Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Security Solution]Enhancement: Under show top total number of alerts is not displaying for Detection alerts. #148631

Closed
ghost opened this issue Jan 10, 2023 · 5 comments
Assignees
Labels
bug Fixes for quality problems that affect the customer experience enhancement New value added to drive a business result fixed QA:Validated Issue has been validated by QA Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. Team:Threat Hunting:Investigations Security Solution Investigations Team Team:Threat Hunting Security Solution Threat Hunting Team v8.7.0

Comments

@ghost
Copy link

ghost commented Jan 10, 2023

Describe the bug:
Enhancement: Under show top total number of alerts is not displaying for Detection alerts.

Build Details:

VERSION: 8.6.0-BC10
BUILD:  57217
COMMIT: 93852c98d9e9902fe166302fae10bc8c5f3502fb

Preconditions

  1. Kibana should be running.
  2. Alerts should be available.

Steps to Reproduce

  1. Navigate to Alerts tab.
  2. Now, click on view details on the selected alert.
  3. Go to highlighted fields on rule details page.
  4. Select host.name field and click on more action.
  5. Select show top option.
  6. Observe that under show top total number of alerts is not displaying for Detection alerts.

Screen-Recording:

Alerts.-.Kibana.-.Google.Chrome.2023-01-10.11-07-28.mp4

Suggestion:

  • Under show top total number of alerts should display for Detection alerts.
@ghost ghost added triage_needed enhancement New value added to drive a business result Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. v8.6.0 labels Jan 10, 2023
@ghost ghost self-assigned this Jan 10, 2023
@elasticmachine
Copy link
Contributor

Pinging @elastic/security-solution (Team: SecuritySolution)

@MadameSheema MadameSheema assigned michaelolo24 and unassigned ghost Jan 10, 2023
@MadameSheema MadameSheema added the Team:Threat Hunting Security Solution Threat Hunting Team label Jan 10, 2023
@elasticmachine
Copy link
Contributor

Pinging @elastic/security-threat-hunting (Team:Threat Hunting)

@MadameSheema MadameSheema added the Team:Threat Hunting:Investigations Security Solution Investigations Team label Jan 10, 2023
@michaelolo24 michaelolo24 added bug Fixes for quality problems that affect the customer experience v8.7.0 and removed triage_needed v8.6.0 labels Feb 23, 2023
michaelolo24 added a commit that referenced this issue Mar 6, 2023
## Summary

This PR includes minor fixes for the following items by commit

**[Timeline ui alignment fix]**
#149017 -
0128149
**[Saving empty eql query]**
#148950 -
b9715cb
**[Re-add alert count to top n]**
#148631 -
4c8d1e6
kibanamachine pushed a commit to kibanamachine/kibana that referenced this issue Mar 6, 2023
## Summary

This PR includes minor fixes for the following items by commit

**[Timeline ui alignment fix]**
elastic#149017 -
elastic@0128149
**[Saving empty eql query]**
elastic#148950 -
elastic@b9715cb
**[Re-add alert count to top n]**
elastic#148631 -
elastic@4c8d1e6

(cherry picked from commit 1f6de13)
@michaelolo24
Copy link
Contributor

@MadameSheema or @karanbirsingh-qasource - can you please help me verify this is fixed on the next BC? Thanks!

kibanamachine added a commit that referenced this issue Mar 7, 2023
…#152758)

# Backport

This will backport the following commits from `main` to `8.7`:
- [[Security Solution][Investigations] - 8.7 minor fixes
(#152284)](#152284)

<!--- Backport version: 8.9.7 -->

### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)

