[Security Solution][Detections]Update detection alert mappings to ECS 1.9 by rylnd · Pull Request #97573 · elastic/kibana

rylnd · 2021-04-20T00:23:12Z

Summary

This PR does two main things:

Updates our ECS mappings with the generated mappings from 1.9
Separates mainline ECS mappings from our "other" mappings, which are currently:
- experimental threat.indicator fields
- errant top-level mappings that were the result of a bug in the ECS repo.

Because it's really hard to observe the changes that one is making to those mappings, and to force such changes to be expected and deliberate, we've also added a snapshot test around our mappings-generating function. The full set of changes to our mappings, then, can be seen in this diff.

Checklist

Unit or functional tests were updated or added to match the most common scenarios

For maintainers

This was checked for breaking API changes and was labeled appropriately

* Adds a wrapping "mappings.properties" around our extra mappings * Spreads our other mappings similarly to ECS mappings * Moves dynamic: false out of ECS mappings and into our main template * Ensures we include 'threat.properties.indicator', since that's where our 'type: nested' declaration resides

This updated snapshot reflects the mappings changes that one will receive when migrating/rolling over to a 7.13 alerts index.

The last released mappings update was elastic#92928, which bumped from 24 -> 25. The few unreleased updates since then have increased this by 1, but since these changes are going out with 7.13 we are bumping by 10 _since the last release_, in order to give "room" for minor releases.

elasticmachine · 2021-04-20T00:23:15Z

Pinging @elastic/security-solution (Team: SecuritySolution)

elasticmachine · 2021-04-20T00:23:15Z

Pinging @elastic/security-detections-response (Team:Detections and Resp)

rylnd · 2021-04-20T00:26:30Z

@MikePaquette If you missed it above, you can see the full mappings changes (which are purely additive) here

rylnd · 2021-04-20T00:39:02Z

+  ],
  "mappings": {
-    "dynamic": false,
+    "_meta": {


I opted to leave these top-level fields because:

we're not using anything but .mappings.properties

it makes ECS updates easier as it's just a copy/paste from the generated mappings template.json

and if we did accidentally start using them, the snapshot test would tell us so 😉

FrankHassanabad

LGTM! Looks great. Thanks for the updating of the mappings

FrankHassanabad · 2021-04-20T01:15:56Z

 {
+  "index_patterns": [
+    "try-ecs-*"
+  ],


This seems weird, but if you're fine with it. I don't think that is going to mess things up, but it's odd to see it in the mapping file like a template would have them.

I see the comment below, I am good with this.

I went back and forth on this; the main motivation here was that it's easy to copy/paste the generated ECS mappings into this file, and the _meta here also gives readers some indication of where the mappings came from.

We have the snapshot test to ensure that we're only pulling what we want/need from this for now, and RAC should make most of this code unnecessary in the near future 👍

This magic number represents "the number of mapped fields that begin with 'host.geo.c' and, because this PR adds a mapping for host.geo.continent_code, the test needed to be updated.

marshallmain

I like the snapshot idea, I think having a single place to compare the full mapping is very valuable especially now that we've added more different components that get combined. It's like an integration test for the mapping so we can change implementation behind how we build the mapping and verify that the output hasn't subtly changed.

marshallmain · 2021-04-20T03:35:00Z

+      },
+      "threat": {
+        "properties": {
+          "indicator": {


How are the experimental fields included here chosen? It looks like there are a couple fieldsets in the experimental generated JSON for threat.indicator that don't show up here, notably threat.indicator.file.*, .hash.*, and .registry.* - are those purposely left out?

CTI has, to date, only been pulling in what's needed in order to minimize the likelihood of incompatible mappings in the case where the experimental fields change. However, thank you for calling this out as we really need to formalize this process, or at the very least get product's opinion here.

@MikePaquette As part of 7.13 we have already added the event fieldset to both the alert mappings and the enrichment logic. However, as Marshall identified, the current indicator mappings are missing the nested file, hash, and registry fieldsets as currently specified in the RFC. Should we:

Do nothing

Add these mappings but leave them off of enrichment

Add both the mappings and the corresponding enrichment

Sounds good - I went ahead and 👍'd since any of the 3 approaches sound reasonable to me and the code changes look good.

Confirmed the above needs/rationale with @MikePaquette and @peasead. Merging for now!

kibanamachine · 2021-04-20T05:05:23Z

💛 Build succeeded, but was flaky

continuous-integration/kibana-ci/pull-request
Commit: ff66eb3
Storybooks Preview
Flaky suites:
- xpack-kibana-ciGroup7

Test Failures

Kibana Pipeline / general / Chrome X-Pack UI Functional Tests.x-pack/test/functional/apps/dashboard/sync_colors·ts.dashboard sync colors should sync colors on dashboard by default

Link to Jenkins

Standard Out

Failed Tests Reporter:
  - Test has failed 3 times on tracked branches: https://github.com/elastic/kibana/issues/97403

[00:00:00]       │
[00:00:00]         └-: dashboard
[00:00:00]           └-> "before all" hook in "dashboard"
[00:19:51]           └-: sync colors
[00:19:51]             └-> "before all" hook for "should sync colors on dashboard by default"
[00:19:51]             └-> "before all" hook for "should sync colors on dashboard by default"
[00:19:51]               │ info [logstash_functional] Loading "mappings.json"
[00:19:51]               │ info [logstash_functional] Loading "data.json.gz"
[00:19:51]               │ info [logstash_functional] Skipped restore for existing index "logstash-2015.09.22"
[00:19:51]               │ info [logstash_functional] Skipped restore for existing index "logstash-2015.09.20"
[00:19:51]               │ info [logstash_functional] Skipped restore for existing index "logstash-2015.09.21"
[00:19:52]               │ info [lens/basic] Loading "mappings.json"
[00:19:52]               │ info [lens/basic] Loading "data.json"
[00:19:52]               │ info [lens/basic] Loading "data.json.gz"
[00:19:52]               │ info [o.e.c.m.MetadataDeleteIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_task_manager_8.0.0_001/6Wa-TiQ7QaCXY2BnBxpQ1Q] deleting index
[00:19:52]               │ info [o.e.c.m.MetadataDeleteIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_8.0.0_001/IuRDKl2QQpuTt1j8xLouzw] deleting index
[00:19:52]               │ info [o.e.c.m.MetadataDeleteIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_pre6.5.0_001/J7kEurvsRiapRQYr4eQPJQ] deleting index
[00:19:52]               │ info [lens/basic] Deleted existing index ".kibana_8.0.0_001"
[00:19:52]               │ info [lens/basic] Deleted existing index ".kibana_task_manager_8.0.0_001"
[00:19:52]               │ info [lens/basic] Deleted existing index ".kibana_pre6.5.0_001"
[00:19:52]               │ info [o.e.c.m.MetadataCreateIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_1] creating index, cause [api], templates [], shards [1]/[0]
[00:19:52]               │ info [lens/basic] Created index ".kibana_1"
[00:19:52]               │ debg [lens/basic] ".kibana_1" settings {"index":{"auto_expand_replicas":"0-1","number_of_replicas":"0","number_of_shards":"1"}}
[00:19:52]               │ info [lens/basic] Indexed 24 docs into ".kibana_1"
[00:19:52]               │ debg Migrating saved objects
[00:19:52]               │ proc [kibana]   log   [03:50:44.849] [info][savedobjects-service] [.kibana_task_manager] INIT -> CREATE_NEW_TARGET. took: 9ms.
[00:19:52]               │ info [o.e.c.m.MetadataCreateIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_task_manager_8.0.0_001] creating index, cause [api], templates [], shards [1]/[1]
[00:19:52]               │ info [o.e.c.r.a.AllocationService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] updating number_of_replicas to [0] for indices [.kibana_task_manager_8.0.0_001]
[00:19:52]               │ proc [kibana]   log   [03:50:44.862] [info][savedobjects-service] [.kibana] INIT -> WAIT_FOR_YELLOW_SOURCE. took: 23ms.
[00:19:52]               │ proc [kibana]   log   [03:50:44.874] [info][savedobjects-service] [.kibana] WAIT_FOR_YELLOW_SOURCE -> SET_SOURCE_WRITE_BLOCK. took: 12ms.
[00:19:52]               │ info [o.e.c.m.MetadataIndexStateService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] adding block write to indices [[.kibana_1/2hmy79E3SP2N4TxuP9cQ1Q]]
[00:19:52]               │ info [o.e.c.m.MetadataIndexStateService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] completed adding block write to indices [.kibana_1]
[00:19:52]               │ proc [kibana]   log   [03:50:44.925] [info][savedobjects-service] [.kibana_task_manager] CREATE_NEW_TARGET -> MARK_VERSION_INDEX_READY. took: 76ms.
[00:19:52]               │ proc [kibana]   log   [03:50:44.948] [info][savedobjects-service] [.kibana] SET_SOURCE_WRITE_BLOCK -> CREATE_REINDEX_TEMP. took: 74ms.
[00:19:52]               │ proc [kibana]   log   [03:50:44.963] [info][savedobjects-service] [.kibana_task_manager] MARK_VERSION_INDEX_READY -> DONE. took: 38ms.
[00:19:52]               │ proc [kibana]   log   [03:50:44.963] [info][savedobjects-service] [.kibana_task_manager] Migration completed after 123ms
[00:19:52]               │ info [o.e.c.m.MetadataCreateIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_8.0.0_reindex_temp] creating index, cause [api], templates [], shards [1]/[1]
[00:19:52]               │ info [o.e.c.r.a.AllocationService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] updating number_of_replicas to [0] for indices [.kibana_8.0.0_reindex_temp]
[00:19:52]               │ proc [kibana]   log   [03:50:45.020] [info][savedobjects-service] [.kibana] CREATE_REINDEX_TEMP -> REINDEX_SOURCE_TO_TEMP. took: 72ms.
[00:19:52]               │ proc [kibana]   log   [03:50:45.028] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP -> REINDEX_SOURCE_TO_TEMP_WAIT_FOR_TASK. took: 8ms.
[00:19:52]               │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_8.0.0_reindex_temp/cf7ZgVs2T26f5pEMhRh_JA] update_mapping [_doc]
