Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Zscaler ZIA enhancement: Add IP Destination group commands #27386

Merged
merged 2 commits into from
Jun 12, 2023

Conversation

content-bot
Copy link
Collaborator

Original External PR

external pull request

Contributor

@rootbid

Status

  • In Progress
  • Ready
  • In Hold - (Reason for hold)

Description

Add support for IP Destination groups management for Zscaler ZIA integration.

Screenshots

MicrosoftTeams-image (5) MicrosoftTeams-image (4) MicrosoftTeams-image (3) MicrosoftTeams-image (2) MicrosoftTeams-image (1)

Minimum version of Cortex XSOAR

  • 6.0.0
  • 6.1.0
  • 6.2.0
  • 6.5.0

Does it break backward compatibility?

  • Yes
    • Further details:
  • No

Must have

  • Tests
  • Documentation

* ZIA Enhancement: IP destination group commands

* Included 3 new commands for Zscaler Integration as follows::
 - Added zscaler-list-ip-destination-groups
 - Added zscaler-create-ip-destination-groups
 - Added zscaler-edit-ip-destination-groups

---------

Co-authored-by: rootbid <[email protected]>

* ZIA Enhancement: IP destination group commands
* Included 2 new commands for Zscaler Integration as follows::
 - Added zscaler-list-ip-destination-groups-lite
 - Added zscaler-delete-ip-destination-groups

---------

Author: pallavi-garad <[email protected]>
Co-authored-by: rootbid <[email protected]>

* Minor updates and fixes

* Update and add documentation links for Zscaler ZIA

* Zscaler ZIA Enhancement - Update with requested changes

* Update .devcontainer.json name

* merge list-ip-destination-groups and lite command

* fixed minor issues

* update lite argument description

---------

Co-authored-by: rootbid <[email protected]>

* Update .devcontainer/devcontainer.json

Co-authored-by: Dan Tavori <[email protected]>

* Update as per review comments

- Fix exceptions
- Use CommandResults
- Refactor zscaler-list-ip-destination-groups and zscaler-edit-ip-destination-group commands
- Update release notes

* Regenerate README after updating Zscaler.yml and unit test bug fixes

* Resolve merge conflicts

* Fix type annotations and update docker image

* Update Packs/Zscaler/ReleaseNotes/1_3_10.md

Co-authored-by: Dan Tavori <[email protected]>

---------

Co-authored-by: Shambo Samanta <[email protected]>
Co-authored-by: rootbid <[email protected]>
Co-authored-by: pallavi-garad <[email protected]>
Co-authored-by: Dan Tavori <[email protected]>
@content-bot content-bot added Contribution Thank you! Contributions are always welcome! docs-approved Partner Contribution Form Filled Whether contribution form filled or not. labels Jun 12, 2023
@ShirleyDenkberg
Copy link
Contributor

@dantavori Doc review completed.

@dantavori dantavori merged commit 08068b2 into master Jun 12, 2023
@dantavori dantavori deleted the contrib/rootbid_zscaler_zia_enhancement branch June 12, 2023 13:33
ostolero pushed a commit that referenced this pull request Jun 14, 2023
* Zscaler ZIA enhancement: Add IP Destination group commands (#26447)

* ZIA Enhancement: IP destination group commands

* Included 3 new commands for Zscaler Integration as follows::
 - Added zscaler-list-ip-destination-groups
 - Added zscaler-create-ip-destination-groups
 - Added zscaler-edit-ip-destination-groups

---------

Co-authored-by: rootbid <[email protected]>

* ZIA Enhancement: IP destination group commands
* Included 2 new commands for Zscaler Integration as follows::
 - Added zscaler-list-ip-destination-groups-lite
 - Added zscaler-delete-ip-destination-groups

---------

Author: pallavi-garad <[email protected]>
Co-authored-by: rootbid <[email protected]>

* Minor updates and fixes

* Update and add documentation links for Zscaler ZIA

* Zscaler ZIA Enhancement - Update with requested changes

* Update .devcontainer.json name

* merge list-ip-destination-groups and lite command

* fixed minor issues

* update lite argument description

---------

Co-authored-by: rootbid <[email protected]>

* Update .devcontainer/devcontainer.json

Co-authored-by: Dan Tavori <[email protected]>

* Update as per review comments

- Fix exceptions
- Use CommandResults
- Refactor zscaler-list-ip-destination-groups and zscaler-edit-ip-destination-group commands
- Update release notes

* Regenerate README after updating Zscaler.yml and unit test bug fixes

* Resolve merge conflicts

* Fix type annotations and update docker image

* Update Packs/Zscaler/ReleaseNotes/1_3_10.md

Co-authored-by: Dan Tavori <[email protected]>

---------

Co-authored-by: Shambo Samanta <[email protected]>
Co-authored-by: rootbid <[email protected]>
Co-authored-by: pallavi-garad <[email protected]>
Co-authored-by: Dan Tavori <[email protected]>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

---------

Co-authored-by: Deepansh <[email protected]>
Co-authored-by: Shambo Samanta <[email protected]>
Co-authored-by: rootbid <[email protected]>
Co-authored-by: pallavi-garad <[email protected]>
Co-authored-by: Dan Tavori <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>
ostolero added a commit that referenced this pull request Jun 21, 2023
* update

* test

* changes

* changes

* final commands changes

* clean code

* update TPBs

* rvert name change

* revert name change

* cr changes

* fix name

* fix TPBs

* remove skip of perm_set field

* fix tpb and validations

* revert arg removal

* remove added tpb

* update memory threshold

* fix ut

* fix ut

* Fix urllib.parse import in CommonServerPython (#27252)

* Allow applying a new profile over an existing one in ***pan-os-apply-security-profile*** command (#27237)

* Add XSOAR support for updating existing profile types

* RN

* fix UT

* Update Packs/PAN-OS/ReleaseNotes/1_17_5.md

Co-authored-by: Guy Afik <[email protected]>

* fix CR

* RN

* UT was added

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* fix

* flake8

* UT stability

---------

Co-authored-by: Guy Afik <[email protected]>

* Update Docker Image To demisto/splunksdk-py3  (#27263)

* Updated Metadata Of Pack SplunkPy

* Added release notes to pack SplunkPy

* Packs/SplunkPy/Integrations/SplunkPy/SplunkPy.yml Docker image update

* Updated domain extraction playbook - changing .zip to a valid TLD (#27264)

* Updated domain extraction playbook

* some formatting.

* Update playbook-Domain_extraction_test.yml

* Update playbook-Domain_extraction_test.yml

* Update Docker Image To demisto/duoadmin3  (#27268)

* Updated Metadata Of Pack DuoAdminApi

* Added release notes to pack DuoAdminApi

* Packs/DuoAdminApi/Integrations/DuoEventCollector/DuoEventCollector.yml Docker image update

* Packs/DuoAdminApi/Integrations/DuoAdminApi/DuoAdminApi.yml Docker image update

* Update Docker Image To demisto/googleapi-python3  (#27267)

* Updated Metadata Of Pack GoogleDrive

* Added release notes to pack GoogleDrive

* Packs/GoogleDrive/Integrations/GoogleDrive/GoogleDrive.yml Docker image update

* Update Docker Image To demisto/python3  (#27266)

* Updated Metadata Of Pack Darktrace

* Added release notes to pack Darktrace

* Packs/Darktrace/Integrations/DarktraceMBs/DarktraceMBs.yml Docker image update

* Packs/Darktrace/Integrations/DarktraceAIA/DarktraceAIA.yml Docker image update

* Updated Metadata Of Pack CybleEvents

* Added release notes to pack CybleEvents

* Packs/CybleEvents/Integrations/CybleEvents/CybleEvents.yml Docker image update

* Updated Metadata Of Pack Censys

* Added release notes to pack Censys

* Packs/Censys/Integrations/CensysV2/CensysV2.yml Docker image update

* Updated Metadata Of Pack VirusTotal

* Added release notes to pack VirusTotal

* Packs/VirusTotal/Integrations/FeedLivehunt/FeedLivehunt.yml Docker image update

* Packs/VirusTotal/Integrations/FeedRetrohunt/FeedRetrohunt.yml Docker image update

* Updated Metadata Of Pack CofenseIntelligenceV2

* Added release notes to pack CofenseIntelligenceV2

* Packs/CofenseIntelligenceV2/Integrations/CofenseIntelligenceV2/CofenseIntelligenceV2.yml Docker image update

* Updated Metadata Of Pack CheckPointDome9

* Added release notes to pack CheckPointDome9

* Packs/CheckPointDome9/Integrations/CheckPointDome9/CheckPointDome9.yml Docker image update

* Updated Metadata Of Pack Reco

* Added release notes to pack Reco

* Packs/Reco/Integrations/Reco/Reco.yml Docker image update

* Updated Metadata Of Pack CimTrak-SystemIntegrityAssurance

* Added release notes to pack CimTrak-SystemIntegrityAssurance

* Packs/CimTrak-SystemIntegrityAssurance/Integrations/CimTrak/CimTrak.yml Docker image update

* Update Docker Image To demisto/python3  (#27272)

* Updated Metadata Of Pack FeedProofpoint

* Added release notes to pack FeedProofpoint

* Packs/FeedProofpoint/Integrations/FeedProofpoint/FeedProofpoint.yml Docker image update

* Updated Metadata Of Pack FortiSIEM

* Added release notes to pack FortiSIEM

* Packs/FortiSIEM/Integrations/FortiSIEM/FortiSIEM.yml Docker image update

* Updated Metadata Of Pack Ipstack

* Added release notes to pack Ipstack

* Packs/Ipstack/Integrations/Ipstack/Ipstack.yml Docker image update

* Updated Metadata Of Pack SafeBreach

* Added release notes to pack SafeBreach

* Packs/SafeBreach/Integrations/SafeBreach_v2/SafeBreach_v2.yml Docker image update

* Updated Metadata Of Pack RedCanary

* Added release notes to pack RedCanary

* Packs/RedCanary/Integrations/RedCanary/RedCanary.yml Docker image update

* Updated Metadata Of Pack PiHole

* Added release notes to pack PiHole

* Packs/PiHole/Integrations/PiHole/PiHole.yml Docker image update

* Updated Metadata Of Pack FeedDShield

* Added release notes to pack FeedDShield

* Packs/FeedDShield/Integrations/FeedDShield/FeedDShield.yml Docker image update

* Updated Metadata Of Pack SafeNet_Trusted_Access

* Added release notes to pack SafeNet_Trusted_Access

* Packs/SafeNet_Trusted_Access/Integrations/SafeNetTrustedAccess/SafeNetTrustedAccess.yml Docker image update

* Updated Metadata Of Pack OpenPhish

* Added release notes to pack OpenPhish

* Packs/OpenPhish/Integrations/OpenPhish_v2/OpenPhish_v2.yml Docker image update

* Updated Metadata Of Pack NistNVD

* Added release notes to pack NistNVD

* Packs/NistNVD/Integrations/NistNVD/NistNVD.yml Docker image update

* Updated Metadata Of Pack Cognni

* Added release notes to pack Cognni

* Packs/Cognni/Integrations/Cognni/Cognni.yml Docker image update

* Updated Metadata Of Pack PANOSPolicyOptimizer

* Added release notes to pack PANOSPolicyOptimizer

* Packs/PANOSPolicyOptimizer/Integrations/PANOSPolicyOptimizer/PANOSPolicyOptimizer.yml Docker image update

* Updated Metadata Of Pack DeveloperTools

* Added release notes to pack DeveloperTools

* Packs/DeveloperTools/Integrations/CreateIncidents/CreateIncidents.yml Docker image update

* Packs/DeveloperTools/Integrations/CustomIndicatorDemo/CustomIndicatorDemo.yml Docker image update

* Packs/DeveloperTools/Integrations/APIMetricsValidation/APIMetricsValidation.yml Docker image update

* Updated Metadata Of Pack NozomiNetworks

* Added release notes to pack NozomiNetworks

* Packs/NozomiNetworks/Integrations/NozomiNetworks/NozomiNetworks.yml Docker image update

* Updated Metadata Of Pack ANYRUN

* Added release notes to pack ANYRUN

* Packs/ANYRUN/Integrations/ANYRUN/ANYRUN.yml Docker image update

* Updated Metadata Of Pack Carbon_Black_Enterprise_Response

* Added release notes to pack Carbon_Black_Enterprise_Response

* Packs/Carbon_Black_Enterprise_Response/Integrations/CarbonBlackResponseV2/CarbonBlackResponseV2.yml Docker image update

* Updated Metadata Of Pack Absolute

* Added release notes to pack Absolute

* Packs/Absolute/Integrations/Absolute/Absolute.yml Docker image update

* Updated Metadata Of Pack Ironscales

* Added release notes to pack Ironscales

* Packs/Ironscales/Integrations/Ironscales/Ironscales.yml Docker image update

* Updated Metadata Of Pack FeedURLhaus

* Added release notes to pack FeedURLhaus

* Packs/FeedURLhaus/Integrations/FeedURLhaus/FeedURLhaus.yml Docker image update

* Updated Metadata Of Pack Lokpath_Keylight

* Added release notes to pack Lokpath_Keylight

* Packs/Lokpath_Keylight/Integrations/Lockpath_KeyLight_v2/Lockpath_KeyLight_v2.yml Docker image update

* Updated Metadata Of Pack FeedMISP

* Added release notes to pack FeedMISP

* Packs/FeedMISP/Integrations/FeedMISP/FeedMISP.yml Docker image update

* Updated Metadata Of Pack FraudWatch

* Added release notes to pack FraudWatch

* Packs/FraudWatch/Integrations/FraudWatch/FraudWatch.yml Docker image update

* Updated Metadata Of Pack AbnormalSecurity

* Added release notes to pack AbnormalSecurity

* Packs/AbnormalSecurity/Integrations/AbnormalSecurityEventCollector/AbnormalSecurityEventCollector.yml Docker image update

* Updated Metadata Of Pack CovalenceManagedSecurity

* Added release notes to pack CovalenceManagedSecurity

* Packs/CovalenceManagedSecurity/Integrations/CovalenceManagedSecurity/CovalenceManagedSecurity.yml Docker image update

* Updated Metadata Of Pack IllusiveNetworks

* Added release notes to pack IllusiveNetworks

* Packs/IllusiveNetworks/Integrations/IllusiveNetworks/IllusiveNetworks.yml Docker image update

* Updated Metadata Of Pack Edgescan

* Added release notes to pack Edgescan

* Packs/Edgescan/Integrations/Edgescan/Edgescan.yml Docker image update

* Updated Metadata Of Pack PerceptionPoint

* Added release notes to pack PerceptionPoint

* Packs/PerceptionPoint/Integrations/PerceptionPoint/PerceptionPoint.yml Docker image update

* Updated Metadata Of Pack Druva

* Added release notes to pack Druva

* Packs/Druva/Integrations/Druva/Druva.yml Docker image update

* Updated Metadata Of Pack APIVoid

* Added release notes to pack APIVoid

* Packs/APIVoid/Integrations/APIVoid/APIVoid.yml Docker image update

* Updated Metadata Of Pack PingIdentity

* Added release notes to pack PingIdentity

* Packs/PingIdentity/Integrations/PingOne/PingOne.yml Docker image update

* Updated Metadata Of Pack cisco-ise

* Added release notes to pack cisco-ise

* Packs/cisco-ise/Integrations/cisco-ise/cisco-ise.yml Docker image update

* Updated Metadata Of Pack SailPointIdentityIQ

* Added release notes to pack SailPointIdentityIQ

* Packs/SailPointIdentityIQ/Integrations/SailPointIdentityIQ/SailPointIdentityIQ.yml Docker image update

* Updated Metadata Of Pack Cymulate

* Added release notes to pack Cymulate

* Packs/Cymulate/Integrations/Cymulate/Cymulate.yml Docker image update

* Packs/Cymulate/Integrations/Cymulate_v2/Cymulate_v2.yml Docker image update

* Updated Metadata Of Pack XSOARmirroring

* Added release notes to pack XSOARmirroring

* Packs/XSOARmirroring/Integrations/XSOARmirroring/XSOARmirroring.yml Docker image update

* Updated Metadata Of Pack XMatters

* Added release notes to pack XMatters

* Packs/XMatters/Integrations/xMatters/xMatters.yml Docker image update

* Updated Metadata Of Pack Zimperium

* Added release notes to pack Zimperium

* Packs/Zimperium/Integrations/Zimperium/Zimperium.yml Docker image update

* Updated Metadata Of Pack RSANetWitnessEndpoint

* Added release notes to pack RSANetWitnessEndpoint

* Packs/RSANetWitnessEndpoint/Integrations/RSANetWitnessEndpoint/RSANetWitnessEndpoint.yml Docker image update

* Updated Metadata Of Pack SymantecBlueCoatMalwareAnalysis

* Added release notes to pack SymantecBlueCoatMalwareAnalysis

* Packs/SymantecBlueCoatMalwareAnalysis/Integrations/SymantecBlueCoatMalwareAnalysis/SymantecBlueCoatMalwareAnalysis.yml Docker image update

* Updated Metadata Of Pack InfoArmor_VigilanteATI

* Added release notes to pack InfoArmor_VigilanteATI

* Packs/InfoArmor_VigilanteATI/Integrations/InfoArmorVigilanteATI/InfoArmorVigilanteATI.yml Docker image update