<!--BACKPORT [{"author":{"name":"Michael
Olorunnisola","email":"[email protected]"},"sourceCommit":{"committedDate":"2023-03-06T19:08:28Z","message":"[Security
Solution][Investigations] - 8.7 minor fixes (#152284)\n\n##
Summary\r\n\r\nThis PR includes minor fixes for the following items by
commit\r\n\r\n**[Timeline ui alignment
fix]**\r\nhttps://github.com//issues/149017
-\r\nhttps://github.com//pull/152284/commits/01281497dcad8f09f22db2c25155b586e02b2532\r\n**[Saving
empty eql query]**\r\nhttps://github.com//issues/148950**
-\r\nhttps://github.com//pull/152284/commits/b9715cb5e5d75fe12ed0af1672d22370cec9207d\r\n**[Re-add
alert count to top
n]**\r\nhttps://github.com//issues/148631
-\r\nhttps://github.com//pull/152284/commits/4c8d1e6021b37ad90bd34aa7cb25527a7a60cd21","sha":"1f6de13232dd1fbc6d1dcbd887ce66cdc0496544","branchLabelMapping":{"^v8.8.0$":"main","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["bug","release_note:skip","Team:Threat
Hunting","Team:Threat
Hunting:Investigations","v8.7.0","v8.8.0"],"number":152284,"url":"https://github.com/elastic/kibana/pull/152284","mergeCommit":{"message":"[Security
Solution][Investigations] - 8.7 minor fixes (#152284)\n\n##
Summary\r\n\r\nThis PR includes minor fixes for the following items by
commit\r\n\r\n**[Timeline ui alignment
fix]**\r\nhttps://github.com//issues/149017
-\r\nhttps://github.com//pull/152284/commits/01281497dcad8f09f22db2c25155b586e02b2532\r\n**[Saving
empty eql query]**\r\nhttps://github.com//issues/148950**
-\r\nhttps://github.com//pull/152284/commits/b9715cb5e5d75fe12ed0af1672d22370cec9207d\r\n**[Re-add
alert count to top
n]**\r\nhttps://github.com//issues/148631
-\r\nhttps://github.com//pull/152284/commits/4c8d1e6021b37ad90bd34aa7cb25527a7a60cd21","sha":"1f6de13232dd1fbc6d1dcbd887ce66cdc0496544"}},"sourceBranch":"main","suggestedTargetBranches":["8.7"],"targetPullRequestStates":[{"branch":"8.7","label":"v8.7.0","labelRegex":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v8.8.0","labelRegex":"^v8.8.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/152284","number":152284,"mergeCommit":{"message":"[Security
Solution][Investigations] - 8.7 minor fixes (#152284)\n\n##
Summary\r\n\r\nThis PR includes minor fixes for the following items by
commit\r\n\r\n**[Timeline ui alignment
fix]**\r\nhttps://github.com//issues/149017
-\r\nhttps://github.com//pull/152284/commits/01281497dcad8f09f22db2c25155b586e02b2532\r\n**[Saving
empty eql query]**\r\nhttps://github.com//issues/148950**
-\r\nhttps://github.com//pull/152284/commits/b9715cb5e5d75fe12ed0af1672d22370cec9207d\r\n**[Re-add
alert count to top
n]**\r\nhttps://github.com//issues/148631
-\r\nhttps://github.com//pull/152284/commits/4c8d1e6021b37ad90bd34aa7cb25527a7a60cd21","sha":"1f6de13232dd1fbc6d1dcbd887ce66cdc0496544"}}]}]
BACKPORT-->

Co-authored-by: Michael Olorunnisola <[email protected]>
@ghost
Copy link

ghost commented Mar 9, 2023

sure @michaelolo24 we will check on the next BC of 8.7.0 that will be BC5 as on BC4 the fix is not available.

image

bmorelli25 pushed a commit to bmorelli25/kibana that referenced this issue Mar 10, 2023
## Summary

This PR includes minor fixes for the following items by commit

**[Timeline ui alignment fix]**
elastic#149017 -
elastic@0128149
**[Saving empty eql query]**
elastic#148950 -
elastic@b9715cb
**[Re-add alert count to top n]**
elastic#148631 -
elastic@4c8d1e6
@ghost
Copy link

ghost commented Mar 13, 2023

Hi @michaelolo24

we have validated this issue on 8.7.0 BC5 and found the issue to be fixed ✔️ .

Build Details:

Version: 8.7.0 BC5
Commit: e70452f9697a18a8458f3d4618e001b7e3681bed
Build: 61017

Screen-Shoot

image

Hence we are closing this issue and adding "QA:Validated" tag to it.

thanks!!

@ghost ghost closed this as completed Mar 13, 2023
@ghost ghost added the QA:Validated Issue has been validated by QA label Mar 13, 2023
This issue was closed.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
bug Fixes for quality problems that affect the customer experience enhancement New value added to drive a business result fixed QA:Validated Issue has been validated by QA Team: SecuritySolution Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc. Team:Threat Hunting:Investigations Security Solution Investigations Team Team:Threat Hunting Security Solution Threat Hunting Team v8.7.0
Projects
None yet
Development

No branches or pull requests

3 participants