Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / elastic/security-docs issues and pull requests

#6496 - What's new in 8.18

Issue - State: open - Opened by natasha-moore-elastic 7 days ago
Labels: highlights, Priority: High, Effort: Medium, Docset: ESS, v8.18.0

#6494 - [Request][Detection Engine] Extend Detection rules preview logged queries to new terms, machine learning, query, threshold rule types

Issue - State: open - Opened by vitaliidm 9 days ago
Labels: Team: Detections/Response, Team: Detection Engine, v8.18.0, v9.0.0

#6493 - [Request] [Manual Runs] Manual runs now include almost all rule actions

Issue - State: open - Opened by yctercero 9 days ago
Labels: documentation, Team: Detection Engine, Feature: Rule Actions, v8.18.0

#6492 - Automatic Import: CEL Input

Pull Request - State: closed - Opened by benironside 9 days ago - 1 comment
Labels: v9.0.0

#6491 - [8.x] [Jan 28] Updates RBAC requirements for 3rd-party response actions (backport #6434)

Pull Request - State: closed - Opened by mergify[bot] 10 days ago - 1 comment
Labels: backport

#6491 - [8.x] [Jan 28] Updates RBAC requirements for 3rd-party response actions (backport #6434)

Pull Request - State: closed - Opened by mergify[bot] 10 days ago - 1 comment
Labels: backport

#6490 - [8.x] [Jan 28] Adds new runscript Crowdstrike response action (backport #6435)

Pull Request - State: closed - Opened by mergify[bot] 10 days ago - 2 comments
Labels: backport, conflicts

#6490 - [8.x] [Jan 28] Adds new runscript Crowdstrike response action (backport #6435)

Pull Request - State: closed - Opened by mergify[bot] 10 days ago - 2 comments
Labels: backport, conflicts

#6489 - [8.x] [Jan 28] GA for third-party response actions (backport #6471)

Pull Request - State: closed - Opened by mergify[bot] 10 days ago - 3 comments
Labels: backport, conflicts

#6488 - [8.x] [Jan 28] MS Defender for Endpoint third-party response integration (backport #6478)

Pull Request - State: closed - Opened by mergify[bot] 10 days ago - 2 comments
Labels: backport, conflicts

#6487 - [8.x] [Request] [8.18, 9.0, and Serverless] Observables can be added to cases (backport #6477)

Pull Request - State: closed - Opened by mergify[bot] 10 days ago - 2 comments
Labels: backport, conflicts

#6486 - github-action: Add AsciiDoc freeze warning

Pull Request - State: closed - Opened by reakaleek 10 days ago - 2 comments
Labels: backport-skip

#6485 - [UI copy]: Review UX copy for the AI Assistant Citations feature

Issue - State: open - Opened by bojanasan 10 days ago
Labels: ui-copy

#6484 - [8.x] 8.17.0 known issue — D4C broken (backport #6481)

Pull Request - State: closed - Opened by mergify[bot] 10 days ago - 1 comment
Labels: backport

#6484 - [8.x] 8.17.0 known issue — D4C broken (backport #6481)

Pull Request - State: closed - Opened by mergify[bot] 10 days ago - 1 comment
Labels: backport

#6483 - [8.17] Update custom dashboard docs (backport #6470)

Pull Request - State: closed - Opened by mergify[bot] 13 days ago - 1 comment
Labels: backport

#6483 - [8.17] Update custom dashboard docs (backport #6470)

Pull Request - State: closed - Opened by mergify[bot] 13 days ago - 1 comment
Labels: backport

#6482 - [8.x] Update custom dashboard docs (backport #6470)

Pull Request - State: closed - Opened by mergify[bot] 13 days ago - 1 comment
Labels: backport

#6482 - [8.x] Update custom dashboard docs (backport #6470)

Pull Request - State: closed - Opened by mergify[bot] 13 days ago - 1 comment
Labels: backport

#6481 - 8.17.0 known issue — D4C broken

Pull Request - State: closed - Opened by benironside 13 days ago - 1 comment
Labels: v8.17.0, v8.18.0

#6481 - 8.17.0 known issue — D4C broken

Pull Request - State: closed - Opened by benironside 13 days ago - 1 comment
Labels: v8.17.0, v8.18.0

#6480 - Endpoint Insights feature — Serverless

Pull Request - State: closed - Opened by benironside 13 days ago - 3 comments
Labels: backport-skip, Docset: Serverless

