Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Misp V3 - add feed correlations arg #15421

Merged
merged 7 commits into from
Oct 24, 2021
Merged

Misp V3 - add feed correlations arg #15421

merged 7 commits into from
Oct 24, 2021

Conversation

abaumgarten
Copy link
Contributor

@abaumgarten abaumgarten commented Oct 21, 2021
edited
Loading

Status

  • In Progress
  • Ready
  • In Hold - (Reason for hold)

Related Issues

fixes: https://github.com/demisto/etc/issues/42400

Description

Added a new arg to the misp-search-events command.

Screenshots

image
image

Minimum version of Cortex XSOAR

  • 5.5.0

Does it break backward compatibility?

  • No

@abaumgarten abaumgarten self-assigned this Oct 21, 2021
@abaumgarten abaumgarten marked this pull request as ready for review October 21, 2021 14:23
guykeller
guykeller approved these changes Oct 23, 2021
View reviewed changes
Copy link
Contributor

@guykeller guykeller left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

See my comment - your call

Packs/MISP/Integrations/MISPV3/MISPV3.py
@@ -793,6 +799,10 @@ def prepare_args_to_search(controller):
args_to_misp_format['include_correlations'] = 1 if demisto_args.get('include_correlations') == 'true' else 0
if 'enforceWarninglist' in args_to_misp_format:
args_to_misp_format['enforceWarninglist'] = 1 if demisto_args.get('enforceWarninglist') == 'true' else 0
if 'include_feed_correlations' in args_to_misp_format:
args_to_misp_format['includeFeedCorrelations'] = 1 if demisto_args.get(
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

let's use arg_to_boolean here

@content-bot
Copy link
Collaborator

The following integrations/tests were collected by the CI build but are currently skipped. The collected tests are related to this pull request and might be critical.:

  • Impossible Traveler - Test - reason: Usage limit reached (Issue 38063)

@abaumgarten abaumgarten merged commit d04a57d into master Oct 24, 2021
@abaumgarten abaumgarten deleted the misp_add_feed_correlations branch October 24, 2021 09:05
@yaakovi yaakovi restored the misp_add_feed_correlations branch October 26, 2021 18:01
wissamg pushed a commit that referenced this pull request Nov 1, 2021
@abaumgarten
Misp V3 - add feed correlations arg (#15421)
349496c 
* added include_feed_correlations arg

* added include_feed_correlations arg for search events

* fix outputs

* add docs

* add docs

* update readme
@content-bot content-bot deleted the misp_add_feed_correlations branch December 24, 2021 00:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@guykeller guykeller guykeller approved these changes

@yuvalbenshalom yuvalbenshalom Awaiting requested review from yuvalbenshalom

@Bargenish Bargenish Awaiting requested review from Bargenish

Assignees

@abaumgarten abaumgarten

Labels
docs-approved
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@abaumgarten @content-bot @guykeller