Merge branch 'master' into dev-task/CIAC-9094/trigger-contribution-build

Packs/CrowdStrikeFalcon/Integrations/CrowdStrikeFalcon/CrowdStrikeFalcon.yml

@@ -5011,7 +5011,7 @@ script:
     - contextPath: CrowdStrike.IOARules.version_ids
       description: The IOA Rule's version ID.
       type: String
-  dockerimage: demisto/py3-tools:1.0.0.88283
+  dockerimage: demisto/py3-tools:1.0.0.91603
   isfetch: true
   ismappable: true
   isremotesyncin: true

Packs/CrowdStrikeFalcon/ReleaseNotes/1_13_2.md

@@ -0,0 +1,3 @@
+#### Integrations
+##### CrowdStrike Falcon
+- Updated the Docker image to: *demisto/py3-tools:1.0.0.91603*.

Packs/CrowdStrikeFalcon/pack_metadata.json

@@ -2,7 +2,7 @@
     "name": "CrowdStrike Falcon",
     "description": "The CrowdStrike Falcon OAuth 2 API (formerly the Falcon Firehose API), enables fetching and resolving detections, searching devices, getting behaviors by ID, containing hosts, and lifting host containment.",
     "support": "xsoar",
-    "currentVersion": "1.13.1",
+    "currentVersion": "1.13.2",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",

Packs/FeedAWS/Integrations/FeedAWS/FeedAWS.yml

@@ -162,7 +162,7 @@ script:
       name: limit
     description: Fetches indicators from the feed.
     name: aws-get-indicators
-  dockerimage: demisto/py3-tools:1.0.0.86691
+  dockerimage: demisto/py3-tools:1.0.0.91603
   feed: true
   runonce: false
   script: '-'

Packs/FeedAWS/ReleaseNotes/1_1_50.md

@@ -0,0 +1,3 @@
+#### Integrations
+##### AWS Feed
+- Updated the Docker image to: *demisto/py3-tools:1.0.0.91603*.

Packs/FeedAWS/pack_metadata.json

@@ -2,7 +2,7 @@
     "name": "AWS Feed",
     "description": "Indicators feed from AWS",
     "support": "xsoar",
-    "currentVersion": "1.1.49",
+    "currentVersion": "1.1.50",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",

Packs/GenericSQL/Integrations/GenericSQL/GenericSQL.yml

@@ -164,7 +164,7 @@ script:
       name: bind_variables_values
     description: Running a sql query.
     name: sql-command
-  dockerimage: demisto/genericsql:1.1.0.89212
+  dockerimage: demisto/genericsql:1.1.0.91695
   isfetch: true
   runonce: false
   script: '-'

Packs/GenericSQL/ReleaseNotes/1_2_3.md

@@ -0,0 +1,3 @@
+#### Integrations
+##### Generic SQL
+- Updated the Docker image to: *demisto/genericsql:1.1.0.91695*.

Packs/GenericSQL/pack_metadata.json

@@ -3,7 +3,7 @@
     "description": "Connect and execute sql queries in 4 Databases: MySQL, PostgreSQL, Microsoft SQL Server and Oracle",
     "support": "xsoar",
     "serverMinVersion": "5.0.0",
-    "currentVersion": "1.2.2",
+    "currentVersion": "1.2.3",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",

Packs/ImageOCR/Integrations/ImageOCR/ImageOCR.yml

@@ -42,7 +42,7 @@ script:
     - contextPath: File.Text
       description: Extracted text from the passed image file.
       type: String
-  dockerimage: demisto/tesseract:1.0.0.88758
+  dockerimage: demisto/tesseract:1.0.0.91346
   runonce: false
   script: '-'
   type: python

Packs/ImageOCR/ReleaseNotes/1_1_29.md

@@ -0,0 +1,3 @@
+#### Integrations
+##### Image OCR
+- Updated the Docker image to: *demisto/tesseract:1.0.0.91346*.

Packs/ImageOCR/pack_metadata.json

@@ -2,7 +2,7 @@
     "name": "Image OCR",
     "description": "Extracts text from images.",
     "support": "xsoar",
-    "currentVersion": "1.1.28",
+    "currentVersion": "1.1.29",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",

Packs/MailListener/Integrations/MailListenerV2/MailListenerV2.yml

@@ -175,7 +175,7 @@ script:
       required: true
     description: Fetches an email by message ID and returns the information in an eml file format.
     name: mail-listener-get-email-as-eml
-  dockerimage: demisto/py3-tools:1.0.0.87615
+  dockerimage: demisto/py3-tools:1.0.0.91603
   isfetch: true
   runonce: false
   script: '-'

Packs/MailListener/ReleaseNotes/1_0_53.md

@@ -0,0 +1,3 @@
+#### Integrations
+##### Mail Listener v2
+- Updated the Docker image to: *demisto/py3-tools:1.0.0.91603*.

Packs/MailListener/pack_metadata.json

@@ -2,7 +2,7 @@
     "name": "Mail Listener",
     "description": "Listen to a mailbox, enable incident triggering via e-mail",
     "support": "xsoar",
-    "currentVersion": "1.0.52",
+    "currentVersion": "1.0.53",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",

Packs/NetscoutAED/README.md

@@ -1,3 +1,5 @@
+Note: Support for this Pack was moved to Partner starting MArch 31st, 2023. In case of any issues arise, please contact the Partner directly at [email protected].
+
 The Netscout Arbor Edge Defense (AED) integration enables you to block and allow outbound and inbound traffic.
 
