Merge branch 'main' into ilm/fix-node-allocation-field

.buildkite/pipelines/security_solution/security_solution_cypress.yml

@@ -1,96 +1,122 @@
 steps:
-  - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:explore
-    label: 'Serverless MKI QA Explore - Security Solution Cypress Tests'
+  - command: .buildkite/scripts/pipelines/security_solution_quality_gate/create_periodic_test_docker_image.sh
+    label: Build kibana image
+    key: build_image
     agents:
-      queue: n2-4-spot
-    # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
-    timeout_in_minutes: 300
-    parallelism: 4
+      queue: n2-16-spot
+    timeout_in_minutes: 60
     retry:
       automatic:
-        - exit_status: '*'
-          limit: 1
+        - exit_status: "-1"
+          limit: 3
 
-  - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:investigations
-    label: 'Serverless MKI QA Investigations - Security Solution Cypress Tests'
+  - command: .buildkite/scripts/pipelines/security_solution_quality_gate/upload_image_metadata.sh
+    label: "Upload runtime info"
+    key: upload_runtime_info
+    depends_on: build_image
     agents:
       queue: n2-4-spot
-    # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
     timeout_in_minutes: 300
-    parallelism: 8
     retry:
       automatic:
-        - exit_status: '*'
+        - exit_status: "*"
           limit: 1
 
-  - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:rule_management
-    label: 'Serverless MKI QA Rule Management - Security Solution Cypress Tests'
-    agents:
-      queue: n2-4-spot
-    # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
-    timeout_in_minutes: 300
-    parallelism: 8
-    retry:
-      automatic:
-        - exit_status: '*'
-          limit: 1
+  - group: "Execute Tests"
+    depends_on: build_image
+    steps:
+    # - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:explore
+    #   label: 'Serverless MKI QA Explore - Security Solution Cypress Tests'
+    #   agents:
+    #     queue: n2-4-spot
+    #   # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
+    #   timeout_in_minutes: 300
+    #   parallelism: 4
+    #   retry:
+    #     automatic:
+    #       - exit_status: '*'
+    #         limit: 1
 
-  - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:rule_management:prebuilt_rules
-    label: 'Serverless MKI QA Rule Management - Prebuilt Rules - Security Solution Cypress Tests'
-    agents:
-      queue: n2-4-spot
-    # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
-    timeout_in_minutes: 300
-    parallelism: 2
-    retry:
-      automatic:
-        - exit_status: '*'
-          limit: 1
+    # - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:investigations
+    #   label: 'Serverless MKI QA Investigations - Security Solution Cypress Tests'
+    #   agents:
+    #     queue: n2-4-spot
+    #   # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
+    #   timeout_in_minutes: 300
+    #   parallelism: 8
+    #   retry:
+    #     automatic:
+    #       - exit_status: '*'
+    #         limit: 1
 
-  - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:detection_engine
-    label: 'Serverless MKI QA Detection Engine - Security Solution Cypress Tests'
-    agents:
-      queue: n2-4-spot
-    # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
-    timeout_in_minutes: 300
-    parallelism: 8
-    retry:
-      automatic:
-        - exit_status: '*'
-          limit: 1
+    # - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:rule_management
+    #   label: 'Serverless MKI QA Rule Management - Security Solution Cypress Tests'
+    #   agents:
+    #     queue: n2-4-spot
+    #   # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
+    #   timeout_in_minutes: 300
+    #   parallelism: 8
+    #   retry:
+    #     automatic:
+    #       - exit_status: '*'
+    #         limit: 1
 
-  - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:detection_engine:exceptions
-    label: 'Serverless MKI QA Detection Engine - Exceptions - Security Solution Cypress Tests'
-    agents:
-      queue: n2-4-spot
-    # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
-    timeout_in_minutes: 300
-    parallelism: 6
-    retry:
-      automatic:
-        - exit_status: '*'
-          limit: 1
+    # - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:rule_management:prebuilt_rules
+    #   label: 'Serverless MKI QA Rule Management - Prebuilt Rules - Security Solution Cypress Tests'
+    #   agents:
+    #     queue: n2-4-spot
+    #   # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
+    #   timeout_in_minutes: 300
+    #   parallelism: 2
+    #   retry:
+    #     automatic:
+    #       - exit_status: '*'
+    #         limit: 1
 
-  - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:ai_assistant
-    label: 'Serverless MKI QA AI Assistant - Security Solution Cypress Tests'
-    agents:
-      queue: n2-4-spot
-    # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
-    timeout_in_minutes: 300
-    parallelism: 1
-    retry:
-      automatic:
-        - exit_status: '*'
-          limit: 1
+    # - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:detection_engine
+    #   label: 'Serverless MKI QA Detection Engine - Security Solution Cypress Tests'
+    #   agents:
+    #     queue: n2-4-spot
+    #   # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
+    #   timeout_in_minutes: 300
+    #   parallelism: 8
+    #   retry:
+    #     automatic:
+    #       - exit_status: '*'
+    #         limit: 1
 
-  - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:entity_analytics
-    label: 'Serverless MKI QA Entity Analytics - Security Solution Cypress Tests'
-    agents:
-      queue: n2-4-spot
-    # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
-    timeout_in_minutes: 300
-    parallelism: 2
-    retry:
-      automatic:
-        - exit_status: '*'
-          limit: 1
+    # - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:detection_engine:exceptions
+    #   label: 'Serverless MKI QA Detection Engine - Exceptions - Security Solution Cypress Tests'
+    #   agents:
+    #     queue: n2-4-spot
+    #   # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
+    #   timeout_in_minutes: 300
+    #   parallelism: 6
+    #   retry:
+    #     automatic:
+    #       - exit_status: '*'
+    #         limit: 1
+
+    - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:ai_assistant
+      label: 'Serverless MKI QA AI Assistant - Security Solution Cypress Tests'
+      agents:
+        queue: n2-4-spot
+      # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
+      timeout_in_minutes: 300
+      parallelism: 1
+      retry:
+        automatic:
+          - exit_status: '*'
+            limit: 1
+
+    # - command: .buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh cypress:run:qa:serverless:entity_analytics
+    #   label: 'Serverless MKI QA Entity Analytics - Security Solution Cypress Tests'
+    #   agents:
+    #     queue: n2-4-spot
+    #   # TODO : Revise the timeout when the pipeline will be officially integrated with the quality gate.
+    #   timeout_in_minutes: 300
+    #   parallelism: 2
+    #   retry:
+    #     automatic:
+    #       - exit_status: '*'
+    #         limit: 1

.buildkite/scripts/pipelines/security_solution_quality_gate/api-integration-tests.sh → .buildkite/scripts/pipelines/security_solution_quality_gate/api_integration/api-integration-tests.sh

@@ -15,15 +15,33 @@ cd x-pack/test/security_solution_api_integration
 set +e
 
 QA_API_KEY=$(vault_get security-solution-quality-gate qa_api_key)
+QA_CONSOLE_URL=$(vault_get security-solution-quality-gate qa_console_url)
 
 # Generate a random 5-digit number
 random_number=$((10000 + $RANDOM % 90000))
-ENVIRONMENT_DETAILS=$(curl --location 'https://global.qa.cld.elstc.co/api/v1/serverless/projects/security' \
+if [ -z "${KIBANA_MKI_USE_LATEST_COMMIT+x}" ] || [ "$KIBANA_MKI_USE_LATEST_COMMIT" = "0" ]; then
+  ENVIRONMENT_DETAILS=$(curl --location "$QA_CONSOLE_URL/api/v1/serverless/projects/security" \
     --header "Authorization: ApiKey $QA_API_KEY" \
     --header 'Content-Type: application/json' \
     --data '{
-        "name": "ftr-integration-tests-'$random_number'",
-        "region_id": "aws-eu-west-1"}' | jq '.')
+          "name": "ftr-integration-tests-'$random_number'",
+          "region_id": "aws-eu-west-1"}' | jq '.')
+else
+  KBN_COMMIT_HASH=${BUILDKITE_COMMIT:0:12}
+  ENVIRONMENT_DETAILS=$(curl --location "$QA_CONSOLE_URL/api/v1/serverless/projects/security" \
+    --header "Authorization: ApiKey $QA_API_KEY" \
+    --header 'Content-Type: application/json' \
+    --data '{
+          "name": "ftr-integration-tests-'$random_number'",
+          "region_id": "aws-eu-west-1",
+          "overrides": {
+            "kibana": {
+              "docker_image" : "docker.elastic.co/kibana-ci/kibana-serverless:sec-sol-qg-'$KBN_COMMIT_HASH'"
+              }
+            }
+          }' | jq '.')
+fi
+
 NAME=$(echo $ENVIRONMENT_DETAILS | jq -r '.name')
 ID=$(echo $ENVIRONMENT_DETAILS | jq -r '.id')
 ES_URL=$(echo $ENVIRONMENT_DETAILS | jq -r '.endpoints.elasticsearch')
@@ -33,7 +51,7 @@ KB_URL=$(echo $ENVIRONMENT_DETAILS | jq -r '.endpoints.kibana')
 sleep 5
 