[00:19:52]               │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_8.0.0_reindex_temp/cf7ZgVs2T26f5pEMhRh_JA] update_mapping [_doc]
[00:19:52]               │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_8.0.0_reindex_temp/cf7ZgVs2T26f5pEMhRh_JA] update_mapping [_doc]
[00:19:52]               │ info [o.e.t.LoggingTaskListener] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] 30857 finished with response BulkByScrollResponse[took=91.3ms,timed_out=false,sliceId=null,updated=0,created=12,deleted=0,batches=1,versionConflicts=0,noops=0,retries=0,throttledUntil=0s,bulk_failures=[],search_failures=[]]
[00:19:52]               │ proc [kibana]   log   [03:50:45.141] [info][savedobjects-service] [.kibana] REINDEX_SOURCE_TO_TEMP_WAIT_FOR_TASK -> SET_TEMP_WRITE_BLOCK. took: 113ms.
[00:19:52]               │ info [o.e.c.m.MetadataIndexStateService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] adding block write to indices [[.kibana_8.0.0_reindex_temp/cf7ZgVs2T26f5pEMhRh_JA]]
[00:19:52]               │ info [o.e.c.m.MetadataIndexStateService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] completed adding block write to indices [.kibana_8.0.0_reindex_temp]
[00:19:52]               │ proc [kibana]   log   [03:50:45.188] [info][savedobjects-service] [.kibana] SET_TEMP_WRITE_BLOCK -> CLONE_TEMP_TO_TARGET. took: 47ms.
[00:19:52]               │ info [o.e.c.m.MetadataCreateIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] applying create index request using existing index [.kibana_8.0.0_reindex_temp] metadata
[00:19:52]               │ info [o.e.c.m.MetadataCreateIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_8.0.0_001] creating index, cause [clone_index], templates [], shards [1]/[1]
[00:19:52]               │ info [o.e.c.r.a.AllocationService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] updating number_of_replicas to [0] for indices [.kibana_8.0.0_001]
[00:19:52]               │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_8.0.0_001/WXRJcnSHQqGRR6N-eyq4rA] create_mapping
[00:19:53]               │ proc [kibana]   log   [03:50:45.312] [info][savedobjects-service] [.kibana] CLONE_TEMP_TO_TARGET -> OUTDATED_DOCUMENTS_SEARCH. took: 124ms.
[00:19:53]               │ proc [kibana]   log   [03:50:45.333] [info][savedobjects-service] [.kibana] OUTDATED_DOCUMENTS_SEARCH -> OUTDATED_DOCUMENTS_TRANSFORM. took: 21ms.
[00:19:53]               │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_8.0.0_001/WXRJcnSHQqGRR6N-eyq4rA] update_mapping [_doc]
[00:19:53]               │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_8.0.0_001/WXRJcnSHQqGRR6N-eyq4rA] update_mapping [_doc]
[00:19:53]               │ proc [kibana]   log   [03:50:46.228] [info][savedobjects-service] [.kibana] OUTDATED_DOCUMENTS_TRANSFORM -> OUTDATED_DOCUMENTS_SEARCH. took: 895ms.
[00:19:53]               │ proc [kibana]   log   [03:50:46.241] [info][savedobjects-service] [.kibana] OUTDATED_DOCUMENTS_SEARCH -> UPDATE_TARGET_MAPPINGS. took: 13ms.
[00:19:53]               │ info [o.e.c.m.MetadataMappingService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_8.0.0_001/WXRJcnSHQqGRR6N-eyq4rA] update_mapping [_doc]
[00:19:54]               │ proc [kibana]   log   [03:50:46.311] [info][savedobjects-service] [.kibana] UPDATE_TARGET_MAPPINGS -> UPDATE_TARGET_MAPPINGS_WAIT_FOR_TASK. took: 70ms.
[00:19:54]               │ info [o.e.t.LoggingTaskListener] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] 30925 finished with response BulkByScrollResponse[took=33ms,timed_out=false,sliceId=null,updated=12,created=0,deleted=0,batches=1,versionConflicts=0,noops=0,retries=0,throttledUntil=0s,bulk_failures=[],search_failures=[]]
[00:19:54]               │ proc [kibana]   log   [03:50:46.422] [info][savedobjects-service] [.kibana] UPDATE_TARGET_MAPPINGS_WAIT_FOR_TASK -> MARK_VERSION_INDEX_READY. took: 111ms.
[00:19:54]               │ info [o.e.c.m.MetadataDeleteIndexService] [kibana-ci-immutable-ubuntu-18-tests-xxl-1618887477902612678] [.kibana_8.0.0_reindex_temp/cf7ZgVs2T26f5pEMhRh_JA] deleting index
[00:19:54]               │ proc [kibana]   log   [03:50:46.474] [info][savedobjects-service] [.kibana] MARK_VERSION_INDEX_READY -> DONE. took: 52ms.
[00:19:54]               │ proc [kibana]   log   [03:50:46.475] [info][savedobjects-service] [.kibana] Migration completed after 1636ms
[00:19:54]               │ debg [lens/basic] Migrated Kibana index after loading Kibana data
[00:19:54]               │ debg [lens/basic] Ensured that default space exists in .kibana
[00:19:54]               │ debg applying update to kibana config: {"accessibility:disableAnimations":true,"dateFormat:tz":"UTC","visualization:visualize:legacyChartsLibrary":true}
[00:19:55]               │ debg applying update to kibana config: {"accessibility:disableAnimations":true,"dateFormat:tz":"UTC","visualization:visualize:legacyChartsLibrary":true}
[00:19:57]             └-> should sync colors on dashboard by default
[00:19:57]               └-> "before each" hook: global before each for "should sync colors on dashboard by default"
[00:19:57]               │ debg navigating to dashboard url: http://localhost:61111/app/dashboards#/list
[00:19:57]               │ debg navigate to: http://localhost:61111/app/dashboards#/list
[00:19:57]               │ debg browser[INFO] http://localhost:61111/app/dashboards?_t=1618890649355#/list 341 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-P5polb1UreUSOe5V/Pv7tc+yeZuJXiOi/3fqhGsU7BE='), or a nonce ('nonce-...') is required to enable inline execution.
[00:19:57]               │