 ## What does this pack do?

Packs/NetscoutAED/ReleaseNotes/1_0_26.md

@@ -0,0 +1,5 @@
+#### Integrations
+
+##### Netscout Arbor Edge Defense
+- Finished adoption process.
+

Packs/NetscoutAED/pack_metadata.json

@@ -1,11 +1,11 @@
 {
     "name": "Netscout Arbor Edge Defense - AED",
     "description": "Use the Netscout Arbor Edge Defense integration to detect and stop both inbound threats and outbound malicious communication from compromised internal devices.",
-    "support": "xsoar",
-    "currentVersion": "1.0.25",
-    "author": "Cortex XSOAR",
-    "url": "https://www.paloaltonetworks.com/cortex",
-    "email": "",
+    "support": "partner",
+    "currentVersion": "1.0.26",
+    "author": "Netscout",
+    "url": "https://www.netscout.com/product/arbor-aed-aem",
+    "email": "[email protected]",
     "categories": [
         "Network Security"
     ],
@@ -16,4 +16,4 @@
         "xsoar",
         "marketplacev2"
     ]
-}
+}

Packs/NetscoutArborSightline/README.md

@@ -1,3 +1,5 @@
+Note: Support for this Pack will be moved to Partner starting February 26, 2024.
+
 Arbor Sightline provides network visibility and reporting capabilities to help you identify and manage the mitigation of threats to your network. 
 
 

Packs/NetscoutArborSightline/ReleaseNotes/1_0_18.md

@@ -0,0 +1,5 @@
+#### Integrations
+
+##### Netscout Arbor Sightline (Peakflow)
+- Finished adoption process.
+

Packs/NetscoutArborSightline/pack_metadata.json

@@ -1,11 +1,11 @@
 {
     "name": "Netscout Arbor Sightline",
     "description": "Identify Potential Network Outages & Gain Business Insights to Solve Your Problems",
-    "support": "xsoar",
-    "currentVersion": "1.0.17",
-    "author": "Cortex XSOAR",
-    "url": "https://www.paloaltonetworks.com/cortex",
-    "email": "",
+    "support": "partner",
+    "currentVersion": "1.0.18",
+    "author": "Netscout",
+    "url": "https://www.netscout.com/product/arbor-sightline",
+    "email": "[email protected]",
     "created": "2021-01-13T15:10:51Z",
     "categories": [
         "Network Security"
@@ -17,4 +17,4 @@
         "xsoar",
         "marketplacev2"
     ]
-}
+}

Packs/Netskope/Integrations/NetskopeAPIv2/NetskopeAPIv2.py

@@ -1,10 +1,10 @@
+import demistomock as demisto  # noqa: F401
+from CommonServerPython import *  # noqa: F401
 import copy
 from http import HTTPStatus
 from typing import Any, NamedTuple
 from collections.abc import Callable
 
-import demistomock as demisto  # noqa: F401
-from CommonServerPython import *  # noqa: F401
 
 MIN_PAGE_NUM = 1
 MAX_PAGE_SIZE = 50
@@ -253,6 +253,31 @@ def update_url_list(
             "PUT", f"api/v2/policy/urllist/{url_list_id}", json_data=data
         )
 
+    def patch_url_list(
+        self,
+        url_list_id: str,
+        urls: list[str] = None,
+        list_type: str = None,
+    ) -> dict[str, Any]:
+        """Update the given URL list.
+
+        Args:
+            url_list_id (str): URL list ID.
+            urls (List[str]): URL lists.
+            list_type (str): URL list type.
+
+        Returns:
+            Dict[str, Any]: API response from Netskope.
+        """
+
+        data = {
+            "data": {"type": list_type, "urls": urls}
+        }
+
+        return self._http_request(
+            "PATCH", f"api/v2/policy/urllist/{url_list_id}/append", json_data=data
+        )
+
     def create_url_list(
         self,
         name: str,
@@ -547,6 +572,48 @@ def update_url_list_command(
     )
 
 
+def add_url_list_command(
+    client: Client,
+    args: dict[str, Any],
+) -> CommandResults:
+    """Update URL List.
+
+    Args:
+        client (Client): Netskope API client.
+        args (Dict[str, Any]): command arguments.
+
+    Returns:
+        CommandResults: outputs, readable outputs and raw response for XSOAR.
+    """
+    url_list_id = args["url_list_id"]
+    urls = argToList(args.get("urls"))
+    list_type = args.get("list_type", '').lower() or None
+
+    response = client.patch_url_list(
+        url_list_id,
+        urls,
+        list_type
+    )
+
+    deploy_url_list_if_required(args, client.deploy_url_list)
+    output = get_updated_url_list(response)
+
+    readable_output = tableToMarkdown(
+        name="URL list was updated successfully",
+        t=remove_empty_elements(output),
+        headers=URL_HEADER,
+        headerTransform=string_to_table_header,
+    )
+
+    return CommandResults(
+        readable_output=readable_output,
+        outputs_prefix="Netskope.URLList",
+        outputs_key_field="id",
+        outputs=output,
+        raw_response=response,
+    )
+
+
 def create_url_list_command(
     client: Client,
     args: dict[str, Any],
@@ -1182,7 +1249,7 @@ def optional_arg_to_boolean(arg: str | bool | None) -> bool | None:
     return argToBoolean(arg) if arg is not None else None
 
 
-def main() -> None:
+def main() -> None:  # pragma: no cover
     params: dict[str, Any] = demisto.params()
     args: dict[str, Any] = demisto.args()
 
@@ -1210,6 +1277,7 @@ def main() -> None:
             "netskope-url-lists-list": lists_url_list_command,
             "netskope-url-list-delete": delete_url_list_command,
             "netskope-client-list": list_client_command,
+            "netskope-url-list-add": add_url_list_command
         }
 
         if command == "test-module":