XSUP-30942/ Fix pan-os-platform-get-template-stacks Command Missing H…

…ostname

* Update Docker Image To demisto/armorblox  (#31203)

* Updated Metadata Of Pack Armorblox

* Added release notes to pack Armorblox

* Packs/Armorblox/Integrations/Armorblox/Armorblox.yml Docker image update

* Update Docker Image To demisto/py3-tools  (#31201)

* Updated Metadata Of Pack Intezer

* Added release notes to pack Intezer

* Packs/Intezer/Integrations/IntezerV2/IntezerV2.yml Docker image update

* Updated Metadata Of Pack Zabbix

* Added release notes to pack Zabbix

* Packs/Zabbix/Integrations/Zabbix/Zabbix.yml Docker image update

* Updated Metadata Of Pack FeedMalwareBazaar

* Added release notes to pack FeedMalwareBazaar

* Packs/FeedMalwareBazaar/Integrations/MalwareBazaarFeed/MalwareBazaarFeed.yml Docker image update

* Updated Metadata Of Pack FeedGCPWhitelist

* Added release notes to pack FeedGCPWhitelist

* Packs/FeedGCPWhitelist/Integrations/FeedGoogleIPRanges/FeedGoogleIPRanges.yml Docker image update

* Updated Metadata Of Pack AccentureCTI_Feed

* Added release notes to pack AccentureCTI_Feed

* Packs/AccentureCTI_Feed/Integrations/ACTIIndicatorFeed/ACTIIndicatorFeed.yml Docker image update

* Updated Metadata Of Pack SEKOIAIntelligenceCenter

* Added release notes to pack SEKOIAIntelligenceCenter

* Packs/SEKOIAIntelligenceCenter/Integrations/SEKOIAIntelligenceCenter/SEKOIAIntelligenceCenter.yml Docker image update

* Updated Metadata Of Pack JARM

* Added release notes to pack JARM

* Packs/JARM/Integrations/JARM/JARM.yml Docker image update

* Updated Metadata Of Pack CommonWidgets

* Added release notes to pack CommonWidgets

* Packs/CommonWidgets/Scripts/RSSWidget/RSSWidget.yml Docker image update

* Updated Metadata Of Pack FiltersAndTransformers

* Added release notes to pack FiltersAndTransformers

* Packs/FiltersAndTransformers/Scripts/Jmespath/Jmespath.yml Docker image update

* Update Docker Image To demisto/oci  (#31202)

* Updated Metadata Of Pack OracleCloudInfrastructure

* Added release notes to pack OracleCloudInfrastructure

* Packs/OracleCloudInfrastructure/Integrations/OracleCloudInfrastructureEventCollector/OracleCloudInfrastructureEventCollector.yml Docker image update

* Update Docker Image To demisto/accessdata  (#31200)

* Updated Metadata Of Pack Exterro

* Added release notes to pack Exterro

* Packs/Exterro/Integrations/Exterro/Exterro.yml Docker image update

* Fix DS108

---------

Co-authored-by: israelpolishook <[email protected]>

* Update Docker Image To demisto/carbon-black-cloud  (#31206)

* Updated Metadata Of Pack CarbonBlackDefense

* Added release notes to pack CarbonBlackDefense

* Packs/CarbonBlackDefense/Integrations/CarbonBlackLiveResponseCloud/CarbonBlackLiveResponseCloud.yml Docker image update

* Update Docker Image To demisto/taxii2  (#31205)

* Updated Metadata Of Pack FeedUnit42v2

* Added release notes to pack FeedUnit42v2

* Packs/FeedUnit42v2/Integrations/FeedUnit42v2/FeedUnit42v2.yml Docker image update

* Update Docker Image To demisto/crypto  (#31204)

* Updated Metadata Of Pack AzureKeyVault

* Added release notes to pack AzureKeyVault

* Packs/AzureKeyVault/Integrations/AzureKeyVault/AzureKeyVault.yml Docker image update

* Updated Metadata Of Pack AzureSentinel

* Added release notes to pack AzureSentinel

* Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml Docker image update

* Updated Metadata Of Pack AzureDevOps

* Added release notes to pack AzureDevOps

* Packs/AzureDevOps/Integrations/AzureDevOps/AzureDevOps.yml Docker image update

* Updated Metadata Of Pack MicrosoftCloudAppSecurity

* Added release notes to pack MicrosoftCloudAppSecurity

* Packs/MicrosoftCloudAppSecurity/Integrations/MicrosoftCloudAppSecurity/MicrosoftCloudAppSecurity.yml Docker image update

* Updated Metadata Of Pack AzureRiskyUsers

* Added release notes to pack AzureRiskyUsers

* Packs/AzureRiskyUsers/Integrations/AzureRiskyUsers/AzureRiskyUsers.yml Docker image update

* Updated Metadata Of Pack MicrosoftGraphGroups

* Added release notes to pack MicrosoftGraphGroups

* Packs/MicrosoftGraphGroups/Integrations/MicrosoftGraphGroups/MicrosoftGraphGroups.yml Docker image update

* Updated Metadata Of Pack AzureSQLManagement

* Added release notes to pack AzureSQLManagement

* Packs/AzureSQLManagement/Integrations/AzureSQLManagement/AzureSQLManagement.yml Docker image update