[00:19:57]               │ debg browser[INFO] http://localhost:61111/bootstrap.js 41:19 "^ A single error about an inline script not firing due to content security policy is expected!"
[00:19:57]               │ debg ... sleep(700) start
[00:19:58]               │ debg ... sleep(700) end
[00:19:58]               │ debg returned from get, calling refresh
[00:19:58]               │ debg browser[INFO] http://localhost:61111/app/dashboards?_t=1618890649355#/list 341 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'unsafe-eval' 'self'". Either the 'unsafe-inline' keyword, a hash ('sha256-P5polb1UreUSOe5V/Pv7tc+yeZuJXiOi/3fqhGsU7BE='), or a nonce ('nonce-...') is required to enable inline execution.
[00:19:58]               │
[00:19:58]               │ debg browser[INFO] http://localhost:61111/bootstrap.js 41:19 "^ A single error about an inline script not firing due to content security policy is expected!"
[00:19:58]               │ debg currentUrl = http://localhost:61111/app/dashboards#/list
[00:19:58]               │          appUrl = http://localhost:61111/app/dashboards#/list
[00:19:58]               │ debg TestSubjects.find(kibanaChrome)
[00:19:58]               │ debg Find.findByCssSelector('[data-test-subj="kibanaChrome"]') with timeout=60000
[00:19:59]               │ debg ... sleep(501) start
[00:19:59]               │ debg ... sleep(501) end
[00:19:59]               │ debg in navigateTo url = http://localhost:61111/app/dashboards#/list?_g=(filters:!(),refreshInterval:(pause:!t,value:0),time:(from:now-15m,to:now))
[00:19:59]               │ debg TestSubjects.exists(statusPageContainer)
[00:19:59]               │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="statusPageContainer"]') with timeout=2500
[00:20:02]               │ debg --- retry.tryForTime error: [data-test-subj="statusPageContainer"] is not displayed
[00:20:02]               │ debg TestSubjects.click(createDashboardPromptButton)
[00:20:02]               │ debg Find.clickByCssSelector('[data-test-subj="createDashboardPromptButton"]') with timeout=10000
[00:20:02]               │ debg Find.findByCssSelector('[data-test-subj="createDashboardPromptButton"]') with timeout=10000
[00:20:02]               │ debg DashboardAddPanel.clickAddNewPanelButton
[00:20:02]               │ debg TestSubjects.click(dashboardAddNewPanelButton)
[00:20:02]               │ debg Find.clickByCssSelector('[data-test-subj="dashboardAddNewPanelButton"]') with timeout=10000
[00:20:02]               │ debg Find.findByCssSelector('[data-test-subj="dashboardAddNewPanelButton"]') with timeout=10000
[00:20:03]               │ debg ... sleep(500) start
[00:20:03]               │ debg ... sleep(500) end
[00:20:03]               │ debg isGlobalLoadingIndicatorVisible
[00:20:03]               │ debg TestSubjects.exists(globalLoadingIndicator)
[00:20:03]               │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="globalLoadingIndicator"]') with timeout=1500
[00:20:03]               │ debg TestSubjects.exists(globalLoadingIndicator-hidden)
[00:20:03]               │ debg Find.existsByCssSelector('[data-test-subj="globalLoadingIndicator-hidden"]') with timeout=100000
[00:20:04]               │ debg lensPage.goToTimeRange()
[00:20:04]               │ debg TestSubjects.exists(noDataPopoverDismissButton)
[00:20:04]               │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="noDataPopoverDismissButton"]') with timeout=2500
[00:20:06]               │ debg --- retry.tryForTime error: [data-test-subj="noDataPopoverDismissButton"] is not displayed
[00:20:07]               │ debg Setting absolute range to Sep 19, 2015 @ 06:31:44.000 to Sep 23, 2015 @ 18:31:44.000
[00:20:07]               │ debg TestSubjects.exists(superDatePickerToggleQuickMenuButton)
[00:20:07]               │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="superDatePickerToggleQuickMenuButton"]') with timeout=20000
[00:20:07]               │ debg TestSubjects.exists(superDatePickerShowDatesButton)
[00:20:07]               │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="superDatePickerShowDatesButton"]') with timeout=2500
[00:20:07]               │ debg TestSubjects.click(superDatePickerShowDatesButton)
[00:20:07]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerShowDatesButton"]') with timeout=10000
[00:20:07]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerShowDatesButton"]') with timeout=10000
[00:20:07]               │ debg TestSubjects.exists(superDatePickerstartDatePopoverButton)
[00:20:07]               │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="superDatePickerstartDatePopoverButton"]') with timeout=2500
[00:20:07]               │ debg TestSubjects.click(superDatePickerendDatePopoverButton)
[00:20:07]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerendDatePopoverButton"]') with timeout=10000
[00:20:07]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerendDatePopoverButton"]') with timeout=10000
[00:20:07]               │ debg Find.findByCssSelector('div.euiPopover__panel-isOpen') with timeout=10000
[00:20:07]               │ debg TestSubjects.click(superDatePickerAbsoluteTab)
[00:20:07]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerAbsoluteTab"]') with timeout=10000
[00:20:07]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerAbsoluteTab"]') with timeout=10000
[00:20:07]               │ debg TestSubjects.click(superDatePickerAbsoluteDateInput)
[00:20:07]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:20:07]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:20:07]               │ debg TestSubjects.setValue(superDatePickerAbsoluteDateInput, Sep 23, 2015 @ 18:31:44.000)