* Updated Metadata Of Pack AccentureCTI

* Added release notes to pack AccentureCTI

* Packs/AccentureCTI/Integrations/ACTIVulnerabilityQuery/ACTIVulnerabilityQuery.yml Docker image update

* Updated Metadata Of Pack PingCastle

* Added release notes to pack PingCastle

* Packs/PingCastle/Integrations/PingCastle/PingCastle.yml Docker image update

* Updated Metadata Of Pack MaxMind_GeoIP2

* Added release notes to pack MaxMind_GeoIP2

* Packs/MaxMind_GeoIP2/Integrations/MaxMind_GeoIP2/MaxMind_GeoIP2.yml Docker image update

* Updated Metadata Of Pack Maltiverse

* Added release notes to pack Maltiverse

* Packs/Maltiverse/Integrations/Maltiverse/Maltiverse.yml Docker image update

* Updated Metadata Of Pack CarbonBlackDefense

* Added release notes to pack CarbonBlackDefense

* Packs/CarbonBlackDefense/Integrations/CarbonBlackEndpointStandard/CarbonBlackEndpointStandard.yml Docker image update

* Updated Metadata Of Pack AlienVault_USM_Anywhere

* Added release notes to pack AlienVault_USM_Anywhere

* Packs/AlienVault_USM_Anywhere/Integrations/AlienVault_USM_Anywhere/AlienVault_USM_Anywhere.yml Docker image update

* Updated Metadata Of Pack ProofpointServerProtection

* Added release notes to pack ProofpointServerProtection

* Packs/ProofpointServerProtection/Integrations/ProofpointProtectionServerV2/ProofpointProtectionServerV2.yml Docker image update

* Updated Metadata Of Pack OpsGenie

* Added release notes to pack OpsGenie

* Packs/OpsGenie/Integrations/OpsGenieV3/OpsGenieV3.yml Docker image update

* Fixed lint and validate

---------

Co-authored-by: sberman <[email protected]>

* Ignore modeling/parsing rules suffix error (#27274)

* [EDL] Fixed a typo in the description (#27269)

* Fixed a typo in the description

* Update the docker image

* Macos Regex Fix (#27270)

* Updated ModelingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Updated ModelingRules

* Updated ModelingRules

* Cs falcon add tags to cs-falcon-upload-custom-ioc command (#27234)

* CS Flacon add tags to upload-custom-ioc command

* added RNs

* Align credentials stores part 11 (#27253)

* Align credentials part 11

* Trend Micro Apex

* ignore

* adding tests to hostlo

* Trend Micro Apex tests

* trend more test

* change test

* Syslogv2 was removed from xsiam marketplace (#27278)

* remove Syslogv2 from xsiam marketplace

* RN

* known_words

* Update Packs/Syslog/ReleaseNotes/2_0_16.md

Co-authored-by: dorschw <[email protected]>

* DO

---------

Co-authored-by: dorschw <[email protected]>

* Microsoft Graph Single User - Edit documentation (#27275)

* edit documentation

* edit documentation

* RN and DO

* fix doc

* mistake

* ExtraHop release v2.1.0 (#27056) (#27279)

* Update .devcontainer.json name

* added changes related to ExtrHop 2.1.0 release

---------

Co-authored-by: Crest Data Systems <[email protected]>
Co-authored-by: crestdatasystems <[email protected]>

* Recordedfuture listapi v1.0.0 (#26996) (#27281)

* First version/implementation of new List Integration

* Added new List integration

* Updated validation step requirements and fixed tests to be working as expected

* Updated test Coverage

* Version bump and fixed frombersion for list app

* Added custom content, incident type and classifier for coderepo leakage

* Updated some documentation and fixed dockerimages

* Bumped version of playbook alert app

* Fixed changelog for 1.6.0 to not include an old change

* fixed type0 in changelog

* removed base64 import

* Updated release notes

* Update based on review

* Removed references to old playbook alerts documentation from creation of integration

---------

Co-authored-by: recordedfuture-simonhornestedt <109588368+recordedfuture-simonhornestedt@users.noreply.github.com>
Co-authored-by: michal-dagan <[email protected]>

* fix bug by convert the password to bytes (#27283)

* fix bug by convert the password to bytes

* commit

* update RN and Docker

* comment corrections

* commit

* [greynoise-266] - Add greynoise-similar and greynoise-timeline commands (#27067) (#27291)

* add sim and timeline updates

* fix test file prints

* update readme fix tests

* updates to readme for pre-commit

* updates from pre-commit run

* more linting updates

* update secrets

* fix url in timeline

Co-authored-by: Brad Chiappetta <[email protected]>

* [ASM] -  Expandr 4075 (#27258) (#27287)

* init

* RN

* fix RN

* Apply suggestions from code review



---------

Co-authored-by: johnnywilkes <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>

* [Panorama] Tags Management (#27044)

* panorama tag commands

* release notes

* release notes

* tpb

* fix tpb

* fix

* add kew_words and update description

* fix device-group

* revert non-relevat change

* bump version

* - Added device group location to the tags result
- Added list request when editing tags to get the properties that are not given in arguments

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* docs fixes

* fix UT

* pre-commit fix

* bump version

* pre-commit

* CR fix

---------

Co-authored-by: ShirleyDenkberg <[email protected]>

* Xdrir fix polling timeout (#27238)

* XDRIR fix polling timeout parameter

* Added RNs

* Update Docker Image To demisto/bottle  (#27303)

* Updated Metadata Of Pack WebFileRepository

* Added release notes to pack WebFileRepository

* Packs/WebFileRepository/Integrations/WebFileRepository/WebFileRepository.yml Docker image update

* Update Docker Image To demisto/python3  (#27302)

* Updated Metadata Of Pack DelineaSS

* Added release notes to pack DelineaSS

* Packs/DelineaSS/Integrations/DelineaSS/DelineaSS.yml Docker image update

* Updated Metadata Of Pack Lumu

* Added release notes to pack Lumu

* Packs/Lumu/Integrations/Lumu/Lumu.yml Docker image update

* Updated Metadata Of Pack FlashpointFeed

* Added release notes to pack FlashpointFeed

* Packs/FlashpointFeed/Integrations/FlashpointFeed/FlashpointFeed.yml Docker image update

* Updated Metadata Of Pack FeedLOLBAS

* Added release notes to pack FeedLOLBAS

* Packs/FeedLOLBAS/Integrations/FeedLOLBAS/FeedLOLBAS.yml Docker image update

* Updated Metadata Of Pack Grafana

* Added release notes to pack Grafana

* Packs/Grafana/Integrations/Grafana/Grafana.yml Docker image update

* Updated Metadata Of Pack FireMonSecurityManager

* Added release notes to pack FireMonSecurityManager

* Packs/FireMonSecurityManager/Integrations/FireMonSecurityManager/FireMonSecurityManager.yml Docker image update

* Updated Metadata Of Pack Gatewatcher-AionIQ

* Added release notes to pack Gatewatcher-AionIQ

* Packs/Gatewatcher-AionIQ/Integrations/GCenter/GCenter.yml Docker image update

* Updated Metadata Of Pack McAfeeNSM

* Added release notes to pack McAfeeNSM

* Packs/McAfeeNSM/Integrations/McAfeeNSMv2/McAfeeNSMv2.yml Docker image update

* Updated Metadata Of Pack DeHashed

* Added release notes to pack DeHashed

* Packs/DeHashed/Integrations/DeHashed/DeHashed.yml Docker image update

* Updated Metadata Of Pack IronscalesEventCollector

* Added release notes to pack IronscalesEventCollector

* Packs/IronscalesEventCollector/Integrations/IronscalesEventCollector/IronscalesEventCollector.yml Docker image update

* Update Docker Image To demisto/sixgill  (#27304)

* Updated Metadata Of Pack Sixgill-Darkfeed

* Added release notes to pack Sixgill-Darkfeed

* Packs/Sixgill-Darkfeed/Integrations/Sixgill_Darkfeed_Enrichment/Sixgill_Darkfeed_Enrichment.yml Docker image update

* Packs/Sixgill-Darkfeed/Integrations/Sixgill_Darkfeed/Sixgill_Darkfeed.yml Docker image update

* Update Docker Image To demisto/slackv3  (#27301)

* Updated Metadata Of Pack Slack

* Added release notes to pack Slack

* Packs/Slack/Integrations/SlackV3/SlackV3.yml Docker image update

* MOVEit Transfer pack enhancement (#27225)

* Majorbreach pack RN update and minor fix to the playbook description

* Majorbreach pack RN update and minor fix to the playbook description

* fix RN

* updates

* updates

* updates the pack readme

* Service now auto closing incidents when using the Mirrored XSOAR Ticket custom close state code parameter (#27288)

* Fixed issue where incidents would auto close after using the Mirrored XSOAR Ticket custom close state code parameter

* Added RN

* Fixed RN and added documentation in code

* Fixed documentation in code

* Creating modeling and parsing rules for Cisco ISR (#27239)

* Creating modeling and parsing rules for Cisco ISR

* Change readme

* Change readme

* Added ipv6 mapping to modeling rules

* fixed const for ip protocol

* unified user regex to 1 statement

* modified readme file

* Modified release notes.

* Add zdl ti fusion pack (#26981) (#27286)

* Add ZeroDayLiveTIFusion Pack

* Formatting updates

* Remove .lock, set default repotation value

* Remove th pipefile

* Rename Pack to contain feed - adhere to PA conventions

* Reuse existing CSV API module

* Metadata updates - post review

* Update descriptions

Co-authored-by: grzegorzpapkala <[email protected]>

* [MSGraphDeviceMgmt] fix bool parsing (#27296)

* ObserveIT Severity Update (#27282)

* Updated ModelingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Updated ModelingRules

* Update Docker Image To demisto/python3  (#27300)

* Updated Metadata Of Pack AutoFocus

* Added release notes to pack AutoFocus

* Packs/AutoFocus/Integrations/FeedAutofocus/FeedAutofocus.yml Docker image update

* Packs/AutoFocus/Integrations/AutofocusV2/AutofocusV2.yml Docker image update

* Updated Metadata Of Pack CrowdStrikeFalconX

* Added release notes to pack CrowdStrikeFalconX

* Packs/CrowdStrikeFalconX/Integrations/CrowdStrikeFalconX/CrowdStrikeFalconX.yml Docker image update

* Updated Metadata Of Pack CVESearch

* Added release notes to pack CVESearch

* Packs/CVESearch/Integrations/CVESearchV2/CVESearchV2.yml Docker image update

* Updated Metadata Of Pack Slack

* Added release notes to pack Slack

* Packs/Slack/Scripts/SlackAskV2/SlackAskV2.yml Docker image update

* Bump pack from version Slack to 3.1.39.

---------

Co-authored-by: Content Bot <[email protected]>

* Qradar/fix/deprecated playbook (#27198)

* replaced depracted playbook

* updated RN

* changed more TPB

* updated RN

* Pass the comment to fetch-credential command. (#27305)

* Pass the comment to fetch-credential command. (#27249)

* Pass the comment to fetch-credential command.
Added auto comment feature to delinea-secret-password-get command.

* Updated docker image version

* change docker image version

* Adhere to RN XSOAR known tempaltes.

* Updated the unit test case

---------

Co-authored-by: Danny_Fried <[email protected]>

* Bump version.

---------

Co-authored-by: Suhasini <[email protected]>
Co-authored-by: Danny_Fried <[email protected]>

* LOLBAS - Added "Plug & Fetch" tag (#27309)

* added needed tags to pack

* Added lolbas to "Free Feeds" pack

* Remove CommonServerUser Scripts from `NonSupported` Pack (#27311)

* Remove common-server-user scripts

* Delete READMEs (moved to content-docs)

* Sysaid delete-file, get, add-note, record-attach-file (#27285)

* Orca Integration: Remove video from the description (#27259) (#27314)

* Use orca score as source for the demisto score
Update output for the commands

* Upgrade docker version.

---------

Co-authored-by: Viktor Poltorak <[email protected]>
Co-authored-by: Danny_Fried <[email protected]>

* SimpleSFTP upload-file command added. (#27315)

* SimpleSFTP upload-file command added. (#27208)

* SimpleSFTP upload-file command added.

* Removing print

* Updated Readme. Added ReleaseNotes and unified arguments to snake case instead of camel case

* Fixed name in integration YAML.

* Fixing linting errors.

* Update docker image.
Include docker image in RN.

---------

Co-authored-by: Fahad Yousuf <[email protected]>
Co-authored-by: Danny_Fried <[email protected]>

* WildFire Fix condition to exclude encoded pdf files (#27105)

* Fix condition to exclude encoded pdf files

* Update release notes

* Update missing playbook image

* Fix playbook logic to exclude base64 encoded

* Update release notes and playbook image

* Update playbook-Detonate_File_-_WildFire.yml

Fix review comments

* Update playbook image and description

* Update playbook readme

* Update Docker Image To demisto/boto3py3  (#27335)

* Updated Metadata Of Pack AWS-GuardDuty

* Added release notes to pack AWS-GuardDuty

* Packs/AWS-GuardDuty/Integrations/AWSGuardDutyEventCollector/AWSGuardDutyEventCollector.yml Docker image update

* Packs/AWS-GuardDuty/Integrations/AWSGuardDuty/AWSGuardDuty.yml Docker image update

* Update Docker Image To demisto/py42  (#27336)

* Updated Metadata Of Pack Code42

* Added release notes to pack Code42

* Packs/Code42/Integrations/Code42/Code42.yml Docker image update

* Update incidentfield-Darktrace_Model_Breach_CommentCount.json (#27103)

* Update incidentfield-Darktrace_Model_Breach_CommentCount.json

* Update pack_metadata.json

* Create 2_0_6.md

* Update 2_0_6.md

* Update 2_0_6.md

* RN

* RN

* RN

* AWS Lambda enhancement 6 commands (#27095)

* Added get policy command

* change from AWS-Lambda to AWS_Lambda

* Added UT for policy

* Fix UT

* Fix UT

* del duplicate code

* Added list-versions and url_config

* update yml

* added 3 commands

* added 3 commands

* update docker

* lint MD

* fix yml

* update RN

* improve

* added readme and some improve

* del copy

* added docstring

* fix line to long

* test playbook and update docker

* update fromVersion

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* change  List of strings to list

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* change md

* autofix on

* autofix

* autofix

* Apply automatic changes

* Revert "autofix on"

This reverts commit 1039a09e18c740fa906a53cc3a742e45fa560199.

* Revert "autofix on"

This reverts commit 1039a09e18c740fa906a53cc3a742e45fa560199.

* undo pre-commit

* update docker

* fix demo

* update yml

* change file name

* change file name to aws_lambda

* update docker  and UT

* fix mypy

* fix

* undo fix

* update docker and cr

* added Principal

* update docker

---------

Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: shmuel44 <[email protected]>

* [panOS] Add Security Rule does not take list as paramter (#27040)

* Change source_user arg to list

* Update yml file

* Update yml changes to pan-os and panorama

* Update release notes

* Update 1_17_5.md

* Rename 1_17_5.md to 1_17_6.md

* Delete 1_17_6.md

* Update RN

* Add UT for PR changes

* Update README.md

* Update Packs/PAN-OS/ReleaseNotes/1_17_6.md

Co-authored-by: Guy Afik <[email protected]>

* Version bump

* Update docker image

* Update RN

---------

Co-authored-by: Guy Afik <[email protected]>

* custom user agent on builds (#27284)

* custom user agent on builds

* Cofense Triage Release 2.1.13 (#27265) (#27317)

* Update .devcontainer.json name

* Added cofense-report-attachment-payload-list command

* Updated context example in report attachment payload list command

* Updated docker images in all YML files

* Updated release notes

---------

Co-authored-by: Crest Data Systems <[email protected]>
Co-authored-by: crestdatasystems <[email protected]>
Co-authored-by: michal-dagan <[email protected]>

* Associate "Action" indicator field to all indicator types (#27321)

* Associate "Action" field to all types

* RN

* fix execution metrics in scripts (#27214)

* Align credentials stores part 10 (#27221)

* Align credentials stores part 10

* SumoLogic

* Proofpoint Feed

* required change

* adding tests

* add fetch logs to nightly build fetch integrations (#27124)

* add fetch logs to nightly build fetch integrations

* fix QRadar tests

* update release notes and docker files

* fix expansev2

* rn

* fix logs

* fix flask8

* added date field to skip incident log

* resolve conflict

* Bump pack from version QRadar to 2.4.22.

---------

Co-authored-by: Content Bot <[email protected]>

* add fetch log part2 (#27196)

* cortexDataLake

* update docker

* GenericSQL logs

* update rn

* md-atp logs

* update docker

* adding time to skip incidents

* update docker

* AWS Feed - added support for IPv6 (#27141)

* AWS Feed - added support for IPv6

* added tests

* cr

* tests an rn

* validation

* rn

* cr

* di

* Bump sane-pdf-report docker image (#27318)

* Bump sane-pdf-report docker image

* Bump pack from version Base to 1.32.11.

