From a247170a62755f77c10f8fc833404e44a6952ef4 Mon Sep 17 00:00:00 2001 From: uri-weisman Date: Sun, 30 Apr 2023 21:55:15 +0300 Subject: [PATCH 1/5] modify mapping --- .../data_stream/vulnerabilities/fields/ecs.yml | 8 ++++++++ .../data_stream/vulnerabilities/fields/vulnerability.yml | 6 +----- 2 files changed, 9 insertions(+), 5 deletions(-) diff --git a/packages/cloud_security_posture/data_stream/vulnerabilities/fields/ecs.yml b/packages/cloud_security_posture/data_stream/vulnerabilities/fields/ecs.yml index 24da89b6b9b..a58b8a3064a 100644 --- a/packages/cloud_security_posture/data_stream/vulnerabilities/fields/ecs.yml +++ b/packages/cloud_security_posture/data_stream/vulnerabilities/fields/ecs.yml @@ -84,3 +84,11 @@ external: ecs - name: cloud.region external: ecs +- name: package.name + external: ecs +- name: package.type + external: ecs +- name: package.path + external: ecs +- name: package.version + external: ecs diff --git a/packages/cloud_security_posture/data_stream/vulnerabilities/fields/vulnerability.yml b/packages/cloud_security_posture/data_stream/vulnerabilities/fields/vulnerability.yml index 076bd6920d7..fa85718d63a 100644 --- a/packages/cloud_security_posture/data_stream/vulnerabilities/fields/vulnerability.yml +++ b/packages/cloud_security_posture/data_stream/vulnerabilities/fields/vulnerability.yml @@ -1,11 +1,7 @@ - name: vulnerability type: group fields: - - name: package.version - type: keyword - - name: package.name - type: keyword - - name: package.fixed_version + - name: class type: keyword - name: title type: keyword From 0e2e1f7481cb5d3d6153b39420379f157b10b838 Mon Sep 17 00:00:00 2001 From: uri-weisman Date: Mon, 1 May 2023 13:48:33 +0300 Subject: [PATCH 2/5] update version --- packages/cloud_security_posture/changelog.yml | 5 ++++- packages/cloud_security_posture/manifest.yml | 2 +- 2 files changed, 5 insertions(+), 2 deletions(-) diff --git a/packages/cloud_security_posture/changelog.yml b/packages/cloud_security_posture/changelog.yml index 0c9a43abcd0..4064e51c2cc 100644 --- a/packages/cloud_security_posture/changelog.yml +++ b/packages/cloud_security_posture/changelog.yml @@ -1,5 +1,5 @@ # newer versions go on top -- version: "1.3.0-preview7" +- version: "1.3.0-preview8" changes: - description: New vulnerability management integration type: enhancement @@ -16,6 +16,9 @@ - description: Change CSPM resource collection period type: enhancement link: https://github.com/elastic/integrations/pull/5898 + - description: Update CNVM index mapping + type: enhancement + link: https://github.com/elastic/integrations/pull/6038 - version: "1.2.11" changes: - description: Fixed readme diff --git a/packages/cloud_security_posture/manifest.yml b/packages/cloud_security_posture/manifest.yml index 8709137004d..0fd08cefb89 100644 --- a/packages/cloud_security_posture/manifest.yml +++ b/packages/cloud_security_posture/manifest.yml @@ -1,7 +1,7 @@ format_version: 2.3.0 name: cloud_security_posture title: "Security Posture Management" -version: "1.3.0-preview7" +version: "1.3.0-preview8" source: license: "Elastic-2.0" description: "Identify & remediate configuration risks in your Cloud infrastructure" From 5e19265f74966d50b3bd6422f8445b87a8b499b1 Mon Sep 17 00:00:00 2001 From: uri-weisman Date: Tue, 2 May 2023 16:13:53 +0300 Subject: [PATCH 3/5] add package.fixed_version --- .../data_stream/vulnerabilities/fields/fields.yml | 2 ++ 1 file changed, 2 insertions(+) create mode 100644 packages/cloud_security_posture/data_stream/vulnerabilities/fields/fields.yml diff --git a/packages/cloud_security_posture/data_stream/vulnerabilities/fields/fields.yml b/packages/cloud_security_posture/data_stream/vulnerabilities/fields/fields.yml new file mode 100644 index 00000000000..7ccf56d249e --- /dev/null +++ b/packages/cloud_security_posture/data_stream/vulnerabilities/fields/fields.yml @@ -0,0 +1,2 @@ +- name: package.fixed_version + type: keyword \ No newline at end of file From 22205b3432d845de839919577ba5c9d04c44c0f9 Mon Sep 17 00:00:00 2001 From: uri-weisman Date: Wed, 3 May 2023 14:49:57 +0300 Subject: [PATCH 4/5] add mappings --- .../data_stream/vulnerabilities/fields/fields.yml | 2 +- .../data_stream/vulnerabilities/fields/vulnerability.yml | 6 ++++++ 2 files changed, 7 insertions(+), 1 deletion(-) diff --git a/packages/cloud_security_posture/data_stream/vulnerabilities/fields/fields.yml b/packages/cloud_security_posture/data_stream/vulnerabilities/fields/fields.yml index 7ccf56d249e..733146574d6 100644 --- a/packages/cloud_security_posture/data_stream/vulnerabilities/fields/fields.yml +++ b/packages/cloud_security_posture/data_stream/vulnerabilities/fields/fields.yml @@ -1,2 +1,2 @@ - name: package.fixed_version - type: keyword \ No newline at end of file + type: keyword diff --git a/packages/cloud_security_posture/data_stream/vulnerabilities/fields/vulnerability.yml b/packages/cloud_security_posture/data_stream/vulnerabilities/fields/vulnerability.yml index fa85718d63a..1ee67cb12db 100644 --- a/packages/cloud_security_posture/data_stream/vulnerabilities/fields/vulnerability.yml +++ b/packages/cloud_security_posture/data_stream/vulnerabilities/fields/vulnerability.yml @@ -3,6 +3,12 @@ fields: - name: class type: keyword + - name: package.version + type: keyword + - name: package.name + type: keyword + - name: package.fixed_version + type: keyword - name: title type: keyword - name: data_source.ID From 5541fc51962221bfe6228248760d5ecebabda757 Mon Sep 17 00:00:00 2001 From: Uri Weisman <68195305+uri-weisman@users.noreply.github.com> Date: Thu, 4 May 2023 09:35:05 +0300 Subject: [PATCH 5/5] Update changelog.yml --- packages/cloud_security_posture/changelog.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/cloud_security_posture/changelog.yml b/packages/cloud_security_posture/changelog.yml index 4064e51c2cc..60f145ec933 100644 --- a/packages/cloud_security_posture/changelog.yml +++ b/packages/cloud_security_posture/changelog.yml @@ -18,7 +18,7 @@ link: https://github.com/elastic/integrations/pull/5898 - description: Update CNVM index mapping type: enhancement - link: https://github.com/elastic/integrations/pull/6038 + link: https://github.com/elastic/integrations/pull/6069 - version: "1.2.11" changes: - description: Fixed readme