#6479 - Token Disclaimer

Issue - State: closed - Opened by Charelzard 13 days ago - 1 comment

#6479 - Token Disclaimer

Issue - State: closed - Opened by Charelzard 13 days ago - 1 comment

#6478 - [Jan 28] MS Defender for Endpoint third-party response integration

Pull Request - State: closed - Opened by natasha-moore-elastic 14 days ago - 1 comment
Labels: Team: EDR Workflows, Feature: Response actions, Priority: Medium, Effort: Medium, Docset: Serverless, Docset: ESS, v8.18.0, v9.0.0

#6477 - [Request] [8.18, 9.0, and Serverless] Observables can be added to cases

Pull Request - State: closed - Opened by nastasha-solomon 15 days ago - 1 comment
Labels: Team: Threat Hunting, Feature: Cases, Priority: High, Effort: Medium, Docset: Serverless, Docset: ESS, v8.18.0, v9.0.0

#6473 - [Request] Citations in the security solution AI assistant

Issue - State: open - Opened by KDKHD 16 days ago - 2 comments
Labels: v9.0.0

#6471 - [Jan 28] GA for third-party response actions

Pull Request - State: closed - Opened by natasha-moore-elastic 16 days ago - 1 comment
Labels: Team: EDR Workflows, Feature: Response actions, Priority: Medium, Effort: Small, Docset: Serverless, Docset: ESS, v8.18.0, v9.0.0

#6462 - [Request] Add known issue to 8.17.0 - D4C

Issue - State: closed - Opened by benironside 16 days ago - 1 comment
Labels: v8.17.0

#6462 - [Request] Add known issue to 8.17.0 - D4C

Issue - State: closed - Opened by benironside 16 days ago - 1 comment
Labels: v8.17.0

#6435 - [Jan 28] Adds new runscript Crowdstrike response action

Pull Request - State: closed - Opened by natasha-moore-elastic 21 days ago - 1 comment
Labels: Team: EDR Workflows, Feature: Response actions, Priority: Medium, Effort: Medium, v8.18.0, v9.0.0

#6434 - [Jan 28] Updates RBAC requirements for 3rd-party response actions

Pull Request - State: closed - Opened by natasha-moore-elastic 21 days ago - 2 comments
Labels: Team: EDR Workflows, Feature: Response actions, Priority: Medium, Effort: Small, v8.18.0, v9.0.0

#6433 - [Suggestion] Elastic Defend Remote Output

Issue - State: open - Opened by ScottElastic 21 days ago
Labels: Feature: Elastic Defend, v8.12.0, suggestion

#6432 - [8.15] [Request][8.15.4 & 8.16.0] Add RN summary about Defend bug fix (backport #6429)

Pull Request - State: open - Opened by mergify[bot] 22 days ago - 2 comments
Labels: backport, conflicts

#6431 - [8.16] [Request][8.15.4 & 8.16.0] Add RN summary about Defend bug fix (backport #6429)

Pull Request - State: open - Opened by mergify[bot] 22 days ago - 1 comment
Labels: backport

#6430 - [Request] Change to ESQL AI Assistant Docs

Issue - State: open - Opened by dhru42 22 days ago

#6429 - [Request][8.15.4 & 8.16.0] Add RN summary about Defend bug fix

Pull Request - State: closed - Opened by nastasha-solomon 22 days ago - 1 comment
Labels: release-notes, Feature: Elastic Defend, Priority: Medium, Effort: Small, v8.15.0, v8.16.0, v8.15.4

#6428 - [Request][8.15.4 & 8.16.0] Add RN summary about Defend bug fix

Issue - State: open - Opened by nastasha-solomon 22 days ago
Labels: release-notes, Feature: Elastic Defend, Priority: Medium, Effort: Small, v8.16.0, v8.15.4

#6427 - [Request] Remove "Beta" label from Entity Risk Scoring

Issue - State: open - Opened by jaredburgettelastic 23 days ago
Labels: Feature: Entity Analytics, Docset: Serverless, Docset: ESS, Team: Entity Analytics, v8.18.0

#6426 - [8.x] [8.18][Serverless] Alert status information re-added to flyout (backport #6415)

Pull Request - State: closed - Opened by mergify[bot] 23 days ago - 3 comments
Labels: backport, conflicts

#6425 - Update rules-ui-create.asciidoc - fallback behavior in timestamp overrides

Pull Request - State: open - Opened by rseldner 24 days ago - 2 comments
Labels: bug, documentation, Team: Docs, Feature: Rules, Team: Detection Engine, Priority: Medium, Effort: Small, v8.16.0, v8.17.0, v8.18.0

