[Security Solution][UX] Disable hover actions for unmapped fields in the Table tab of Alert/Event flyout. #136351
Labels
Team: SecuritySolution
Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc.
Team:Threat Hunting:Investigations
Security Solution Investigations Team
UX
Comments
YulNaumenko
added
UX
Team: SecuritySolution
|
Pinging @elastic/security-solution (Team: SecuritySolution) |
|
I wonder if this is still an issue. When I look at the old and new flyout's table tabs, I see the individual nested values have their own row. old flyout new flyout @michaelolo24 do you think we could close this ticket? |
|
closing as this behavior has been fixed |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
When we are using Hover Actions (like add/remove to filter) in the Alert or Event flyout Table for the unmapped fields (object to strings array representation):
it can lead to the confusing UX where we are not able to filter correctly by that value:
As a solution for that issue, I'm suggesting to disable hover actions in the table for that type of fields.
cc: @paulewing
The similar experience in Discover:
The text was updated successfully, but these errors were encountered: