Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

8.15.0 Release notes #5602

Merged
merged 28 commits into from
Aug 7, 2024
Merged

8.15.0 Release notes #5602

Show file tree
Hide file tree
Changes from 16 commits
Commits
Show all changes
28 commits
Select commit Hold shift + click to select a range
2b1cb89
First draft
nastasha-solomon Jul 24, 2024
c182d07
Fixed error
nastasha-solomon Jul 24, 2024
51452ce
ok, actually fixing it
nastasha-solomon Jul 24, 2024
44e2671
New features draft
nastasha-solomon Aug 1, 2024
a900421
Removes old content
nastasha-solomon Aug 1, 2024
86f4923
breaking changes and more NF sums
nastasha-solomon Aug 1, 2024
9f54075
Changes to all sections
nastasha-solomon Aug 2, 2024
00a7b39
light edits
benironside Aug 2, 2024
d837447
Removes 186284
nastasha-solomon Aug 3, 2024
5642425
Update docs/release-notes/8.15.asciidoc
nastasha-solomon Aug 5, 2024
bdd0174
Update docs/release-notes/8.15.asciidoc
nastasha-solomon Aug 5, 2024
6f64260
Update docs/release-notes/8.15.asciidoc
nastasha-solomon Aug 5, 2024
bf4d2f4
Update docs/release-notes/8.15.asciidoc
nastasha-solomon Aug 5, 2024
fe31ae1
Update docs/release-notes/8.15.asciidoc
nastasha-solomon Aug 5, 2024
fc88364
Update docs/release-notes/8.15.asciidoc
nastasha-solomon Aug 6, 2024
7bca366
Fixed headers
nastasha-solomon Aug 6, 2024
ed15f75
Adds more GenAI and EA PRs
nastasha-solomon Aug 6, 2024
e06babb
Incorporates Steph's and Pedro's reviews
benironside Aug 7, 2024
d77ed46
Apply suggestions from code review
benironside Aug 7, 2024
ab5633d
updates known issue
benironside Aug 7, 2024
9193ffa
TH issues and fixes known issue formatting
nastasha-solomon Aug 7, 2024
57ba1d5
Update docs/release-notes/8.15.asciidoc
nastasha-solomon Aug 7, 2024
48ac9ba
Update docs/release-notes/8.15.asciidoc
nastasha-solomon Aug 7, 2024
a937d47
Update docs/release-notes/8.15.asciidoc
nastasha-solomon Aug 7, 2024
0375d07
Update docs/release-notes/8.15.asciidoc
nastasha-solomon Aug 7, 2024
a641c83
Update docs/release-notes/8.15.asciidoc
nastasha-solomon Aug 7, 2024
deec92f
Apply suggestions from code review
benironside Aug 7, 2024
76c6bb6
Merge branch 'main' into rn-8.15
benironside Aug 7, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions docs/release-notes.asciidoc
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,7 @@

This section summarizes the changes in each release.

* <<release-notes-8.15.0, {elastic-sec} version 8.15.0>>
* <<release-notes-8.14.3, {elastic-sec} version 8.14.3>>
* <<release-notes-8.14.2, {elastic-sec} version 8.14.2>>
* <<release-notes-8.14.2, {elastic-sec} version 8.14.2>>
Expand Down Expand Up @@ -61,6 +62,7 @@ This section summarizes the changes in each release.
* <<release-notes-8.0.0, {elastic-sec} version 8.0.0>>
* <<release-notes-8.0.0-rc2, {elastic-sec} version 8.0.0-rc2>>

include::release-notes/8.15.asciidoc[]
include::release-notes/8.14.asciidoc[]
include::release-notes/8.13.asciidoc[]
include::release-notes/8.12.asciidoc[]
Expand Down
62 changes: 62 additions & 0 deletions docs/release-notes/8.15.asciidoc
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,62 @@
[[release-notes-header-8.15.0]]
== 8.15

[discrete]
[[release-notes-8.15.0]]
=== 8.15.0
nastasha-solomon marked this conversation as resolved.
Show resolved Hide resolved

[discrete]
[[breaking-changes-8.15.0]]
==== Breaking changes

* User-defined quick prompts for Elastic AI Assistant that were created before you upgrade to 8.15 will no longer appear after you upgrade. In 8.15, quick prompts will be shared by all users in your deployment, rather than stored at the user level. To implement your existing quick prompts in 8.15, copy them prior to upgrade, and add them again after upgrade ({kibana-pull}187040[#187040]).
benironside marked this conversation as resolved.
Show resolved Hide resolved

[discrete]
[[features-8.15.0]]
==== New features

* Adds the `scan` action to the response console, which allows you to scan a specific file or directory on a host for malware ({kibana-pull}184723[#184723]).
* Adds an {elastic-defend} integration policy option in Advanced Settings that allows you to opt out of registry event filtering ({kibana-pull}186564[#186564]).
* Allows you to specify additional file and registry paths to monitor for read access ({kibana-pull}181361[#181361]).
* Allows you to use {elastic-sec} to isolate and release hosts running a CrowdStrike agent ({kibana-pull}186801[#186801]).
nastasha-solomon marked this conversation as resolved.
Show resolved Hide resolved
* Allows you to retrieve files from SentinelOne-enrolled hosts ({kibana-pull}181162[#181162]).
* Allows you to create an event filter that excludes the descendant events of a specific process ({kibana-pull}184947[#184947]).
* Recalculates entity risk scores when asset criticality changes on an individual entity ({kibana-pull}182234[#182234]).
* Allows you to edit the `max_signals`, `related_integrations`, and `required_fields` fields for custom rules ({kibana-pull}179680[#179680], {kibana-pull}178295[#178295], {kibana-pull}180682[#180682]).
* Provides help from AI Assistant when you're correcting rule query errors ({kibana-pull}179091[#179091]).
* Allows you to bulk update custom highlighted fields for rules ({kibana-pull}179312[#179312]).
* Adds alert suppression for {ml} and {esql} rules ({kibana-pull}181926[#181926], {kibana-pull}180927[#180927]).
* Provides previews of hosts, users, and alerts that you're examining in the alert details flyout ({kibana-pull}186850[#186850], {kibana-pull}186857[#186857]).
* Adds an option for toggling row renderers on and off, and moves notes to a new flyout in Timeline ({kibana-pull}186948[#186948]).

[discrete]
[[enhancements-8.15.0]]
==== Enhancements

* Adds notifications to the connector dropdown menu on the **Attack discovery** page so you know when other connectors have new discoveries ({kibana-pull}186903[#186903], {kibana-pull}187209[#187209]).
benironside marked this conversation as resolved.
Show resolved Hide resolved
* Improves the output of discoveries generated with `GPT-4o` ({kibana-pull}187183[#187183]).
* Allows Attack discovery generation to continue when you navigate to another page ({kibana-pull}184949[#184949]).
benironside marked this conversation as resolved.
Show resolved Hide resolved
* Improves AI Assistant responses across multiple connectors and in multiple scenarios, for both streaming and non-streaming use cases ({kibana-pull}182041[#182041]).
* Updates the default Gemini version to `gemini-1.5-pro-001` and the default Bedrock version to `anthropic.claude-3-5-sonnet-20240620-v1:0` ({kibana-pull}186671[#186671]).
benironside marked this conversation as resolved.
Show resolved Hide resolved
* Introduces a new {elastic-endpoint} policy setting that allows you to control whether the kernel reports Windows network events that happened on a local loopback interface ({kibana-pull}181753[#181753]).
* Improves how failure messages for the `scan` action appear in the response console ({kibana-pull}186284[#186284]).
* Improves the risk engine's performance. Now, after you turn on the engine, risk data is available sooner ({kibana-pull}184797[#184797]).
* Enhances the risk engine's normalization accuracy ({kibana-pull}184638[#184638]).
* Updates the copy for bulk assigning asset criticality to multiple entities ({kibana-pull}181390[#181390]).
* Improves visual and logic issues in the Findings table ({kibana-pull}184185[#184185]).
* Enables the expandable alert details flyout by default and replaces the `securitySolution:enableExpandableFlyout` advanced setting with a feature flag that allows you to revert to the old version of the flyout ({kibana-pull}184169[#184169]).
nastasha-solomon marked this conversation as resolved.
Show resolved Hide resolved
* Updates the MITRE ATT&CK framework to version 15.1 ({kibana-pull}183463[#183463]).
* Improves the warning message about rule actions being unavailable after a rule ran ({kibana-pull}182741[#182741]).
* Enables the `xMatters` and `Server Log connectors` rule actions ({kibana-pull}172933[#172933]).

[discrete]
[[bug-fixes-8.15.0]]
==== Bug fixes

* Fixes a bug that prevented Timeline from properly retrieving results after upgrading to 8.14.1 ({kibana-pull}189031[#189031]).
* Removes the option to investigate suppressed alerts in Timeline when you're previewing alert details from a rule preview ({kibana-pull}188385[#188385]).
* Fixes the alignment of the page selector dropdown menu on the Shared Exception Lists page ({kibana-pull}187956[#187956]).
* Fixes a rule execution error that occured when {esql} rules queried source documents with non-ECS compliant sub-fields under the `event.action` field ({kibana-pull}187549[#187549]).
* Fixes a bug that caused the `Enable entity risk scoring` option to display even when you didn't have the correct requirements ({kibana-pull}183517[#183517]).
* Prevents `maxClauseCount` errors from occurring for indicator match rules ({kibana-pull}179748[#179748]).
* Fixes a bug that prevented threat intelligence fields from correctly rendering in the alert details flyout if they had flattened fields ({kibana-pull}179395[#179395]).