Skip to content

[HTA] Add new security integration package to publish dashboards for Security: Host module#13001

Merged
sodhikirti07 merged 10 commits intomainfrom
add-security-host-utils-package
Mar 7, 2025
Merged

[HTA] Add new security integration package to publish dashboards for Security: Host module#13001
sodhikirti07 merged 10 commits intomainfrom
add-security-host-utils-package

Conversation

@sodhikirti07
Copy link
Contributor

@sodhikirti07 sodhikirti07 commented Mar 6, 2025

Proposed commit message

Added new security integration package Host Traffic Anomalies that publishes a dashboard for prebuilt ML module, Security: Host.

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.
  • I have verified that any added dashboard complies with Kibana's Dashboard good practices

Author's Checklist

  • Added README having instructions to setup Security: Host and configure dashboard
  • Added tag for Security Solution
  • Added dashboard object for Security: Host module.

How to test this PR locally

Related issues

Screenshots

@sodhikirti07
Copy link
Contributor Author

sodhikirti07 commented Mar 6, 2025

I tested this package on cloud and below are some of the screenshots:

  • Overview of the package:
    image

  • Host Traffic Anomalies Dashboard:
    image

image

image

@sodhikirti07 sodhikirti07 requested review from a team and dhru42 March 6, 2025 21:46
@sodhikirti07 sodhikirti07 marked this pull request as ready for review March 7, 2025 14:28
@jmcarlock
Copy link
Contributor

jmcarlock commented Mar 7, 2025

Successfully tested this locally with 8.18.0-SNAPSHOT and 9.0.0-SNAPSHOT using elastic-package.

Screenshot 2025-03-07 at 9 47 50 AM

jmcarlock
jmcarlock approved these changes Mar 7, 2025
View reviewed changes
Copy link
Contributor

@jmcarlock jmcarlock left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good! Tested successfully on 8.18 and 9.0

susan-shu-c
susan-shu-c requested changes Mar 7, 2025
View reviewed changes
@susan-shu-c susan-shu-c self-requested a review March 7, 2025 16:22
susan-shu-c
susan-shu-c reviewed Mar 7, 2025
View reviewed changes
Copy link
Member

@susan-shu-c susan-shu-c left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Added comments

@sodhikirti07 sodhikirti07 requested a review from susan-shu-c March 7, 2025 16:30
@andrewkroh andrewkroh added New Integration Issue or pull request for creating a new integration package. Team:Security-Applied ML Elastic Security Protections Machine Learning (ML) team [elastic/sec-applied-ml] labels Mar 7, 2025
@elasticmachine
Copy link

elasticmachine commented Mar 7, 2025

Pinging @elastic/sec-applied-ml (Team:Security-Applied ML)

andrewkroh
andrewkroh reviewed Mar 7, 2025
View reviewed changes
packages/hta/manifest.yml Outdated
type: image/png
icons:
- src: /img/security-logo-color-64px.svg
title: Sample logo
Copy link
Member

@andrewkroh andrewkroh Mar 7, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

"Sample logo" -> Elastic Security logo ?

Copy link
Contributor Author

@sodhikirti07 sodhikirti07 Mar 7, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes, I suppose this should be the logo, since this dashboard will go under Security > dashboards.

sodhikirti07 and others added 2 commits March 7, 2025 11:45
@sodhikirti07 @andrewkroh
Update packages/hta/manifest.yml
67f7a43 
Co-authored-by: Andrew Kroh <andrew.kroh@elastic.co>
@sodhikirti07
Update manifest.yml
becdbd1
@elastic-sonarqube
Copy link

elastic-sonarqube bot commented Mar 7, 2025

Quality Gate failed Quality Gate failed

Failed conditions
72.9% Coverage on New Code (required ≥ 80%)

See analysis details on SonarQube

@elasticmachine
Copy link

elasticmachine commented Mar 7, 2025

💚 Build Succeeded

History

@sodhikirti07 sodhikirti07 merged commit 377b21a into main Mar 7, 2025
6 of 7 checks passed
@sodhikirti07 sodhikirti07 deleted the add-security-host-utils-package branch March 7, 2025 17:37
@elastic-vault-github-plugin-prod
Copy link

elastic-vault-github-plugin-prod bot commented Mar 7, 2025

Package hta - 1.0.0 containing this change is available at https://epr.elastic.co/package/hta/1.0.0/

@andrewkroh andrewkroh added dashboard Relates to a Kibana dashboard bug, enhancement, or modification. Integration:hta Host Traffic Anomalies labels Mar 13, 2025
flexitrev pushed a commit that referenced this pull request Mar 20, 2025
@sodhikirti07 @flexitrev
[HTA] Add new security integration package to publish dashboards for …
22771ee 
…`Security: Host` module (#13001)

New integration to publish dashboard for Security-Host ML module
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@andrewkroh andrewkroh andrewkroh left review comments

@jmcarlock jmcarlock jmcarlock approved these changes

@susan-shu-c susan-shu-c susan-shu-c approved these changes

@dhru42 dhru42 Awaiting requested review from dhru42

Assignees

No one assigned

Labels

dashboard Relates to a Kibana dashboard bug, enhancement, or modification. Integration:hta Host Traffic Anomalies New Integration Issue or pull request for creating a new integration package. Team:Security-Applied ML Elastic Security Protections Machine Learning (ML) team [elastic/sec-applied-ml]

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@sodhikirti07 @jmcarlock @elasticmachine @andrewkroh @susan-shu-c