---------

Co-authored-by: Content Bot <[email protected]>

* Fixed file name to be "indicatorfield" (#27342)

* fixed file name

* RN

* RN

* Update 3_3_74.md

* Update setup poetry step in pre-commit (#27224)

* update setup poetry

* use pip

* change Setup Poetry to use Gr1N

* change Setup Poetry to use Gr1N in pre commit

* adding root .editorconfig file. (#27280)

https://editorconfig.org/

* fixing unbound local variable on search dependencies (#27327)

* update readme file (#27356)

* Core rest api add xsoar hosted (#27355)

* bug fix

* RN update

---------

Co-authored-by: xsoar-bot <[email protected]>

* Updated pb to use cve command (#27341)

* MSGraphTeams fix path in the documentation (#27353)

* fix docs

* RN

* Fix common server python mypy (#27351)

* fixed a mypy issue

* added rn

* fix

* Marketplace doc-howto (#27349)

* Duo fields enhancement (#27308)

* Enhancement for modeling rules.

* added telephony modeling rule

* modified modeling rule

* modified shcema file.

* Added release notes.

* Added release notes.

* updated pack metadata release notes.

* Free enrichers tags - "Plug & Enrich" (#27320)

* "Plug & Enrich" tags and FreeEnrichers pack

* Added tags to approved list

* Updated and corrected the readme.

* Another small fix of a typo in readme

* Reverted accidentally removing pack name

* Better formatting

* Added "Free Enricher" to all "Plug & Fetch" enrichers

* ignore modeling/parsing rules suffix validate (#27373)

* Fix RTIR issue (#27360)

* fix type

* Add UTs for changed add_reply function

* add credential defaults, improve UT

---------

Co-authored-by: samuelFain <[email protected]>

* Added code for integration of events (#26519) (#27379)

* Added code for integration of events

* Code review Feedback

* changes in fetch incident

* PR Review change

* PR Review change

* changes in read me file

* Changed read me file based on the review

* Changes for playbook and intergration

* changes in the read me file

* PR changes

* changes in image and docker image

* change in services in alert

* changes for alert

* Changes in docker image

* Changes for docker image

* Update Packs/CybleThreatIntel/Integrations/CybleThreatIntel/CybleThreatIntel.yml



* Update Packs/CybleEventsV2/Integrations/CybleEventsV2/CybleEventsV2.yml



---------

Co-authored-by: cyble-dev <[email protected]>
Co-authored-by: RotemAmit <[email protected]>

* CSP - Added `Rank` class (new grid field) and `rank` to the Domain class (new grid field) (#27352)

* Added rank to domain

* RN

* Update CommonServerPython.py

* RN

* Splunk py raise timezone exception (#27316)

* SplunkPy - fix uninformative error message when missing timezone in mirroring

* Added RNs

* Updated readme

* CR updates

* Update Packs/SplunkPy/ReleaseNotes/3_0_20.md

Co-authored-by: yuvalbenshalom <[email protected]>

* Updated Docker Image

---------

Co-authored-by: yuvalbenshalom <[email protected]>

* qradar return error with traceback (#27229)

* Zscaler ZIA enhancement: Add IP Destination group commands (#27386)

* Zscaler ZIA enhancement: Add IP Destination group commands (#26447)

* ZIA Enhancement: IP destination group commands

* Included 3 new commands for Zscaler Integration as follows::
 - Added zscaler-list-ip-destination-groups
 - Added zscaler-create-ip-destination-groups
 - Added zscaler-edit-ip-destination-groups

---------

Co-authored-by: rootbid <[email protected]>

* ZIA Enhancement: IP destination group commands
* Included 2 new commands for Zscaler Integration as follows::
 - Added zscaler-list-ip-destination-groups-lite
 - Added zscaler-delete-ip-destination-groups

---------

Author: pallavi-garad <[email protected]>
Co-authored-by: rootbid <[email protected]>

* Minor updates and fixes

* Update and add documentation links for Zscaler ZIA

* Zscaler ZIA Enhancement - Update with requested changes

* Update .devcontainer.json name

* merge list-ip-destination-groups and lite command

* fixed minor issues

* update lite argument description

---------

Co-authored-by: rootbid <[email protected]>

* Update .devcontainer/devcontainer.json

Co-authored-by: Dan Tavori <[email protected]>

* Update as per review comments

- Fix exceptions
- Use CommandResults
- Refactor zscaler-list-ip-destination-groups and zscaler-edit-ip-destination-group commands
- Update release notes

* Regenerate README after updating Zscaler.yml and unit test bug fixes

* Resolve merge conflicts

* Fix type annotations and update docker image

* Update Packs/Zscaler/ReleaseNotes/1_3_10.md

Co-authored-by: Dan Tavori <[email protected]>

---------

Co-authored-by: Shambo Samanta <[email protected]>
Co-authored-by: rootbid <[email protected]>
Co-authored-by: pallavi-garad <[email protected]>
Co-authored-by: Dan Tavori <[email protected]>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

---------

Co-authored-by: Deepansh <[email protected]>
Co-authored-by: Shambo Samanta <[email protected]>
Co-authored-by: rootbid <[email protected]>
Co-authored-by: pallavi-garad <[email protected]>
Co-authored-by: Dan Tavori <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>

* XSIAM | ForcepointSWG Pack (#26706)

* XSIAM | ForcepointSWG Pack

* Added pack files

* Added pack-ignore and secrets-ignore

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* Updated ModelingRules

---------

Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: evisochek <[email protected]>

* AzureSentinel - keywords argument from 'comma separate' to 'str' in azure-sentinel-threat-indicator-query (#27380)

* keywords argument from comma separate to str in azure-sentinel-threat
-indicator-query command

* RN

* DO

* Update Packs/AzureSentinel/Integrations/AzureSentinel/README.md

Co-authored-by: dorschw <[email protected]>

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml

Co-authored-by: dorschw <[email protected]>

* Update Packs/AzureSentinel/ReleaseNotes/1_5_8.md

Co-authored-by: dorschw <[email protected]>

* under sources

* additional info for clarification

* Update Packs/AzureSentinel/Integrations/AzureSentinel/README.md

Co-authored-by: dorschw <[email protected]>

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml

Co-authored-by: dorschw <[email protected]>

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml

Co-authored-by: dorschw <[email protected]>

* validate yml

* validate yml

* revert and Dor's solution

* revert README

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.py

Co-authored-by: dorschw <[email protected]>

* add instance name for the TPB

---------

Co-authored-by: dorschw <[email protected]>

* Update Docker Image To demisto/py3-tools  (#27396)

* Updated Metadata Of Pack MailListener

* Added release notes to pack MailListener

* Packs/MailListener/Integrations/MailListenerV2/MailListenerV2.yml Docker image update

* Remove content items with toversion less than 6.5.0 (#27325)

* remove playbooks

* remove scripts

* remove integrations

* remove integrations

* remove README

* remove script/integration packs

* fix UT

* False

* Align credentials stores part 5 (#27126)

* Align credentials stores part 5

* adding IBM

* RL

* checking new docker image

* update

* docker to fix pre-commit

* fix docker

* update docker in rl

* add test req

* old docker

* rl

* docker

---------

Co-authored-by: ilan <[email protected]>

* Zscaler add reliability (#27197)

* Zscaler - add reliability parameter

* added RNs

* pre-commit hooks

* updated docker image

* Changed reliability to Reliability in outputs

* updated docker image

* updated RNs

* updated RNs

* hide EWS Pack (#27231)

* added hidden key

* removed ews from dependencies

* added ,

* added ,

* removed dependencies to EWS Mail Sender

* removed dependencies to EWS Mail Sender

* commented a line, to revert  after testing

* commented a line, to revert  after testing

* reverted commmenting

* added intergration

* Squid testdata (#26659)

* Update modeling rules

* Updated release notes.

* update release notes.

* new line after alter for the xdm mapping.

* Align credentials stores  part 14 (#27361)

* Align credentials stores for all Cortex Marketplace integrations- part 13

* fix pack

* remove ignore

* correct ignore

* added commands to read me

* [ASM] - Expander - Expander v2 Pack enhancements - batch 1 (#27398)

* [ASM] - Expander - Expander v2 Pack enhancements - batch 1 (#27006)

* initial additional of new Ev2 content

* adding playbook readmes

* layout update and release notes

* validation fixes

* widget validation and release notes style

* playbook validation errors

* Update incidenttype-Xpanse_Alert.json

fixed incident type playbook assignment

* validation issues

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment_README.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Handler.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update widget logic

* Update Widget logic

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* update from_version

* Apply suggestions from code review

Co-authored-by: johnnywilkes <[email protected]>

* Apply suggestions from code review

Co-authored-by: johnnywilkes <[email protected]>

* Update Packs/CortexXpanse/IncidentTypes/incidenttype-Xpanse_Alert.json

Co-authored-by: johnnywilkes <[email protected]>

* back to 6.8 fromversion

* README enhancements

* Playbook cleanup

* README img fix

* Dashboard fix and incident type version validation fix

* README images

* release notes error

* release notes validation

---------

Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: johnnywilkes <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Handler.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/README.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

---------

Co-authored-by: Andrew Scott <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: johnnywilkes <[email protected]>
Co-authored-by: RotemAmit <[email protected]>

* Align credentials stores part 16 (#27367)

* XSIAM | Fix for Windows Events Modeling Rules (#27129)

* [VirusTotal] Fix error when optional parameter extended_data is not present in command calls (#27414)

* [VirusTotal] Fix error when optional parameter extended_data is not present in command calls (#27411)

* Fix error when optional parameter extended_data is not present in command calls

* release notes

* docker image update

* updated rn

---------

Co-authored-by: Daniel Pascual <[email protected]>
Co-authored-by: michal-dagan <[email protected]>

* ironPort modeling rules (#27133)

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* ignore rules suffix validate (#27397)

* added marketplaces to event collector yml (#27400)

* added marketplaces to event collector yml

* rn

* removed rn

* rn and docker

* Email ask user add using argument (#27401)

* Added the usingSender argument to enable using only one instance to send the email

* Release Notes, Metadata

* RM param, add generic fix

* Align credentials stores part 15 (#27364)

* Align credentials stores - part 15

* Akamai WAF

* docker

* adding an error

* revert irrelevant change

* revert irrelevant change

* update docker

* fix autodiscovery

* fix validations

* final changes

* validation fix

* add ut increase timeout

* increase timeout and test tpb

* add ut

* cr last fixes

* changed task ids for testing

* test tpb change

---------

Co-authored-by: tkatzir <[email protected]>
Co-authored-by: rshunim <[email protected]>
Co-authored-by: Guy Afik <[email protected]>
Co-authored-by: content-bot <[email protected]>
Co-authored-by: Dror Avrahami <[email protected]>
Co-authored-by: sberman <[email protected]>
Co-authored-by: Moshe Eichler <[email protected]>
Co-authored-by: Menachem Weinfeld <[email protected]>
Co-authored-by: eepstain <[email protected]>
Co-authored-by: darkushin <[email protected]>
Co-authored-by: Mai Morag <[email protected]>
Co-authored-by: dorschw <[email protected]>
Co-authored-by: Crest Data Systems <[email protected]>
Co-authored-by: crestdatasystems <[email protected]>
Co-authored-by: recordedfuture-simonhornestedt <109588368+recordedfuture-simonhornestedt@users.noreply.github.com>
Co-authored-by: michal-dagan <[email protected]>
Co-authored-by: israelpoli <[email protected]>
Co-authored-by: Brad Chiappetta <[email protected]>
Co-authored-by: johnnywilkes <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: Yaakov Praisler <[email protected]>
Co-authored-by: Ben Melamed <[email protected]>
Co-authored-by: anas-yousef <[email protected]>
Co-authored-by: yasta5 <[email protected]>
Co-authored-by: grzegorzpapkala <[email protected]>
Co-authored-by: Content Bot <[email protected]>
Co-authored-by: Arad Carmi <[email protected]>
Co-authored-by: Suhasini <[email protected]>
Co-authored-by: Danny_Fried <[email protected]>
Co-authored-by: Michael Yochpaz <[email protected]>
Co-authored-by: Viktor Poltorak <[email protected]>
Co-authored-by: Fahad Yousuf <[email protected]>
Co-authored-by: Erez FelmanDar <[email protected]>
Co-authored-by: Edi Katsenelson <[email protected]>
Co-authored-by: Shmuel Kroizer <[email protected]>
Co-authored-by: shmuel44 <[email protected]>
Co-authored-by: samuelFain <[email protected]>
Co-authored-by: Koby Meir <[email protected]>
Co-authored-by: eli sharf <[email protected]>
Co-authored-by: jbabazadeh <[email protected]>
Co-authored-by: MLainer1 <[email protected]>
Co-authored-by: Liron Michalevich <[email protected]>
Co-authored-by: Adi Daud <[email protected]>
Co-authored-by: Dan Sterenson <[email protected]>
Co-authored-by: xsoar-bot <[email protected]>
Co-authored-by: merit-maita <[email protected]>
Co-authored-by: cyble-dev <[email protected]>
Co-authored-by: RotemAmit <[email protected]>
Co-authored-by: yuvalbenshalom <[email protected]>
Co-authored-by: ilaner <[email protected]>
Co-authored-by: Deepansh <[email protected]>
Co-authored-by: Shambo Samanta <[email protected]>
Co-authored-by: rootbid <[email protected]>
Co-authored-by: pallavi-garad <[email protected]>
Co-authored-by: Dan Tavori <[email protected]>
Co-authored-by: nkanon <[email protected]>
Co-authored-by: evisochek <[email protected]>
Co-authored-by: ilan <[email protected]>
Co-authored-by: Andrew Scott <[email protected]>
Co-authored-by: Daniel Pascual <[email protected]>
Co-authored-by: michal-dagan <[email protected]>
Co-authored-by: guytamir10 <[email protected]>
Co-authored-by: EyalPintzov <[email protected]>
Co-authored-by: Andrew Shamah <[email protected]>
Co-authored-by: yucohen <[email protected]>
MosheEichler added a commit that referenced this pull request Jul 2, 2023
* update

* test

* changes

* changes

* final commands changes

* clean code

* update TPBs

* rvert name change

* revert name change

* cr changes

* fix name

* fix TPBs

* remove skip of perm_set field

* fix tpb and validations

* revert arg removal

* remove added tpb

* update memory threshold

* fix ut

* fix ut

* Fix urllib.parse import in CommonServerPython (#27252)

* Allow applying a new profile over an existing one in ***pan-os-apply-security-profile*** command (#27237)

* Add XSOAR support for updating existing profile types

* RN

* fix UT

* Update Packs/PAN-OS/ReleaseNotes/1_17_5.md

Co-authored-by: Guy Afik <[email protected]>

* fix CR

* RN

* UT was added

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* fix

* flake8

* UT stability

---------

Co-authored-by: Guy Afik <[email protected]>

* Update Docker Image To demisto/splunksdk-py3  (#27263)

* Updated Metadata Of Pack SplunkPy

* Added release notes to pack SplunkPy

* Packs/SplunkPy/Integrations/SplunkPy/SplunkPy.yml Docker image update

* Updated domain extraction playbook - changing .zip to a valid TLD (#27264)

* Updated domain extraction playbook

* some formatting.

