diff --git a/rules/integrations/dga/command_and_control_ml_dga_activity_using_sunburst_domain.toml b/rules/integrations/dga/command_and_control_ml_dga_activity_using_sunburst_domain.toml
index 9511cf51e..8fd4b2d30 100644
--- a/rules/integrations/dga/command_and_control_ml_dga_activity_using_sunburst_domain.toml
+++ b/rules/integrations/dga/command_and_control_ml_dga_activity_using_sunburst_domain.toml
@@ -42,7 +42,6 @@ The DGA Detection integration consists of an ML-based framework to detect DGA ac
 - In the query bar, search for Domain Generation Algorithm Detection and select the integration to see more details about it.
 - Follow the instructions under the **Installation** section.
 - For this rule to work, complete the instructions through **Configure the ingest pipeline**.
-``` 
 """
 severity = "critical"
 tags = [
diff --git a/rules/integrations/dga/command_and_control_ml_dga_high_sum_probability.toml b/rules/integrations/dga/command_and_control_ml_dga_high_sum_probability.toml
index 0832692eb..5f43ccebc 100644
--- a/rules/integrations/dga/command_and_control_ml_dga_high_sum_probability.toml
+++ b/rules/integrations/dga/command_and_control_ml_dga_high_sum_probability.toml
@@ -44,7 +44,6 @@ The DGA Detection integration consists of an ML-based framework to detect DGA ac
 - In the query bar, search for Domain Generation Algorithm Detection and select the integration to see more details about it.
 - Follow the instructions under the **Installation** section.
 - For this rule to work, complete the instructions through **Add preconfigured anomaly detection jobs**.
-```
 
 ### Anomaly Detection Setup
 Before you can enable this rule, you'll need to enable the corresponding Anomaly Detection job. 
diff --git a/rules/integrations/dga/command_and_control_ml_dns_request_high_dga_probability.toml b/rules/integrations/dga/command_and_control_ml_dns_request_high_dga_probability.toml
index 5d7e802bb..c144bd2dd 100644
--- a/rules/integrations/dga/command_and_control_ml_dns_request_high_dga_probability.toml
+++ b/rules/integrations/dga/command_and_control_ml_dns_request_high_dga_probability.toml
@@ -42,7 +42,6 @@ The DGA Detection integration consists of an ML-based framework to detect DGA ac
 - In the query bar, search for Domain Generation Algorithm Detection and select the integration to see more details about it.
 - Follow the instructions under the **Installation** section.
 - For this rule to work, complete the instructions through **Configure the ingest pipeline**.
-```
 """
 severity = "low"
 tags = [
diff --git a/rules/integrations/dga/command_and_control_ml_dns_request_predicted_to_be_a_dga_domain.toml b/rules/integrations/dga/command_and_control_ml_dns_request_predicted_to_be_a_dga_domain.toml
index d86110729..9bdf80ef7 100644
--- a/rules/integrations/dga/command_and_control_ml_dns_request_predicted_to_be_a_dga_domain.toml
+++ b/rules/integrations/dga/command_and_control_ml_dns_request_predicted_to_be_a_dga_domain.toml
@@ -42,7 +42,6 @@ The DGA Detection integration consists of an ML-based framework to detect DGA ac
 - In the query bar, search for Domain Generation Algorithm Detection and select the integration to see more details about it.
 - Follow the instructions under the **Installation** section.
 - For this rule to work, complete the instructions through **Configure the ingest pipeline**.
-```
 """
 severity = "low"
 tags = [
diff --git a/rules/integrations/problemchild/defense_evasion_ml_suspicious_windows_event.toml b/rules/integrations/problemchild/defense_evasion_ml_suspicious_windows_event.toml
index e2d62ad5d..753c41c17 100644
--- a/rules/integrations/problemchild/defense_evasion_ml_suspicious_windows_event.toml
+++ b/rules/integrations/problemchild/defense_evasion_ml_suspicious_windows_event.toml
@@ -42,7 +42,6 @@ The LotL Attack Detection integration detects living-off-the-land activity in Wi
 - In the query bar, search for Living off the Land Attack Detection and select the integration to see more details about it.
 - Follow the instructions under the **Installation** section.
 - For this rule to work, complete the instructions through **Configure the ingest pipeline**.
-```
 """
 severity = "low"
 tags = [
diff --git a/rules/integrations/problemchild/defense_evasion_ml_suspicious_windows_event_high_probability.toml b/rules/integrations/problemchild/defense_evasion_ml_suspicious_windows_event_high_probability.toml
index 54e016455..ec32312a6 100644
--- a/rules/integrations/problemchild/defense_evasion_ml_suspicious_windows_event_high_probability.toml
+++ b/rules/integrations/problemchild/defense_evasion_ml_suspicious_windows_event_high_probability.toml
@@ -42,7 +42,6 @@ The LotL Attack Detection integration detects living-off-the-land activity in Wi
 - In the query bar, search for Living off the Land Attack Detection and select the integration to see more details about it.
 - Follow the instructions under the **Installation** section.
 - For this rule to work, complete the instructions through **Configure the ingest pipeline**.
-```
 """
 severity = "low"
 tags = [