Skip to content

[CTI] Updates ECS mappings#97525

Closed
ecezalp wants to merge 5 commits intoelastic:masterfrom
ecezalp:security-team-995
Closed

[CTI] Updates ECS mappings#97525
ecezalp wants to merge 5 commits intoelastic:masterfrom
ecezalp:security-team-995

Conversation

@ecezalp
Copy link
Copy Markdown
Contributor

@ecezalp ecezalp commented Apr 19, 2021

Summary

This change brings 1.9 ECS mappings to the detection engine.

@ecezalp ecezalp added v7.13.0 release_note:feature Makes this part of the condensed release notes auto-backport Deprecated - use backport:version if exact versions are needed 7.13 candidate labels Apr 19, 2021
@ecezalp ecezalp requested review from a team and rylnd April 19, 2021 20:34
@ecezalp ecezalp self-assigned this Apr 19, 2021
ecezalp
ecezalp commented Apr 19, 2021
View reviewed changes
Comment thread x-pack/plugins/security_solution/server/lib/detection_engine/routes/index/ecs_mapping.json Outdated
Copy link
Copy Markdown
Contributor Author

@ecezalp ecezalp Apr 19, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

wasn't sure about this specific change, please confirm

ecezalp
ecezalp commented Apr 19, 2021
View reviewed changes
Comment thread x-pack/plugins/security_solution/server/lib/detection_engine/routes/index/ecs_mapping.json Outdated
Copy link
Copy Markdown
Contributor Author

@ecezalp ecezalp Apr 19, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

wasn't sure about this specific change, please confirm

rylnd
rylnd reviewed Apr 19, 2021
View reviewed changes
Copy link
Copy Markdown
Contributor

@rylnd rylnd left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Adding a snapshot test for getSignalsTemplate before making these changes, and then updating it after them will show us exactly what's changed with our mappings, and we'll also have an artifact to compare moving forward 👍

Comment thread ...k/plugins/security_solution/server/lib/detection_engine/routes/index/get_signals_template.ts Outdated
Copy link
Copy Markdown
Contributor

@rylnd rylnd Apr 19, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ottherMapping should only include threat.indicator fields, so I think we can simplify this merging of threat fields to:

threat: {
  ...ecsMapping.mappings.properties.threat,
  indicator: {
    ...otherMapping.threat.properties.indicator.properties,
    event: ecsMapping.mappings.properties.event,
  }
}

Copy link
Copy Markdown
Contributor Author

@ecezalp ecezalp Apr 19, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

hey I believe indicator must exist under threat.properties, so I think the prev version was better, let me know

Copy link
Copy Markdown
Contributor

@rylnd rylnd Apr 19, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Right, I neglected to add an intermediate properties key between threat and indicator, but I think the point still stands, no?

Comment thread ...k/plugins/security_solution/server/lib/detection_engine/routes/index/get_signals_template.ts Outdated
Comment on lines 48 to 54
Copy link
Copy Markdown
Contributor

@rylnd rylnd Apr 19, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This could be simplified to

Suggested change
as: otherMapping.as,
code_signature: otherMapping.code_signature,
geo: otherMapping.geo,
hash: otherMapping.hash,
interface: otherMapping.interface,
os: otherMapping.os,
pe: otherMapping.pe,
...otherMapping.mappings.properties

unless I'm misunderstanding?

Copy link
Copy Markdown
Contributor Author

@ecezalp ecezalp Apr 19, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

sure, was trying to be explicit but I guess it's not exactly necessary. renamed otherMapping to otherMappedProperties for additional clarification

@ecezalp ecezalp force-pushed the security-team-995 branch from 64ee743 to 532f64d Compare April 19, 2021 21:45
@ecezalp
Copy link
Copy Markdown
Contributor Author

ecezalp commented Apr 19, 2021

@elasticmachine merge upstream

@kibanamachine
Copy link
Copy Markdown
Contributor

kibanamachine commented Apr 19, 2021
edited
Loading

💔 Build Failed

Failed CI Steps

Test Failures

Kibana Pipeline / general / Chrome X-Pack UI Functional Tests.x-pack/test/functional/apps/dashboard/sync_colors·ts.dashboard sync colors should sync colors on dashboard by default

Link to Jenkins

Standard Out

Failed Tests Reporter:
  - Test has failed 2 times on tracked branches: https://github.com/elastic/kibana/issues/97403