 # Resetting the credentials of the elastic user in the project
-CREDS_BODY=$(curl -s --location --request POST "https://global.qa.cld.elstc.co/api/v1/serverless/projects/security/$ID/_reset-credentials" \
+CREDS_BODY=$(curl -s --location --request POST "$QA_CONSOLE_URL/api/v1/serverless/projects/security/$ID/_reset-credentials" \
   --header "Authorization: ApiKey $QA_API_KEY" \
   --header 'Content-Type: application/json' | jq '.')
 USERNAME=$(echo $CREDS_BODY | jq -r '.username')
@@ -76,7 +94,7 @@ TEST_CLOUD=1 TEST_ES_URL="https://elastic:$PASSWORD@$FORMATTED_ES_URL:443" TEST_
 cmd_status=$?
 echo "Exit code with status: $cmd_status"
 
-curl --location --request DELETE "https://global.qa.cld.elstc.co/api/v1/serverless/projects/security/$ID" \
+curl --location --request DELETE "$QA_CONSOLE_URL/api/v1/serverless/projects/security/$ID" \
   --header "Authorization: ApiKey $QA_API_KEY"
 
 exit $cmd_status

.buildkite/scripts/pipelines/security_solution_quality_gate/create_periodic_test_docker_image.sh

@@ -0,0 +1,83 @@
+#!/bin/bash
+if [ -z "${KIBANA_MKI_USE_LATEST_COMMIT+x}" ] || [ "$KIBANA_MKI_USE_LATEST_COMMIT" = "0" ]; then
+    echo "As we not testing against latest kibana image, this step is exiting with exit code 0"
+    exit 0
+fi
+
+
+.buildkite/scripts/bootstrap.sh
+
+source .buildkite/scripts/steps/artifacts/env.sh
+
+GIT_ABBREV_COMMIT=${BUILDKITE_COMMIT:0:12}
+KIBANA_IMAGE_TAG="sec-sol-qg-$GIT_ABBREV_COMMIT"
+
+
+KIBANA_BASE_IMAGE="docker.elastic.co/kibana-ci/kibana-serverless"
+export KIBANA_IMAGE="$KIBANA_BASE_IMAGE:$KIBANA_IMAGE_TAG"
+
+echo "--- Verify manifest does not already exist"
+echo "$KIBANA_DOCKER_PASSWORD" | docker login -u "$KIBANA_DOCKER_USERNAME" --password-stdin docker.elastic.co
+trap 'docker logout docker.elastic.co' EXIT
+
+echo "Checking manifest for $KIBANA_IMAGE"
+if docker manifest inspect $KIBANA_IMAGE &> /dev/null; then
+  echo "Manifest already exists, exiting"
+  exit 0
+fi
+
+docker pull $KIBANA_BASE_IMAGE:latest
+
+echo "--- Build images"
+node scripts/build \
+  --debug \
+  --release \
+  --docker-cross-compile \
+  --docker-images \
+  --docker-namespace="kibana-ci" \
+  --docker-tag="$KIBANA_IMAGE_TAG" \
+  --skip-docker-ubuntu \
+  --skip-docker-ubi \
+  --skip-docker-cloud \
+  --skip-docker-contexts \
+  --skip-cdn-assets
+
+echo "--- Tag images"
+docker rmi "$KIBANA_IMAGE"
+docker load < "target/kibana-serverless-$BASE_VERSION-docker-image.tar.gz"
+docker tag "$KIBANA_IMAGE" "$KIBANA_IMAGE-amd64"
+
+docker rmi "$KIBANA_IMAGE"
+docker load < "target/kibana-serverless-$BASE_VERSION-docker-image-aarch64.tar.gz"
+docker tag "$KIBANA_IMAGE" "$KIBANA_IMAGE-arm64"
+
+echo "--- Push images"
+docker image push "$KIBANA_IMAGE-arm64"
+docker image push "$KIBANA_IMAGE-amd64"
+
+echo "--- Create and push manifests"
+docker manifest create \
+  "$KIBANA_IMAGE" \
+  --amend "$KIBANA_IMAGE-arm64" \
+  --amend "$KIBANA_IMAGE-amd64"
+docker manifest push "$KIBANA_IMAGE"
+
+if [[ "$BUILDKITE_BRANCH" == "$KIBANA_BASE_BRANCH" ]] && [[ "${BUILDKITE_PULL_REQUEST:-false}" == "false" ]]; then
+  docker manifest create \
+    "$KIBANA_BASE_IMAGE:latest" \
+    --amend "$KIBANA_IMAGE-arm64" \
+    --amend "$KIBANA_IMAGE-amd64"
+  docker manifest push "$KIBANA_BASE_IMAGE:latest"
+fi
+
+docker logout docker.elastic.co
+
+cat << EOF | buildkite-agent annotate --style "info" --context image
+  ### Serverless Images
+
+  Manifest: \`$KIBANA_IMAGE\`
+
+  AMD64: \`$KIBANA_IMAGE-amd64\`
+
+  ARM64: \`$KIBANA_IMAGE-arm64\`
+EOF

