18n.translate('xpack.securitySolution.appLinks.automaticMigrations.description', {
+    description: i18n.translate('xpack.securitySolution.appLinks.siemMigrationsCreate.description', {
       defaultMessage: 'Migrate your SIEM to Elastic using AI powered Automatic migration.',
     }),

Also applies to: 85-87

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In
`@x-pack/solutions/security/plugins/security_solution/public/siem_migrations/links.ts`
around lines 29 - 31, The i18n translate key
xpack.securitySolution.appLinks.automaticMigrations.title is duplicated with
conflicting defaultMessage values in the i18n.translate calls around the title
for "Automatic migrations" and the other "Migrations"; change one of the keys to
a new unique key (e.g. xpack.securitySolution.appLinks.migrations.title or
xpack.securitySolution.appLinks.automaticMigrations.title_short) in the
i18n.translate invocation(s) in links.ts, update the corresponding
defaultMessage to match the intended text, and then update any usages or imports
that reference the old key so all references use the new unique key.

[logeekal]

@kqualters-elastic , i have done fixes in below PR and reverted Onboarding changes.

• Automatic Migrations Refactor - Siem Migration onboarding config refactor kqualters-elastic/kibana#10

After merging above PR in your branch overall changes should look much less( like this, only 24 files + 8 Cypress ). But Please let me know if you see any issues.

I am trying to push Cypress text fixes as well. (✅ This is now done.)

[logeekal]

What do you think about this?

I would really like your opinion here as well @ferenrigue. Screenshot is what is there in the system after our changes. In Red, i suggest some modifications. What do you think?

[kqualters-elastic]

@kqualters-elastic , i have done fixes in below PR and reverted Onboarding changes.

• Automatic Migrations Refactor - Siem Migration onboarding config refactor kqualters-elastic/kibana#10

After merging above PR in your branch overall changes should look much less( like this, only 24 files + 8 Cypress ). But Please let me know if you see any issues.

I am trying to push Cypress text fixes as well. (✅ This is now done.)

There are some changes in that pr that I think were requested, such as removing the header cards (see Figma), and I think the bulk of the changes (in terms of LOC) are just adding that back. The main change is how topic id works, which is fine with me, adding the wrapper component instead of passing as a prop to potentially allow future onboarding topics, I'm going to ask about this in the sync, how likely it is that more topics are added, and decide based on that info.

[logeekal]

There are some changes in that pr that I think were requested, such as removing the header cards (see Figma), and I think the bulk of the changes (in terms of LOC) are just adding that back.

Yes, sorry that my bad. Let me remove those.

[kqualters-elastic]

@logeekal I just pushed what I think is a best of both worlds approach.

topicId is now an optional parameter to OnboardingBody, if not supplied everything works as before, if it is, this value is used. This lets us use the component as is without the wrapper approach in your pr, and allows any hypothetical future onboarding topic to work as expected, you can see that the useBodyConfig.ts, and OnboardingBody component unit tests are now unchanged (or will be). I also fixed the hash redirects in OnboardingRouter, so that old flows work perfectly, even in cypress tests, instead of creating a new url SIEM_MIGRATIONS_URL, we just use the old ${GET_STARTED_URL}/siem_migrations and everything works just like that. At that point the only thing in that pr is adding back , that was removed in this pr as that's what the mocks call for, that component not being in any page, but removing migrations from the onboarding config will break the card flows, and keeping it will render the tab selector, which is not desired and introduces weird url behavior. I toyed with adding a new boolean type to TopicConfig and using that for migrations only, but so many components rely on that shared config array, that I think just removing the component is the best way forward for now. If a new onboarding topic is needed, we can revisit this then, it's possible that never happens, in which case all of this doesn't matter, and with the wrapper approach, we now have duplicated logic that will likely need to be kept in sync for as long as onboarding and migrations exist with the same card based UX, migrations doesn't get the local storage support that repurposing onboarding does, and any local storage selections that currently exist, will work seamlessly with the redirect approach. Let me know what you think.

[elasticmachine]

💔 Build Failed

• Buildkite Build
• Commit: b6ac881

Failed CI Steps

• FTR Configs #52
• Investigations - Security Solution Cypress Tests #6
• Investigations - Security Solution Cypress Tests #6
• Serverless Investigations - Security Solution Cypress Tests #1
• Serverless Investigations - Security Solution Cypress Tests #1

Test Failures

• [job] [logs] FTR Configs #52 / Detection Engine - Exception workflows APIs @serverless @serverlessQA @ess rule exceptions execution creating rules with exceptions should be able to execute against an exception list that does include valid case sensitive entries and get back 0 alerts
• [job] [logs] Serverless Investigations - Security Solution Cypress Tests #1 / Rule Migrations - QRadar Basic Workflow "after all" hook for "should be able to create and start QRadar migrations" "after all" hook for "should be able to create and start QRadar migrations"
• [job] [logs] Serverless Investigations - Security Solution Cypress Tests #1 / Rule Migrations - QRadar Basic Workflow "after all" hook for "should be able to create and start QRadar migrations" "after all" hook for "should be able to create and start QRadar migrations"
• [job] [logs] Investigations - Security Solution Cypress Tests #6 / Rule Migrations - QRadar Basic Workflow "before all" hook for "should be able to create and start QRadar migrations" "before all" hook for "should be able to create and start QRadar migrations"
• [job] [logs] Serverless Investigations - Security Solution Cypress Tests #1 / Rule Migrations - QRadar Basic Workflow "before all" hook for "should be able to create and start QRadar migrations" "before all" hook for "should be able to create and start QRadar migrations"
• [job] [logs] Serverless Investigations - Security Solution Cypress Tests #1 / Rule Migrations - QRadar Basic Workflow "before all" hook for "should be able to create and start QRadar migrations" "before all" hook for "should be able to create and start QRadar migrations"
• [job] [logs] Investigations - Security Solution Cypress Tests #6 / Rule Migrations - QRadar Basic Workflow "before all" hook for "should be able to create and start QRadar migrations" "before all" hook for "should be able to create and start QRadar migrations"

Metrics [docs]

Module Count

Fewer modules leads to a faster build time

id	before	after	diff
securitySolution	9320	9305	-15

Async chunks

Total size of all lazy-loaded chunks that will be downloaded as the user navigates the app

id	before	after	diff
securitySolution	11.6MB	11.6MB	-23.7KB
streamsApp	1.9MB	1.9MB	+48.0B
total			-23.7KB

Page load bundle

Size of the bundles that are downloaded on every page load. Target size is below 100kb

id	before	after	diff
elasticAssistant	272.5KB	272.6KB	+48.0B
securitySolution	129.2KB	129.3KB	+77.0B
securitySolutionEss	36.2KB	36.3KB	+111.0B
securitySolutionServerless	48.2KB	48.3KB	+118.0B
total			+354.0B

Unknown metric groups

miscellaneous assets size

id	before	after	diff
securitySolution	4.8MB	4.8MB	-27.0KB

History

• 💔 Build #421023 failed 0864fd0
• 💔 Build #420122 failed 58270a6
• 💔 Build #419939 failed 0c35102

[logeekal]

Thanks @kqualters-elastic for addressing the feedback... this looks better as we not breaking existing code.