[00:20:07]               │ debg TestSubjects.click(superDatePickerAbsoluteDateInput)
[00:20:07]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:20:07]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:20:08]               │ debg TestSubjects.click(superDatePickerstartDatePopoverButton)
[00:20:08]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerstartDatePopoverButton"]') with timeout=10000
[00:20:08]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerstartDatePopoverButton"]') with timeout=10000
[00:20:08]               │ debg Find.waitForElementStale with timeout=10000
[00:20:08]               │ debg Find.findByCssSelector('div.euiPopover__panel-isOpen') with timeout=10000
[00:20:08]               │ debg TestSubjects.click(superDatePickerAbsoluteTab)
[00:20:08]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerAbsoluteTab"]') with timeout=10000
[00:20:08]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerAbsoluteTab"]') with timeout=10000
[00:20:08]               │ debg TestSubjects.click(superDatePickerAbsoluteDateInput)
[00:20:08]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:20:08]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:20:08]               │ debg TestSubjects.setValue(superDatePickerAbsoluteDateInput, Sep 19, 2015 @ 06:31:44.000)
[00:20:08]               │ debg TestSubjects.click(superDatePickerAbsoluteDateInput)
[00:20:08]               │ debg Find.clickByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:20:08]               │ debg Find.findByCssSelector('[data-test-subj="superDatePickerAbsoluteDateInput"]') with timeout=10000
[00:20:09]               │ debg TestSubjects.exists(superDatePickerApplyTimeButton)
[00:20:09]               │ debg Find.existsByDisplayedByCssSelector('[data-test-subj="superDatePickerApplyTimeButton"]') with timeout=2500
[00:20:11]               │ debg --- retry.tryForTime error: [data-test-subj="superDatePickerApplyTimeButton"] is not displayed
[00:20:12]               │ debg TestSubjects.click(querySubmitButton)
[00:20:12]               │ debg Find.clickByCssSelector('[data-test-subj="querySubmitButton"]') with timeout=10000
[00:20:12]               │ debg Find.findByCssSelector('[data-test-subj="querySubmitButton"]') with timeout=10000
[00:20:12]               │ debg Find.waitForElementStale with timeout=10000
[00:20:12]               │ debg TestSubjects.exists(globalLoadingIndicator-hidden)
[00:20:12]               │ debg Find.existsByCssSelector('[data-test-subj="globalLoadingIndicator-hidden"]') with timeout=100000
[00:20:12]               │ debg lensPage.configureDimension([object Object])
[00:20:12]               │ debg TestSubjects.click(lns-layerPanel-0 > lnsXY_yDimensionPanel > lns-empty-dimension)
[00:20:12]               │ debg Find.clickByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:20:12]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:20:22]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:20:22]               │      Wait timed out after 10013ms
[00:20:23]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:20:33]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:20:33]               │      Wait timed out after 10051ms
[00:20:33]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:20:43]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:20:43]               │      Wait timed out after 10009ms
[00:20:44]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:20:54]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:20:54]               │      Wait timed out after 10025ms
[00:20:54]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:21:04]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:21:04]               │      Wait timed out after 10022ms
[00:21:05]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:21:15]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:21:15]               │      Wait timed out after 10043ms
[00:21:15]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:21:25]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:21:25]               │      Wait timed out after 10015ms
[00:21:26]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:21:36]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:21:36]               │      Wait timed out after 10028ms
[00:21:36]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:21:46]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:21:46]               │      Wait timed out after 10013ms
[00:21:47]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:21:57]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:21:57]               │      Wait timed out after 10044ms
[00:21:57]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:22:08]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:22:08]               │      Wait timed out after 10005ms
[00:22:08]               │ debg Find.findByCssSelector('[data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"]') with timeout=10000
[00:22:18]               │ debg --- retry.try error: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:22:18]               │      Wait timed out after 10017ms
[00:22:19]               │ debg --- retry.try error: retry.try timeout: TimeoutError: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:22:19]               │      Wait timed out after 10017ms
[00:22:19]               │          at /dev/shm/workspace/parallel/11/kibana/node_modules/selenium-webdriver/lib/webdriver.js:842:17
[00:22:19]               │          at runMicrotasks (<anonymous>)
[00:22:19]               │          at processTicksAndRejections (internal/process/task_queues.js:93:5)