[00:00:00]       │
[00:00:00]         └-: dashboard
[00:00:00]           └-> "before all" hook in "dashboard"
[00:19:32]           └-: sync colors
[00:19:32]             └-> "before all" hook for "should sync colors on dashboard by default"
[00:19:32]             └-> "before all" hook for "should sync colors on dashboard by default"
[00:19:32]               │ info [logstash_functional] Loading "mappings.json"
[00:19:32]               │ info [logstash_functional] Loading "data.json.gz"
[00:19:32]               │ info [logstash_functional] Skipped restore for existing index "logstash-2015.09.22"
[00:19:32]               │ info [logstash_functional] Skipped restore for existing index "logstash-2015.09.20"
[00:19:32]               │ info [logstash_functional] Skipped restore for existing index "logstash-2015.09.21"
[00:19:33]               │ info [lens/basic] Loading "mappings.json"
[00:19:33]               │ info [lens/basic] Loading "data.json"
[00:19:33]               │ info [lens/basic] Loading "data.json.gz"
[00:19:34]               │ info [o.e.c.m.MetadataDeleteIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_8.0.0_001/JXsItGewSJONZe_foJEaMw] deleting index
[00:19:34]               │ info [o.e.c.m.MetadataDeleteIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_pre6.5.0_001/7mFnxYLLRSytPKrVEDK5pg] deleting index
[00:19:34]               │ info [o.e.c.m.MetadataDeleteIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_task_manager_8.0.0_001/24eY3Ca9TXagetHrnTDa7A] deleting index
[00:19:34]               │ info [lens/basic] Deleted existing index ".kibana_8.0.0_001"
[00:19:34]               │ info [lens/basic] Deleted existing index ".kibana_task_manager_8.0.0_001"
[00:19:34]               │ info [lens/basic] Deleted existing index ".kibana_pre6.5.0_001"
[00:19:34]               │ info [o.e.c.m.MetadataCreateIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_1] creating index, cause [api], templates [], shards [1]/[0]
[00:19:34]               │ info [lens/basic] Created index ".kibana_1"
[00:19:34]               │ debg [lens/basic] ".kibana_1" settings {"index":{"auto_expand_replicas":"0-1","number_of_replicas":"0","number_of_shards":"1"}}
[00:19:34]               │ info [lens/basic] Indexed 24 docs into ".kibana_1"
[00:19:34]               │ debg Migrating saved objects
[00:19:34]               │ proc [kibana]   log   [23:35:51.861] [info][savedobjects-service] [.kibana_task_manager] INIT -> CREATE_NEW_TARGET. took: 8ms.
[00:19:34]               │ info [o.e.c.m.MetadataCreateIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_task_manager_8.0.0_001] creating index, cause [api], templates [], shards [1]/[1]
[00:19:34]               │ info [o.e.c.r.a.AllocationService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] updating number_of_replicas to [0] for indices [.kibana_task_manager_8.0.0_001]
[00:19:34]               │ proc [kibana]   log   [23:35:51.877] [info][savedobjects-service] [.kibana] INIT -> WAIT_FOR_YELLOW_SOURCE. took: 26ms.
[00:19:34]               │ proc [kibana]   log   [23:35:51.887] [info][savedobjects-service] [.kibana] WAIT_FOR_YELLOW_SOURCE -> SET_SOURCE_WRITE_BLOCK. took: 10ms.
[00:19:34]               │ info [o.e.c.m.MetadataIndexStateService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] adding block write to indices [[.kibana_1/CI3a6l4cRxOsnTRSShvAWw]]
[00:19:34]               │ info [o.e.c.m.MetadataIndexStateService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] completed adding block write to indices [.kibana_1]
[00:19:34]               │ proc [kibana]   log   [23:35:51.956] [info][savedobjects-service] [.kibana_task_manager] CREATE_NEW_TARGET -> MARK_VERSION_INDEX_READY. took: 96ms.
[00:19:34]               │ proc [kibana]   log   [23:35:51.978] [info][savedobjects-service] [.kibana] SET_SOURCE_WRITE_BLOCK -> CREATE_REINDEX_TEMP. took: 91ms.
[00:19:34]               │ proc [kibana]   log   [23:35:51.997] [info][savedobjects-service] [.kibana_task_manager] MARK_VERSION_INDEX_READY -> DONE. took: 41ms.
[00:19:34]               │ info [o.e.c.m.MetadataCreateIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_8.0.0_reindex_temp] creating index, cause [api], templates [], shards [1]/[1]
[00:19:34]               │ proc [kibana]   log   [23:35:51.998] [info][savedobjects-service] [.kibana_task_manager] Migration completed after 146ms
[00:19:34]               │ info [o.e.c.r.a.AllocationService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] updating number_of_replicas to [0] for indices [.kibana_8.0.0_reindex_temp]
[00:19:34]               │ proc [kibana]   log   [23:35:52.062] [info][savedobjects-service] [.kibana] CREATE_REINDEX_TEMP -> REINDEX_SOURCE_TO_TEMP. took: 84ms.
[00:19:34]               │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_8.0.0_reindex_temp/5mDl50QsRrW8oCogtcB_5Q] update_mapping [_doc]
[00:19:34]               │ proc [kibana]   log   [23:35:52.074] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP -> REINDEX_SOURCE_TO_TEMP_WAIT_FOR_TASK. took: 12ms.
[00:19:34]               │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_8.0.0_reindex_temp/5mDl50QsRrW8oCogtcB_5Q] update_mapping [_doc]
[00:19:34]               │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_8.0.0_reindex_temp/5mDl50QsRrW8oCogtcB_5Q] update_mapping [_doc]
[00:19:34]               │ info [o.e.t.LoggingTaskListener] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] 30554 finished with response BulkByScrollResponse[took=87.7ms,timed_out=false,sliceId=null,updated=0,created=12,deleted=0,batches=1,versionConflicts=0,noops=0,retries=0,throttledUntil=0s,bulk_failures=[],search_failures=[]]
[00:19:34]               │ proc [kibana]   log   [23:35:52.186] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP_WAIT_FOR_TASK -> SET_TEMP_WRITE_BLOCK. took: 112ms.
[00:19:34]               │ info [o.e.c.m.MetadataIndexStateService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] adding block write to indices [[.kibana_8.0.0_reindex_temp/5mDl50QsRrW8oCogtcB_5Q]]
[00:19:34]               │ info [o.e.c.m.MetadataIndexStateService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] completed adding block write to indices [.kibana_8.0.0_reindex_temp]
[00:19:34]               │ proc [kibana]   log   [23:35:52.236] [info][savedobjects-service] [.kibana] SET_TEMP_WRITE_BLOCK -> CLONE_TEMP_TO_TARGET. took: 50ms.
[00:19:34]               │ info [o.e.c.m.MetadataCreateIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] applying create index request using existing index [.kibana_8.0.0_reindex_temp] metadata
[00:19:34]               │ info [o.e.c.m.MetadataCreateIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_8.0.0_001] creating index, cause [clone_index], templates [], shards [1]/[1]
[00:19:34]               │ info [o.e.c.r.a.AllocationService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] updating number_of_replicas to [0] for indices [.kibana_8.0.0_001]
[00:19:34]               │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_8.0.0_001/FlEw6_jnRBqOAfkj3gOkYg] create_mapping
[00:19:34]               │ proc [kibana]   log   [23:35:52.346] [info][savedobjects-service] [.kibana] CLONE_TEMP_TO_TARGET -> OUTDATED_DOCUMENTS_SEARCH. took: 110ms.
[00:19:34]               │ proc [kibana]   log   [23:35:52.361] [info][savedobjects-service] [.kibana] OUTDATED_DOCUMENTS_SEARCH -> OUTDATED_DOCUMENTS_TRANSFORM. took: 15ms.
[00:19:34]               │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_8.0.0_001/FlEw6_jnRBqOAfkj3gOkYg] update_mapping [_doc]
[00:19:34]               │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_8.0.0_001/FlEw6_jnRBqOAfkj3gOkYg] update_mapping [_doc]
[00:19:35]               │ proc [kibana]   log   [23:35:53.283] [info][savedobjects-service] [.kibana] OUTDATED_DOCUMENTS_TRANSFORM -> OUTDATED_DOCUMENTS_SEARCH. took: 922ms.
[00:19:35]               │ proc [kibana]   log   [23:35:53.292] [info][savedobjects-service] [.kibana] OUTDATED_DOCUMENTS_SEARCH -> UPDATE_TARGET_MAPPINGS. took: 9ms.
[00:19:35]               │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_8.0.0_001/FlEw6_jnRBqOAfkj3gOkYg] update_mapping [_doc]
[00:19:35]               │ proc [kibana]   log   [23:35:53.347] [info][savedobjects-service] [.kibana] UPDATE_TARGET_MAPPINGS -> UPDATE_TARGET_MAPPINGS_WAIT_FOR_TASK. took: 55ms.
[00:19:35]               │ info [o.e.t.LoggingTaskListener] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] 30638 finished with response BulkByScrollResponse[took=25.8ms,timed_out=false,sliceId=null,updated=12,created=0,deleted=0,batches=1,versionConflicts=0,noops=0,retries=0,throttledUntil=0s,bulk_failures=[],search_failures=[]]
[00:19:35]               │ proc [kibana]   log   [23:35:53.459] [info][savedobjects-service] [.kibana] UPDATE_TARGET_MAPPINGS_WAIT_FOR_TASK -> MARK_VERSION_INDEX_READY. took: 112ms.
[00:19:35]               │ info [o.e.c.m.MetadataDeleteIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_8.0.0_reindex_temp/5mDl50QsRrW8oCogtcB_5Q] deleting index
[00:19:35]               │ proc [kibana]   log   [23:35:53.496] [info][savedobjects-service] [.kibana] MARK_VERSION_INDEX_READY -> DONE. took: 37ms.