* Updated Metadata Of Pack MicrosoftGraphAPI

* Added release notes to pack MicrosoftGraphAPI

* Packs/MicrosoftGraphAPI/Integrations/MicrosoftGraphAPI/MicrosoftGraphAPI.yml Docker image update

* Updated Metadata Of Pack MicrosoftTeams

* Added release notes to pack MicrosoftTeams

* Packs/MicrosoftTeams/Integrations/MicrosoftTeamsManagement/MicrosoftTeamsManagement.yml Docker image update

* Updated Metadata Of Pack MicrosoftGraphApplications

* Added release notes to pack MicrosoftGraphApplications

* Packs/MicrosoftGraphApplications/Integrations/MicrosoftGraphApplications/MicrosoftGraphApplications.yml Docker image update

* Update Docker Image To demisto/opnsense  (#31208)

* Updated Metadata Of Pack OPNSense

* Added release notes to pack OPNSense

* Packs/OPNSense/Integrations/OPNSense/OPNSense.yml Docker image update

* Update Docker Image To demisto/auth-utils  (#31207)

* Updated Metadata Of Pack Cylance_Protect

* Added release notes to pack Cylance_Protect

* Packs/Cylance_Protect/Integrations/Cylance_Protect_v2/Cylance_Protect_v2.yml Docker image update

* Updated Metadata Of Pack Zoom

* Added release notes to pack Zoom

* Packs/Zoom/Integrations/ZoomEventCollector/ZoomEventCollector.yml Docker image update

* Updated Metadata Of Pack Silverfort

* Added release notes to pack Silverfort

* Packs/Silverfort/Integrations/Silverfort/Silverfort.yml Docker image update

* Updated Metadata Of Pack AzureDataExplorer

* Added release notes to pack AzureDataExplorer

* Packs/AzureDataExplorer/Integrations/AzureDataExplorer/AzureDataExplorer.yml Docker image update

* Updated Metadata Of Pack MicrosoftManagementActivity

* Added release notes to pack MicrosoftManagementActivity

* Packs/MicrosoftManagementActivity/Integrations/MicrosoftManagementActivity/MicrosoftManagementActivity.yml Docker image update

* Updated Metadata Of Pack Box

* Added release notes to pack Box

* Packs/Box/Integrations/BoxEventsCollector/BoxEventsCollector.yml Docker image update

* Packs/Box/Integrations/BoxV2/BoxV2.yml Docker image update

* Updated Metadata Of Pack Troubleshoot

* Added release notes to pack Troubleshoot

* Packs/Troubleshoot/Scripts/CertificatesTroubleshoot/CertificatesTroubleshoot.yml Docker image update

* commit

---------

Co-authored-by: israelpolishook <[email protected]>

* Update Docker Image To demisto/ippysocks-py3  (#31211)

* Updated Metadata Of Pack Whois

* Added release notes to pack Whois

* Packs/Whois/Integrations/Whois/Whois.yml Docker image update

* Update Docker Image To demisto/python3  (#31214)

* Updated Metadata Of Pack QualysFIM

* Added release notes to pack QualysFIM

* Packs/QualysFIM/Integrations/QualysFIM/QualysFIM.yml Docker image update

* Updated Metadata Of Pack FortiSIEM

* Added release notes to pack FortiSIEM

* Packs/FortiSIEM/Integrations/FortiSIEMV2/FortiSIEMV2.yml Docker image update

* Updated Metadata Of Pack FreshworksFreshservice

* Added release notes to pack FreshworksFreshservice

* Packs/FreshworksFreshservice/Integrations/FreshworksFreshservice/FreshworksFreshservice.yml Docker image update

* Updated Metadata Of Pack KnowBe4_KMSAT

* Added release notes to pack KnowBe4_KMSAT

* Packs/KnowBe4_KMSAT/Integrations/KnowBe4KMSATEventCollector/KnowBe4KMSATEventCollector.yml Docker image update

* Packs/KnowBe4_KMSAT/Integrations/KnowBe4KMSAT/KnowBe4KMSAT.yml Docker image update

* Updated Metadata Of Pack SafeNet_Trusted_Access

* Added release notes to pack SafeNet_Trusted_Access

* Packs/SafeNet_Trusted_Access/Integrations/SafeNetTrustedAccessEventCollector/SafeNetTrustedAccessEventCollector.yml Docker image update

* Updated Metadata Of Pack DelineaSS

* Added release notes to pack DelineaSS

* Packs/DelineaSS/Integrations/DelineaSS/DelineaSS.yml Docker image update

* Updated Metadata Of Pack Cryptocurrency

* Added release notes to pack Cryptocurrency

* Packs/Cryptocurrency/Integrations/Cryptocurrency/Cryptocurrency.yml Docker image update

* Updated Metadata Of Pack PANOSPolicyOptimizer

* Added release notes to pack PANOSPolicyOptimizer

* Packs/PANOSPolicyOptimizer/Integrations/PANOSPolicyOptimizer/PANOSPolicyOptimizer.yml Docker image update

* Updated Metadata Of Pack DeveloperTools

* Added release notes to pack DeveloperTools

* Packs/DeveloperTools/Integrations/CreateIncidents/CreateIncidents.yml Docker image update

* Update Docker Image To demisto/boto3py3  (#31215)

