Skip to content

Commit

Permalink
Update RNN to RRN (#3130)
Browse files Browse the repository at this point in the history
  • Loading branch information
@rmurray-r7
rmurray-r7 authored Feb 12, 2025
1 parent f98abbc commit bf21df0
Show file tree
Hide file tree
Showing 8 changed files with 19 additions and 17 deletions.
12 changes: 6 additions & 6 deletions plugins/rapid7_insightidr/.CHECKSUM
View file
Original file line number Diff line number Diff line change
@@ -1,15 +1,15 @@
{
"spec": "1c9f296df5aaa8404b7c39fd561067b7",
"manifest": "e39481668448008f285f6b0e8116b830",
"setup": "af4fa71cbbd18152bf7d3f61be3628ba",
"spec": "1878f1bde2b3ff9e9470920cad1ecfa7",
"manifest": "50df8e92c5038fa38ed6a9ffb03f4bd6",
"setup": "8c8403f01d07d636c13b061f130a747c",
"schemas": [
{
"identifier": "add_indicators_to_a_threat/schema.py",
"hash": "95108ef162aa99c34e0d20ba2fd3035e"
},
{
"identifier": "advanced_query_on_log/schema.py",
"hash": "0b4a760f15d71f696775bcb2aadc86c7"
"hash": "6048178ee67416ac0bae48e8db26aaeb"
},
{
"identifier": "advanced_query_on_log_set/schema.py",
Expand Down Expand Up @@ -133,11 +133,11 @@
},
{
"identifier": "set_disposition_of_investigation/schema.py",
"hash": "b053a968877dff9c3372c57803d95e1e"
"hash": "98daf528a1ffb141ff01704b9858b461"
},
{
"identifier": "set_priority_of_investigation/schema.py",
"hash": "0c0d5c0f2747de31df79e12da5c4cbb4"
"hash": "038b41a4b71f80fdcb4b4a7827624ed8"
},
{
"identifier": "set_status_of_investigation_action/schema.py",
Expand Down
2 changes: 1 addition & 1 deletion plugins/rapid7_insightidr/bin/komand_rapid7_insightidr
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@ from sys import argv

Name = "Rapid7 InsightIDR"
Vendor = "rapid7"
Version = "11.0.1"
Version = "11.0.2"
Description = "This plugin allows you to add indicators to a threat and see the status of investigations"


Expand Down
5 changes: 3 additions & 2 deletions plugins/rapid7_insightidr/help.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2417,7 +2417,7 @@ This action is used to allows to change the disposition of the investigation wit
|Name|Type|Default|Required|Description|Enum|Example|Placeholder|Tooltip|
| :--- | :--- | :--- | :--- | :--- | :--- | :--- | :--- | :--- |
|disposition|string|None|True|Investigation's disposition|["BENIGN", "MALICIOUS", "NOT_APPLICABLE"]|BENIGN|None|None|
|id|string|None|True|The ID or RNN of the investigation to change the disposition of|None|rrn:investigation:example:11111111-1111-1111-1111-111111111111:investigation:11111111|None|None|
|id|string|None|True|The ID or RRN of the investigation to change the disposition of|None|rrn:investigation:example:11111111-1111-1111-1111-111111111111:investigation:11111111|None|None|

Example input:

Expand Down Expand Up @@ -2466,7 +2466,7 @@ This action is used to allows to change the priority of the investigation with t

|Name|Type|Default|Required|Description|Enum|Example|Placeholder|Tooltip|
| :--- | :--- | :--- | :--- | :--- | :--- | :--- | :--- | :--- |
|id|string|None|True|The ID or RNN of the investigation to change the priority of|None|rrn:investigation:example:11111111-1111-1111-1111-111111111111:investigation:11111111|None|None|
|id|string|None|True|The ID or RRN of the investigation to change the priority of|None|rrn:investigation:example:11111111-1111-1111-1111-111111111111:investigation:11111111|None|None|
|priority|string|None|True|Investigation's priority|["UNSPECIFIED", "LOW", "MEDIUM", "HIGH", "CRITICAL"]|LOW|None|None|

Example input:
Expand Down Expand Up @@ -3428,6 +3428,7 @@ Example output:

# Version History

* 11.0.2 - Updating descriptions for 'set_priority_of_investigation' & 'set_disposition_of_investigation'
* 11.0.1 - Updating `Advanced Query on Log` description
* 11.0.0 - Updating schema for query actions (`advanced_query_on_log`, `advanced_query_on_log_set` & `query`) to account for missing keys/invalid mapping in the schema
* 10.3.4 - Bumping requirements.txt | SDK bump to 6.2.2
Expand Down
2 changes: 1 addition & 1 deletion plugins/rapid7_insightidr/komand_rapid7_insightidr/actions/advanced_query_on_log/schema.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@


class Component:
DESCRIPTION = "Realtime query an InsightIDR log. This will query individual logs for results. Note only 500 results will be returned from a single call, if all results are required for this query please use smaller timeranges. If both a log name and a log ID are provided, the log ID will be used. However, either the log name or log ID is required for the action to execute"
DESCRIPTION = "Realtime query an InsightIDR log. This will query individual logs for results. Note only 500 results will be returned from a single call, if all results are required for this query please use smaller timeranges. If both a log name and a log ID are provided, the log ID will be used. However, either the log name OR log ID is required for the action to execute"