[00:19:35]               │ proc [kibana]   log   [23:35:53.496] [info][savedobjects-service] [.kibana] Migration completed after 1645ms
[00:19:35]               │ debg [lens/basic] Migrated Kibana index after loading Kibana data
[00:19:35]               │ debg [lens/basic] Ensured that default space exists in .kibana
[00:19:35]               │ debg applying update to kibana config: {"accessibility:disableAnimations":true,"dateFormat:tz":"UTC","visualization:visualize:legacyChartsLibrary":true}
[00:19:37]               │ debg applying update to kibana config: {"accessibility:disableAnimations":true,"dateFormat:tz":"UTC","visualization:visualize:legacyChartsLibrary":true}
[00:19:38]             └-> should sync colors on dashboard by default
[00:19:38]               └-> "before each" hook: global before each for "should sync colors on dashboard by default"
[00:19:38]               │ debg navigating to dashboard url: http://localhost:6111/app/dashboards#/list
[00:19:38]               │ debg navigate to: http://localhost:6111/app/dashboards#/list
[00:19:38]               │ debg browser[INFO] http://localhost:6111/app/dashboards?_t=1618875356319#/list 341 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-P5polb1UreUSOe5V/Pv7tc+yeZuJXiOi/3fqhGsU7BE='), or a nonce ('nonce-...') is required to enable inline execution.
[00:19:38]               │
[00:19:38]               │ debg browser[INFO] http://localhost:6111/bootstrap.js 41:19 "^ A single error about an inline script not firing due to content security policy is expected!"
[00:19:38]               │ debg ... sleep(700) start
[00:19:39]               │ debg ... sleep(700) end
[00:19:39]               │ debg returned from get, calling refresh
[00:19:40]               │ERROR browser[SEVERE] http://localhost:6111/42190/bundles/core/core.entry.js 12:150657 TypeError: Failed to fetch
[00:19:40]               │          at fetch_Fetch.fetchResponse (http://localhost:6111/42190/bundles/core/core.entry.js:6:26193)
[00:19:40]               │          at async http://localhost:6111/42190/bundles/core/core.entry.js:6:24090
[00:19:40]               │          at async http://localhost:6111/42190/bundles/core/core.entry.js:6:23996
[00:19:40]               │ debg browser[INFO] http://localhost:6111/app/dashboards?_t=1618875356319#/list 341 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-P5polb1UreUSOe5V/Pv7tc+yeZuJXiOi/3fqhGsU7BE='), or a nonce ('nonce-...') is required to enable inline execution.
[00:19:40]               │
[00:19:40]               │ debg browser[INFO] http://localhost:6111/bootstrap.js 41:19 "^ A single error about an inline script not firing due to content security policy is expected!"
[00:19:40]               │ debg currentUrl = http://localhost:6111/app/dashboards#/list
[00:19:40]               │          appUrl = http://localhost:6111/app/dashboards#/list
[00:19:40]               │ debg TestSubjects.find(kibanaChrome)
[00:19:40]               │ debg Find.findByCssSelector('[data-test-subj="kibanaChrome"]') with timeout=60000
[00:19:41]               │ debg ... sleep(501) start
[00:19:41]               │ debg ... sleep(501) end
[00:19:41]               │ debg in navigateTo url = http://localhost:6111/app/dashboards#/list?_g=(filters:!(),refreshInterval:(pause:!t,value:0),time:(from:now-15m,to:now))
[00:19:41]               │ debg TestSubjects.exists(statusPageContainer)
[00:19:41]               │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="statusPageContainer"]') with timeout=2500
[00:19:44]               │ debg --- retry.tryForTime error: [data-test-subj="statusPageContainer"] is not displayed
[00:19:44]               │ debg TestSubjects.click(createDashboardPromptButton)
[00:19:44]               │ debg Find.clickByCssSelector('[data-test-subj="createDashboardPromptButton"]') with timeout=10000
[00:19:44]               │ debg Find.findByCssSelector('[data-test-subj="createDashboardPromptButton"]') with timeout=10000
[00:19:44]               │ debg DashboardAddPanel.clickAddNewPanelButton
[00:19:44]               │ debg TestSubjects.click(dashboardAddNewPanelButton)
[00:19:44]               │ debg Find.clickByCssSelector('[data-test-subj="dashboardAddNewPanelButton"]') with timeout=10000
[00:19:44]               │ debg Find.findByCssSelector('[data-test-subj="dashboardAddNewPanelButton"]') with timeout=10000
[00:19:45]               │ debg ... sleep(500) start
[00:19:45]               │ debg ... sleep(500) end
[00:19:45]               │ debg isGlobalLoadingIndicatorVisible
[00:19:45]               │ debg TestSubjects.exists(globalLoadingIndicator)
[00:19:45]               │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="globalLoadingIndicator"]') with timeout=1500
[00:19:45]               │ debg TestSubjects.exists(globalLoadingIndicator-hidden)
[00:19:45]               │ debg Find.existsByCssSelector('[data-test-subj="globalLoadingIndicator-hidden"]') with timeout=100000
[00:19:46]               │ debg lensPage.goToTimeRange()
[00:19:46]               │ debg TestSubjects.exists(noDataPopoverDismissButton)
[00:19:46]               │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="noDataPopoverDismissButton"]') with timeout=2500
[00:19:48]               │ debg --- retry.tryForTime error: [data-test-subj="noDataPopoverDismissButton"] is not displayed
[00:19:49]               │ debg Setting absolute range to Sep 19, 2015 @ 06:31:44.000 to Sep 23, 2015 @ 18:31:44.000
[00:19:49]               │ debg TestSubjects.exists(superDatePickerToggleQuickMenuButton)
[00:19:49]               │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="superDatePickerToggleQuickMenuButton"]') with timeout=20000
[00:19:49]               │ debg TestSubjects.exists(superDatePickerShowDatesButton)
[00:19:49]               │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="superDatePickerShowDatesButton"]') with timeout=2500
[00:19:49]               │ debg TestSubjects.click(superDatePickerShowDatesButton)
[00:19:49]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerShowDatesButton"]') with timeout=10000
[00:19:49]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerShowDatesButton"]') with timeout=10000
[00:19:49]               │ debg TestSubjects.exists(superDatePickerstartDatePopoverButton)
[00:19:49]               │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="superDatePickerstartDatePopoverButton"]') with timeout=2500
[00:19:49]               │ debg TestSubjects.click(superDatePickerendDatePopoverButton)
[00:19:49]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerendDatePopoverButton"]') with timeout=10000
[00:19:49]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerendDatePopoverButton"]') with timeout=10000
[00:19:49]               │ debg Find.findByCssSelector('div.euiPopover__panel-isOpen') with timeout=10000
[00:19:49]               │ debg TestSubjects.click(superDatePickerAbsoluteTab)
[00:19:49]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerAbsoluteTab"]') with timeout=10000
[00:19:49]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerAbsoluteTab"]') with timeout=10000
[00:19:49]               │ debg TestSubjects.click(superDatePickerAbsoluteDateInput)
[00:19:49]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:19:49]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:19:49]               │ debg TestSubjects.setValue(superDatePickerAbsoluteDateInput, Sep 23, 2015 @ 18:31:44.000)
[00:19:49]               │ debg TestSubjects.click(superDatePickerAbsoluteDateInput)
[00:19:49]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:19:49]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:19:50]               │ debg TestSubjects.click(superDatePickerstartDatePopoverButton)
[00:19:50]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerstartDatePopoverButton"]') with timeout=10000
[00:19:50]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerstartDatePopoverButton"]') with timeout=10000
[00:19:50]               │ debg Find.waitForElementStale with timeout=10000
[00:19:50]               │ debg Find.findByCssSelector('div.euiPopover__panel-isOpen') with timeout=10000
[00:19:50]               │ debg TestSubjects.click(superDatePickerAbsoluteTab)
[00:19:50]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerAbsoluteTab"]') with timeout=10000
[00:19:50]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerAbsoluteTab"]') with timeout=10000
[00:19:50]               │ debg TestSubjects.click(superDatePickerAbsoluteDateInput)
[00:19:50]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:19:50]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:19:50]               │ debg TestSubjects.setValue(superDatePickerAbsoluteDateInput, Sep 19, 2015 @ 06:31:44.000)
[00:19:50]               │ debg TestSubjects.click(superDatePickerAbsoluteDateInput)
[00:19:50]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:19:50]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:19:51]               │ debg TestSubjects.exists(superDatePickerApplyTimeButton)
[00:19:51]               │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="superDatePickerApplyTimeButton"]') with timeout=2500
[00:19:53]               │ debg --- retry.tryForTime error: [data-test-subj="superDatePickerApplyTimeButton"] is not displayed