.buildkite/scripts/pipelines/security_solution_quality_gate/security_solution_cypress/mki_security_solution_cypress.sh

@@ -22,7 +22,14 @@ vault_get security-quality-gate/role-users data -format=json > .ftr/role_users.j
 cd x-pack/test/security_solution_cypress
 set +e
 
+if [ -z "${KIBANA_MKI_USE_LATEST_COMMIT+x}" ] || [ "$KIBANA_MKI_USE_LATEST_COMMIT" = "0" ]; then
+    KIBANA_OVERRIDE_FLAG=0
+else
+    KIBANA_OVERRIDE_FLAG=1
+fi
+
 QA_API_KEY=$(vault_get security-solution-quality-gate qa_api_key)
+QA_CONSOLE_URL=$(vault_get security-solution-quality-gate qa_console_url)
 BK_ANALYTICS_API_KEY=$(vault_get security-solution-quality-gate serverless-sec-sol-cypress-bk-api-key)
 
-BK_ANALYTICS_API_KEY=$BK_ANALYTICS_API_KEY CLOUD_QA_API_KEY=$QA_API_KEY yarn $1; status=$?; yarn junit:merge || :; exit $status
+QA_CONSOLE_URL=$QA_CONSOLE_URL KIBANA_MKI_USE_LATEST_COMMIT=$KIBANA_OVERRIDE_FLAG BK_ANALYTICS_API_KEY=$BK_ANALYTICS_API_KEY CLOUD_QA_API_KEY=$QA_API_KEY yarn $1; status=$?; yarn junit:merge || :; exit $status

.buildkite/scripts/pipelines/security_solution_quality_gate/upload_image_metadata.sh

@@ -0,0 +1,27 @@
+#!/bin/bash
+echo "$KIBANA_DOCKER_PASSWORD" | docker login -u "$KIBANA_DOCKER_USERNAME" --password-stdin docker.elastic.co
+
+KIBANA_BASE_IMAGE="docker.elastic.co/kibana-ci/kibana-serverless"
+KIBANA_CURRENT_COMMIT=${KIBANA_BASE_IMAGE}:sec-sol-qg-${BUILDKITE_COMMIT:0:12}
+KIBANA_LATEST=${KIBANA_BASE_IMAGE}:latest
+
+if [ "$KIBANA_MKI_USE_LATEST_COMMIT" = "1" ]; then
+    KBN_IMAGE=${KIBANA_CURRENT_COMMIT}
+else
+    KBN_IMAGE=${KIBANA_LATEST}
+fi
+
+docker pull ${KBN_IMAGE}
+build_date=$(docker inspect ${KBN_IMAGE} | jq -r '.[0].Config.Labels."org.label-schema.build-date"')
+vcs_ref=$(docker inspect ${KBN_IMAGE} | jq -r '.[0].Config.Labels."org.label-schema.vcs-ref"')
+vcs_url=$(docker inspect ${KBN_IMAGE} | jq -r '.[0].Config.Labels."org.label-schema.vcs-url"')
+version=$(docker inspect ${KBN_IMAGE} | jq -r '.[0].Config.Labels."org.label-schema.version"')   
+
+markdown_text="""
+    # Kibana Container Metadata
+    - Build Date            : $build_date 
+    - Github Commit Hash    : $vcs_ref 
+    - Github Repo           : $vcs_url 
+    - Version               : $version
+"""
+echo "${markdown_text//[*\\_]/\\&}" | buildkite-agent annotate --style "info"

.github/CODEOWNERS

@@ -353,8 +353,8 @@ packages/kbn-docs-utils @elastic/kibana-operations
 packages/kbn-dom-drag-drop @elastic/kibana-visualizations @elastic/kibana-data-discovery
 packages/kbn-ebt-tools @elastic/kibana-core
 packages/kbn-ecs @elastic/kibana-core @elastic/security-threat-hunting-investigations
-x-pack/packages/security-solution/ecs_data_quality_dashboard @elastic/security-threat-hunting-investigations
-x-pack/plugins/ecs_data_quality_dashboard @elastic/security-threat-hunting-investigations
+x-pack/packages/security-solution/ecs_data_quality_dashboard @elastic/security-threat-hunting-explore
+x-pack/plugins/ecs_data_quality_dashboard @elastic/security-threat-hunting-explore
 packages/kbn-elastic-agent-utils @elastic/obs-ux-logs-team
 x-pack/packages/kbn-elastic-assistant @elastic/security-generative-ai
 x-pack/packages/kbn-elastic-assistant-common @elastic/security-generative-ai