* Updated Metadata Of Pack SecurityIntelligenceServicesFeed

* Added release notes to pack SecurityIntelligenceServicesFeed

* Packs/SecurityIntelligenceServicesFeed/Integrations/SecurityIntelligenceServicesFeed/SecurityIntelligenceServicesFeed.yml Docker image update

* Updated Metadata Of Pack AWS-IAM

* Added release notes to pack AWS-IAM

* Packs/AWS-IAM/Integrations/AWS-IAM/AWS-IAM.yml Docker image update

* Updated Metadata Of Pack AWS-Route53

* Added release notes to pack AWS-Route53

* Packs/AWS-Route53/Integrations/AWSRoute53/AWSRoute53.yml Docker image update

* Updated Metadata Of Pack AWS-AccessAnalyzer

* Added release notes to pack AWS-AccessAnalyzer

* Packs/AWS-AccessAnalyzer/Integrations/AWS-AccessAnalyzer/AWS-AccessAnalyzer.yml Docker image update

* Updated Metadata Of Pack AWS-GuardDuty

* Added release notes to pack AWS-GuardDuty

* Packs/AWS-GuardDuty/Integrations/AWSGuardDutyEventCollector/AWSGuardDutyEventCollector.yml Docker image update

* Packs/AWS-GuardDuty/Integrations/AWSGuardDuty/AWSGuardDuty.yml Docker image update

* Updated Metadata Of Pack AWS-SecurityHub

* Added release notes to pack AWS-SecurityHub

* Packs/AWS-SecurityHub/Integrations/AWSSecurityHubEventCollector/AWSSecurityHubEventCollector.yml Docker image update

* Updated Metadata Of Pack Aws-SecretsManager

* Added release notes to pack Aws-SecretsManager

* Packs/Aws-SecretsManager/Integrations/AwsSecretsManager/AwsSecretsManager.yml Docker image update

* Update Docker Image To demisto/accessdata  (#31216)

* Updated Metadata Of Pack Exterro

* Added release notes to pack Exterro

* Packs/Exterro/Integrations/Exterro/Exterro.yml Docker image update

* Update Docker Image To demisto/oci  (#31218)

* Updated Metadata Of Pack OracleCloudInfrastructure

* Added release notes to pack OracleCloudInfrastructure

* Packs/OracleCloudInfrastructure/Integrations/OracleCloudInfrastructureEventCollector/OracleCloudInfrastructureEventCollector.yml Docker image update

* Update Docker Image To demisto/py3-tools  (#31217)

* Updated Metadata Of Pack Intezer

* Added release notes to pack Intezer

* Packs/Intezer/Integrations/IntezerV2/IntezerV2.yml Docker image update

* Updated Metadata Of Pack Zabbix

* Added release notes to pack Zabbix

* Packs/Zabbix/Integrations/Zabbix/Zabbix.yml Docker image update

* Updated Metadata Of Pack FeedMalwareBazaar

* Added release notes to pack FeedMalwareBazaar

* Packs/FeedMalwareBazaar/Integrations/MalwareBazaarFeed/MalwareBazaarFeed.yml Docker image update

* Updated Metadata Of Pack FeedGCPWhitelist

* Added release notes to pack FeedGCPWhitelist

* Packs/FeedGCPWhitelist/Integrations/FeedGoogleIPRanges/FeedGoogleIPRanges.yml Docker image update

* Updated Metadata Of Pack AccentureCTI_Feed

* Added release notes to pack AccentureCTI_Feed

* Packs/AccentureCTI_Feed/Integrations/ACTIIndicatorFeed/ACTIIndicatorFeed.yml Docker image update

* Updated Metadata Of Pack SEKOIAIntelligenceCenter

* Added release notes to pack SEKOIAIntelligenceCenter

* Packs/SEKOIAIntelligenceCenter/Integrations/SEKOIAIntelligenceCenter/SEKOIAIntelligenceCenter.yml Docker image update

* Updated Metadata Of Pack JARM

* Added release notes to pack JARM

* Packs/JARM/Integrations/JARM/JARM.yml Docker image update

* Updated Metadata Of Pack Anomali_ThreatStream

* Added release notes to pack Anomali_ThreatStream

* Packs/Anomali_ThreatStream/Integrations/AnomaliThreatStreamv3/AnomaliThreatStreamv3.yml Docker image update

* Updated Metadata Of Pack CommonWidgets

* Added release notes to pack CommonWidgets

* Packs/CommonWidgets/Scripts/RSSWidget/RSSWidget.yml Docker image update

* Updated Metadata Of Pack FiltersAndTransformers

* Added release notes to pack FiltersAndTransformers

* Packs/FiltersAndTransformers/Scripts/Jmespath/Jmespath.yml Docker image update

* CortexXDRIR-generic-polling (#31082)

* - Added new playbook for quarantine_file
- Old playbook deprecated
- New image added

* release notes added

* - New playbook for _Retrieve_File_Playbook_v2 created
- Old playbook _Retrieve_File_Playbook deprecated
- Image was added

* Release notes were added

* Changed the name of the playbook

* Readme file added

* Added image

* fixed image location in readme file

* Update Packs/CortexXDR/Playbooks/Cortex_XDR_-_Retrieve_File_v2.yml

Co-authored-by: Sasha Sokolovich <[email protected]>

* Bump pack from version CortexXDR to 6.0.4.

* Removed unnecessary tests

* Readme files were updated

* Fixes for the playbooks

* fixed Tests/conf.json file

* image issue fixed

* Added new images

* Update Packs/CortexXDR/Playbooks/Cortex_XDR_-_Retrieve_File_Playbook_README.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXDR/Playbooks/Cortex_XDR_-_Retrieve_File_Playbook_README.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXDR/ReleaseNotes/6_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXDR/ReleaseNotes/6_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXDR/ReleaseNotes/6_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXDR/ReleaseNotes/6_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXDR/Playbooks/Cortex_XDR_-_Retrieve_File_Playbook_README.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXDR/Playbooks/Cortex_XDR_-_quarantine_file_v2_README.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* PR fixes - new condition to check if the task finished successfully

* release notes updated

* image path fixed

* Added new outputs for playbook

* release notes updated

* fix

* readme files fixed

* image issue

* image issue

* fix

* fix

* fix

* fix

* uploaded new playbook because of the image issue

* fix for image issue

* delete photo

* fixes

* test playbooks fixed

* test playbooks removed

---------

Co-authored-by: Sasha Sokolovich <[email protected]>
Co-authored-by: Content Bot <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Docker Image To demisto/crypto  (#31219)

* Updated Metadata Of Pack AzureKeyVault

* Added release notes to pack AzureKeyVault

* Packs/AzureKeyVault/Integrations/AzureKeyVault/AzureKeyVault.yml Docker image update

* Updated Metadata Of Pack AzureSentinel

* Added release notes to pack AzureSentinel

* Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml Docker image update

* Updated Metadata Of Pack AzureDevOps

* Added release notes to pack AzureDevOps

* Packs/AzureDevOps/Integrations/AzureDevOps/AzureDevOps.yml Docker image update

* Updated Metadata Of Pack MicrosoftCloudAppSecurity

* Added release notes to pack MicrosoftCloudAppSecurity

* Packs/MicrosoftCloudAppSecurity/Integrations/MicrosoftCloudAppSecurity/MicrosoftCloudAppSecurity.yml Docker image update

* Updated Metadata Of Pack AzureRiskyUsers

* Added release notes to pack AzureRiskyUsers

* Packs/AzureRiskyUsers/Integrations/AzureRiskyUsers/AzureRiskyUsers.yml Docker image update

* Updated Metadata Of Pack MicrosoftGraphGroups

* Added release notes to pack MicrosoftGraphGroups

* Packs/MicrosoftGraphGroups/Integrations/MicrosoftGraphGroups/MicrosoftGraphGroups.yml Docker image update

* Updated Metadata Of Pack AzureSQLManagement

* Added release notes to pack AzureSQLManagement

* Packs/AzureSQLManagement/Integrations/AzureSQLManagement/AzureSQLManagement.yml Docker image update

* Updated Metadata Of Pack MicrosoftGraphAPI

* Added release notes to pack MicrosoftGraphAPI

* Packs/MicrosoftGraphAPI/Integrations/MicrosoftGraphAPI/MicrosoftGraphAPI.yml Docker image update

* Updated Metadata Of Pack MicrosoftTeams

* Added release notes to pack MicrosoftTeams

* Packs/MicrosoftTeams/Integrations/MicrosoftTeamsManagement/MicrosoftTeamsManagement.yml Docker image update

* Updated Metadata Of Pack MicrosoftGraphApplications

* Added release notes to pack MicrosoftGraphApplications

* Packs/MicrosoftGraphApplications/Integrations/MicrosoftGraphApplications/MicrosoftGraphApplications.yml Docker image update

* update pack ignore (#31193)

* Slack event collector: fixed an issue where we get a Bad Request error (#31135)

* fixed an issue where we get a Bad Request error.

* pre-commit

* added test

* fixed Flake8 error

* fixed cr comments

* fixed cr comments

* update Docker image

* YR/Remove-fields-with-one-letter-DBotFindSimilarIncidents/XSUP-29299 (#31161)

* fixes

* code and test

* remove Json feed from this pr

* test

* note

* pre commit

* RN

* CR and Flake8

* format

* pre commit

* Fixes For 'URL Enrichment - Generic v2' Playbook (#31195)

* Fixes For 'URL Enrichment - Generic v2' Playbook

* RN

* Bump pack from version CommonPlaybooks to 2.4.36.

---------

Co-authored-by: Content Bot <[email protected]>

* F5 APM Remove XSIAM tags (#31221)

* remove ls from test_e2e_results.sh (#31186)

* [IsEmailAddressInternal] Fix an issue with **domain** argument (#31222)

* First commit

* Added RN

* Update Packs/CommonScripts/ReleaseNotes/1_12_54.md

Co-authored-by: Dean Arbel <[email protected]>

---------

Co-authored-by: Dean Arbel <[email protected]>

* Deprecate 'Get endpoint details - Generic' Playbook (#31196)

* Deprecate 'Get endpoint details - Generic' Playbook

* RN

* Bump pack from version CommonPlaybooks to 2.4.36.

* Bump pack from version CommonPlaybooks to 2.4.37.