[00:19:54]               │ debg TestSubjects.click(querySubmitButton)
[00:19:54]               │ debg Find.clickByCssSelector('[data-test-subj="querySubmitButton"]') with timeout=10000
[00:19:54]               │ debg Find.findByCssSelector('[data-test-subj="querySubmitButton"]') with timeout=10000
[00:19:54]               │ debg Find.waitForElementStale with timeout=10000
[00:19:54]               │ debg TestSubjects.exists(globalLoadingIndicator-hidden)
[00:19:54]               │ debg Find.existsByCssSelector('[data-test-subj="globalLoadingIndicator-hidden"]') with timeout=100000
[00:19:54]               │ debg lensPage.configureDimension([object Object])
[00:19:54]               │ debg TestSubjects.click(lns-layerPanel-0 > lnsXY_yDimensionPanel > lns-empty-dimension)
[00:19:54]               │ debg Find.clickByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:19:54]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:20:04]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:20:04]               │      Wait timed out after 10028ms
[00:20:05]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:20:15]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:20:15]               │      Wait timed out after 10054ms
[00:20:15]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:20:25]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:20:25]               │      Wait timed out after 10042ms
[00:20:26]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:20:36]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:20:36]               │      Wait timed out after 10009ms
[00:20:36]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:20:46]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:20:46]               │      Wait timed out after 10027ms
[00:20:47]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:20:57]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:20:57]               │      Wait timed out after 10008ms
[00:20:57]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:21:07]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:21:07]               │      Wait timed out after 10026ms
[00:21:08]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:21:18]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:21:18]               │      Wait timed out after 10012ms
[00:21:18]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:21:28]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:21:28]               │      Wait timed out after 10024ms
[00:21:29]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:21:39]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:21:39]               │      Wait timed out after 10009ms
[00:21:39]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:21:49]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:21:49]               │      Wait timed out after 10021ms
[00:21:50]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:22:00]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:22:00]               │      Wait timed out after 10020ms
[00:22:00]               │ debg --- retry.try error: retry.try timeout: TimeoutError: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:22:00]               │      Wait timed out after 10020ms
[00:22:00]               │          at /dev/shm/workspace/parallel/1/kibana/node_modules/selenium-webdriver/lib/webdriver.js:842:17
[00:22:00]               │          at runMicrotasks (<anonymous>)
[00:22:00]               │          at processTicksAndRejections (internal/process/task_queues.js:93:5)
[00:22:01]               │ info Taking screenshot "/dev/shm/workspace/parallel/1/kibana/x-pack/test/functional/screenshots/failure/dashboard sync colors should sync colors on dashboard by default.png"
[00:22:01]               │ info Current URL is: http://localhost:6111/app/dashboards#/create?_g=(filters:!(),refreshInterval:(pause:!t,value:0),time:(from:%272015-09-19T06:31:44.000Z%27,to:%272015-09-23T18:31:44.000Z%27))&_a=(description:%27%27,filters:!(),fullScreenMode:!f,options:(hidePanelTitles:!f,useMargins:!t),query:(language:kuery,query:%27%27),tags:!(),timeRestore:!f,title:%27%27,viewMode:edit)
[00:22:01]               │ info Saving page source to: /dev/shm/workspace/parallel/1/kibana/x-pack/test/functional/failure_debug/html/dashboard sync colors should sync colors on dashboard by default.html
[00:22:01]               └- ✖ fail: dashboard sync colors should sync colors on dashboard by default
[00:22:01]               │      retry.try timeout: Error: retry.try timeout: TimeoutError: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:22:01]               │ Wait timed out after 10020ms
[00:22:01]               │     at /dev/shm/workspace/parallel/1/kibana/node_modules/selenium-webdriver/lib/webdriver.js:842:17
[00:22:01]               │     at runMicrotasks (<anonymous>)
[00:22:01]               │     at processTicksAndRejections (internal/process/task_queues.js:93:5)
[00:22:01]               │     at onFailure (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:17:9)
[00:22:01]               │     at retryForSuccess (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:57:13)
[00:22:01]               │     at Retry.try (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry.ts:32:14)
[00:22:01]               │     at Proxy.clickByCssSelector (/dev/shm/workspace/parallel/1/kibana/test/functional/services/common/find.ts:420:7)
[00:22:01]               │     at TestSubjects.click (/dev/shm/workspace/parallel/1/kibana/test/functional/services/common/test_subjects.ts:109:7)
[00:22:01]               │     at /dev/shm/workspace/parallel/1/kibana/x-pack/test/functional/page_objects/lens_page.ts:114:9
[00:22:01]               │     at runAttempt (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:27:15)
[00:22:01]               │     at retryForSuccess (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:66:21)
[00:22:01]               │     at Retry.try (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry.ts:32:14)
[00:22:01]               │     at Object.configureDimension (/dev/shm/workspace/parallel/1/kibana/x-pack/test/functional/page_objects/lens_page.ts:113:7)
[00:22:01]               │     at Context.<anonymous> (/dev/shm/workspace/parallel/1/kibana/x-pack/test/functional/apps/dashboard/sync_colors.ts:55:7)
[00:22:01]               │     at Object.apply (/dev/shm/workspace/parallel/1/kibana/node_modules/@kbn/test/src/functional_test_runner/lib/mocha/wrap_function.js:73:16)
[00:22:01]               │   Error: retry.try timeout: Error: retry.try timeout: TimeoutError: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:22:01]               │   Wait timed out after 10020ms
[00:22:01]               │       at /dev/shm/workspace/parallel/1/kibana/node_modules/selenium-webdriver/lib/webdriver.js:842:17
[00:22:01]               │       at runMicrotasks (<anonymous>)
[00:22:01]               │       at processTicksAndRejections (internal/process/task_queues.js:93:5)
[00:22:01]               │       at onFailure (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:17:9)
[00:22:01]               │       at retryForSuccess (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:57:13)
[00:22:01]               │       at Retry.try (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry.ts:32:14)
[00:22:01]               │       at Proxy.clickByCssSelector (/dev/shm/workspace/parallel/1/kibana/test/functional/services/common/find.ts:420:7)
[00:22:01]               │       at TestSubjects.click (/dev/shm/workspace/parallel/1/kibana/test/functional/services/common/test_subjects.ts:109:7)
[00:22:01]               │       at /dev/shm/workspace/parallel/1/kibana/x-pack/test/functional/page_objects/lens_page.ts:114:9
[00:22:01]               │       at runAttempt (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:27:15)
[00:22:01]               │       at retryForSuccess (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:66:21)
[00:22:01]               │       at Retry.try (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry.ts:32:14)
[00:22:01]               │       at Object.configureDimension (test/functional/page_objects/lens_page.ts:113:7)
[00:22:01]               │       at Context.<anonymous> (test/functional/apps/dashboard/sync_colors.ts:55:7)
[00:22:01]               │       at Object.apply (/dev/shm/workspace/parallel/1/kibana/node_modules/@kbn/test/src/functional_test_runner/lib/mocha/wrap_function.js:73:16)
[00:22:01]               │       at onFailure (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:17:9)
[00:22:01]               │       at retryForSuccess (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:57:13)
[00:22:01]               │       at Retry.try (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry.ts:32:14)
[00:22:01]               │       at Object.configureDimension (test/functional/page_objects/lens_page.ts:113:7)
[00:22:01]               │       at Context.<anonymous> (test/functional/apps/dashboard/sync_colors.ts:55:7)
[00:22:01]               │       at Object.apply (/dev/shm/workspace/parallel/1/kibana/node_modules/@kbn/test/src/functional_test_runner/lib/mocha/wrap_function.js:73:16)
[00:22:01]               │ 
[00:22:01]               │