* Update playbook-Domain_extraction_test.yml

* Update playbook-Domain_extraction_test.yml

* Update Docker Image To demisto/duoadmin3  (#27268)

* Updated Metadata Of Pack DuoAdminApi

* Added release notes to pack DuoAdminApi

* Packs/DuoAdminApi/Integrations/DuoEventCollector/DuoEventCollector.yml Docker image update

* Packs/DuoAdminApi/Integrations/DuoAdminApi/DuoAdminApi.yml Docker image update

* Update Docker Image To demisto/googleapi-python3  (#27267)

* Updated Metadata Of Pack GoogleDrive

* Added release notes to pack GoogleDrive

* Packs/GoogleDrive/Integrations/GoogleDrive/GoogleDrive.yml Docker image update

* Update Docker Image To demisto/python3  (#27266)

* Updated Metadata Of Pack Darktrace

* Added release notes to pack Darktrace

* Packs/Darktrace/Integrations/DarktraceMBs/DarktraceMBs.yml Docker image update

* Packs/Darktrace/Integrations/DarktraceAIA/DarktraceAIA.yml Docker image update

* Updated Metadata Of Pack CybleEvents

* Added release notes to pack CybleEvents

* Packs/CybleEvents/Integrations/CybleEvents/CybleEvents.yml Docker image update

* Updated Metadata Of Pack Censys

* Added release notes to pack Censys

* Packs/Censys/Integrations/CensysV2/CensysV2.yml Docker image update

* Updated Metadata Of Pack VirusTotal

* Added release notes to pack VirusTotal

* Packs/VirusTotal/Integrations/FeedLivehunt/FeedLivehunt.yml Docker image update

* Packs/VirusTotal/Integrations/FeedRetrohunt/FeedRetrohunt.yml Docker image update

* Updated Metadata Of Pack CofenseIntelligenceV2

* Added release notes to pack CofenseIntelligenceV2

* Packs/CofenseIntelligenceV2/Integrations/CofenseIntelligenceV2/CofenseIntelligenceV2.yml Docker image update

* Updated Metadata Of Pack CheckPointDome9

* Added release notes to pack CheckPointDome9

* Packs/CheckPointDome9/Integrations/CheckPointDome9/CheckPointDome9.yml Docker image update

* Updated Metadata Of Pack Reco

* Added release notes to pack Reco

* Packs/Reco/Integrations/Reco/Reco.yml Docker image update

* Updated Metadata Of Pack CimTrak-SystemIntegrityAssurance

* Added release notes to pack CimTrak-SystemIntegrityAssurance

* Packs/CimTrak-SystemIntegrityAssurance/Integrations/CimTrak/CimTrak.yml Docker image update

* Update Docker Image To demisto/python3  (#27272)

* Updated Metadata Of Pack FeedProofpoint

* Added release notes to pack FeedProofpoint

* Packs/FeedProofpoint/Integrations/FeedProofpoint/FeedProofpoint.yml Docker image update

* Updated Metadata Of Pack FortiSIEM

* Added release notes to pack FortiSIEM

* Packs/FortiSIEM/Integrations/FortiSIEM/FortiSIEM.yml Docker image update

* Updated Metadata Of Pack Ipstack

* Added release notes to pack Ipstack

* Packs/Ipstack/Integrations/Ipstack/Ipstack.yml Docker image update

* Updated Metadata Of Pack SafeBreach

* Added release notes to pack SafeBreach

* Packs/SafeBreach/Integrations/SafeBreach_v2/SafeBreach_v2.yml Docker image update

* Updated Metadata Of Pack RedCanary

* Added release notes to pack RedCanary

* Packs/RedCanary/Integrations/RedCanary/RedCanary.yml Docker image update

* Updated Metadata Of Pack PiHole

* Added release notes to pack PiHole

* Packs/PiHole/Integrations/PiHole/PiHole.yml Docker image update

* Updated Metadata Of Pack FeedDShield

* Added release notes to pack FeedDShield

* Packs/FeedDShield/Integrations/FeedDShield/FeedDShield.yml Docker image update

* Updated Metadata Of Pack SafeNet_Trusted_Access

* Added release notes to pack SafeNet_Trusted_Access

* Packs/SafeNet_Trusted_Access/Integrations/SafeNetTrustedAccess/SafeNetTrustedAccess.yml Docker image update

* Updated Metadata Of Pack OpenPhish

* Added release notes to pack OpenPhish

* Packs/OpenPhish/Integrations/OpenPhish_v2/OpenPhish_v2.yml Docker image update

* Updated Metadata Of Pack NistNVD

* Added release notes to pack NistNVD

* Packs/NistNVD/Integrations/NistNVD/NistNVD.yml Docker image update

* Updated Metadata Of Pack Cognni

* Added release notes to pack Cognni

* Packs/Cognni/Integrations/Cognni/Cognni.yml Docker image update

* Updated Metadata Of Pack PANOSPolicyOptimizer

* Added release notes to pack PANOSPolicyOptimizer

* Packs/PANOSPolicyOptimizer/Integrations/PANOSPolicyOptimizer/PANOSPolicyOptimizer.yml Docker image update

* Updated Metadata Of Pack DeveloperTools

* Added release notes to pack DeveloperTools

* Packs/DeveloperTools/Integrations/CreateIncidents/CreateIncidents.yml Docker image update

* Packs/DeveloperTools/Integrations/CustomIndicatorDemo/CustomIndicatorDemo.yml Docker image update

* Packs/DeveloperTools/Integrations/APIMetricsValidation/APIMetricsValidation.yml Docker image update

* Updated Metadata Of Pack NozomiNetworks

* Added release notes to pack NozomiNetworks

* Packs/NozomiNetworks/Integrations/NozomiNetworks/NozomiNetworks.yml Docker image update

* Updated Metadata Of Pack ANYRUN

* Added release notes to pack ANYRUN

* Packs/ANYRUN/Integrations/ANYRUN/ANYRUN.yml Docker image update

* Updated Metadata Of Pack Carbon_Black_Enterprise_Response

* Added release notes to pack Carbon_Black_Enterprise_Response

* Packs/Carbon_Black_Enterprise_Response/Integrations/CarbonBlackResponseV2/CarbonBlackResponseV2.yml Docker image update

* Updated Metadata Of Pack Absolute

* Added release notes to pack Absolute

* Packs/Absolute/Integrations/Absolute/Absolute.yml Docker image update

* Updated Metadata Of Pack Ironscales

* Added release notes to pack Ironscales

* Packs/Ironscales/Integrations/Ironscales/Ironscales.yml Docker image update

* Updated Metadata Of Pack FeedURLhaus

* Added release notes to pack FeedURLhaus

* Packs/FeedURLhaus/Integrations/FeedURLhaus/FeedURLhaus.yml Docker image update

* Updated Metadata Of Pack Lokpath_Keylight

* Added release notes to pack Lokpath_Keylight

* Packs/Lokpath_Keylight/Integrations/Lockpath_KeyLight_v2/Lockpath_KeyLight_v2.yml Docker image update

* Updated Metadata Of Pack FeedMISP

* Added release notes to pack FeedMISP

* Packs/FeedMISP/Integrations/FeedMISP/FeedMISP.yml Docker image update

* Updated Metadata Of Pack FraudWatch

* Added release notes to pack FraudWatch

* Packs/FraudWatch/Integrations/FraudWatch/FraudWatch.yml Docker image update

* Updated Metadata Of Pack AbnormalSecurity

* Added release notes to pack AbnormalSecurity

* Packs/AbnormalSecurity/Integrations/AbnormalSecurityEventCollector/AbnormalSecurityEventCollector.yml Docker image update

* Updated Metadata Of Pack CovalenceManagedSecurity

* Added release notes to pack CovalenceManagedSecurity

* Packs/CovalenceManagedSecurity/Integrations/CovalenceManagedSecurity/CovalenceManagedSecurity.yml Docker image update

* Updated Metadata Of Pack IllusiveNetworks

* Added release notes to pack IllusiveNetworks

* Packs/IllusiveNetworks/Integrations/IllusiveNetworks/IllusiveNetworks.yml Docker image update

* Updated Metadata Of Pack Edgescan

* Added release notes to pack Edgescan

* Packs/Edgescan/Integrations/Edgescan/Edgescan.yml Docker image update

* Updated Metadata Of Pack PerceptionPoint

* Added release notes to pack PerceptionPoint

* Packs/PerceptionPoint/Integrations/PerceptionPoint/PerceptionPoint.yml Docker image update

* Updated Metadata Of Pack Druva

* Added release notes to pack Druva

* Packs/Druva/Integrations/Druva/Druva.yml Docker image update

* Updated Metadata Of Pack APIVoid

* Added release notes to pack APIVoid

* Packs/APIVoid/Integrations/APIVoid/APIVoid.yml Docker image update

* Updated Metadata Of Pack PingIdentity

* Added release notes to pack PingIdentity

* Packs/PingIdentity/Integrations/PingOne/PingOne.yml Docker image update

* Updated Metadata Of Pack cisco-ise

* Added release notes to pack cisco-ise

* Packs/cisco-ise/Integrations/cisco-ise/cisco-ise.yml Docker image update

* Updated Metadata Of Pack SailPointIdentityIQ

* Added release notes to pack SailPointIdentityIQ

* Packs/SailPointIdentityIQ/Integrations/SailPointIdentityIQ/SailPointIdentityIQ.yml Docker image update

* Updated Metadata Of Pack Cymulate

* Added release notes to pack Cymulate

* Packs/Cymulate/Integrations/Cymulate/Cymulate.yml Docker image update

* Packs/Cymulate/Integrations/Cymulate_v2/Cymulate_v2.yml Docker image update

* Updated Metadata Of Pack XSOARmirroring

* Added release notes to pack XSOARmirroring

* Packs/XSOARmirroring/Integrations/XSOARmirroring/XSOARmirroring.yml Docker image update

* Updated Metadata Of Pack XMatters

* Added release notes to pack XMatters

* Packs/XMatters/Integrations/xMatters/xMatters.yml Docker image update

* Updated Metadata Of Pack Zimperium

* Added release notes to pack Zimperium

* Packs/Zimperium/Integrations/Zimperium/Zimperium.yml Docker image update

* Updated Metadata Of Pack RSANetWitnessEndpoint

* Added release notes to pack RSANetWitnessEndpoint

* Packs/RSANetWitnessEndpoint/Integrations/RSANetWitnessEndpoint/RSANetWitnessEndpoint.yml Docker image update

* Updated Metadata Of Pack SymantecBlueCoatMalwareAnalysis

* Added release notes to pack SymantecBlueCoatMalwareAnalysis

* Packs/SymantecBlueCoatMalwareAnalysis/Integrations/SymantecBlueCoatMalwareAnalysis/SymantecBlueCoatMalwareAnalysis.yml Docker image update

* Updated Metadata Of Pack InfoArmor_VigilanteATI

* Added release notes to pack InfoArmor_VigilanteATI

* Packs/InfoArmor_VigilanteATI/Integrations/InfoArmorVigilanteATI/InfoArmorVigilanteATI.yml Docker image update

* Updated Metadata Of Pack AccentureCTI

* Added release notes to pack AccentureCTI

* Packs/AccentureCTI/Integrations/ACTIVulnerabilityQuery/ACTIVulnerabilityQuery.yml Docker image update

* Updated Metadata Of Pack PingCastle

* Added release notes to pack PingCastle

* Packs/PingCastle/Integrations/PingCastle/PingCastle.yml Docker image update

* Updated Metadata Of Pack MaxMind_GeoIP2

* Added release notes to pack MaxMind_GeoIP2

* Packs/MaxMind_GeoIP2/Integrations/MaxMind_GeoIP2/MaxMind_GeoIP2.yml Docker image update

* Updated Metadata Of Pack Maltiverse

* Added release notes to pack Maltiverse

* Packs/Maltiverse/Integrations/Maltiverse/Maltiverse.yml Docker image update

* Updated Metadata Of Pack CarbonBlackDefense

* Added release notes to pack CarbonBlackDefense

* Packs/CarbonBlackDefense/Integrations/CarbonBlackEndpointStandard/CarbonBlackEndpointStandard.yml Docker image update

* Updated Metadata Of Pack AlienVault_USM_Anywhere

* Added release notes to pack AlienVault_USM_Anywhere

* Packs/AlienVault_USM_Anywhere/Integrations/AlienVault_USM_Anywhere/AlienVault_USM_Anywhere.yml Docker image update

* Updated Metadata Of Pack ProofpointServerProtection

* Added release notes to pack ProofpointServerProtection

* Packs/ProofpointServerProtection/Integrations/ProofpointProtectionServerV2/ProofpointProtectionServerV2.yml Docker image update

* Updated Metadata Of Pack OpsGenie

* Added release notes to pack OpsGenie

* Packs/OpsGenie/Integrations/OpsGenieV3/OpsGenieV3.yml Docker image update

* Fixed lint and validate

---------

Co-authored-by: sberman <[email protected]>

* Ignore modeling/parsing rules suffix error (#27274)

* [EDL] Fixed a typo in the description (#27269)

* Fixed a typo in the description

* Update the docker image

* Macos Regex Fix (#27270)

* Updated ModelingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Updated ModelingRules

* Updated ModelingRules

* Cs falcon add tags to cs-falcon-upload-custom-ioc command (#27234)

* CS Flacon add tags to upload-custom-ioc command

* added RNs

* Align credentials stores part 11 (#27253)

* Align credentials part 11

* Trend Micro Apex

* ignore

* adding tests to hostlo

* Trend Micro Apex tests

* trend more test

* change test

* Syslogv2 was removed from xsiam marketplace (#27278)

* remove Syslogv2 from xsiam marketplace

* RN

* known_words

* Update Packs/Syslog/ReleaseNotes/2_0_16.md

Co-authored-by: dorschw <[email protected]>

* DO

---------

Co-authored-by: dorschw <[email protected]>

* Microsoft Graph Single User - Edit documentation (#27275)

* edit documentation

* edit documentation

* RN and DO

* fix doc

* mistake

* ExtraHop release v2.1.0 (#27056) (#27279)

* Update .devcontainer.json name

* added changes related to ExtrHop 2.1.0 release

---------

Co-authored-by: Crest Data Systems <[email protected]>
Co-authored-by: crestdatasystems <[email protected]>

* Recordedfuture listapi v1.0.0 (#26996) (#27281)

* First version/implementation of new List Integration

* Added new List integration

* Updated validation step requirements and fixed tests to be working as expected

* Updated test Coverage

* Version bump and fixed frombersion for list app

* Added custom content, incident type and classifier for coderepo leakage

* Updated some documentation and fixed dockerimages

* Bumped version of playbook alert app

* Fixed changelog for 1.6.0 to not include an old change

* fixed type0 in changelog

* removed base64 import

* Updated release notes

* Update based on review

* Removed references to old playbook alerts documentation from creation of integration

---------

Co-authored-by: recordedfuture-simonhornestedt <109588368+recordedfuture-simonhornestedt@users.noreply.github.com>
Co-authored-by: michal-dagan <[email protected]>

* fix bug by convert the password to bytes (#27283)

* fix bug by convert the password to bytes

* commit

* update RN and Docker

* comment corrections

* commit

* [greynoise-266] - Add greynoise-similar and greynoise-timeline commands (#27067) (#27291)

* add sim and timeline updates

* fix test file prints

* update readme fix tests

* updates to readme for pre-commit

* updates from pre-commit run

* more linting updates

* update secrets

* fix url in timeline

Co-authored-by: Brad Chiappetta <[email protected]>

* [ASM] -  Expandr 4075 (#27258) (#27287)

* init

* RN

* fix RN

* Apply suggestions from code review



---------

Co-authored-by: johnnywilkes <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>

* [Panorama] Tags Management (#27044)

* panorama tag commands

* release notes

* release notes

* tpb

* fix tpb

* fix

* add kew_words and update description

* fix device-group

* revert non-relevat change

* bump version

* - Added device group location to the tags result
- Added list request when editing tags to get the properties that are not given in arguments

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* docs fixes

* fix UT

* pre-commit fix

* bump version

* pre-commit

* CR fix

---------

Co-authored-by: ShirleyDenkberg <[email protected]>

* Xdrir fix polling timeout (#27238)

* XDRIR fix polling timeout parameter

* Added RNs

* Update Docker Image To demisto/bottle  (#27303)

* Updated Metadata Of Pack WebFileRepository

* Added release notes to pack WebFileRepository

* Packs/WebFileRepository/Integrations/WebFileRepository/WebFileRepository.yml Docker image update

* Update Docker Image To demisto/python3  (#27302)

* Updated Metadata Of Pack DelineaSS

* Added release notes to pack DelineaSS

* Packs/DelineaSS/Integrations/DelineaSS/DelineaSS.yml Docker image update

* Updated Metadata Of Pack Lumu

* Added release notes to pack Lumu

* Packs/Lumu/Integrations/Lumu/Lumu.yml Docker image update

* Updated Metadata Of Pack FlashpointFeed

* Added release notes to pack FlashpointFeed

* Packs/FlashpointFeed/Integrations/FlashpointFeed/FlashpointFeed.yml Docker image update

* Updated Metadata Of Pack FeedLOLBAS

* Added release notes to pack FeedLOLBAS

* Packs/FeedLOLBAS/Integrations/FeedLOLBAS/FeedLOLBAS.yml Docker image update

* Updated Metadata Of Pack Grafana

* Added release notes to pack Grafana

* Packs/Grafana/Integrations/Grafana/Grafana.yml Docker image update

* Updated Metadata Of Pack FireMonSecurityManager

* Added release notes to pack FireMonSecurityManager

* Packs/FireMonSecurityManager/Integrations/FireMonSecurityManager/FireMonSecurityManager.yml Docker image update

* Updated Metadata Of Pack Gatewatcher-AionIQ

* Added release notes to pack Gatewatcher-AionIQ

* Packs/Gatewatcher-AionIQ/Integrations/GCenter/GCenter.yml Docker image update

* Updated Metadata Of Pack McAfeeNSM

* Added release notes to pack McAfeeNSM

* Packs/McAfeeNSM/Integrations/McAfeeNSMv2/McAfeeNSMv2.yml Docker image update

* Updated Metadata Of Pack DeHashed

* Added release notes to pack DeHashed

* Packs/DeHashed/Integrations/DeHashed/DeHashed.yml Docker image update

* Updated Metadata Of Pack IronscalesEventCollector

* Added release notes to pack IronscalesEventCollector

* Packs/IronscalesEventCollector/Integrations/IronscalesEventCollector/IronscalesEventCollector.yml Docker image update

* Update Docker Image To demisto/sixgill  (#27304)

* Updated Metadata Of Pack Sixgill-Darkfeed

* Added release notes to pack Sixgill-Darkfeed

* Packs/Sixgill-Darkfeed/Integrations/Sixgill_Darkfeed_Enrichment/Sixgill_Darkfeed_Enrichment.yml Docker image update

* Packs/Sixgill-Darkfeed/Integrations/Sixgill_Darkfeed/Sixgill_Darkfeed.yml Docker image update

* Update Docker Image To demisto/slackv3  (#27301)

* Updated Metadata Of Pack Slack

* Added release notes to pack Slack

* Packs/Slack/Integrations/SlackV3/SlackV3.yml Docker image update

* MOVEit Transfer pack enhancement (#27225)

* Majorbreach pack RN update and minor fix to the playbook description

* Majorbreach pack RN update and minor fix to the playbook description

* fix RN

* updates

* updates

* updates the pack readme

* Service now auto closing incidents when using the Mirrored XSOAR Ticket custom close state code parameter (#27288)

* Fixed issue where incidents would auto close after using the Mirrored XSOAR Ticket custom close state code parameter

* Added RN

* Fixed RN and added documentation in code

* Fixed documentation in code

* Creating modeling and parsing rules for Cisco ISR (#27239)

* Creating modeling and parsing rules for Cisco ISR

* Change readme

* Change readme

* Added ipv6 mapping to modeling rules

* fixed const for ip protocol

* unified user regex to 1 statement

* modified readme file

* Modified release notes.

* Add zdl ti fusion pack (#26981) (#27286)

* Add ZeroDayLiveTIFusion Pack

* Formatting updates

* Remove .lock, set default repotation value

* Remove th pipefile

* Rename Pack to contain feed - adhere to PA conventions

* Reuse existing CSV API module

* Metadata updates - post review

* Update descriptions

Co-authored-by: grzegorzpapkala <[email protected]>

* [MSGraphDeviceMgmt] fix bool parsing (#27296)

* ObserveIT Severity Update (#27282)

* Updated ModelingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Updated ModelingRules

* Update Docker Image To demisto/python3  (#27300)

* Updated Metadata Of Pack AutoFocus

* Added release notes to pack AutoFocus

* Packs/AutoFocus/Integrations/FeedAutofocus/FeedAutofocus.yml Docker image update

* Packs/AutoFocus/Integrations/AutofocusV2/AutofocusV2.yml Docker image update

* Updated Metadata Of Pack CrowdStrikeFalconX

* Added release notes to pack CrowdStrikeFalconX

* Packs/CrowdStrikeFalconX/Integrations/CrowdStrikeFalconX/CrowdStrikeFalconX.yml Docker image update

* Updated Metadata Of Pack CVESearch

* Added release notes to pack CVESearch

* Packs/CVESearch/Integrations/CVESearchV2/CVESearchV2.yml Docker image update

* Updated Metadata Of Pack Slack

* Added release notes to pack Slack

* Packs/Slack/Scripts/SlackAskV2/SlackAskV2.yml Docker image update

* Bump pack from version Slack to 3.1.39.

---------

Co-authored-by: Content Bot <[email protected]>

* Qradar/fix/deprecated playbook (#27198)

* replaced depracted playbook

* updated RN

* changed more TPB

* updated RN

* Pass the comment to fetch-credential command. (#27305)

* Pass the comment to fetch-credential command. (#27249)

* Pass the comment to fetch-credential command.
Added auto comment feature to delinea-secret-password-get command.

* Updated docker image version

* change docker image version

* Adhere to RN XSOAR known tempaltes.

* Updated the unit test case

---------

Co-authored-by: Danny_Fried <[email protected]>

* Bump version.

---------

Co-authored-by: Suhasini <[email protected]>
Co-authored-by: Danny_Fried <[email protected]>

* LOLBAS - Added "Plug & Fetch" tag (#27309)

* added needed tags to pack

* Added lolbas to "Free Feeds" pack

* Remove CommonServerUser Scripts from `NonSupported` Pack (#27311)

* Remove common-server-user scripts

* Delete READMEs (moved to content-docs)

* Sysaid delete-file, get, add-note, record-attach-file (#27285)

* Orca Integration: Remove video from the description (#27259) (#27314)

* Use orca score as source for the demisto score
Update output for the commands

* Upgrade docker version.

---------

Co-authored-by: Viktor Poltorak <[email protected]>
Co-authored-by: Danny_Fried <[email protected]>

* SimpleSFTP upload-file command added. (#27315)

* SimpleSFTP upload-file command added. (#27208)

* SimpleSFTP upload-file command added.

* Removing print

* Updated Readme. Added ReleaseNotes and unified arguments to snake case instead of camel case

* Fixed name in integration YAML.

* Fixing linting errors.

* Update docker image.
Include docker image in RN.

---------

Co-authored-by: Fahad Yousuf <[email protected]>
Co-authored-by: Danny_Fried <[email protected]>

* WildFire Fix condition to exclude encoded pdf files (#27105)

* Fix condition to exclude encoded pdf files

* Update release notes

* Update missing playbook image

* Fix playbook logic to exclude base64 encoded

* Update release notes and playbook image

* Update playbook-Detonate_File_-_WildFire.yml

Fix review comments

* Update playbook image and description

* Update playbook readme

* Update Docker Image To demisto/boto3py3  (#27335)

* Updated Metadata Of Pack AWS-GuardDuty

* Added release notes to pack AWS-GuardDuty

* Packs/AWS-GuardDuty/Integrations/AWSGuardDutyEventCollector/AWSGuardDutyEventCollector.yml Docker image update

* Packs/AWS-GuardDuty/Integrations/AWSGuardDuty/AWSGuardDuty.yml Docker image update

* Update Docker Image To demisto/py42  (#27336)

* Updated Metadata Of Pack Code42

* Added release notes to pack Code42

* Packs/Code42/Integrations/Code42/Code42.yml Docker image update

* Update incidentfield-Darktrace_Model_Breach_CommentCount.json (#27103)

* Update incidentfield-Darktrace_Model_Breach_CommentCount.json

* Update pack_metadata.json

* Create 2_0_6.md

* Update 2_0_6.md

* Update 2_0_6.md

* RN

* RN

* RN

* AWS Lambda enhancement 6 commands (#27095)

* Added get policy command

* change from AWS-Lambda to AWS_Lambda

* Added UT for policy

* Fix UT

* Fix UT

* del duplicate code

* Added list-versions and url_config

* update yml

* added 3 commands

* added 3 commands

* update docker

* lint MD

* fix yml

* update RN

* improve

* added readme and some improve

* del copy

* added docstring

* fix line to long

* test playbook and update docker

* update fromVersion

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* change  List of strings to list

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* change md

* autofix on

* autofix

* autofix

* Apply automatic changes

* Revert "autofix on"

This reverts commit 1039a09e18c740fa906a53cc3a742e45fa560199.

* Revert "autofix on"

This reverts commit 1039a09e18c740fa906a53cc3a742e45fa560199.

* undo pre-commit

* update docker

* fix demo

* update yml

* change file name

* change file name to aws_lambda

* update docker  and UT

* fix mypy

* fix

* undo fix

* update docker and cr

* added Principal

* update docker

---------

Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: shmuel44 <[email protected]>

* [panOS] Add Security Rule does not take list as paramter (#27040)

* Change source_user arg to list

* Update yml file

* Update yml changes to pan-os and panorama

* Update release notes

* Update 1_17_5.md

* Rename 1_17_5.md to 1_17_6.md

* Delete 1_17_6.md

* Update RN

* Add UT for PR changes

* Update README.md

* Update Packs/PAN-OS/ReleaseNotes/1_17_6.md

Co-authored-by: Guy Afik <[email protected]>

* Version bump

* Update docker image

* Update RN

---------

Co-authored-by: Guy Afik <[email protected]>

* custom user agent on builds (#27284)

* custom user agent on builds

* Cofense Triage Release 2.1.13 (#27265) (#27317)

* Update .devcontainer.json name

* Added cofense-report-attachment-payload-list command

* Updated context example in report attachment payload list command

* Updated docker images in all YML files

* Updated release notes

---------

Co-authored-by: Crest Data Systems <[email protected]>
Co-authored-by: crestdatasystems <[email protected]>
Co-authored-by: michal-dagan <[email protected]>

* Associate "Action" indicator field to all indicator types (#27321)

* Associate "Action" field to all types

* RN

* fix execution metrics in scripts (#27214)

* Align credentials stores part 10 (#27221)

* Align credentials stores part 10

* SumoLogic

* Proofpoint Feed

* required change

* adding tests

* add fetch logs to nightly build fetch integrations (#27124)

* add fetch logs to nightly build fetch integrations

* fix QRadar tests

* update release notes and docker files

* fix expansev2

* rn

* fix logs

* fix flask8

* added date field to skip incident log

* resolve conflict

* Bump pack from version QRadar to 2.4.22.

---------

Co-authored-by: Content Bot <[email protected]>

* add fetch log part2 (#27196)

* cortexDataLake

* update docker

* GenericSQL logs

* update rn

* md-atp logs

* update docker

* adding time to skip incidents

* update docker

* AWS Feed - added support for IPv6 (#27141)

* AWS Feed - added support for IPv6

* added tests

* cr

* tests an rn

* validation

* rn

* cr

* di

* Bump sane-pdf-report docker image (#27318)

* Bump sane-pdf-report docker image

* Bump pack from version Base to 1.32.11.

---------

Co-authored-by: Content Bot <[email protected]>

* Fixed file name to be "indicatorfield" (#27342)

* fixed file name

* RN

* RN

* Update 3_3_74.md

* Update setup poetry step in pre-commit (#27224)

* update setup poetry

* use pip

* change Setup Poetry to use Gr1N

* change Setup Poetry to use Gr1N in pre commit

* adding root .editorconfig file. (#27280)

https://editorconfig.org/

* fixing unbound local variable on search dependencies (#27327)

* update readme file (#27356)

* Core rest api add xsoar hosted (#27355)

* bug fix

* RN update

---------

Co-authored-by: xsoar-bot <[email protected]>

* Updated pb to use cve command (#27341)

* MSGraphTeams fix path in the documentation (#27353)

* fix docs

* RN

* Fix common server python mypy (#27351)

* fixed a mypy issue

* added rn

* fix

* Marketplace doc-howto (#27349)

* Duo fields enhancement (#27308)

* Enhancement for modeling rules.

* added telephony modeling rule

* modified modeling rule

* modified shcema file.

* Added release notes.

* Added release notes.

* updated pack metadata release notes.

* Free enrichers tags - "Plug & Enrich" (#27320)

* "Plug & Enrich" tags and FreeEnrichers pack

* Added tags to approved list

* Updated and corrected the readme.

* Another small fix of a typo in readme

* Reverted accidentally removing pack name

* Better formatting

* Added "Free Enricher" to all "Plug & Fetch" enrichers

* ignore modeling/parsing rules suffix validate (#27373)

* Fix RTIR issue (#27360)

* fix type

* Add UTs for changed add_reply function

* add credential defaults, improve UT

---------

Co-authored-by: samuelFain <[email protected]>

* Added code for integration of events (#26519) (#27379)

* Added code for integration of events

* Code review Feedback

* changes in fetch incident

* PR Review change

* PR Review change

* changes in read me file

* Changed read me file based on the review

* Changes for playbook and intergration

* changes in the read me file

* PR changes

* changes in image and docker image

* change in services in alert

* changes for alert

* Changes in docker image

* Changes for docker image

* Update Packs/CybleThreatIntel/Integrations/CybleThreatIntel/CybleThreatIntel.yml



* Update Packs/CybleEventsV2/Integrations/CybleEventsV2/CybleEventsV2.yml



---------

Co-authored-by: cyble-dev <[email protected]>
Co-authored-by: RotemAmit <[email protected]>

* CSP - Added `Rank` class (new grid field) and `rank` to the Domain class (new grid field) (#27352)

* Added rank to domain

* RN

* Update CommonServerPython.py

* RN

* Splunk py raise timezone exception (#27316)

* SplunkPy - fix uninformative error message when missing timezone in mirroring

* Added RNs

* Updated readme

* CR updates

* Update Packs/SplunkPy/ReleaseNotes/3_0_20.md

Co-authored-by: yuvalbenshalom <[email protected]>

* Updated Docker Image

---------

Co-authored-by: yuvalbenshalom <[email protected]>

* qradar return error with traceback (#27229)

* Zscaler ZIA enhancement: Add IP Destination group commands (#27386)

* Zscaler ZIA enhancement: Add IP Destination group commands (#26447)

* ZIA Enhancement: IP destination group commands

* Included 3 new commands for Zscaler Integration as follows::
 - Added zscaler-list-ip-destination-groups
 - Added zscaler-create-ip-destination-groups
 - Added zscaler-edit-ip-destination-groups

---------

Co-authored-by: rootbid <[email protected]>

* ZIA Enhancement: IP destination group commands
* Included 2 new commands for Zscaler Integration as follows::
 - Added zscaler-list-ip-destination-groups-lite
 - Added zscaler-delete-ip-destination-groups

---------

Author: pallavi-garad <[email protected]>
Co-authored-by: rootbid <[email protected]>

* Minor updates and fixes

* Update and add documentation links for Zscaler ZIA

* Zscaler ZIA Enhancement - Update with requested changes

* Update .devcontainer.json name

* merge list-ip-destination-groups and lite command

* fixed minor issues

* update lite argument description

---------

Co-authored-by: rootbid <[email protected]>

* Update .devcontainer/devcontainer.json

Co-authored-by: Dan Tavori <[email protected]>

* Update as per review comments

- Fix exceptions
- Use CommandResults
- Refactor zscaler-list-ip-destination-groups and zscaler-edit-ip-destination-group commands
- Update release notes

* Regenerate README after updating Zscaler.yml and unit test bug fixes

* Resolve merge conflicts

* Fix type annotations and update docker image

* Update Packs/Zscaler/ReleaseNotes/1_3_10.md

Co-authored-by: Dan Tavori <[email protected]>

---------

Co-authored-by: Shambo Samanta <[email protected]>
Co-authored-by: rootbid <[email protected]>
Co-authored-by: pallavi-garad <[email protected]>
Co-authored-by: Dan Tavori <[email protected]>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

---------

Co-authored-by: Deepansh <[email protected]>
Co-authored-by: Shambo Samanta <[email protected]>
Co-authored-by: rootbid <[email protected]>
Co-authored-by: pallavi-garad <[email protected]>
Co-authored-by: Dan Tavori <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>

* XSIAM | ForcepointSWG Pack (#26706)

* XSIAM | ForcepointSWG Pack

* Added pack files

* Added pack-ignore and secrets-ignore

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* Updated ModelingRules

---------

Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: evisochek <[email protected]>

* AzureSentinel - keywords argument from 'comma separate' to 'str' in azure-sentinel-threat-indicator-query (#27380)

* keywords argument from comma separate to str in azure-sentinel-threat
-indicator-query command

* RN

* DO

* Update Packs/AzureSentinel/Integrations/AzureSentinel/README.md

Co-authored-by: dorschw <[email protected]>

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml

Co-authored-by: dorschw <[email protected]>

* Update Packs/AzureSentinel/ReleaseNotes/1_5_8.md

Co-authored-by: dorschw <[email protected]>

* under sources

* additional info for clarification

* Update Packs/AzureSentinel/Integrations/AzureSentinel/README.md

Co-authored-by: dorschw <[email protected]>

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml

Co-authored-by: dorschw <[email protected]>

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml

Co-authored-by: dorschw <[email protected]>

* validate yml

* validate yml

* revert and Dor's solution

* revert README

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.py

Co-authored-by: dorschw <[email protected]>

* add instance name for the TPB

---------

Co-authored-by: dorschw <[email protected]>

* Update Docker Image To demisto/py3-tools  (#27396)

* Updated Metadata Of Pack MailListener

* Added release notes to pack MailListener

* Packs/MailListener/Integrations/MailListenerV2/MailListenerV2.yml Docker image update

* Remove content items with toversion less than 6.5.0 (#27325)

* remove playbooks

* remove scripts

* remove integrations

* remove integrations

* remove README

* remove script/integration packs

* fix UT

* False

* Align credentials stores part 5 (#27126)

* Align credentials stores part 5

* adding IBM

* RL

* checking new docker image

* update

* docker to fix pre-commit

* fix docker

* update docker in rl

* add test req

* old docker

* rl

* docker

---------

Co-authored-by: ilan <[email protected]>

* Zscaler add reliability (#27197)

* Zscaler - add reliability parameter

* added RNs

* pre-commit hooks

* updated docker image

* Changed reliability to Reliability in outputs

* updated docker image

* updated RNs

* updated RNs

* hide EWS Pack (#27231)

* added hidden key

* removed ews from dependencies

* added ,

* added ,

* removed dependencies to EWS Mail Sender

* removed dependencies to EWS Mail Sender

* commented a line, to revert  after testing

* commented a line, to revert  after testing

* reverted commmenting

* added intergration

* Squid testdata (#26659)

* Update modeling rules

* Updated release notes.

* update release notes.

* new line after alter for the xdm mapping.