class Input:
Expand Down
2 changes: 1 addition & 1 deletion ...d7_insightidr/komand_rapid7_insightidr/actions/set_disposition_of_investigation/schema.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,7 @@ class SetDispositionOfInvestigationInput(insightconnect_plugin_runtime.Input):
"id": {
"type": "string",
"title": "ID",
"description": "The ID or RNN of the investigation to change the disposition of",
"description": "The ID or RRN of the investigation to change the disposition of",
"order": 1
}
},
Expand Down
2 changes: 1 addition & 1 deletion ...apid7_insightidr/komand_rapid7_insightidr/actions/set_priority_of_investigation/schema.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,7 @@ class SetPriorityOfInvestigationInput(insightconnect_plugin_runtime.Input):
"id": {
"type": "string",
"title": "ID or RRN",
"description": "The ID or RNN of the investigation to change the priority of",
"description": "The ID or RRN of the investigation to change the priority of",
"order": 1
},
"priority": {
Expand Down
9 changes: 5 additions & 4 deletions plugins/rapid7_insightidr/plugin.spec.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@ products: [insightconnect]
name: rapid7_insightidr
title: "Rapid7 InsightIDR"
description: "This plugin allows you to add indicators to a threat and see the status of investigations"
version: 11.0.1
version: 11.0.2
connection_version: 5
supported_versions: ["Latest release successfully tested on 2024-09-10."]
vendor: rapid7
Expand Down Expand Up @@ -36,6 +36,7 @@ sdk:
version: 6.2.4
user: nobody
version_history:
- "11.0.2 - Updating descriptions for 'set_priority_of_investigation' & 'set_disposition_of_investigation'"
- "11.0.1 - Updating `Advanced Query on Log` description"
- "11.0.0 - Updating schema for query actions (`advanced_query_on_log`, `advanced_query_on_log_set` & `query`) to account for missing keys/invalid mapping in the schema"
- "10.3.4 - Bumping requirements.txt | SDK bump to 6.2.2"
Expand Down Expand Up @@ -1733,7 +1734,7 @@ actions:
input:
id:
title: ID or RRN
description: The ID or RNN of the investigation to change the priority of
description: The ID or RRN of the investigation to change the priority of
type: string
required: true
example: rrn:investigation:example:11111111-1111-1111-1111-111111111111:investigation:11111111
Expand Down Expand Up @@ -1762,7 +1763,7 @@ actions:
input:
id:
title: ID
description: The ID or RNN of the investigation to change the disposition of
description: The ID or RRN of the investigation to change the disposition of
type: string
required: true
example: rrn:investigation:example:11111111-1111-1111-1111-111111111111:investigation:11111111
Expand Down Expand Up @@ -1975,7 +1976,7 @@ actions:
example: '[{"log": {"id": "0b9a242d-d2fb-4e42-8656-eb5ff64d652f","name": "Windows Defender","tokens": ["bc38a911-65f1-4755-cca3-a330a6336b3a"],"structures": ["1238a911-65f1-4755-cca3-a330a6336b3a"],"user_data": {"platform_managed": "true"},"source_type": "token","token_seed": null,"retention_period": "default","links": [{"rel": "Related","href": "https://example.com"}],"rrn": "rrn:logsearch:us:bc38a911-65f1-4755-cca3-a330a6336b3a:log:bc38a911-65f1-4755-cca3-a330a6336b3a","logsets_info": [{"id": "bc38a911-65f1-4755-cca3-a330a6336b3a","name": "Unparsed Data","rrn": "rrn:logsearch:us:bc38a911-65f1-4755-cca3-a330a6336b3a:logset:bc38a911-65f1-4755-cca3-a330a6336b3a","links": [{"rel": "Self","href": "https://example.com/3e966a63-bf3a-4a3c-8903-979c7e90ce85"}]}]}}]'
advanced_query_on_log:
title: Advanced Query on Log
description: Realtime query an InsightIDR log. This will query individual logs for results. Note only 500 results will be returned from a single call, if all results are required for this query please use smaller timeranges. If both a log name and a log ID are provided, the log ID will be used. However, either the log name or log ID is required for the action to execute
description: Realtime query an InsightIDR log. This will query individual logs for results. Note only 500 results will be returned from a single call, if all results are required for this query please use smaller timeranges. If both a log name and a log ID are provided, the log ID will be used. However, either the log name OR log ID is required for the action to execute
input:
query:
title: Query
Expand Down
2 changes: 1 addition & 1 deletion plugins/rapid7_insightidr/setup.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@


setup(name="rapid7_insightidr-rapid7-plugin",
version="11.0.1",
version="11.0.2",
description="This plugin allows you to add indicators to a threat and see the status of investigations",
author="rapid7",
author_email="",
Expand Down

0 comments on commit bf21df0

Please sign in to comment.