Stack Trace

Error: retry.try timeout: Error: retry.try timeout: TimeoutError: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
Wait timed out after 10020ms
    at /dev/shm/workspace/parallel/1/kibana/node_modules/selenium-webdriver/lib/webdriver.js:842:17
    at runMicrotasks (<anonymous>)
    at processTicksAndRejections (internal/process/task_queues.js:93:5)
    at onFailure (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:17:9)
    at retryForSuccess (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:57:13)
    at Retry.try (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry.ts:32:14)
    at Proxy.clickByCssSelector (/dev/shm/workspace/parallel/1/kibana/test/functional/services/common/find.ts:420:7)
    at TestSubjects.click (/dev/shm/workspace/parallel/1/kibana/test/functional/services/common/test_subjects.ts:109:7)
    at /dev/shm/workspace/parallel/1/kibana/x-pack/test/functional/page_objects/lens_page.ts:114:9
    at runAttempt (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:27:15)
    at retryForSuccess (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:66:21)
    at Retry.try (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry.ts:32:14)
    at Object.configureDimension (test/functional/page_objects/lens_page.ts:113:7)
    at Context.<anonymous> (test/functional/apps/dashboard/sync_colors.ts:55:7)
    at Object.apply (/dev/shm/workspace/parallel/1/kibana/node_modules/@kbn/test/src/functional_test_runner/lib/mocha/wrap_function.js:73:16)
    at onFailure (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:17:9)
    at retryForSuccess (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry_for_success.ts:57:13)
    at Retry.try (/dev/shm/workspace/parallel/1/kibana/test/common/services/retry/retry.ts:32:14)
    at Object.configureDimension (test/functional/page_objects/lens_page.ts:113:7)
    at Context.<anonymous> (test/functional/apps/dashboard/sync_colors.ts:55:7)
    at Object.apply (/dev/shm/workspace/parallel/1/kibana/node_modules/@kbn/test/src/functional_test_runner/lib/mocha/wrap_function.js:73:16)
Kibana Pipeline / general / X-Pack Detection Engine API Integration Tests.x-pack/test/detection_engine_api_integration/security_and_spaces/tests/add_actions·ts.detection engine api security and spaces enabled add_actions adding actions should be able to create a new webhook action and attach it to a rule