* Align credentials stores  part 14 (#27361)

* Align credentials stores for all Cortex Marketplace integrations- part 13

* fix pack

* remove ignore

* correct ignore

* added commands to read me

* [ASM] - Expander - Expander v2 Pack enhancements - batch 1 (#27398)

* [ASM] - Expander - Expander v2 Pack enhancements - batch 1 (#27006)

* initial additional of new Ev2 content

* adding playbook readmes

* layout update and release notes

* validation fixes

* widget validation and release notes style

* playbook validation errors

* Update incidenttype-Xpanse_Alert.json

fixed incident type playbook assignment

* validation issues

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment_README.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Handler.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update widget logic

* Update Widget logic

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* update from_version

* Apply suggestions from code review

Co-authored-by: johnnywilkes <[email protected]>

* Apply suggestions from code review

Co-authored-by: johnnywilkes <[email protected]>

* Update Packs/CortexXpanse/IncidentTypes/incidenttype-Xpanse_Alert.json

Co-authored-by: johnnywilkes <[email protected]>

* back to 6.8 fromversion

* README enhancements

* Playbook cleanup

* README img fix

* Dashboard fix and incident type version validation fix

* README images

* release notes error

* release notes validation

---------

Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: johnnywilkes <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Handler.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/README.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

---------

Co-authored-by: Andrew Scott <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: johnnywilkes <[email protected]>
Co-authored-by: RotemAmit <[email protected]>

* Align credentials stores part 16 (#27367)

* XSIAM | Fix for Windows Events Modeling Rules (#27129)

* [VirusTotal] Fix error when optional parameter extended_data is not present in command calls (#27414)

* [VirusTotal] Fix error when optional parameter extended_data is not present in command calls (#27411)

* Fix error when optional parameter extended_data is not present in command calls

* release notes

* docker image update

* updated rn

---------

Co-authored-by: Daniel Pascual <[email protected]>
Co-authored-by: michal-dagan <[email protected]>

* ironPort modeling rules (#27133)

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* ignore rules suffix validate (#27397)

* added marketplaces to event collector yml (#27400)

* added marketplaces to event collector yml

* rn

* removed rn

* rn and docker

* Email ask user add using argument (#27401)

* Added the usingSender argument to enable using only one instance to send the email

* Release Notes, Metadata

* RM param, add generic fix

* Align credentials stores part 15 (#27364)

* Align credentials stores - part 15

* Akamai WAF

* docker

* adding an error

* revert irrelevant change

* revert irrelevant change

* update docker

* fix autodiscovery

* fix validations

* final changes

* validation fix

* add ut increase timeout

* increase timeout and test tpb

* add ut

* cr last fixes

* changed task ids for testing

* test tpb change

---------

Co-authored-by: tkatzir <[email protected]>
Co-authored-by: rshunim <[email protected]>
Co-authored-by: Guy Afik <[email protected]>
Co-authored-by: content-bot <[email protected]>
Co-authored-by: Dror Avrahami <[email protected]>
Co-authored-by: sberman <[email protected]>
Co-authored-by: Moshe Eichler <[email protected]>
Co-authored-by: Menachem Weinfeld <[email protected]>
Co-authored-by: eepstain <[email protected]>
Co-authored-by: darkushin <[email protected]>
Co-authored-by: Mai Morag <[email protected]>
Co-authored-by: dorschw <[email protected]>
Co-authored-by: Crest Data Systems <[email protected]>
Co-authored-by: crestdatasystems <[email protected]>
Co-authored-by: recordedfuture-simonhornestedt <109588368+recordedfuture-simonhornestedt@users.noreply.github.com>
Co-authored-by: michal-dagan <[email protected]>
Co-authored-by: israelpoli <[email protected]>
Co-authored-by: Brad Chiappetta <[email protected]>
Co-authored-by: johnnywilkes <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: Yaakov Praisler <[email protected]>
Co-authored-by: Ben Melamed <[email protected]>
Co-authored-by: anas-yousef <[email protected]>
Co-authored-by: yasta5 <[email protected]>
Co-authored-by: grzegorzpapkala <[email protected]>
Co-authored-by: Content Bot <[email protected]>
Co-authored-by: Arad Carmi <[email protected]>
Co-authored-by: Suhasini <[email protected]>
Co-authored-by: Danny_Fried <[email protected]>
Co-authored-by: Michael Yochpaz <[email protected]>
Co-authored-by: Viktor Poltorak <[email protected]>
Co-authored-by: Fahad Yousuf <[email protected]>
Co-authored-by: Erez FelmanDar <[email protected]>
Co-authored-by: Edi Katsenelson <[email protected]>
Co-authored-by: Shmuel Kroizer <[email protected]>
Co-authored-by: shmuel44 <[email protected]>
Co-authored-by: samuelFain <[email protected]>
Co-authored-by: Koby Meir <[email protected]>
Co-authored-by: eli sharf <[email protected]>
Co-authored-by: jbabazadeh <[email protected]>
Co-authored-by: MLainer1 <[email protected]>
Co-authored-by: Liron Michalevich <[email protected]>
Co-authored-by: Adi Daud <[email protected]>
Co-authored-by: Dan Sterenson <[email protected]>
Co-authored-by: xsoar-bot <[email protected]>
Co-authored-by: merit-maita <[email protected]>
Co-authored-by: cyble-dev <[email protected]>
Co-authored-by: RotemAmit <[email protected]>
Co-authored-by: yuvalbenshalom <[email protected]>
Co-authored-by: ilaner <[email protected]>
Co-authored-by: Deepansh <[email protected]>
Co-authored-by: Shambo Samanta <[email protected]>
Co-authored-by: rootbid <[email protected]>
Co-authored-by: pallavi-garad <[email protected]>
Co-authored-by: Dan Tavori <[email protected]>
Co-authored-by: nkanon <[email protected]>
Co-authored-by: evisochek <[email protected]>
Co-authored-by: ilan <[email protected]>
Co-authored-by: Andrew Scott <[email protected]>
Co-authored-by: Daniel Pascual <[email protected]>
Co-authored-by: michal-dagan <[email protected]>
Co-authored-by: guytamir10 <[email protected]>
Co-authored-by: EyalPintzov <[email protected]>
Co-authored-by: Andrew Shamah <[email protected]>
Co-authored-by: yucohen <[email protected]>
xsoar-bot added a commit to xsoar-contrib/content that referenced this pull request Jul 26, 2023
* update

* test

* changes

* changes

* final commands changes

* clean code

* update TPBs

* rvert name change

* revert name change

* cr changes

* fix name

* fix TPBs

* remove skip of perm_set field

* fix tpb and validations

* revert arg removal

* remove added tpb

* update memory threshold

* fix ut

* fix ut

* Fix urllib.parse import in CommonServerPython (#27252)

* Allow applying a new profile over an existing one in ***pan-os-apply-security-profile*** command (#27237)

* Add XSOAR support for updating existing profile types

* RN

* fix UT

* Update Packs/PAN-OS/ReleaseNotes/1_17_5.md

Co-authored-by: Guy Afik <[email protected]>

* fix CR

* RN

* UT was added

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.py

Co-authored-by: Guy Afik <[email protected]>

* fix

* flake8

* UT stability

---------

Co-authored-by: Guy Afik <[email protected]>

* Update Docker Image To demisto/splunksdk-py3  (#27263)

* Updated Metadata Of Pack SplunkPy

* Added release notes to pack SplunkPy

* Packs/SplunkPy/Integrations/SplunkPy/SplunkPy.yml Docker image update

* Updated domain extraction playbook - changing .zip to a valid TLD (#27264)

* Updated domain extraction playbook

* some formatting.

* Update playbook-Domain_extraction_test.yml

* Update playbook-Domain_extraction_test.yml

* Update Docker Image To demisto/duoadmin3  (#27268)

* Updated Metadata Of Pack DuoAdminApi

* Added release notes to pack DuoAdminApi

* Packs/DuoAdminApi/Integrations/DuoEventCollector/DuoEventCollector.yml Docker image update

* Packs/DuoAdminApi/Integrations/DuoAdminApi/DuoAdminApi.yml Docker image update

* Update Docker Image To demisto/googleapi-python3  (#27267)

* Updated Metadata Of Pack GoogleDrive

* Added release notes to pack GoogleDrive

* Packs/GoogleDrive/Integrations/GoogleDrive/GoogleDrive.yml Docker image update

* Update Docker Image To demisto/python3  (#27266)

* Updated Metadata Of Pack Darktrace

* Added release notes to pack Darktrace

* Packs/Darktrace/Integrations/DarktraceMBs/DarktraceMBs.yml Docker image update

* Packs/Darktrace/Integrations/DarktraceAIA/DarktraceAIA.yml Docker image update

* Updated Metadata Of Pack CybleEvents

* Added release notes to pack CybleEvents

* Packs/CybleEvents/Integrations/CybleEvents/CybleEvents.yml Docker image update

* Updated Metadata Of Pack Censys

* Added release notes to pack Censys

* Packs/Censys/Integrations/CensysV2/CensysV2.yml Docker image update

* Updated Metadata Of Pack VirusTotal

* Added release notes to pack VirusTotal

* Packs/VirusTotal/Integrations/FeedLivehunt/FeedLivehunt.yml Docker image update

* Packs/VirusTotal/Integrations/FeedRetrohunt/FeedRetrohunt.yml Docker image update

* Updated Metadata Of Pack CofenseIntelligenceV2

* Added release notes to pack CofenseIntelligenceV2

* Packs/CofenseIntelligenceV2/Integrations/CofenseIntelligenceV2/CofenseIntelligenceV2.yml Docker image update

* Updated Metadata Of Pack CheckPointDome9

* Added release notes to pack CheckPointDome9

* Packs/CheckPointDome9/Integrations/CheckPointDome9/CheckPointDome9.yml Docker image update

* Updated Metadata Of Pack Reco

* Added release notes to pack Reco

* Packs/Reco/Integrations/Reco/Reco.yml Docker image update

* Updated Metadata Of Pack CimTrak-SystemIntegrityAssurance

* Added release notes to pack CimTrak-SystemIntegrityAssurance

* Packs/CimTrak-SystemIntegrityAssurance/Integrations/CimTrak/CimTrak.yml Docker image update

* Update Docker Image To demisto/python3  (#27272)

* Updated Metadata Of Pack FeedProofpoint

* Added release notes to pack FeedProofpoint

* Packs/FeedProofpoint/Integrations/FeedProofpoint/FeedProofpoint.yml Docker image update

* Updated Metadata Of Pack FortiSIEM

* Added release notes to pack FortiSIEM

* Packs/FortiSIEM/Integrations/FortiSIEM/FortiSIEM.yml Docker image update

* Updated Metadata Of Pack Ipstack

* Added release notes to pack Ipstack

* Packs/Ipstack/Integrations/Ipstack/Ipstack.yml Docker image update

* Updated Metadata Of Pack SafeBreach

* Added release notes to pack SafeBreach

* Packs/SafeBreach/Integrations/SafeBreach_v2/SafeBreach_v2.yml Docker image update

* Updated Metadata Of Pack RedCanary

* Added release notes to pack RedCanary

* Packs/RedCanary/Integrations/RedCanary/RedCanary.yml Docker image update

* Updated Metadata Of Pack PiHole

* Added release notes to pack PiHole

* Packs/PiHole/Integrations/PiHole/PiHole.yml Docker image update

* Updated Metadata Of Pack FeedDShield

* Added release notes to pack FeedDShield

* Packs/FeedDShield/Integrations/FeedDShield/FeedDShield.yml Docker image update

* Updated Metadata Of Pack SafeNet_Trusted_Access

* Added release notes to pack SafeNet_Trusted_Access

* Packs/SafeNet_Trusted_Access/Integrations/SafeNetTrustedAccess/SafeNetTrustedAccess.yml Docker image update

* Updated Metadata Of Pack OpenPhish

* Added release notes to pack OpenPhish

* Packs/OpenPhish/Integrations/OpenPhish_v2/OpenPhish_v2.yml Docker image update

* Updated Metadata Of Pack NistNVD

* Added release notes to pack NistNVD

* Packs/NistNVD/Integrations/NistNVD/NistNVD.yml Docker image update

* Updated Metadata Of Pack Cognni

* Added release notes to pack Cognni

* Packs/Cognni/Integrations/Cognni/Cognni.yml Docker image update

* Updated Metadata Of Pack PANOSPolicyOptimizer

* Added release notes to pack PANOSPolicyOptimizer

* Packs/PANOSPolicyOptimizer/Integrations/PANOSPolicyOptimizer/PANOSPolicyOptimizer.yml Docker image update

* Updated Metadata Of Pack DeveloperTools

* Added release notes to pack DeveloperTools

* Packs/DeveloperTools/Integrations/CreateIncidents/CreateIncidents.yml Docker image update

* Packs/DeveloperTools/Integrations/CustomIndicatorDemo/CustomIndicatorDemo.yml Docker image update

* Packs/DeveloperTools/Integrations/APIMetricsValidation/APIMetricsValidation.yml Docker image update

* Updated Metadata Of Pack NozomiNetworks

* Added release notes to pack NozomiNetworks

* Packs/NozomiNetworks/Integrations/NozomiNetworks/NozomiNetworks.yml Docker image update

* Updated Metadata Of Pack ANYRUN

* Added release notes to pack ANYRUN

* Packs/ANYRUN/Integrations/ANYRUN/ANYRUN.yml Docker image update

* Updated Metadata Of Pack Carbon_Black_Enterprise_Response

* Added release notes to pack Carbon_Black_Enterprise_Response

* Packs/Carbon_Black_Enterprise_Response/Integrations/CarbonBlackResponseV2/CarbonBlackResponseV2.yml Docker image update

* Updated Metadata Of Pack Absolute

* Added release notes to pack Absolute

* Packs/Absolute/Integrations/Absolute/Absolute.yml Docker image update

* Updated Metadata Of Pack Ironscales

* Added release notes to pack Ironscales

* Packs/Ironscales/Integrations/Ironscales/Ironscales.yml Docker image update

* Updated Metadata Of Pack FeedURLhaus

* Added release notes to pack FeedURLhaus

* Packs/FeedURLhaus/Integrations/FeedURLhaus/FeedURLhaus.yml Docker image update

* Updated Metadata Of Pack Lokpath_Keylight

* Added release notes to pack Lokpath_Keylight

* Packs/Lokpath_Keylight/Integrations/Lockpath_KeyLight_v2/Lockpath_KeyLight_v2.yml Docker image update

* Updated Metadata Of Pack FeedMISP

* Added release notes to pack FeedMISP

* Packs/FeedMISP/Integrations/FeedMISP/FeedMISP.yml Docker image update

* Updated Metadata Of Pack FraudWatch

* Added release notes to pack FraudWatch

* Packs/FraudWatch/Integrations/FraudWatch/FraudWatch.yml Docker image update

* Updated Metadata Of Pack AbnormalSecurity

* Added release notes to pack AbnormalSecurity

* Packs/AbnormalSecurity/Integrations/AbnormalSecurityEventCollector/AbnormalSecurityEventCollector.yml Docker image update

* Updated Metadata Of Pack CovalenceManagedSecurity

* Added release notes to pack CovalenceManagedSecurity

* Packs/CovalenceManagedSecurity/Integrations/CovalenceManagedSecurity/CovalenceManagedSecurity.yml Docker image update

* Updated Metadata Of Pack IllusiveNetworks

* Added release notes to pack IllusiveNetworks

* Packs/IllusiveNetworks/Integrations/IllusiveNetworks/IllusiveNetworks.yml Docker image update

* Updated Metadata Of Pack Edgescan

* Added release notes to pack Edgescan

* Packs/Edgescan/Integrations/Edgescan/Edgescan.yml Docker image update

* Updated Metadata Of Pack PerceptionPoint

* Added release notes to pack PerceptionPoint

* Packs/PerceptionPoint/Integrations/PerceptionPoint/PerceptionPoint.yml Docker image update

* Updated Metadata Of Pack Druva

* Added release notes to pack Druva

* Packs/Druva/Integrations/Druva/Druva.yml Docker image update

* Updated Metadata Of Pack APIVoid

* Added release notes to pack APIVoid

* Packs/APIVoid/Integrations/APIVoid/APIVoid.yml Docker image update

* Updated Metadata Of Pack PingIdentity

* Added release notes to pack PingIdentity

* Packs/PingIdentity/Integrations/PingOne/PingOne.yml Docker image update

* Updated Metadata Of Pack cisco-ise

* Added release notes to pack cisco-ise

* Packs/cisco-ise/Integrations/cisco-ise/cisco-ise.yml Docker image update

* Updated Metadata Of Pack SailPointIdentityIQ

* Added release notes to pack SailPointIdentityIQ

* Packs/SailPointIdentityIQ/Integrations/SailPointIdentityIQ/SailPointIdentityIQ.yml Docker image update

* Updated Metadata Of Pack Cymulate

* Added release notes to pack Cymulate

* Packs/Cymulate/Integrations/Cymulate/Cymulate.yml Docker image update

* Packs/Cymulate/Integrations/Cymulate_v2/Cymulate_v2.yml Docker image update

* Updated Metadata Of Pack XSOARmirroring

* Added release notes to pack XSOARmirroring

* Packs/XSOARmirroring/Integrations/XSOARmirroring/XSOARmirroring.yml Docker image update

* Updated Metadata Of Pack XMatters

* Added release notes to pack XMatters

* Packs/XMatters/Integrations/xMatters/xMatters.yml Docker image update

* Updated Metadata Of Pack Zimperium

* Added release notes to pack Zimperium

* Packs/Zimperium/Integrations/Zimperium/Zimperium.yml Docker image update

* Updated Metadata Of Pack RSANetWitnessEndpoint

* Added release notes to pack RSANetWitnessEndpoint

* Packs/RSANetWitnessEndpoint/Integrations/RSANetWitnessEndpoint/RSANetWitnessEndpoint.yml Docker image update