---------

Co-authored-by: Content Bot <[email protected]>

* Replacing the deprecated sub-playbook within the 'NGFW Internal Scan'… (#31197)

* Replacing the deprecated sub-playbook within the 'NGFW Internal Scan' XSIAM playbook

* RN

* [Marketplace Contribution] CISO Metrics (#30641) (#31213)

* "pack contribution initial commit"

* Update pack_metadata.json

* Update and rename dashboard-98f353a2-312b-49f2-8e58-d71f60daf3a7-CISO_Metrics.json to dashboard-98f353a2-312b-49f2-8e58-d71f60daf3a7-CommunityCommonDashboards.json

Rename to CommunityCommonDashboards

* Update pack_metadata.json

Renamed  "name": "CommunityCommonDashboards"

* Update README.md

Added description

* Update README.md

* Update and rename README.md to README.md

* Rename dashboard-98f353a2-312b-49f2-8e58-d71f60daf3a7-CommunityCommonDashboards.json to dashboard-98f353a2-312b-49f2-8e58-d71f60daf3a7-CommunityCommonDashboards.json

* Rename .pack-ignore to .pack-ignore

* Rename .secrets-ignore to .secrets-ignore

* Rename pack_metadata.json to pack_metadata.json

* Update .pack-ignore

* Update pack_metadata.json

* Update .pack-ignore

* Update and rename dashboard-98f353a2-312b-49f2-8e58-d71f60daf3a7-CommunityCommonDashboards.json to CISOMetrics.json

Renamed to CISOMetrics

* Update pack_metadata.json

* Update pack_metadata.json

* Update README.md

---------

Co-authored-by: xsoar-bot <[email protected]>
Co-authored-by: Sapir Shuker <[email protected]>
Co-authored-by: David Uhrlaub <[email protected]>

* Cybereason xsoar v 2.1.14 (#30647) (#31225)

* added v2.1.14 codebase

* fix pr comments

* replace dummy md5 placeholder

* Update Packs/Cybereason/Integrations/Cybereason/Cybereason.py



* updated docker image python version

* updated release notes docker version

* added pagination params

* updated docker image

* fix lint errors

* fix demisto validate errors

* updated release notes

* updated release notes

* updated release notes

* updated command name as per PR comment

* removed manual filtering for response

* updated function name to match the command name format

* updated unit test as per new command name

* added machinename filter to api query

* moved empty output message to the top

* updated docker image tag to latest

* undo changes from unisolate endpoint playbook

---------

Co-authored-by: suraj-metron <[email protected]>
Co-authored-by: Sapir Shuker <[email protected]>

* fixed polling support (#30873)

* fixed polling support

* fixed rn

* added rn

* added rn

* XSUP-30786/Fix (#31168)

* Added failing UT

* Fixed the issue

* Updated docker image

* Updated RN

* Update Packs/PAN-OS/ReleaseNotes/2_1_15.md

Co-authored-by: Dan Tavori <[email protected]>

* Updated the bug fix and the UT

* updated docker image

---------

Co-authored-by: Dan Tavori <[email protected]>

* rewrite to js FirstArrayElement and LastArrayElement (#31228)

* rewrite to js

* added tpb

* added empty test case to tpb

* precommit fixes

* change fromversion so build wont fail

* Enable Core REST API with general XSIAM endpoints (#31226)

* mostly works

* added release notes

* fixes from review

* F5 APM fixed the marketplace build failure (#31236)

* F5 APM Remove XSIAM tags

* fix marketplace error

* Add incidents field (#30393) (#31233)

* add rawJSON field to incidents

* release notes

* update docker image tag

* nit

* fetching incident details

* mapper + incident fields

* remove incorrect incident field files

* new incident field files, new mapper

* sdk validate command changes

* update release noteS

* validation errors

* fix validation errors

* undo release notes changes

* undo release notes change

* undo release notes

* undo release notes

* undo release notes

* nit

* new release notes

* remove playbook id

* update docker image tag

* revert release notes

* revert RN

* nit- remove filters used for testing

* add details field to threats

* remove try/except blocks

* changing version

* Update Abnormal_Security_Custom_Incident_types.json change from version

* nit - remove changes used for demo

* updating docker image

* update docker image tag

---------

Co-authored-by: William Olyslager <[email protected]>
Co-authored-by: sapirshuker <[email protected]>
Co-authored-by: Sapir Shuker <[email protected]>

* Update Docker Image To demisto/python3  (#31242)

* Updated Metadata Of Pack CIRCL

* Added release notes to pack CIRCL

* Packs/CIRCL/Integrations/CirclCVESearch/CirclCVESearch.yml Docker image update

* Updated Metadata Of Pack ipinfo

* Added release notes to pack ipinfo

* Packs/ipinfo/Integrations/ipinfo_v2/ipinfo_v2.yml Docker image update

* Updated Metadata Of Pack AutoFocus

* Added release notes to pack AutoFocus

* Packs/AutoFocus/Integrations/FeedAutofocus/FeedAutofocus.yml Docker image update

* Packs/AutoFocus/Integrations/AutofocusV2/AutofocusV2.yml Docker image update

* Updated Metadata Of Pack MailSenderNew

* Added release notes to pack MailSenderNew

* Packs/MailSenderNew/Integrations/MailSenderNew/MailSenderNew.yml Docker image update

* avoid to update Docker for AutoFocusv2

---------

Co-authored-by: israelpolishook <[email protected]>

* Fixes For 'IP Enrichment - Generic v2' Playbook (#31183)

* Fixes For 'IP Enrichment - Generic v2' Playbook

* RN

* RN

* Updated the 'InternalRange' playbook input's default value.

* configured the 'extended_data' and 'threat_model_association' sub-playbook inputs

* Bump pack from version CommonPlaybooks to 2.4.36.

* Bump pack from version CommonPlaybooks to 2.4.37.

* changed the default value of the 'ResolveIP' playbook input

* re-added RN after merging from master

* Fixes RN

---------

Co-authored-by: Content Bot <[email protected]>

* Check if should run Instance role (#31245)

* Added the sync from the saas bucket and modified the verify script to take the revision from the correct bucket. (#31254)

* AWS Organizations (#30525)

* init

* commands template

* aws-org-children-list

* more commands

* even more commands

* added account commands

* removed enhancement commands

* use json_transform

* unit-tests init

* unit-tests continued

* unit-tests continued some more

* TPB

* one more unit-test

* one more unit-test

* one more unit-test

* name change

* TPB

* docs complete

* pack readme

* pack readme part 2

* readme modified

* more tests

* more tests

* use get()

* adde description

* removed isFetch

* added image

* name change

* CR changes

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update docker

* put the commands back in

* code complete

* yml part 2

* yml part 3

* test template

* unit-tests continued some more

* unit-tests almost complete

* unit-tests complete

* fixed a few bugs

* fixed unit-tests

* added readme

* update readme

* added missing descriptions to readme

* TPB

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* CR changes

* demo changes

* update docker

* build wars: round 1

* build wars: round 2

* build wars: round 3; add unit-tests

* build wars: round 4

* build wars: round 5

* build wars: round 6

---------

Co-authored-by: ShirleyDenkberg <[email protected]>

* NextToken in CommandResults (#30501)

* init

* new design

* added error in case of non nested input

* RN

* a tad more docs

* Bump pack from version Base to 1.32.47.

* Bump pack from version Base to 1.32.48.

* Bump pack from version Base to 1.32.49.

* improved doc-string

* resolve conflicts

* resolve conflicts

* Bump pack from version Base to 1.32.52.

---------

Co-authored-by: Content Bot <[email protected]>

* demisto-sdk-release 1.24.0 (#31268)

* poetry files

* update validate manager imports (#31179)

* update validate manager imports

* revert

* Update Tests/configure_and_test_integration_instances.py

* Edit file types test (#31170)

* edited tests

* s

* s

* edit

---------

Co-authored-by: Content Bot <[email protected]>
Co-authored-by: Yuval Hayun <[email protected]>
Co-authored-by: merit-maita <[email protected]>
Co-authored-by: JudithB <[email protected]>

* modified modeling rules of clearswift dlp (#31247)

* modified modeling rules of clearswift dlp

* modified the parsing rule of clearswiftdlp

* Added release notes.

* added dlp to pack ignore

* added Clearswift to pack ignore

* QRadar: continue to poll in case of networking issues (#31084)

* Generalize the mode option in pre-commit (#30663)

* args updated to match the update in the sdk

* add merge-coverage-report and coverage-analyze

* updaing pyproject.toml

* poetry lock

* restoring pyproject.toml and poetry.lock

* pre-commit.yml

* updates

* test comment

* use sdk ref

* if

* add github output

* revert ilan changes

* merge-pytest-reports

---------

Co-authored-by: ilan <[email protected]>

* EXPANDR-1576 CortexXpanse Remediation Guidance changes (#31190)

* EXPANDR-1576 CortexXpanse Remediation Guidance changes (#30712)

* CortexXpanse RG changes

* Fix flake8 errors

* Fix unit test cases

* Update docker version

* update command name

* Readme updates

* docker update

* Ignore BC error

* fix packignore

* Update release notes

* update breaking change notes

* update breaking change notes

* correct RN

---------

Co-authored-by: Chait A <[email protected]>
Co-authored-by: ilappe <[email protected]>

* Feature/cyberint enhancement (#31252)

* Feature/cyberint enhancement (#30493)

* Update Docker Image To demisto/py3-tools  (#25523)

* Updated Metadata Of Pack FeedAWS

* Added release notes to pack FeedAWS

* Packs/FeedAWS/Integrations/FeedAWS/FeedAWS.yml Docker image update

* update Cyberint Pack

* update release note and incidentfields

* update CommonType release note

* update CommonType relesenotes

* update CommonType relese notes

* update CyberInt Related entity name

* update release notes

* add new incident field: Alert Data

* foramt alert_data

* update CyberInt Related Entity name to avoid validation errors

* reset the CyberInt Related Entity name

* update incident field name

* Update 3_3_93.md

* pre commit update docker

* added known words

* fixed the RN

* known words

---------

Co-authored-by: TalGumi <[email protected]>
Co-authored-by: omerKarkKatz <[email protected]>
Co-authored-by: okarkkatz <[email protected]>

* [xsoar-8 coverage] - use poll functions from SDK clients (#31144)

* update poetry

* use poll functions

* test against builds

* try to fix ssl issue

* timeout = 300 + verify ssl

* fix ssl issues

* fix incident pull

* fix

* make verify=false by default

* fix ports bug

* use sdk master

* revert poetry

* revert infra used for testing

* Possible solution

* Possible solution

* [CrowdStrike Falcon Intel v2] Fixed an issue in 'cs-actors' and 'cs-reports' commands (#31265)

* Fix the 'NoneType' object is not iterable issue

* ruff

* Update the docker image; Add RN

* Update Packs/CrowdStrikeIntel/ReleaseNotes/2_0_34.md

Co-authored-by: Dean Arbel <[email protected]>

---------

Co-authored-by: Dean Arbel <[email protected]>

Packs/PAN-OS/Integrations/Panorama/Panorama.py

@@ -9772,8 +9772,8 @@ class TemplateStackInformation(ResultData):
     """
     serial: str
     connected: str
-    hostname: str
     last_commit_all_state_tpl: str
+    hostname: str = ""
     name: str = ""
 
     _output_prefix = OUTPUT_PREFIX + "TemplateStackOp"

Packs/PAN-OS/Integrations/Panorama/Panorama.yml

@@ -9366,7 +9366,7 @@ script:
       description: The job ID to use when polling.
     description: Exports a tech support file (TSF).
     polling: true
-  dockerimage: demisto/pan-os-python:1.0.0.81877
+  dockerimage: demisto/pan-os-python:1.0.0.83880
   isfetch: true
   runonce: false
   script: ''

Packs/PAN-OS/Integrations/Panorama/Panorama_test.py

@@ -3247,6 +3247,20 @@ def test_get_template_stacks(self, patched_run_op_command, mock_topology):
         assert result[0].serial
         assert result[0].last_commit_all_state_tpl
 
+    @patch("Panorama.run_op_command")
+    def test_get_template_stacks_without_hostname(self, patched_run_op_command, mock_topology):
+        """Given the output XML for show template-stacks without hostname, assert it is parsed into the dataclasses correctly."""
+        from Panorama import PanoramaCommand
+        patched_run_op_command.return_value = load_xml_root_from_test_file("test_data/show_template_stack_without_hostname.xml")
+        result = PanoramaCommand.get_template_stacks(mock_topology)
+        assert len(result) == 2
+        assert result[0].name
+        assert not result[0].hostname
+        assert result[0].hostid
+        assert result[0].connected
+        assert result[0].serial
+        assert result[0].last_commit_all_state_tpl
+
 
 class TestUniversalCommand:
     """Test all the commands relevant to both Panorama and Firewall devices"""

Packs/PAN-OS/Integrations/Panorama/test_data/show_template_stack_without_hostname.xml