Link to Jenkins

Standard Out

Failed Tests Reporter:
  - Test has failed 1 times on tracked branches: https://dryrun

[00:00:00]       │
[00:00:00]         └-: detection engine api security and spaces enabled
[00:00:00]           └-> "before all" hook in "detection engine api security and spaces enabled"
[00:00:00]           └-: 
[00:00:00]             └-> "before all" hook in ""
[00:00:00]             └-: add_actions
[00:00:00]               └-> "before all" hook in "add_actions"
[00:00:00]               └-: adding actions
[00:00:00]                 └-> "before all" hook for "should be able to create a new webhook action and attach it to a rule"
[00:00:00]                 └-> should be able to create a new webhook action and attach it to a rule
[00:00:00]                   └-> "before each" hook: global before each for "should be able to create a new webhook action and attach it to a rule"
[00:00:00]                   └-> "before each" hook for "should be able to create a new webhook action and attach it to a rule"
[00:00:00]                     │ info [auditbeat/hosts] Loading "mappings.json"
[00:00:00]                     │ info [auditbeat/hosts] Loading "data.json.gz"
[00:00:00]                     │ info [o.e.c.m.MetadataCreateIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [auditbeat-8.0.0-2019.02.19-000001] creating index, cause [api], templates [], shards [1]/[1]
[00:00:00]                     │ info [auditbeat/hosts] Created index "auditbeat-8.0.0-2019.02.19-000001"
[00:00:00]                     │ debg [auditbeat/hosts] "auditbeat-8.0.0-2019.02.19-000001" settings {"index":{"lifecycle":{"name":"auditbeat-8.0.0","rollover_alias":"auditbeat-8.0.0"},"mapping":{"total_fields":{"limit":"10000"}},"number_of_replicas":"1","number_of_shards":"1","query":{"default_field":["tags","message","agent.version","agent.name","agent.type","agent.id","agent.ephemeral_id","client.address","client.mac","client.domain","client.geo.continent_name","client.geo.country_name","client.geo.region_name","client.geo.city_name","client.geo.country_iso_code","client.geo.region_iso_code","client.geo.name","cloud.provider","cloud.availability_zone","cloud.region","cloud.instance.id","cloud.instance.name","cloud.machine.type","cloud.account.id","container.runtime","container.id","container.image.name","container.image.tag","container.name","destination.address","destination.mac","destination.domain","destination.geo.continent_name","destination.geo.country_name","destination.geo.region_name","destination.geo.city_name","destination.geo.country_iso_code","destination.geo.region_iso_code","destination.geo.name","ecs.version","error.id","error.message","error.code","event.id","event.kind","event.category","event.action","event.outcome","event.type","event.module","event.dataset","event.hash","event.timezone","file.path","file.target_path","file.extension","file.type","file.device","file.inode","file.uid","file.owner","file.gid","file.group","file.mode","group.id","group.name","host.hostname","host.name","host.id","host.mac","host.type","host.architecture","host.os.platform","host.os.name","host.os.full","host.os.family","host.os.version","host.os.kernel","host.geo.continent_name","host.geo.country_name","host.geo.region_name","host.geo.city_name","host.geo.country_iso_code","host.geo.region_iso_code","host.geo.name","http.request.method","http.request.body.content","http.request.referrer","http.response.body.content","http.version","log.level","network.name","network.type","network.iana_number","network.transport","network.application","network.protocol","network.direction","network.community_id","observer.mac","observer.hostname","observer.vendor","observer.version","observer.serial_number","observer.type","observer.os.platform","observer.os.name","observer.os.full","observer.os.family","observer.os.version","observer.os.kernel","observer.geo.continent_name","observer.geo.country_name","observer.geo.region_name","observer.geo.city_name","observer.geo.country_iso_code","observer.geo.region_iso_code","observer.geo.name","organization.name","organization.id","os.platform","os.name","os.full","os.family","os.version","os.kernel","process.name","process.args","process.executable","process.title","process.working_directory","server.address","server.mac","server.domain","server.geo.continent_name","server.geo.country_name","server.geo.region_name","server.geo.city_name","server.geo.country_iso_code","server.geo.region_iso_code","server.geo.name","service.id","service.name","service.type","service.state","service.version","service.ephemeral_id","source.address","source.mac","source.domain","source.geo.continent_name","source.geo.country_name","source.geo.region_name","source.geo.city_name","source.geo.country_iso_code","source.geo.region_iso_code","source.geo.name","url.original","url.full","url.scheme","url.domain","url.path","url.query","url.fragment","url.username","url.password","user.id","user.name","user.full_name","user.email","user.hash","user.group.id","user.group.name","user_agent.original","user_agent.name","user_agent.version","user_agent.device.name","user_agent.os.platform","user_agent.os.name","user_agent.os.full","user_agent.os.family","user_agent.os.version","user_agent.os.kernel","agent.hostname","error.type","cloud.project.id","kubernetes.pod.name","kubernetes.pod.uid","kubernetes.namespace","kubernetes.node.name","kubernetes.container.name","kubernetes.container.image","file.origin","raw","file.selinux.user","file.selinux.role","file.selinux.domain","file.selinux.level","user.audit.id","user.audit.name","user.effective.id","user.effective.name","user.effective.group.id","user.effective.group.name","user.filesystem.id","user.filesystem.name","user.filesystem.group.id","user.filesystem.group.name","user.saved.id","user.saved.name","user.saved.group.id","user.saved.group.name","user.selinux.user","user.selinux.role","user.selinux.domain","user.selinux.level","user.selinux.category","source.path","destination.path","auditd.message_type","auditd.session","auditd.result","auditd.summary.actor.primary","auditd.summary.actor.secondary","auditd.summary.object.type","auditd.summary.object.primary","auditd.summary.object.secondary","auditd.summary.how","auditd.paths.inode","auditd.paths.dev","auditd.paths.obj_user","auditd.paths.obj_role","auditd.paths.obj_domain","auditd.paths.obj_level","auditd.paths.objtype","auditd.paths.ouid","auditd.paths.rdev","auditd.paths.nametype","auditd.paths.ogid","auditd.paths.item","auditd.paths.mode","auditd.paths.name","auditd.data.action","auditd.data.minor","auditd.data.acct","auditd.data.addr","auditd.data.cipher","auditd.data.id","auditd.data.entries","auditd.data.kind","auditd.data.ksize","auditd.data.spid","auditd.data.arch","auditd.data.argc","auditd.data.major","auditd.data.unit","auditd.data.table","auditd.data.terminal","auditd.data.grantors","auditd.data.direction","auditd.data.op","auditd.data.tty","auditd.data.syscall","auditd.data.data","auditd.data.family","auditd.data.mac","auditd.data.pfs","auditd.data.items","auditd.data.a0","auditd.data.a1","auditd.data.a2","auditd.data.a3","auditd.data.hostname","auditd.data.lport","auditd.data.rport","auditd.data.exit","auditd.data.fp","auditd.data.laddr","auditd.data.sport","auditd.data.capability","auditd.data.nargs","auditd.data.new-enabled","auditd.data.audit_backlog_limit","auditd.data.dir","auditd.data.cap_pe","auditd.data.model","auditd.data.new_pp","auditd.data.old-enabled","auditd.data.oauid","auditd.data.old","auditd.data.banners","auditd.data.feature","auditd.data.vm-ctx","auditd.data.opid","auditd.data.seperms","auditd.data.seresult","auditd.data.new-rng","auditd.data.old-net","auditd.data.sigev_signo","auditd.data.ino","auditd.data.old_enforcing","auditd.data.old-vcpu","auditd.data.range","auditd.data.res","auditd.data.added","auditd.data.fam","auditd.data.nlnk-pid","auditd.data.subj","auditd.data.a[0-3]","auditd.data.cgroup","auditd.data.kernel","auditd.data.ocomm","auditd.data.new-net","auditd.data.permissive","auditd.data.class","auditd.data.compat","auditd.data.fi","auditd.data.changed","auditd.data.msg","auditd.data.dport","auditd.data.new-seuser","auditd.data.invalid_context","auditd.data.dmac","auditd.data.ipx-net","auditd.data.iuid","auditd.data.macproto","auditd.data.obj","auditd.data.ipid","auditd.data.new-fs","auditd.data.vm-pid","auditd.data.cap_pi","auditd.data.old-auid","auditd.data.oses","auditd.data.fd","auditd.data.igid","auditd.data.new-disk","auditd.data.parent","auditd.data.len","auditd.data.oflag","auditd.data.uuid","auditd.data.code","auditd.data.nlnk-grp","auditd.data.cap_fp","auditd.data.new-mem","auditd.data.seperm","auditd.data.enforcing","auditd.data.new-chardev","auditd.data.old-rng","auditd.data.outif","auditd.data.cmd","auditd.data.hook","auditd.data.new-level","auditd.data.sauid","auditd.data.sig","auditd.data.audit_backlog_wait_time","auditd.data.printer","auditd.data.old-mem","auditd.data.perm","auditd.data.old_pi","auditd.data.state","auditd.data.format","auditd.data.new_gid","auditd.data.tcontext","auditd.data.maj","auditd.data.watch","auditd.data.device","auditd.data.grp","auditd.data.bool","auditd.data.icmp_type","auditd.data.new_lock","auditd.data.old_prom","auditd.data.acl","auditd.data.ip","auditd.data.new_pi","auditd.data.default-context","auditd.data.inode_gid","auditd.data.new-log_passwd","auditd.data.new_pe","auditd.data.selected-context","auditd.data.cap_fver","auditd.data.file","auditd.data.net","auditd.data.virt","auditd.data.cap_pp","auditd.data.old-range","auditd.data.resrc","auditd.data.new-range","auditd.data.obj_gid","auditd.data.proto","auditd.data.old-disk","auditd.data.audit_failure","auditd.data.inif","auditd.data.vm","auditd.data.flags","auditd.data.nlnk-fam","auditd.data.old-fs","auditd.data.old-ses","auditd.data.seqno","auditd.data.fver","auditd.data.qbytes","auditd.data.seuser","auditd.data.cap_fe","auditd.data.new-vcpu","auditd.data.old-level","auditd.data.old_pp","auditd.data.daddr","auditd.data.old-role","auditd.data.ioctlcmd","auditd.data.smac","auditd.data.apparmor","auditd.data.fe","auditd.data.perm_mask","auditd.data.ses","auditd.data.cap_fi","auditd.data.obj_uid","auditd.data.reason","auditd.data.list","auditd.data.old_lock","auditd.data.bus","auditd.data.old_pe","auditd.data.new-role","auditd.data.prom","auditd.data.uri","auditd.data.audit_enabled","auditd.data.old-log_passwd","auditd.data.old-seuser","auditd.data.per","auditd.data.scontext","auditd.data.tclass","auditd.data.ver","auditd.data.new","auditd.data.val","auditd.data.img-ctx","auditd.data.old-chardev","auditd.data.old_val","auditd.data.success","auditd.data.inode_uid","auditd.data.removed","auditd.data.socket.port","auditd.data.socket.saddr","auditd.data.socket.addr","auditd.data.socket.family","auditd.data.socket.path","geoip.continent_name","geoip.city_name","geoip.region_name","geoip.country_iso_code","hash.blake2b_256","hash.blake2b_384","hash.blake2b_512","hash.md5","hash.sha1","hash.sha224","hash.sha256","hash.sha384","hash.sha3_224","hash.sha3_256","hash.sha3_384","hash.sha3_512","hash.sha512","hash.sha512_224","hash.sha512_256","hash.xxh64","event.origin","user.entity_id","user.terminal","process.entity_id","socket.entity_id","system.audit.host.timezone.name","system.audit.host.hostname","system.audit.host.id","system.audit.host.architecture","system.audit.host.mac","system.audit.host.os.platform","system.audit.host.os.name","system.audit.host.os.family","system.audit.host.os.version","system.audit.host.os.kernel","system.audit.package.entity_id","system.audit.package.name","system.audit.package.version","system.audit.package.release","system.audit.package.arch","system.audit.package.license","system.audit.package.summary","system.audit.package.url","system.audit.user.name","system.audit.user.uid","system.audit.user.gid","system.audit.user.dir","system.audit.user.shell","system.audit.user.user_information","system.audit.user.password.type","fields.*"]},"refresh_interval":"5s"}}
[00:00:01]                     │ info [o.e.c.m.MetadataCreateIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [winlogbeat-8.0.0-2019.02.19-000001] creating index, cause [auto(bulk api)], templates [], shards [1]/[1]
[00:00:01]                     │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [winlogbeat-8.0.0-2019.02.19-000001/GfUF9YJCQuud1ZyuvwTSMQ] create_mapping
[00:00:01]                     │ info [auditbeat/hosts] Indexed 1751 docs into "auditbeat-8.0.0-2019.02.19-000001"
[00:00:01]                     │ info [auditbeat/hosts] Indexed 1 docs into "winlogbeat-8.0.0-2019.02.19-000001"
[00:00:01]                     │ info [o.e.x.i.a.TransportPutLifecycleAction] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] adding index lifecycle policy [.siem-signals-default-migration-cleanup]
[00:00:01]                     │ info [o.e.x.i.a.TransportPutLifecycleAction] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] adding index lifecycle policy [.siem-signals-default]
[00:00:01]                   │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_8.0.0_001/ZoKA1iMbTSyA8PtmZJ7Czg] update_mapping [_doc]
[00:00:04]                   └- ✖ fail: detection engine api security and spaces enabled  add_actions adding actions should be able to create a new webhook action and attach it to a rule
[00:00:04]                   │      Error: expected 200 "OK", got 400 "Bad Request"
[00:00:04]                   │       at Test._assertStatus (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:268:12)
[00:00:04]                   │       at Test._assertFunction (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:283:11)
[00:00:04]                   │       at Test.assert (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:173:18)
[00:00:04]                   │       at assert (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:131:12)
[00:00:04]                   │       at /dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:128:5
[00:00:04]                   │       at Test.Request.callback (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/node_modules/superagent/lib/node/index.js:718:3)
[00:00:04]                   │       at /dev/shm/workspace/parallel/11/kibana/node_modules/supertest/node_modules/superagent/lib/node/index.js:906:18
[00:00:04]                   │       at IncomingMessage.<anonymous> (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/node_modules/superagent/lib/node/parsers/json.js:19:7)
[00:00:04]                   │       at endReadableNT (internal/streams/readable.js:1327:12)
[00:00:04]                   │       at processTicksAndRejections (internal/process/task_queues.js:80:21)
[00:00:04]                   │ 
[00:00:04]                   │