* Updated Metadata Of Pack SymantecBlueCoatMalwareAnalysis

* Added release notes to pack SymantecBlueCoatMalwareAnalysis

* Packs/SymantecBlueCoatMalwareAnalysis/Integrations/SymantecBlueCoatMalwareAnalysis/SymantecBlueCoatMalwareAnalysis.yml Docker image update

* Updated Metadata Of Pack InfoArmor_VigilanteATI

* Added release notes to pack InfoArmor_VigilanteATI

* Packs/InfoArmor_VigilanteATI/Integrations/InfoArmorVigilanteATI/InfoArmorVigilanteATI.yml Docker image update

* Updated Metadata Of Pack AccentureCTI

* Added release notes to pack AccentureCTI

* Packs/AccentureCTI/Integrations/ACTIVulnerabilityQuery/ACTIVulnerabilityQuery.yml Docker image update

* Updated Metadata Of Pack PingCastle

* Added release notes to pack PingCastle

* Packs/PingCastle/Integrations/PingCastle/PingCastle.yml Docker image update

* Updated Metadata Of Pack MaxMind_GeoIP2

* Added release notes to pack MaxMind_GeoIP2

* Packs/MaxMind_GeoIP2/Integrations/MaxMind_GeoIP2/MaxMind_GeoIP2.yml Docker image update

* Updated Metadata Of Pack Maltiverse

* Added release notes to pack Maltiverse

* Packs/Maltiverse/Integrations/Maltiverse/Maltiverse.yml Docker image update

* Updated Metadata Of Pack CarbonBlackDefense

* Added release notes to pack CarbonBlackDefense

* Packs/CarbonBlackDefense/Integrations/CarbonBlackEndpointStandard/CarbonBlackEndpointStandard.yml Docker image update

* Updated Metadata Of Pack AlienVault_USM_Anywhere

* Added release notes to pack AlienVault_USM_Anywhere

* Packs/AlienVault_USM_Anywhere/Integrations/AlienVault_USM_Anywhere/AlienVault_USM_Anywhere.yml Docker image update

* Updated Metadata Of Pack ProofpointServerProtection

* Added release notes to pack ProofpointServerProtection

* Packs/ProofpointServerProtection/Integrations/ProofpointProtectionServerV2/ProofpointProtectionServerV2.yml Docker image update

* Updated Metadata Of Pack OpsGenie

* Added release notes to pack OpsGenie

* Packs/OpsGenie/Integrations/OpsGenieV3/OpsGenieV3.yml Docker image update

* Fixed lint and validate

---------

Co-authored-by: sberman <[email protected]>

* Ignore modeling/parsing rules suffix error (#27274)

* [EDL] Fixed a typo in the description (#27269)

* Fixed a typo in the description

* Update the docker image

* Macos Regex Fix (#27270)

* Updated ModelingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Updated ModelingRules

* Updated ModelingRules

* Cs falcon add tags to cs-falcon-upload-custom-ioc command (#27234)

* CS Flacon add tags to upload-custom-ioc command

* added RNs

* Align credentials stores part 11 (#27253)

* Align credentials part 11

* Trend Micro Apex

* ignore

* adding tests to hostlo

* Trend Micro Apex tests

* trend more test

* change test

* Syslogv2 was removed from xsiam marketplace (#27278)

* remove Syslogv2 from xsiam marketplace

* RN

* known_words

* Update Packs/Syslog/ReleaseNotes/2_0_16.md

Co-authored-by: dorschw <[email protected]>

* DO

---------

Co-authored-by: dorschw <[email protected]>

* Microsoft Graph Single User - Edit documentation (#27275)

* edit documentation

* edit documentation

* RN and DO

* fix doc

* mistake

* ExtraHop release v2.1.0 (#27056) (#27279)

* Update .devcontainer.json name

* added changes related to ExtrHop 2.1.0 release

---------

Co-authored-by: Crest Data Systems <[email protected]>
Co-authored-by: crestdatasystems <[email protected]>

* Recordedfuture listapi v1.0.0 (#26996) (#27281)

* First version/implementation of new List Integration

* Added new List integration

* Updated validation step requirements and fixed tests to be working as expected

* Updated test Coverage

* Version bump and fixed frombersion for list app

* Added custom content, incident type and classifier for coderepo leakage

* Updated some documentation and fixed dockerimages

* Bumped version of playbook alert app

* Fixed changelog for 1.6.0 to not include an old change

* fixed type0 in changelog

* removed base64 import

* Updated release notes

* Update based on review

* Removed references to old playbook alerts documentation from creation of integration

---------

Co-authored-by: recordedfuture-simonhornestedt <109588368+recordedfuture-simonhornestedt@users.noreply.github.com>
Co-authored-by: michal-dagan <[email protected]>

* fix bug by convert the password to bytes (#27283)

* fix bug by convert the password to bytes

* commit

* update RN and Docker

* comment corrections

* commit

* [greynoise-266] - Add greynoise-similar and greynoise-timeline commands (#27067) (#27291)

* add sim and timeline updates

* fix test file prints

* update readme fix tests

* updates to readme for pre-commit

* updates from pre-commit run

* more linting updates

* update secrets

* fix url in timeline

Co-authored-by: Brad Chiappetta <[email protected]>

* [ASM] -  Expandr 4075 (#27258) (#27287)

* init

* RN

* fix RN

* Apply suggestions from code review



---------

Co-authored-by: johnnywilkes <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>

* [Panorama] Tags Management (#27044)

* panorama tag commands

* release notes

* release notes

* tpb

* fix tpb

* fix

* add kew_words and update description

* fix device-group

* revert non-relevat change

* bump version

* - Added device group location to the tags result
- Added list request when editing tags to get the properties that are not given in arguments

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/PAN-OS/Integrations/Panorama/Panorama.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* docs fixes

* fix UT

* pre-commit fix

* bump version

* pre-commit

* CR fix

---------

Co-authored-by: ShirleyDenkberg <[email protected]>

* Xdrir fix polling timeout (#27238)

* XDRIR fix polling timeout parameter

* Added RNs

* Update Docker Image To demisto/bottle  (#27303)

* Updated Metadata Of Pack WebFileRepository

* Added release notes to pack WebFileRepository

* Packs/WebFileRepository/Integrations/WebFileRepository/WebFileRepository.yml Docker image update

* Update Docker Image To demisto/python3  (#27302)

* Updated Metadata Of Pack DelineaSS

* Added release notes to pack DelineaSS

* Packs/DelineaSS/Integrations/DelineaSS/DelineaSS.yml Docker image update

* Updated Metadata Of Pack Lumu

* Added release notes to pack Lumu

* Packs/Lumu/Integrations/Lumu/Lumu.yml Docker image update

* Updated Metadata Of Pack FlashpointFeed

* Added release notes to pack FlashpointFeed

* Packs/FlashpointFeed/Integrations/FlashpointFeed/FlashpointFeed.yml Docker image update

* Updated Metadata Of Pack FeedLOLBAS

* Added release notes to pack FeedLOLBAS

* Packs/FeedLOLBAS/Integrations/FeedLOLBAS/FeedLOLBAS.yml Docker image update

* Updated Metadata Of Pack Grafana

* Added release notes to pack Grafana

* Packs/Grafana/Integrations/Grafana/Grafana.yml Docker image update

* Updated Metadata Of Pack FireMonSecurityManager

* Added release notes to pack FireMonSecurityManager

* Packs/FireMonSecurityManager/Integrations/FireMonSecurityManager/FireMonSecurityManager.yml Docker image update

* Updated Metadata Of Pack Gatewatcher-AionIQ

* Added release notes to pack Gatewatcher-AionIQ

* Packs/Gatewatcher-AionIQ/Integrations/GCenter/GCenter.yml Docker image update

* Updated Metadata Of Pack McAfeeNSM

* Added release notes to pack McAfeeNSM

* Packs/McAfeeNSM/Integrations/McAfeeNSMv2/McAfeeNSMv2.yml Docker image update

* Updated Metadata Of Pack DeHashed

* Added release notes to pack DeHashed

* Packs/DeHashed/Integrations/DeHashed/DeHashed.yml Docker image update

* Updated Metadata Of Pack IronscalesEventCollector

* Added release notes to pack IronscalesEventCollector

* Packs/IronscalesEventCollector/Integrations/IronscalesEventCollector/IronscalesEventCollector.yml Docker image update

* Update Docker Image To demisto/sixgill  (#27304)

* Updated Metadata Of Pack Sixgill-Darkfeed

* Added release notes to pack Sixgill-Darkfeed

* Packs/Sixgill-Darkfeed/Integrations/Sixgill_Darkfeed_Enrichment/Sixgill_Darkfeed_Enrichment.yml Docker image update

* Packs/Sixgill-Darkfeed/Integrations/Sixgill_Darkfeed/Sixgill_Darkfeed.yml Docker image update

* Update Docker Image To demisto/slackv3  (#27301)

* Updated Metadata Of Pack Slack

* Added release notes to pack Slack

* Packs/Slack/Integrations/SlackV3/SlackV3.yml Docker image update

* MOVEit Transfer pack enhancement (#27225)

* Majorbreach pack RN update and minor fix to the playbook description

* Majorbreach pack RN update and minor fix to the playbook description

* fix RN

* updates

* updates

* updates the pack readme

* Service now auto closing incidents when using the Mirrored XSOAR Ticket custom close state code parameter (#27288)

* Fixed issue where incidents would auto close after using the Mirrored XSOAR Ticket custom close state code parameter

* Added RN

* Fixed RN and added documentation in code

* Fixed documentation in code

* Creating modeling and parsing rules for Cisco ISR (#27239)

* Creating modeling and parsing rules for Cisco ISR

* Change readme

* Change readme

* Added ipv6 mapping to modeling rules

* fixed const for ip protocol

* unified user regex to 1 statement

* modified readme file

* Modified release notes.

* Add zdl ti fusion pack (#26981) (#27286)

* Add ZeroDayLiveTIFusion Pack

* Formatting updates

* Remove .lock, set default repotation value

* Remove th pipefile

* Rename Pack to contain feed - adhere to PA conventions

* Reuse existing CSV API module

* Metadata updates - post review

* Update descriptions

Co-authored-by: grzegorzpapkala <[email protected]>

* [MSGraphDeviceMgmt] fix bool parsing (#27296)

* ObserveIT Severity Update (#27282)

* Updated ModelingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Updated ModelingRules

* Update Docker Image To demisto/python3  (#27300)

* Updated Metadata Of Pack AutoFocus

* Added release notes to pack AutoFocus

* Packs/AutoFocus/Integrations/FeedAutofocus/FeedAutofocus.yml Docker image update

* Packs/AutoFocus/Integrations/AutofocusV2/AutofocusV2.yml Docker image update

* Updated Metadata Of Pack CrowdStrikeFalconX

* Added release notes to pack CrowdStrikeFalconX

* Packs/CrowdStrikeFalconX/Integrations/CrowdStrikeFalconX/CrowdStrikeFalconX.yml Docker image update

* Updated Metadata Of Pack CVESearch

* Added release notes to pack CVESearch

* Packs/CVESearch/Integrations/CVESearchV2/CVESearchV2.yml Docker image update

* Updated Metadata Of Pack Slack

* Added release notes to pack Slack

* Packs/Slack/Scripts/SlackAskV2/SlackAskV2.yml Docker image update

* Bump pack from version Slack to 3.1.39.

---------

Co-authored-by: Content Bot <[email protected]>

* Qradar/fix/deprecated playbook (#27198)

* replaced depracted playbook

* updated RN

* changed more TPB

* updated RN

* Pass the comment to fetch-credential command. (#27305)

* Pass the comment to fetch-credential command. (#27249)

* Pass the comment to fetch-credential command.
Added auto comment feature to delinea-secret-password-get command.

* Updated docker image version

* change docker image version

* Adhere to RN XSOAR known tempaltes.

* Updated the unit test case

---------

Co-authored-by: Danny_Fried <[email protected]>

* Bump version.

---------

Co-authored-by: Suhasini <[email protected]>
Co-authored-by: Danny_Fried <[email protected]>

* LOLBAS - Added "Plug & Fetch" tag (#27309)

* added needed tags to pack

* Added lolbas to "Free Feeds" pack

* Remove CommonServerUser Scripts from `NonSupported` Pack (#27311)

* Remove common-server-user scripts

* Delete READMEs (moved to content-docs)

* Sysaid delete-file, get, add-note, record-attach-file (#27285)

* Orca Integration: Remove video from the description (#27259) (#27314)

* Use orca score as source for the demisto score
Update output for the commands

* Upgrade docker version.

---------

Co-authored-by: Viktor Poltorak <[email protected]>
Co-authored-by: Danny_Fried <[email protected]>

* SimpleSFTP upload-file command added. (#27315)

* SimpleSFTP upload-file command added. (#27208)

* SimpleSFTP upload-file command added.

* Removing print

* Updated Readme. Added ReleaseNotes and unified arguments to snake case instead of camel case

* Fixed name in integration YAML.

* Fixing linting errors.

* Update docker image.
Include docker image in RN.

---------

Co-authored-by: Fahad Yousuf <[email protected]>
Co-authored-by: Danny_Fried <[email protected]>

* WildFire Fix condition to exclude encoded pdf files (#27105)

* Fix condition to exclude encoded pdf files

* Update release notes

* Update missing playbook image

* Fix playbook logic to exclude base64 encoded

* Update release notes and playbook image

* Update playbook-Detonate_File_-_WildFire.yml

Fix review comments

* Update playbook image and description

* Update playbook readme

* Update Docker Image To demisto/boto3py3  (#27335)

* Updated Metadata Of Pack AWS-GuardDuty

* Added release notes to pack AWS-GuardDuty

* Packs/AWS-GuardDuty/Integrations/AWSGuardDutyEventCollector/AWSGuardDutyEventCollector.yml Docker image update

* Packs/AWS-GuardDuty/Integrations/AWSGuardDuty/AWSGuardDuty.yml Docker image update

* Update Docker Image To demisto/py42  (#27336)

* Updated Metadata Of Pack Code42

* Added release notes to pack Code42

* Packs/Code42/Integrations/Code42/Code42.yml Docker image update

* Update incidentfield-Darktrace_Model_Breach_CommentCount.json (#27103)

* Update incidentfield-Darktrace_Model_Breach_CommentCount.json

* Update pack_metadata.json

* Create 2_0_6.md

* Update 2_0_6.md

* Update 2_0_6.md

* RN

* RN

* RN

* AWS Lambda enhancement 6 commands (#27095)

* Added get policy command

* change from AWS-Lambda to AWS_Lambda

* Added UT for policy

* Fix UT

* Fix UT

* del duplicate code

* Added list-versions and url_config

* update yml

* added 3 commands

* added 3 commands

* update docker

* lint MD

* fix yml

* update RN

* improve

* added readme and some improve

* del copy

* added docstring

* fix line to long

* test playbook and update docker

* update fromVersion

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/AWS-Lambda/Integrations/AWS_Lambda/AWS_Lambda.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* change  List of strings to list

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* change md

* autofix on

* autofix

* autofix

* Apply automatic changes

* Revert "autofix on"

This reverts commit 1039a09e18c740fa906a53cc3a742e45fa560199.

* Revert "autofix on"

This reverts commit 1039a09e18c740fa906a53cc3a742e45fa560199.

* undo pre-commit

* update docker

* fix demo

* update yml

* change file name

* change file name to aws_lambda

* update docker  and UT

* fix mypy

* fix

* undo fix

* update docker and cr

* added Principal

* update docker

---------

Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: shmuel44 <[email protected]>

* [panOS] Add Security Rule does not take list as paramter (#27040)

* Change source_user arg to list

* Update yml file

* Update yml changes to pan-os and panorama

* Update release notes

* Update 1_17_5.md

* Rename 1_17_5.md to 1_17_6.md

* Delete 1_17_6.md

* Update RN

* Add UT for PR changes

* Update README.md

* Update Packs/PAN-OS/ReleaseNotes/1_17_6.md

Co-authored-by: Guy Afik <[email protected]>

* Version bump

* Update docker image

* Update RN

---------

Co-authored-by: Guy Afik <[email protected]>

* custom user agent on builds (#27284)

* custom user agent on builds

* Cofense Triage Release 2.1.13 (#27265) (#27317)

* Update .devcontainer.json name

* Added cofense-report-attachment-payload-list command

* Updated context example in report attachment payload list command

* Updated docker images in all YML files

* Updated release notes

---------

Co-authored-by: Crest Data Systems <[email protected]>
Co-authored-by: crestdatasystems <[email protected]>
Co-authored-by: michal-dagan <[email protected]>

* Associate "Action" indicator field to all indicator types (#27321)

* Associate "Action" field to all types

* RN

* fix execution metrics in scripts (#27214)

* Align credentials stores part 10 (#27221)

* Align credentials stores part 10

* SumoLogic

* Proofpoint Feed

* required change

* adding tests

* add fetch logs to nightly build fetch integrations (#27124)

* add fetch logs to nightly build fetch integrations

* fix QRadar tests

* update release notes and docker files

* fix expansev2

* rn

* fix logs

* fix flask8

* added date field to skip incident log

* resolve conflict

* Bump pack from version QRadar to 2.4.22.