@@ -0,0 +1,140 @@
+<response status="success">
+    <result>
+        <template-stack>
+            <entry name="LAB-STACK">
+                <templates>
+                    <member>LAB</member>
+                </templates>
+                <devices>
+                    <entry name="111111111111111">
+                        <serial>111111111111111</serial>
+                        <connected>yes</connected>
+                        <unsupported-version>no</unsupported-version>
+                        <wildfire-rt>no</wildfire-rt>
+                        <deactivated>no</deactivated>
+                        <last-commit-all-state-tpl>commit succeeded with warnings</last-commit-all-state-tpl>
+                        <last-validate-all-state-tpl>none</last-validate-all-state-tpl>
+                        <last-commit-all-upd-tpl>2022/03/05 23:45:33</last-commit-all-upd-tpl>
+                        <last-validate-all-upd-tpl>none</last-validate-all-upd-tpl>
+                        <template-status>In Sync</template-status>
+                        <template-md5sum>b8893bd05536b871d39bbab75a664c62</template-md5sum>
+                        <template-no-content-preview-status>In Sync</template-no-content-preview-status>
+                        <template-no-content-preview-md5sum>858990bfc4c20c6a32ca30231efbf9cf</template-no-content-preview-md5sum>
+                        <template-version>52</template-version>
+                        <ip-address>1.1.1.1</ip-address>
+                        <ipv6-address>unknown</ipv6-address>
+                        <mac-addr></mac-addr>
+                        <uptime>0 days, 0:21:17</uptime>
+                        <family>vm</family>
+                        <model>PA-VM</model>
+                        <sw-version>10.0.9</sw-version>
+                        <app-version>8475-7000</app-version>
+                        <av-version>0</av-version>
+                        <device-dictionary-version>44-316</device-dictionary-version>
+                        <wildfire-version>0</wildfire-version>
+                        <threat-version>8475-7000</threat-version>
+                        <url-db>paloaltonetworks</url-db>
+                        <url-filtering-version>0000.00.00.000</url-filtering-version>
+                        <logdb-version>10.0.3</logdb-version>
+                        <vpnclient-package-version></vpnclient-package-version>
+                        <global-protect-client-package-version>0.0.0</global-protect-client-package-version>
+                        <prev-app-version>8284-6141</prev-app-version>
+                        <prev-av-version>0</prev-av-version>
+                        <prev-threat-version>0</prev-threat-version>
+                        <prev-wildfire-version>0</prev-wildfire-version>
+                        <prev-device-dictionary-version>43-313</prev-device-dictionary-version>
+                        <domain></domain>
+                        <slot-count>0</slot-count>
+                        <type></type>
+                        <tag></tag>
+                        <plugin_versions>
+                            <entry name="dlp" version="1.0.3">
+                                <pkginfo>dlp-1.0.3</pkginfo>
+                            </entry>
+                            <entry name="vm_series" version="2.1.4">
+                                <pkginfo>vm_series-2.1.4</pkginfo>
+                            </entry>
+                        </plugin_versions>
+                        <vpn-disable-mode>no</vpn-disable-mode>
+                        <operational-mode>normal</operational-mode>
+                        <certificate-status></certificate-status>
+                        <certificate-subject-name> </certificate-subject-name>
+                        <certificate-expiry> </certificate-expiry>
+                        <connected-at> </connected-at>
+                        <custom-certificate-usage> </custom-certificate-usage>
+                        <multi-vsys>no</multi-vsys>
+                        <last-masterkey-push-status>Unknown</last-masterkey-push-status>
+                        <last-masterkey-push-timestamp></last-masterkey-push-timestamp>
+                        <express-mode>no</express-mode>
+                        <device-cert-present></device-cert-present>
+                        <device-cert-expiry-date>N/A</device-cert-expiry-date>
+                    </entry>
+                    <entry name="222222222222222">
+                        <serial>222222222222222</serial>
+                        <connected>yes</connected>
+                        <unsupported-version>no</unsupported-version>
+                        <wildfire-rt>no</wildfire-rt>
+                        <deactivated>no</deactivated>
+                        <last-commit-all-state-tpl>commit succeeded with warnings</last-commit-all-state-tpl>
+                        <last-validate-all-state-tpl>none</last-validate-all-state-tpl>
+                        <last-commit-all-upd-tpl>2022/03/05 23:45:33</last-commit-all-upd-tpl>
+                        <last-validate-all-upd-tpl>none</last-validate-all-upd-tpl>
+                        <template-status>Out of Sync</template-status>
+                        <template-md5sum>0eaf60fdab0cc6d6f3a64babd90f2a20</template-md5sum>
+                        <template-no-content-preview-status>Out of Sync</template-no-content-preview-status>
+                        <template-no-content-preview-md5sum>f0ab8a33946c9aaf8882de07f0a19497</template-no-content-preview-md5sum>
+                        <template-version></template-version>
+                        <hostname>vm-lab-fw02</hostname>
+                        <ip-address>1.1.1.1</ip-address>
+                        <ipv6-address>unknown</ipv6-address>
+                        <mac-addr></mac-addr>
+                        <uptime>0 days, 0:25:58</uptime>
+                        <family>vm</family>
+                        <model>PA-VM</model>
+                        <sw-version>10.0.9</sw-version>
+                        <app-version>8537-7273</app-version>
+                        <av-version>0</av-version>
+                        <device-dictionary-version>44-316</device-dictionary-version>
+                        <wildfire-version>0</wildfire-version>
+                        <threat-version>8537-7273</threat-version>
+                        <url-db>paloaltonetworks</url-db>
+                        <url-filtering-version>0000.00.00.000</url-filtering-version>
+                        <logdb-version>10.0.3</logdb-version>
+                        <vpnclient-package-version></vpnclient-package-version>
+                        <global-protect-client-package-version>0.0.0</global-protect-client-package-version>
+                        <prev-app-version>8284-6141</prev-app-version>
+                        <prev-av-version>0</prev-av-version>
+                        <prev-threat-version>0</prev-threat-version>
+                        <prev-wildfire-version>0</prev-wildfire-version>
+                        <prev-device-dictionary-version>1-211</prev-device-dictionary-version>
+                        <domain></domain>
+                        <slot-count>0</slot-count>
+                        <type></type>
+                        <tag></tag>
+                        <plugin_versions>
+                            <entry name="vm_series" version="2.1.4">
+                                <pkginfo>vm_series-2.1.4</pkginfo>
+                            </entry>
+                            <entry name="dlp" version="1.0.3">
+                                <pkginfo>dlp-1.0.3</pkginfo>
+                            </entry>
+                        </plugin_versions>
+                        <vpn-disable-mode>no</vpn-disable-mode>
+                        <operational-mode>normal</operational-mode>
+                        <certificate-status></certificate-status>
+                        <certificate-subject-name> </certificate-subject-name>
+                        <certificate-expiry> </certificate-expiry>
+                        <connected-at> </connected-at>
+                        <custom-certificate-usage> </custom-certificate-usage>
+                        <multi-vsys>no</multi-vsys>
+                        <last-masterkey-push-status>Unknown</last-masterkey-push-status>
+                        <last-masterkey-push-timestamp></last-masterkey-push-timestamp>
+                        <express-mode>no</express-mode>
+                        <device-cert-present></device-cert-present>
+                        <device-cert-expiry-date>N/A</device-cert-expiry-date>
+                    </entry>
+                </devices>
+            </entry>
+        </template-stack>
+    </result>
+</response>

Packs/PAN-OS/ReleaseNotes/2_1_17.md

@@ -0,0 +1,7 @@
+
+#### Integrations
+
+##### Palo Alto Networks PAN-OS
+
+- Fixed an issue where the **pan-os-platform-get-template-stacks** command failed to parse the response correctly when the *hostname* was missing.
+- Updated the Docker image to: *demisto/pan-os-python:1.0.0.83880*.

Packs/PAN-OS/pack_metadata.json

@@ -2,7 +2,7 @@
     "name": "PAN-OS by Palo Alto Networks",
     "description": "Manage Palo Alto Networks Firewall and Panorama. Use this pack to manage Prisma Access through Panorama. For more information see Panorama documentation.",
     "support": "xsoar",
-    "currentVersion": "2.1.16",
+    "currentVersion": "2.1.17",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",