Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Automation test #21

Open
wants to merge 10 commits into
base: CohesitySecurity.internal
Choose a base branch
from
Open

Automation test #21

wants to merge 10 commits into from

Conversation

yinghuang123
Copy link

Required items, please complete

Change(s):

  • See guidance below

Reason for Change(s):

  • See guidance below

Version Updated:

  • Required only for Detections/Analytic Rule templates
  • See guidance below

Testing Completed:

  • See guidance below

Checked that the validations are passing and have addressed any issues that are present:

  • See guidance below

Guidance <- remove section before submitting

Before submitting this PR please ensure that you have read the following sections and filled out the changes, reason for change and testing complete sections:

Thank you for your contribution to the Microsoft Sentinel Github repo.

Details of the code changes in your submitted PR. Providing descriptions for pull requests ensures there is context to changes being made and greatly enhances the code review process. Providing associated Issues that this resolves also easily connects the reason.

Change(s):

  • Updated syntax for XYZ.yaml

Reason for Change(s):

Version updated:

  • Yes
  • Detections/Analytic Rule templates are required to have the version updated

The code should have been tested in a Microsoft Sentinel environment that does not have any custom parsers, functions or tables, so that you validate no incorrect syntax and execution functions properly. If your submission requires a custom parser or function, it must be submitted with the PR.

Testing Completed:

  • Yes/No/Need Help

Note: If updating a detection, you must update the version field.

Before the submission has been made, please look at running the KQL and Yaml Validation Checks locally.
https://github.com/Azure/Azure-Sentinel#run-kql-validation-locally

Checked that the validations are passing and have addressed any issues that are present:

  • Yes/No/Need Help

Note: Let us know if you have tried fixing the validation error and need help.

References:

@yinghuang123
add test codes for playbook: Cohesity_CreateOrUpdate_ServiceNow_Incid…
ad530b9 
…ent.
@yinghuang123
add comments.
f66361f
@yinghuang123
Sensitive information such as api_key, resource_group, workspace_name…
4aa4d43 
…, and service_now_password have been masked with asterisks.
@yinghuang123
refactor and implement the automation for cohesity solution.
05331e3
@yinghuang123
manual update the cohesity.json.
1d8c98f
@yinghuang123
change according to review feedback.
7c4c5e2
@yinghuang123
Merge remote-tracking branch 'cohesity/CohesitySecurity.internal' int…
b7b176f 
…o automation_test
@yinghuang123
Merge remote-tracking branch 'cohesity/CohesitySecurity.internal' int…
146bd00 
…o automation_test
@yinghuang123
Merge remote-tracking branch 'cohesity/automation_test' into automati…
489253f 
…on_test

# Conflicts:
#	Solutions/CohesitySecurity/Tests/az.test.py
#	Solutions/CohesitySecurity/cohesity.json
@yinghuang123
add more debug info during deployment and test.
f2ec651 
refactor the role assignment.
add configuration for playbooks: Cohesity_Delete_Incident_Blobs and Cohesity_CreateOrUpdate_ServiceNow_Incident, etc.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
1 participant
@yinghuang123