#6424 - Adds LLM matrix for OSS models

Pull Request - State: open - Opened by benironside 24 days ago - 2 comments
Labels: v8.16.0, v8.17.0, v8.18.0

#6423 - [Request] Add 'service' to the Entity Store

Issue - State: open - Opened by machadoum 25 days ago - 3 comments
Labels: Feature: Entity Analytics, Docset: Serverless, Docset: ESS, Team: Entity Analytics, v8.18.0, v9.0.0

#6422 - [Request] Entity Store - Engine status tab

Issue - State: open - Opened by machadoum 25 days ago - 3 comments
Labels: Feature: Entity Analytics, Docset: Serverless, Docset: ESS, Team: Entity Analytics, v8.18.0, v9.0.0

#6421 - [Upgrade 9.0] Add recommendation to opt out of logsdb

Issue - State: open - Opened by natasha-moore-elastic 28 days ago
Labels: v9.0.0

#6420 - [8.15] Endpoint data volume reduction mechanisms [ESS] (backport #5881)

Pull Request - State: closed - Opened by natasha-moore-elastic 28 days ago - 1 comment
Labels: v8.15.0

#6419 - [8.15] Endpoint data volume reduction mechanisms [ESS] (backport #5881)

Pull Request - State: closed - Opened by natasha-moore-elastic 29 days ago - 1 comment
Labels: v8.15.0

#6419 - [8.15] Endpoint data volume reduction mechanisms [ESS] (backport #5881)

Pull Request - State: closed - Opened by natasha-moore-elastic 29 days ago - 1 comment
Labels: v8.15.0

#6418 - [8.15] Endpoint data volume reduction mechanisms [ESS] (backport #5881) (backport #6414)

Pull Request - State: closed - Opened by mergify[bot] 29 days ago - 2 comments
Labels: backport, conflicts

#6418 - [8.15] Endpoint data volume reduction mechanisms [ESS] (backport #5881) (backport #6414)

Pull Request - State: closed - Opened by mergify[bot] 29 days ago - 2 comments
Labels: backport, conflicts

#6417 - [8.17] Endpoint data volume reduction mechanisms [ESS] (backport #5881) (backport #6414)

Pull Request - State: closed - Opened by mergify[bot] 29 days ago - 1 comment
Labels: backport

#6417 - [8.17] Endpoint data volume reduction mechanisms [ESS] (backport #5881) (backport #6414)

Pull Request - State: closed - Opened by mergify[bot] 29 days ago - 1 comment
Labels: backport

#6416 - [8.16] Endpoint data volume reduction mechanisms [ESS] (backport #5881) (backport #6414)

Pull Request - State: closed - Opened by mergify[bot] 29 days ago - 1 comment
Labels: backport

#6416 - [8.16] Endpoint data volume reduction mechanisms [ESS] (backport #5881) (backport #6414)

Pull Request - State: closed - Opened by mergify[bot] 29 days ago - 1 comment
Labels: backport

#6415 - [8.18][Serverless] Alert status information re-added to flyout

Pull Request - State: closed - Opened by nastasha-solomon 29 days ago - 2 comments
Labels: Team: Threat Hunting, Priority: High, Effort: Small, Docset: Serverless, v8.18.0, v9.0.0

#6414 - Endpoint data volume reduction mechanisms [ESS] (backport #5881)

Pull Request - State: closed - Opened by natasha-moore-elastic 29 days ago - 1 comment
Labels: Team: Endpoint, Team: EDR Workflows, Feature: Elastic Defend, Docset: ESS, v8.15.0, v8.16.0, v8.17.0, v8.18.0

#6413 - [8.15] Endpoint data volume reduction mechanisms [ESS] (backport #5881)

Pull Request - State: closed - Opened by mergify[bot] 29 days ago - 4 comments
Labels: backport, conflicts

#6412 - [8.16] Endpoint data volume reduction mechanisms [ESS] (backport #5881)

Pull Request - State: closed - Opened by mergify[bot] 29 days ago - 3 comments
Labels: backport

#6412 - [8.16] Endpoint data volume reduction mechanisms [ESS] (backport #5881)

Pull Request - State: closed - Opened by mergify[bot] 29 days ago - 3 comments
Labels: backport

#6411 - [8.17] Endpoint data volume reduction mechanisms [ESS] (backport #5881)

Pull Request - State: closed - Opened by mergify[bot] 29 days ago - 3 comments
Labels: backport

#6411 - [8.17] Endpoint data volume reduction mechanisms [ESS] (backport #5881)

Pull Request - State: closed - Opened by mergify[bot] 29 days ago - 3 comments
Labels: backport

#6410 - [8.x] Endpoint data volume reduction mechanisms [ESS] (backport #5881)

Pull Request - State: closed - Opened by mergify[bot] 29 days ago - 3 comments
Labels: backport

#6409 - [Request] Add instructions for disabling logsdb by default

Issue - State: open - Opened by marshallmain 29 days ago - 3 comments

#6408 - Add docs instructions for disabling logsdb by default

Issue - State: closed - Opened by marshallmain 29 days ago
Labels: Feature: Upgrading, v9.0.0

#6408 - Add docs instructions for disabling logsdb by default

Issue - State: closed - Opened by marshallmain 29 days ago
Labels: Feature: Upgrading, v9.0.0

#6407 - [8.16] New endpoint rules (backport #6100)

Pull Request - State: closed - Opened by mergify[bot] 30 days ago - 2 comments
Labels: backport, conflicts

#6407 - [8.16] New endpoint rules (backport #6100)

Pull Request - State: closed - Opened by mergify[bot] 30 days ago - 2 comments
Labels: backport, conflicts

#6406 - [8.17] New endpoint rules (backport #6100)

Pull Request - State: closed - Opened by mergify[bot] 30 days ago - 3 comments
Labels: backport, conflicts

#6406 - [8.17] New endpoint rules (backport #6100)

Pull Request - State: closed - Opened by mergify[bot] 30 days ago - 3 comments
Labels: backport, conflicts

#6405 - [8.x] New endpoint rules (backport #6100)

Pull Request - State: closed - Opened by mergify[bot] 30 days ago - 2 comments
Labels: backport, conflicts

#6405 - [8.x] New endpoint rules (backport #6100)

Pull Request - State: closed - Opened by mergify[bot] 30 days ago - 2 comments
Labels: backport, conflicts

#6404 - [Detection Rules] Adding Documents for v8.17.2 Pre-Built Detection Rules

Pull Request - State: closed - Opened by protectionsmachine 30 days ago - 1 comment
Labels: Feature: Prebuilt rules, v8.17.0

#6403 - [Detection Rules] Adding Documents for v8.16.4 Pre-Built Detection Rules

Pull Request - State: closed - Opened by protectionsmachine 30 days ago - 1 comment
Labels: Feature: Prebuilt rules, v8.16.0

#6403 - [Detection Rules] Adding Documents for v8.16.4 Pre-Built Detection Rules

Pull Request - State: closed - Opened by protectionsmachine 30 days ago - 1 comment
Labels: Feature: Prebuilt rules, v8.16.0

#6402 - [Detection Rules] Adding Documents for v8.15.13 Pre-Built Detection Rules

Pull Request - State: closed - Opened by protectionsmachine 30 days ago - 1 comment
Labels: Feature: Prebuilt rules, v8.15.0

#6402 - [Detection Rules] Adding Documents for v8.15.13 Pre-Built Detection Rules

Pull Request - State: closed - Opened by protectionsmachine 30 days ago - 1 comment
Labels: Feature: Prebuilt rules, v8.15.0

#6401 - [Detection Rules] Adding Documents for v8.14.19 Pre-Built Detection Rules

Pull Request - State: closed - Opened by protectionsmachine 30 days ago - 1 comment
Labels: Feature: Prebuilt rules, v8.14.0

#6401 - [Detection Rules] Adding Documents for v8.14.19 Pre-Built Detection Rules

Pull Request - State: closed - Opened by protectionsmachine 30 days ago - 1 comment
Labels: Feature: Prebuilt rules, v8.14.0

#6400 - 9.0.0 Release notes

Issue - State: open - Opened by nastasha-solomon about 1 month ago
Labels: release-notes, Priority: High, Effort: Large, v9.0.0

#6400 - 9.0.0 Release notes

Issue - State: open - Opened by nastasha-solomon about 1 month ago
Labels: release-notes, Priority: High, Effort: Large, v9.0.0

#6399 - 8.18.0 Release notes

Issue - State: open - Opened by nastasha-solomon about 1 month ago
Labels: release-notes, Priority: High, Effort: Large, v8.18.0

#6399 - 8.18.0 Release notes

Issue - State: open - Opened by nastasha-solomon about 1 month ago
Labels: release-notes, Priority: High, Effort: Large, v8.18.0

#6398 - [Request] RBAC update - third party response actions

Issue - State: closed - Opened by caitlinbetz about 1 month ago - 3 comments
Labels: Team: EDR Workflows, Feature: Response actions, Priority: Medium, Effort: Medium, Docset: Serverless, Docset: ESS, v8.18.0

#6398 - [Request] RBAC update - third party response actions

Issue - State: closed - Opened by caitlinbetz about 1 month ago - 3 comments
Labels: Team: EDR Workflows, Feature: Response actions, Priority: Medium, Effort: Medium, Docset: Serverless, Docset: ESS, v8.18.0

#6397 - [Request] GA for third party response capabilities

Issue - State: open - Opened by caitlinbetz about 1 month ago
Labels: Team: EDR Workflows, Feature: Response actions, Effort: Small, Effort: Medium, Docset: Serverless, Docset: ESS, v8.18.0

#6397 - [Request] GA for third party response capabilities

Issue - State: closed - Opened by caitlinbetz about 1 month ago
Labels: Team: EDR Workflows, Feature: Response actions, Priority: Medium, Effort: Small, Docset: Serverless, Docset: ESS, v8.18.0

#6396 - [Request] AI Matrix Update with OSS models

Issue - State: open - Opened by dhru42 about 1 month ago - 1 comment

#6395 - [Request] [8.18, 9.0, and Serverless] Observables can be added to cases

Issue - State: open - Opened by nastasha-solomon about 1 month ago
Labels: Team: Threat Hunting, Feature: Cases, Priority: High, Effort: Medium, Docset: Serverless, Docset: ESS, v8.18.0, v9.0.0

#6395 - [Request] [8.18, 9.0, and Serverless] Observables can be added to cases

Issue - State: closed - Opened by nastasha-solomon about 1 month ago - 1 comment
Labels: Team: Threat Hunting, Feature: Cases, Priority: High, Effort: Medium, Docset: Serverless, Docset: ESS, blocked, v8.18.0, v9.0.0

#6394 - [Suggestion] Remove sections from "Detections and alerts" page

Issue - State: open - Opened by approksiu about 1 month ago
Labels: v8.15.0, v8.16.0, v8.17.0, v8.18.0, suggestion, v9.0.0

#6393 - Release notes 7.17.27

Pull Request - State: closed - Opened by nastasha-solomon about 1 month ago - 1 comment
Labels: release-notes, v7.17.0, Priority: High, Effort: Small, Docset: ESS, v7.17.27

#6392 - Release notes 8.17.1

Pull Request - State: open - Opened by nastasha-solomon about 1 month ago - 1 comment
Labels: release-notes, Priority: High, Effort: Small, v8.17.0, v8.18.0, v8.17.1

#6392 - Release notes 8.17.1

Pull Request - State: open - Opened by nastasha-solomon about 1 month ago - 1 comment
Labels: release-notes, Priority: High, Effort: Small, v8.17.0, v8.18.0, v8.17.1

#6391 - Release notes 8.16.3

Pull Request - State: open - Opened by nastasha-solomon about 1 month ago - 1 comment
Labels: release-notes, Priority: High, Effort: Small, Docset: ESS, v8.16.0, v8.17.0, v8.18.0, v8.16.3

#6390 - [ESS] Create release notes for 7.17.27, 8.16.3, and 8.17.1

Issue - State: open - Opened by nastasha-solomon about 1 month ago
Labels: release-notes, Priority: High, Effort: Medium, Docset: ESS, v8.16.3, v8.17.1, v7.17.27

#6390 - [ESS] Create release notes for 7.17.27, 8.16.3, and 8.17.1

Issue - State: open - Opened by nastasha-solomon about 1 month ago
Labels: release-notes, Priority: High, Effort: Medium, Docset: ESS, v8.16.3, v8.17.1, v7.17.27

#6389 - [8.14] Document how to troubleshoot Defend's self-healing feature on Windows (backport #6361)

Pull Request - State: closed - Opened by mergify[bot] about 1 month ago - 2 comments
Labels: backport, conflicts

#6389 - [8.14] Document how to troubleshoot Defend's self-healing feature on Windows (backport #6361)

Pull Request - State: closed - Opened by mergify[bot] about 1 month ago - 2 comments
Labels: backport, conflicts

#6388 - [8.15] Document how to troubleshoot Defend's self-healing feature on Windows (backport #6361)

Pull Request - State: closed - Opened by mergify[bot] about 1 month ago - 2 comments
Labels: backport, conflicts

#6388 - [8.15] Document how to troubleshoot Defend's self-healing feature on Windows (backport #6361)

Pull Request - State: closed - Opened by mergify[bot] about 1 month ago - 2 comments
Labels: backport, conflicts