[00:22:19]               │ info Taking screenshot "/dev/shm/workspace/parallel/11/kibana/x-pack/test/functional/screenshots/failure/dashboard sync colors should sync colors on dashboard by default.png"
[00:22:19]               │ info Current URL is: http://localhost:61111/app/dashboards#/create?_g=(filters:!(),refreshInterval:(pause:!t,value:0),time:(from:%272015-09-19T06:31:44.000Z%27,to:%272015-09-23T18:31:44.000Z%27))&_a=(description:%27%27,filters:!(),fullScreenMode:!f,options:(hidePanelTitles:!f,useMargins:!t),query:(language:kuery,query:%27%27),tags:!(),timeRestore:!f,title:%27%27,viewMode:edit)
[00:22:19]               │ info Saving page source to: /dev/shm/workspace/parallel/11/kibana/x-pack/test/functional/failure_debug/html/dashboard sync colors should sync colors on dashboard by default.html
[00:22:19]               └- ✖ fail: dashboard sync colors should sync colors on dashboard by default
[00:22:19]               │      retry.try timeout: Error: retry.try timeout: TimeoutError: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:22:19]               │ Wait timed out after 10017ms
[00:22:19]               │     at /dev/shm/workspace/parallel/11/kibana/node_modules/selenium-webdriver/lib/webdriver.js:842:17
[00:22:19]               │     at runMicrotasks (<anonymous>)
[00:22:19]               │     at processTicksAndRejections (internal/process/task_queues.js:93:5)
[00:22:19]               │     at onFailure (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:17:9)
[00:22:19]               │     at retryForSuccess (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:57:13)
[00:22:19]               │     at Retry.try (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry.ts:32:14)
[00:22:19]               │     at Proxy.clickByCssSelector (/dev/shm/workspace/parallel/11/kibana/test/functional/services/common/find.ts:420:7)
[00:22:19]               │     at TestSubjects.click (/dev/shm/workspace/parallel/11/kibana/test/functional/services/common/test_subjects.ts:109:7)
[00:22:19]               │     at /dev/shm/workspace/parallel/11/kibana/x-pack/test/functional/page_objects/lens_page.ts:114:9
[00:22:19]               │     at runAttempt (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:27:15)
[00:22:19]               │     at retryForSuccess (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:66:21)
[00:22:19]               │     at Retry.try (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry.ts:32:14)
[00:22:19]               │     at Object.configureDimension (/dev/shm/workspace/parallel/11/kibana/x-pack/test/functional/page_objects/lens_page.ts:113:7)
[00:22:19]               │     at Context.<anonymous> (/dev/shm/workspace/parallel/11/kibana/x-pack/test/functional/apps/dashboard/sync_colors.ts:55:7)
[00:22:19]               │     at Object.apply (/dev/shm/workspace/parallel/11/kibana/node_modules/@kbn/test/src/functional_test_runner/lib/mocha/wrap_function.js:73:16)
[00:22:19]               │   Error: retry.try timeout: Error: retry.try timeout: TimeoutError: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
[00:22:19]               │   Wait timed out after 10017ms
[00:22:19]               │       at /dev/shm/workspace/parallel/11/kibana/node_modules/selenium-webdriver/lib/webdriver.js:842:17
[00:22:19]               │       at runMicrotasks (<anonymous>)
[00:22:19]               │       at processTicksAndRejections (internal/process/task_queues.js:93:5)
[00:22:19]               │       at onFailure (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:17:9)
[00:22:19]               │       at retryForSuccess (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:57:13)
[00:22:19]               │       at Retry.try (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry.ts:32:14)
[00:22:19]               │       at Proxy.clickByCssSelector (/dev/shm/workspace/parallel/11/kibana/test/functional/services/common/find.ts:420:7)
[00:22:19]               │       at TestSubjects.click (/dev/shm/workspace/parallel/11/kibana/test/functional/services/common/test_subjects.ts:109:7)
[00:22:19]               │       at /dev/shm/workspace/parallel/11/kibana/x-pack/test/functional/page_objects/lens_page.ts:114:9
[00:22:19]               │       at runAttempt (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:27:15)
[00:22:19]               │       at retryForSuccess (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:66:21)
[00:22:19]               │       at Retry.try (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry.ts:32:14)
[00:22:19]               │       at Object.configureDimension (test/functional/page_objects/lens_page.ts:113:7)
[00:22:19]               │       at Context.<anonymous> (test/functional/apps/dashboard/sync_colors.ts:55:7)
[00:22:19]               │       at Object.apply (/dev/shm/workspace/parallel/11/kibana/node_modules/@kbn/test/src/functional_test_runner/lib/mocha/wrap_function.js:73:16)
[00:22:19]               │       at onFailure (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:17:9)
[00:22:19]               │       at retryForSuccess (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:57:13)
[00:22:19]               │       at Retry.try (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry.ts:32:14)
[00:22:19]               │       at Object.configureDimension (test/functional/page_objects/lens_page.ts:113:7)
[00:22:19]               │       at Context.<anonymous> (test/functional/apps/dashboard/sync_colors.ts:55:7)
[00:22:19]               │       at Object.apply (/dev/shm/workspace/parallel/11/kibana/node_modules/@kbn/test/src/functional_test_runner/lib/mocha/wrap_function.js:73:16)
[00:22:19]               │ 
[00:22:19]               │

Stack Trace

Error: retry.try timeout: Error: retry.try timeout: TimeoutError: Waiting for element to be located By(css selector, [data-test-subj="lns-layerPanel-0"] [data-test-subj="lnsXY_yDimensionPanel"] [data-test-subj="lns-empty-dimension"])
Wait timed out after 10017ms
    at /dev/shm/workspace/parallel/11/kibana/node_modules/selenium-webdriver/lib/webdriver.js:842:17
    at runMicrotasks (<anonymous>)
    at processTicksAndRejections (internal/process/task_queues.js:93:5)
    at onFailure (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:17:9)
    at retryForSuccess (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:57:13)
    at Retry.try (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry.ts:32:14)
    at Proxy.clickByCssSelector (/dev/shm/workspace/parallel/11/kibana/test/functional/services/common/find.ts:420:7)
    at TestSubjects.click (/dev/shm/workspace/parallel/11/kibana/test/functional/services/common/test_subjects.ts:109:7)
    at /dev/shm/workspace/parallel/11/kibana/x-pack/test/functional/page_objects/lens_page.ts:114:9
    at runAttempt (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:27:15)
    at retryForSuccess (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:66:21)
    at Retry.try (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry.ts:32:14)
    at Object.configureDimension (test/functional/page_objects/lens_page.ts:113:7)
    at Context.<anonymous> (test/functional/apps/dashboard/sync_colors.ts:55:7)
    at Object.apply (/dev/shm/workspace/parallel/11/kibana/node_modules/@kbn/test/src/functional_test_runner/lib/mocha/wrap_function.js:73:16)
    at onFailure (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:17:9)
    at retryForSuccess (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry_for_success.ts:57:13)
    at Retry.try (/dev/shm/workspace/parallel/11/kibana/test/common/services/retry/retry.ts:32:14)
    at Object.configureDimension (test/functional/page_objects/lens_page.ts:113:7)
    at Context.<anonymous> (test/functional/apps/dashboard/sync_colors.ts:55:7)
    at Object.apply (/dev/shm/workspace/parallel/11/kibana/node_modules/@kbn/test/src/functional_test_runner/lib/mocha/wrap_function.js:73:16)

Metrics [docs]

✅ unchanged

History

💔 Build #120814 failed 99e7bbf

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

MikePaquette

LGTM, thanks @rylnd

… 1.9 (elastic#97573) * adds snapshot test for getSignalsTemplate * [CTI] Extracts non-ecs, non-signal mappings to separate file * adds updated ECS mappings * Normalize/clean up various mappings files * Adds a wrapping "mappings.properties" around our extra mappings * Spreads our other mappings similarly to ECS mappings * Moves dynamic: false out of ECS mappings and into our main template * Ensures we include 'threat.properties.indicator', since that's where our 'type: nested' declaration resides * Update ECS mappings snapshot post-1.9 updates This updated snapshot reflects the mappings changes that one will receive when migrating/rolling over to a 7.13 alerts index. * Update signals template version as per guidelines. The last released mappings update was elastic#92928, which bumped from 24 -> 25. The few unreleased updates since then have increased this by 1, but since these changes are going out with 7.13 we are bumping by 10 _since the last release_, in order to give "room" for minor releases. * Fix cypress test failure due to updated mappings This magic number represents "the number of mapped fields that begin with 'host.geo.c' and, because this PR adds a mapping for host.geo.continent_code, the test needed to be updated. Co-authored-by: Ece Ozalp <ozale272@newschool.edu>

kibanamachine · 2021-04-20T17:18:36Z

💚 Backport successful

Status	Branch	Result
✅	7.x

This backport PR will be merged automatically after passing CI.

… 1.9 (#97573) (#97682) * adds snapshot test for getSignalsTemplate * [CTI] Extracts non-ecs, non-signal mappings to separate file * adds updated ECS mappings * Normalize/clean up various mappings files * Adds a wrapping "mappings.properties" around our extra mappings * Spreads our other mappings similarly to ECS mappings * Moves dynamic: false out of ECS mappings and into our main template * Ensures we include 'threat.properties.indicator', since that's where our 'type: nested' declaration resides * Update ECS mappings snapshot post-1.9 updates This updated snapshot reflects the mappings changes that one will receive when migrating/rolling over to a 7.13 alerts index. * Update signals template version as per guidelines. The last released mappings update was #92928, which bumped from 24 -> 25. The few unreleased updates since then have increased this by 1, but since these changes are going out with 7.13 we are bumping by 10 _since the last release_, in order to give "room" for minor releases. * Fix cypress test failure due to updated mappings This magic number represents "the number of mapped fields that begin with 'host.geo.c' and, because this PR adds a mapping for host.geo.continent_code, the test needed to be updated. Co-authored-by: Ece Ozalp <ozale272@newschool.edu> Co-authored-by: Ryland Herrick <ryalnd@gmail.com> Co-authored-by: Ece Ozalp <ozale272@newschool.edu>

ecezalp and others added 6 commits April 19, 2021 18:34

adds snapshot test for getSignalsTemplate

9383792

[CTI] Extracts non-ecs, non-signal mappings to separate file

ac228c2

adds updated ECS mappings

cf66c98

Update ECS mappings snapshot post-1.9 updates

84ea941

This updated snapshot reflects the mappings changes that one will receive when migrating/rolling over to a 7.13 alerts index.

rylnd added release_note:enhancement Team:Detections and Resp Security Detection Response Team Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. 7.13 candidate labels Apr 20, 2021

rylnd requested a review from a team as a code owner April 20, 2021 00:23

rylnd added v7.13.0 v8.0.0 labels Apr 20, 2021

rylnd requested a review from MikePaquette April 20, 2021 00:24

rylnd mentioned this pull request Apr 20, 2021

[CTI] Updates ECS mappings #97525

Closed

rylnd requested a review from marshallmain April 20, 2021 00:33

rylnd commented Apr 20, 2021

View reviewed changes

FrankHassanabad approved these changes Apr 20, 2021

View reviewed changes

FrankHassanabad reviewed Apr 20, 2021

View reviewed changes

Fix cypress test failure due to updated mappings

ff66eb3

This magic number represents "the number of mapped fields that begin with 'host.geo.c' and, because this PR adds a mapping for host.geo.continent_code, the test needed to be updated.

rylnd added the auto-backport Deprecated - use backport:version if exact versions are needed label Apr 20, 2021

rylnd enabled auto-merge (squash) April 20, 2021 02:58

marshallmain reviewed Apr 20, 2021

View reviewed changes

rylnd disabled auto-merge April 20, 2021 04:24

marshallmain approved these changes Apr 20, 2021

View reviewed changes

MikePaquette approved these changes Apr 20, 2021

View reviewed changes

rylnd merged commit 538a6c0 into elastic:master Apr 20, 2021

kibanamachine mentioned this pull request Apr 20, 2021

[7.x] [Security Solution][Detections]Update detection alert mappings to ECS 1.9 (#97573) #97682

Merged

rylnd deleted the ecs_mappings_updates branch April 20, 2021 17:18

Conversation

rylnd commented Apr 20, 2021 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Summary

Checklist

For maintainers

Uh oh!

elasticmachine commented Apr 20, 2021

Uh oh!

elasticmachine commented Apr 20, 2021

Uh oh!

rylnd commented Apr 20, 2021

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

FrankHassanabad left a comment

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

marshallmain left a comment

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

kibanamachine commented Apr 20, 2021

💛 Build succeeded, but was flaky

Standard Out

Stack Trace

Metrics [docs]

History

Uh oh!

MikePaquette left a comment

Choose a reason for hiding this comment

Uh oh!

kibanamachine commented Apr 20, 2021

💚 Backport successful

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

7 participants

rylnd commented Apr 20, 2021 •

edited

Loading