[Rule Tuning] Elastic Security External Alerts (#4962)
This commit is contained in:
Mika Ayenson, PhD
committed by
GitHub
GitHub
parent
a726da5e83
commit
215cdf0f8f
@@ -5,7 +5,7 @@ maturity = "production"
|
||||
promotion = true
|
||||
min_stack_version = "8.18.0"
|
||||
min_stack_comments = "Introduced support for Elastic Security alert promotion"
|
||||
updated_date = "2025/08/04"
|
||||
updated_date = "2025/08/05"
|
||||
|
||||
[rule]
|
||||
author = ["Elastic"]
|
||||
@@ -56,7 +56,7 @@ The Elastic Security integration facilitates transferring security alert data fr
|
||||
references = ["https://docs.elastic.co/en/integrations/elastic_security"]
|
||||
risk_score = 47
|
||||
rule_id = "720fc1aa-e195-4a1d-81d8-04edfe5313ed"
|
||||
rule_name_override = "rule.name"
|
||||
rule_name_override = "kibana.alert.rule.name"
|
||||
setup = """## Setup
|
||||
|
||||
### Elastic Security Alert Integration
|
||||
|
||||
Reference in New Issue
Block a user