Stack Trace

Error: expected 200 "OK", got 400 "Bad Request"
    at Test._assertStatus (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:268:12)
    at Test._assertFunction (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:283:11)
    at Test.assert (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:173:18)
    at assert (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:131:12)
    at /dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:128:5
    at Test.Request.callback (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/node_modules/superagent/lib/node/index.js:718:3)
    at /dev/shm/workspace/parallel/11/kibana/node_modules/supertest/node_modules/superagent/lib/node/index.js:906:18
    at IncomingMessage.<anonymous> (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/node_modules/superagent/lib/node/parsers/json.js:19:7)
    at endReadableNT (internal/streams/readable.js:1327:12)
    at processTicksAndRejections (internal/process/task_queues.js:80:21)
Kibana Pipeline / general / X-Pack Detection Engine API Integration Tests.x-pack/test/detection_engine_api_integration/security_and_spaces/tests/add_actions·ts.detection engine api security and spaces enabled add_actions adding actions should be able to create a new webhook action and attach it to a rule

Link to Jenkins

Standard Out

Failed Tests Reporter:
  - Test has not failed recently on tracked branches

[00:00:00]       │
[00:00:00]         └-: detection engine api security and spaces enabled
[00:00:00]           └-> "before all" hook in "detection engine api security and spaces enabled"
[00:00:00]           └-: 
[00:00:00]             └-> "before all" hook in ""
[00:00:00]             └-: add_actions
[00:00:00]               └-> "before all" hook in "add_actions"
[00:00:00]               └-: adding actions
[00:00:00]                 └-> "before all" hook for "should be able to create a new webhook action and attach it to a rule"
[00:00:00]                 └-> should be able to create a new webhook action and attach it to a rule
[00:00:00]                   └-> "before each" hook: global before each for "should be able to create a new webhook action and attach it to a rule"
[00:00:00]                   └-> "before each" hook for "should be able to create a new webhook action and attach it to a rule"
[00:00:00]                     │ info [auditbeat/hosts] Loading "mappings.json"
[00:00:00]                     │ info [auditbeat/hosts] Loading "data.json.gz"
[00:00:00]                     │ info [o.e.c.m.MetadataCreateIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [auditbeat-8.0.0-2019.02.19-000001] creating index, cause [api], templates [], shards [1]/[1]
[00:00:00]                     │ info [auditbeat/hosts] Created index "auditbeat-8.0.0-2019.02.19-000001"
[00:00:00]                     │ debg [auditbeat/hosts] "auditbeat-8.0.0-2019.02.19-000001" settings {"index":{"lifecycle":{"name":"auditbeat-8.0.0","rollover_alias":"auditbeat-8.0.0"},"mapping":{"total_fields":{"limit":"10000"}},"number_of_replicas":"1","number_of_shards":"1","query":{"default_field":["tags","message","agent.version","agent.name","agent.type","agent.id","agent.ephemeral_id","client.address","client.mac","client.domain","client.geo.continent_name","client.geo.country_name","client.geo.region_name","client.geo.city_name","client.geo.country_iso_code","client.geo.region_iso_code","client.geo.name","cloud.provider","cloud.availability_zone","cloud.region","cloud.instance.id","cloud.instance.name","cloud.machine.type","cloud.account.id","container.runtime","container.id","container.image.name","container.image.tag","container.name","destination.address","destination.mac","destination.domain","destination.geo.continent_name","destination.geo.country_name","destination.geo.region_name","destination.geo.city_name","destination.geo.country_iso_code","destination.geo.region_iso_code","destination.geo.name","ecs.version","error.id","error.message","error.code","event.id","event.kind","event.category","event.action","event.outcome","event.type","event.module","event.dataset","event.hash","event.timezone","file.path","file.target_path","file.extension","file.type","file.device","file.inode","file.uid","file.owner","file.gid","file.group","file.mode","group.id","group.name","host.hostname","host.name","host.id","host.mac","host.type","host.architecture","host.os.platform","host.os.name","host.os.full","host.os.family","host.os.version","host.os.kernel","host.geo.continent_name","host.geo.country_name","host.geo.region_name","host.geo.city_name","host.geo.country_iso_code","host.geo.region_iso_code","host.geo.name","http.request.method","http.request.body.content","http.request.referrer","http.response.body.content","http.version","log.level","network.name","network.type","network.iana_number","network.transport","network.application","network.protocol","network.direction","network.community_id","observer.mac","observer.hostname","observer.vendor","observer.version","observer.serial_number","observer.type","observer.os.platform","observer.os.name","observer.os.full","observer.os.family","observer.os.version","observer.os.kernel","observer.geo.continent_name","observer.geo.country_name","observer.geo.region_name","observer.geo.city_name","observer.geo.country_iso_code","observer.geo.region_iso_code","observer.geo.name","organization.name","organization.id","os.platform","os.name","os.full","os.family","os.version","os.kernel","process.name","process.args","process.executable","process.title","process.working_directory","server.address","server.mac","server.domain","server.geo.continent_name","server.geo.country_name","server.geo.region_name","server.geo.city_name","server.geo.country_iso_code","server.geo.region_iso_code","server.geo.name","service.id","service.name","service.type","service.state","service.version","service.ephemeral_id","source.address","source.mac","source.domain","source.geo.continent_name","source.geo.country_name","source.geo.region_name","source.geo.city_name","source.geo.country_iso_code","source.geo.region_iso_code","source.geo.name","url.original","url.full","url.scheme","url.domain","url.path","url.query","url.fragment","url.username","url.password","user.id","user.name","user.full_name","user.email","user.hash","user.group.id","user.group.name","user_agent.original","user_agent.name","user_agent.version","user_agent.device.name","user_agent.os.platform","user_agent.os.name","user_agent.os.full","user_agent.os.family","user_agent.os.version","user_agent.os.kernel","agent.hostname","error.type","cloud.project.id","kubernetes.pod.name","kubernetes.pod.uid","kubernetes.namespace","kubernetes.node.name","kubernetes.container.name","kubernetes.container.image","file.origin","raw","file.selinux.user","file.selinux.role","file.selinux.domain","file.selinux.level","user.audit.id","user.audit.name","user.effective.id","user.effective.name","user.effective.group.id","user.effective.group.name","user.filesystem.id","user.filesystem.name","user.filesystem.group.id","user.filesystem.group.name","user.saved.id","user.saved.name","user.saved.group.id","user.saved.group.name","user.selinux.user","user.selinux.role","user.selinux.domain","user.selinux.level","user.selinux.category","source.path","destination.path","auditd.message_type","auditd.session","auditd.result","auditd.summary.actor.primary","auditd.summary.actor.secondary","auditd.summary.object.type","auditd.summary.object.primary","auditd.summary.object.secondary","auditd.summary.how","auditd.paths.inode","auditd.paths.dev","auditd.paths.obj_user","auditd.paths.obj_role","auditd.paths.obj_domain","auditd.paths.obj_level","auditd.paths.objtype","auditd.paths.ouid","auditd.paths.rdev","auditd.paths.nametype","auditd.paths.ogid","auditd.paths.item","auditd.paths.mode","auditd.paths.name","auditd.data.action","auditd.data.minor","auditd.data.acct","auditd.data.addr","auditd.data.cipher","auditd.data.id","auditd.data.entries","auditd.data.kind","auditd.data.ksize","auditd.data.spid","auditd.data.arch","auditd.data.argc","auditd.data.major","auditd.data.unit","auditd.data.table","auditd.data.terminal","auditd.data.grantors","auditd.data.direction","auditd.data.op","auditd.data.tty","auditd.data.syscall","auditd.data.data","auditd.data.family","auditd.data.mac","auditd.data.pfs","auditd.data.items","auditd.data.a0","auditd.data.a1","auditd.data.a2","auditd.data.a3","auditd.data.hostname","auditd.data.lport","auditd.data.rport","auditd.data.exit","auditd.data.fp","auditd.data.laddr","auditd.data.sport","auditd.data.capability","auditd.data.nargs","auditd.data.new-enabled","auditd.data.audit_backlog_limit","auditd.data.dir","auditd.data.cap_pe","auditd.data.model","auditd.data.new_pp","auditd.data.old-enabled","auditd.data.oauid","auditd.data.old","auditd.data.banners","auditd.data.feature","auditd.data.vm-ctx","auditd.data.opid","auditd.data.seperms","auditd.data.seresult","auditd.data.new-rng","auditd.data.old-net","auditd.data.sigev_signo","auditd.data.ino","auditd.data.old_enforcing","auditd.data.old-vcpu","auditd.data.range","auditd.data.res","auditd.data.added","auditd.data.fam","auditd.data.nlnk-pid","auditd.data.subj","auditd.data.a[0-3]","auditd.data.cgroup","auditd.data.kernel","auditd.data.ocomm","auditd.data.new-net","auditd.data.permissive","auditd.data.class","auditd.data.compat","auditd.data.fi","auditd.data.changed","auditd.data.msg","auditd.data.dport","auditd.data.new-seuser","auditd.data.invalid_context","auditd.data.dmac","auditd.data.ipx-net","auditd.data.iuid","auditd.data.macproto","auditd.data.obj","auditd.data.ipid","auditd.data.new-fs","auditd.data.vm-pid","auditd.data.cap_pi","auditd.data.old-auid","auditd.data.oses","auditd.data.fd","auditd.data.igid","auditd.data.new-disk","auditd.data.parent","auditd.data.len","auditd.data.oflag","auditd.data.uuid","auditd.data.code","auditd.data.nlnk-grp","auditd.data.cap_fp","auditd.data.new-mem","auditd.data.seperm","auditd.data.enforcing","auditd.data.new-chardev","auditd.data.old-rng","auditd.data.outif","auditd.data.cmd","auditd.data.hook","auditd.data.new-level","auditd.data.sauid","auditd.data.sig","auditd.data.audit_backlog_wait_time","auditd.data.printer","auditd.data.old-mem","auditd.data.perm","auditd.data.old_pi","auditd.data.state","auditd.data.format","auditd.data.new_gid","auditd.data.tcontext","auditd.data.maj","auditd.data.watch","auditd.data.device","auditd.data.grp","auditd.data.bool","auditd.data.icmp_type","auditd.data.new_lock","auditd.data.old_prom","auditd.data.acl","auditd.data.ip","auditd.data.new_pi","auditd.data.default-context","auditd.data.inode_gid","auditd.data.new-log_passwd","auditd.data.new_pe","auditd.data.selected-context","auditd.data.cap_fver","auditd.data.file","auditd.data.net","auditd.data.virt","auditd.data.cap_pp","auditd.data.old-range","auditd.data.resrc","auditd.data.new-range","auditd.data.obj_gid","auditd.data.proto","auditd.data.old-disk","auditd.data.audit_failure","auditd.data.inif","auditd.data.vm","auditd.data.flags","auditd.data.nlnk-fam","auditd.data.old-fs","auditd.data.old-ses","auditd.data.seqno","auditd.data.fver","auditd.data.qbytes","auditd.data.seuser","auditd.data.cap_fe","auditd.data.new-vcpu","auditd.data.old-level","auditd.data.old_pp","auditd.data.daddr","auditd.data.old-role","auditd.data.ioctlcmd","auditd.data.smac","auditd.data.apparmor","auditd.data.fe","auditd.data.perm_mask","auditd.data.ses","auditd.data.cap_fi","auditd.data.obj_uid","auditd.data.reason","auditd.data.list","auditd.data.old_lock","auditd.data.bus","auditd.data.old_pe","auditd.data.new-role","auditd.data.prom","auditd.data.uri","auditd.data.audit_enabled","auditd.data.old-log_passwd","auditd.data.old-seuser","auditd.data.per","auditd.data.scontext","auditd.data.tclass","auditd.data.ver","auditd.data.new","auditd.data.val","auditd.data.img-ctx","auditd.data.old-chardev","auditd.data.old_val","auditd.data.success","auditd.data.inode_uid","auditd.data.removed","auditd.data.socket.port","auditd.data.socket.saddr","auditd.data.socket.addr","auditd.data.socket.family","auditd.data.socket.path","geoip.continent_name","geoip.city_name","geoip.region_name","geoip.country_iso_code","hash.blake2b_256","hash.blake2b_384","hash.blake2b_512","hash.md5","hash.sha1","hash.sha224","hash.sha256","hash.sha384","hash.sha3_224","hash.sha3_256","hash.sha3_384","hash.sha3_512","hash.sha512","hash.sha512_224","hash.sha512_256","hash.xxh64","event.origin","user.entity_id","user.terminal","process.entity_id","socket.entity_id","system.audit.host.timezone.name","system.audit.host.hostname","system.audit.host.id","system.audit.host.architecture","system.audit.host.mac","system.audit.host.os.platform","system.audit.host.os.name","system.audit.host.os.family","system.audit.host.os.version","system.audit.host.os.kernel","system.audit.package.entity_id","system.audit.package.name","system.audit.package.version","system.audit.package.release","system.audit.package.arch","system.audit.package.license","system.audit.package.summary","system.audit.package.url","system.audit.user.name","system.audit.user.uid","system.audit.user.gid","system.audit.user.dir","system.audit.user.shell","system.audit.user.user_information","system.audit.user.password.type","fields.*"]},"refresh_interval":"5s"}}
[00:00:00]                     │ info [o.e.c.m.MetadataCreateIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [winlogbeat-8.0.0-2019.02.19-000001] creating index, cause [auto(bulk api)], templates [], shards [1]/[1]
[00:00:01]                     │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [winlogbeat-8.0.0-2019.02.19-000001/nC0qcGFaRc6BYeFn7S-uVQ] create_mapping
[00:00:01]                     │ info [auditbeat/hosts] Indexed 1751 docs into "auditbeat-8.0.0-2019.02.19-000001"
[00:00:01]                     │ info [auditbeat/hosts] Indexed 1 docs into "winlogbeat-8.0.0-2019.02.19-000001"
[00:00:01]                     │ info [o.e.x.i.a.TransportPutLifecycleAction] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] adding index lifecycle policy [.siem-signals-default-migration-cleanup]
[00:00:01]                     │ info [o.e.x.i.a.TransportPutLifecycleAction] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] adding index lifecycle policy [.siem-signals-default]
[00:00:01]                   │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618872278814641120] [.kibana_8.0.0_001/r0x6FZoVT9-6VDnzi-2Y3g] update_mapping [_doc]
[00:00:04]                   └- ✖ fail: detection engine api security and spaces enabled  add_actions adding actions should be able to create a new webhook action and attach it to a rule
[00:00:04]                   │      Error: expected 200 "OK", got 400 "Bad Request"
[00:00:04]                   │       at Test._assertStatus (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:268:12)
[00:00:04]                   │       at Test._assertFunction (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:283:11)
[00:00:04]                   │       at Test.assert (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:173:18)
[00:00:04]                   │       at assert (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:131:12)
[00:00:04]                   │       at /dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:128:5
[00:00:04]                   │       at Test.Request.callback (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/node_modules/superagent/lib/node/index.js:718:3)
[00:00:04]                   │       at /dev/shm/workspace/parallel/11/kibana/node_modules/supertest/node_modules/superagent/lib/node/index.js:906:18
[00:00:04]                   │       at IncomingMessage.<anonymous> (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/node_modules/superagent/lib/node/parsers/json.js:19:7)
[00:00:04]                   │       at endReadableNT (internal/streams/readable.js:1327:12)
[00:00:04]                   │       at processTicksAndRejections (internal/process/task_queues.js:80:21)
[00:00:04]                   │ 
[00:00:04]                   │

Stack Trace

Error: expected 200 "OK", got 400 "Bad Request"
    at Test._assertStatus (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:268:12)
    at Test._assertFunction (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:283:11)
    at Test.assert (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:173:18)
    at assert (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:131:12)
    at /dev/shm/workspace/parallel/11/kibana/node_modules/supertest/lib/test.js:128:5
    at Test.Request.callback (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/node_modules/superagent/lib/node/index.js:718:3)
    at /dev/shm/workspace/parallel/11/kibana/node_modules/supertest/node_modules/superagent/lib/node/index.js:906:18
    at IncomingMessage.<anonymous> (/dev/shm/workspace/parallel/11/kibana/node_modules/supertest/node_modules/superagent/lib/node/parsers/json.js:19:7)
    at endReadableNT (internal/streams/readable.js:1327:12)
    at processTicksAndRejections (internal/process/task_queues.js:80:21)

and 38 more failures, only showing the first 3.

Metrics [docs]

✅ unchanged

History

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

cc @ecezalp

@rylnd
Copy link
Copy Markdown
Contributor

rylnd commented Apr 20, 2021

Closing in favor of #97573

@rylnd rylnd closed this Apr 20, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rylnd rylnd rylnd left review comments

Assignees

No one assigned

Labels

auto-backport Deprecated - use backport:version if exact versions are needed release_note:feature Makes this part of the condensed release notes v7.13.0

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@ecezalp @kibanamachine @rylnd