---------

Co-authored-by: Content Bot <[email protected]>

* add fetch log part2 (#27196)

* cortexDataLake

* update docker

* GenericSQL logs

* update rn

* md-atp logs

* update docker

* adding time to skip incidents

* update docker

* AWS Feed - added support for IPv6 (#27141)

* AWS Feed - added support for IPv6

* added tests

* cr

* tests an rn

* validation

* rn

* cr

* di

* Bump sane-pdf-report docker image (#27318)

* Bump sane-pdf-report docker image

* Bump pack from version Base to 1.32.11.

---------

Co-authored-by: Content Bot <[email protected]>

* Fixed file name to be "indicatorfield" (#27342)

* fixed file name

* RN

* RN

* Update 3_3_74.md

* Update setup poetry step in pre-commit (#27224)

* update setup poetry

* use pip

* change Setup Poetry to use Gr1N

* change Setup Poetry to use Gr1N in pre commit

* adding root .editorconfig file. (#27280)

https://editorconfig.org/

* fixing unbound local variable on search dependencies (#27327)

* update readme file (#27356)

* Core rest api add xsoar hosted (#27355)

* bug fix

* RN update

---------

Co-authored-by: xsoar-bot <[email protected]>

* Updated pb to use cve command (#27341)

* MSGraphTeams fix path in the documentation (#27353)

* fix docs

* RN

* Fix common server python mypy (#27351)

* fixed a mypy issue

* added rn

* fix

* Marketplace doc-howto (#27349)

* Duo fields enhancement (#27308)

* Enhancement for modeling rules.

* added telephony modeling rule

* modified modeling rule

* modified shcema file.

* Added release notes.

* Added release notes.

* updated pack metadata release notes.

* Free enrichers tags - "Plug & Enrich" (#27320)

* "Plug & Enrich" tags and FreeEnrichers pack

* Added tags to approved list

* Updated and corrected the readme.

* Another small fix of a typo in readme

* Reverted accidentally removing pack name

* Better formatting

* Added "Free Enricher" to all "Plug & Fetch" enrichers

* ignore modeling/parsing rules suffix validate (#27373)

* Fix RTIR issue (#27360)

* fix type

* Add UTs for changed add_reply function

* add credential defaults, improve UT

---------

Co-authored-by: samuelFain <[email protected]>

* Added code for integration of events (#26519) (#27379)

* Added code for integration of events

* Code review Feedback

* changes in fetch incident

* PR Review change

* PR Review change

* changes in read me file

* Changed read me file based on the review

* Changes for playbook and intergration

* changes in the read me file

* PR changes

* changes in image and docker image

* change in services in alert

* changes for alert

* Changes in docker image

* Changes for docker image

* Update Packs/CybleThreatIntel/Integrations/CybleThreatIntel/CybleThreatIntel.yml



* Update Packs/CybleEventsV2/Integrations/CybleEventsV2/CybleEventsV2.yml



---------

Co-authored-by: cyble-dev <[email protected]>
Co-authored-by: RotemAmit <[email protected]>

* CSP - Added `Rank` class (new grid field) and `rank` to the Domain class (new grid field) (#27352)

* Added rank to domain

* RN

* Update CommonServerPython.py

* RN

* Splunk py raise timezone exception (#27316)

* SplunkPy - fix uninformative error message when missing timezone in mirroring

* Added RNs

* Updated readme

* CR updates

* Update Packs/SplunkPy/ReleaseNotes/3_0_20.md

Co-authored-by: yuvalbenshalom <[email protected]>

* Updated Docker Image

---------

Co-authored-by: yuvalbenshalom <[email protected]>

* qradar return error with traceback (#27229)

* Zscaler ZIA enhancement: Add IP Destination group commands (#27386)

* Zscaler ZIA enhancement: Add IP Destination group commands (#26447)

* ZIA Enhancement: IP destination group commands

* Included 3 new commands for Zscaler Integration as follows::
 - Added zscaler-list-ip-destination-groups
 - Added zscaler-create-ip-destination-groups
 - Added zscaler-edit-ip-destination-groups

---------

Co-authored-by: rootbid <[email protected]>

* ZIA Enhancement: IP destination group commands
* Included 2 new commands for Zscaler Integration as follows::
 - Added zscaler-list-ip-destination-groups-lite
 - Added zscaler-delete-ip-destination-groups

---------

Author: pallavi-garad <[email protected]>
Co-authored-by: rootbid <[email protected]>

* Minor updates and fixes

* Update and add documentation links for Zscaler ZIA

* Zscaler ZIA Enhancement - Update with requested changes

* Update .devcontainer.json name

* merge list-ip-destination-groups and lite command

* fixed minor issues

* update lite argument description

---------

Co-authored-by: rootbid <[email protected]>

* Update .devcontainer/devcontainer.json

Co-authored-by: Dan Tavori <[email protected]>

* Update as per review comments

- Fix exceptions
- Use CommandResults
- Refactor zscaler-list-ip-destination-groups and zscaler-edit-ip-destination-group commands
- Update release notes

* Regenerate README after updating Zscaler.yml and unit test bug fixes

* Resolve merge conflicts

* Fix type annotations and update docker image

* Update Packs/Zscaler/ReleaseNotes/1_3_10.md

Co-authored-by: Dan Tavori <[email protected]>

---------

Co-authored-by: Shambo Samanta <[email protected]>
Co-authored-by: rootbid <[email protected]>
Co-authored-by: pallavi-garad <[email protected]>
Co-authored-by: Dan Tavori <[email protected]>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

---------

Co-authored-by: Deepansh <[email protected]>
Co-authored-by: Shambo Samanta <[email protected]>
Co-authored-by: rootbid <[email protected]>
Co-authored-by: pallavi-garad <[email protected]>
Co-authored-by: Dan Tavori <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>

* XSIAM | ForcepointSWG Pack (#26706)

* XSIAM | ForcepointSWG Pack

* Added pack files

* Added pack-ignore and secrets-ignore

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* Updated ModelingRules

---------

Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: evisochek <[email protected]>

* AzureSentinel - keywords argument from 'comma separate' to 'str' in azure-sentinel-threat-indicator-query (#27380)

* keywords argument from comma separate to str in azure-sentinel-threat
-indicator-query command

* RN

* DO

* Update Packs/AzureSentinel/Integrations/AzureSentinel/README.md

Co-authored-by: dorschw <[email protected]>

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml

Co-authored-by: dorschw <[email protected]>

* Update Packs/AzureSentinel/ReleaseNotes/1_5_8.md

Co-authored-by: dorschw <[email protected]>

* under sources

* additional info for clarification

* Update Packs/AzureSentinel/Integrations/AzureSentinel/README.md

Co-authored-by: dorschw <[email protected]>

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml

Co-authored-by: dorschw <[email protected]>

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.yml

Co-authored-by: dorschw <[email protected]>

* validate yml

* validate yml

* revert and Dor's solution

* revert README

* Update Packs/AzureSentinel/Integrations/AzureSentinel/AzureSentinel.py

Co-authored-by: dorschw <[email protected]>

* add instance name for the TPB

---------

Co-authored-by: dorschw <[email protected]>

* Update Docker Image To demisto/py3-tools  (#27396)

* Updated Metadata Of Pack MailListener

* Added release notes to pack MailListener

* Packs/MailListener/Integrations/MailListenerV2/MailListenerV2.yml Docker image update

* Remove content items with toversion less than 6.5.0 (#27325)

* remove playbooks

* remove scripts

* remove integrations

* remove integrations

* remove README

* remove script/integration packs

* fix UT

* False

* Align credentials stores part 5 (#27126)

* Align credentials stores part 5

* adding IBM

* RL

* checking new docker image

* update

* docker to fix pre-commit

* fix docker

* update docker in rl

* add test req

* old docker

* rl

* docker

---------

Co-authored-by: ilan <[email protected]>

* Zscaler add reliability (#27197)

* Zscaler - add reliability parameter

* added RNs

* pre-commit hooks

* updated docker image

* Changed reliability to Reliability in outputs

* updated docker image

* updated RNs

* updated RNs

* hide EWS Pack (#27231)

* added hidden key

* removed ews from dependencies

* added ,

* added ,

* removed dependencies to EWS Mail Sender

* removed dependencies to EWS Mail Sender

* commented a line, to revert  after testing

* commented a line, to revert  after testing

* reverted commmenting

* added intergration

* Squid testdata (#26659)

* Update modeling rules

* Updated release notes.

* update release notes.

* new line after alter for the xdm mapping.

* Align credentials stores  part 14 (#27361)

* Align credentials stores for all Cortex Marketplace integrations- part 13

* fix pack

* remove ignore

* correct ignore

* added commands to read me

* [ASM] - Expander - Expander v2 Pack enhancements - batch 1 (#27398)

* [ASM] - Expander - Expander v2 Pack enhancements - batch 1 (#27006)

* initial additional of new Ev2 content

* adding playbook readmes

* layout update and release notes

* validation fixes

* widget validation and release notes style

* playbook validation errors

* Update incidenttype-Xpanse_Alert.json

fixed incident type playbook assignment

* validation issues

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment_README.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Handler.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update widget logic

* Update Widget logic

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

* update from_version

* Apply suggestions from code review

Co-authored-by: johnnywilkes <[email protected]>

* Apply suggestions from code review

Co-authored-by: johnnywilkes <[email protected]>

* Update Packs/CortexXpanse/IncidentTypes/incidenttype-Xpanse_Alert.json

Co-authored-by: johnnywilkes <[email protected]>

* back to 6.8 fromversion

* README enhancements

* Playbook cleanup

* README img fix

* Dashboard fix and incident type version validation fix

* README images

* release notes error

* release notes validation

---------

Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: johnnywilkes <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Handler.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/Playbooks/Xpanse_-_Alert_Self-Enrichment.yml

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/README.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

* Update Packs/CortexXpanse/ReleaseNotes/1_0_4.md

Co-authored-by: ShirleyDenkberg <[email protected]>

---------

Co-authored-by: Andrew Scott <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: johnnywilkes <[email protected]>
Co-authored-by: RotemAmit <[email protected]>

* Align credentials stores part 16 (#27367)

* XSIAM | Fix for Windows Events Modeling Rules (#27129)

* [VirusTotal] Fix error when optional parameter extended_data is not present in command calls (#27414)

* [VirusTotal] Fix error when optional parameter extended_data is not present in command calls (#27411)

* Fix error when optional parameter extended_data is not present in command calls

* release notes

* docker image update

* updated rn

---------

Co-authored-by: Daniel Pascual <[email protected]>
Co-authored-by: michal-dagan <[email protected]>

* ironPort modeling rules (#27133)

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* update modeling rules

* ignore rules suffix validate (#27397)

* added marketplaces to event collector yml (#27400)

* added marketplaces to event collector yml

* rn

* removed rn

* rn and docker

* Email ask user add using argument (#27401)

* Added the usingSender argument to enable using only one instance to send the email

* Release Notes, Metadata

* RM param, add generic fix

* Align credentials stores part 15 (#27364)

* Align credentials stores - part 15

* Akamai WAF

* docker

* adding an error

* revert irrelevant change

* revert irrelevant change

* update docker

* fix autodiscovery

* fix validations

* final changes

* validation fix

* add ut increase timeout

* increase timeout and test tpb

* add ut

* cr last fixes

* changed task ids for testing

* test tpb change

---------

Co-authored-by: tkatzir <[email protected]>
Co-authored-by: rshunim <[email protected]>
Co-authored-by: Guy Afik <[email protected]>
Co-authored-by: content-bot <[email protected]>
Co-authored-by: Dror Avrahami <[email protected]>
Co-authored-by: sberman <[email protected]>
Co-authored-by: Moshe Eichler <[email protected]>
Co-authored-by: Menachem Weinfeld <[email protected]>
Co-authored-by: eepstain <[email protected]>
Co-authored-by: darkushin <[email protected]>
Co-authored-by: Mai Morag <[email protected]>
Co-authored-by: dorschw <[email protected]>
Co-authored-by: Crest Data Systems <[email protected]>
Co-authored-by: crestdatasystems <[email protected]>
Co-authored-by: recordedfuture-simonhornestedt <109588368+recordedfuture-simonhornestedt@users.noreply.github.com>
Co-authored-by: michal-dagan <[email protected]>
Co-authored-by: israelpoli <[email protected]>
Co-authored-by: Brad Chiappetta <[email protected]>
Co-authored-by: johnnywilkes <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>
Co-authored-by: Yaakov Praisler <[email protected]>
Co-authored-by: Ben Melamed <[email protected]>
Co-authored-by: anas-yousef <[email protected]>
Co-authored-by: yasta5 <[email protected]>
Co-authored-by: grzegorzpapkala <[email protected]>
Co-authored-by: Content Bot <[email protected]>
Co-authored-by: Arad Carmi <[email protected]>
Co-authored-by: Suhasini <[email protected]>
Co-authored-by: Danny_Fried <[email protected]>
Co-authored-by: Michael Yochpaz <[email protected]>
Co-authored-by: Viktor Poltorak <[email protected]>
Co-authored-by: Fahad Yousuf <[email protected]>
Co-authored-by: Erez FelmanDar <[email protected]>
Co-authored-by: Edi Katsenelson <[email protected]>
Co-authored-by: Shmuel Kroizer <[email protected]>
Co-authored-by: shmuel44 <[email protected]>
Co-authored-by: samuelFain <[email protected]>
Co-authored-by: Koby Meir <[email protected]>
Co-authored-by: eli sharf <[email protected]>
Co-authored-by: jbabazadeh <[email protected]>
Co-authored-by: MLainer1 <[email protected]>
Co-authored-by: Liron Michalevich <[email protected]>
Co-authored-by: Adi Daud <[email protected]>
Co-authored-by: Dan Sterenson <[email protected]>
Co-authored-by: xsoar-bot <[email protected]>
Co-authored-by: merit-maita <[email protected]>
Co-authored-by: cyble-dev <[email protected]>
Co-authored-by: RotemAmit <[email protected]>
Co-authored-by: yuvalbenshalom <[email protected]>
Co-authored-by: ilaner <[email protected]>
Co-authored-by: Deepansh <[email protected]>
Co-authored-by: Shambo Samanta <[email protected]>
Co-authored-by: rootbid <[email protected]>
Co-authored-by: pallavi-garad <[email protected]>
Co-authored-by: Dan Tavori <[email protected]>
Co-authored-by: nkanon <[email protected]>
Co-authored-by: evisochek <[email protected]>
Co-authored-by: ilan <[email protected]>
Co-authored-by: Andrew Scott <[email protected]>
Co-authored-by: Daniel Pascual <[email protected]>
Co-authored-by: michal-dagan <[email protected]>
Co-authored-by: guytamir10 <[email protected]>
Co-authored-by: EyalPintzov <[email protected]>
Co-authored-by: Andrew Shamah <[email protected]>
Co-authored-by: yucohen <[email protected]>
tkatzir pushed a commit that referenced this pull request Dec 20, 2023
* Zscaler ZIA enhancement: Add IP Destination group commands (#26447)

* ZIA Enhancement: IP destination group commands

* Included 3 new commands for Zscaler Integration as follows::
 - Added zscaler-list-ip-destination-groups
 - Added zscaler-create-ip-destination-groups
 - Added zscaler-edit-ip-destination-groups

---------

Co-authored-by: rootbid <[email protected]>

* ZIA Enhancement: IP destination group commands
* Included 2 new commands for Zscaler Integration as follows::
 - Added zscaler-list-ip-destination-groups-lite
 - Added zscaler-delete-ip-destination-groups

---------

Author: pallavi-garad <[email protected]>
Co-authored-by: rootbid <[email protected]>

* Minor updates and fixes

* Update and add documentation links for Zscaler ZIA

* Zscaler ZIA Enhancement - Update with requested changes

* Update .devcontainer.json name

* merge list-ip-destination-groups and lite command

* fixed minor issues

* update lite argument description

---------

Co-authored-by: rootbid <[email protected]>

* Update .devcontainer/devcontainer.json

Co-authored-by: Dan Tavori <[email protected]>

* Update as per review comments

- Fix exceptions
- Use CommandResults
- Refactor zscaler-list-ip-destination-groups and zscaler-edit-ip-destination-group commands
- Update release notes

* Regenerate README after updating Zscaler.yml and unit test bug fixes

* Resolve merge conflicts

* Fix type annotations and update docker image

* Update Packs/Zscaler/ReleaseNotes/1_3_10.md

Co-authored-by: Dan Tavori <[email protected]>

---------

Co-authored-by: Shambo Samanta <[email protected]>
Co-authored-by: rootbid <[email protected]>
Co-authored-by: pallavi-garad <[email protected]>
Co-authored-by: Dan Tavori <[email protected]>

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <[email protected]>

---------

Co-authored-by: Deepansh <[email protected]>
Co-authored-by: Shambo Samanta <[email protected]>
Co-authored-by: rootbid <[email protected]>
Co-authored-by: pallavi-garad <[email protected]>
Co-authored-by: Dan Tavori <[email protected]>
Co-authored-by: ShirleyDenkberg <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Contribution Form Filled Whether contribution form filled or not. Contribution Thank you! Contributions are always welcome! docs-approved Partner
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants