From 7c96fd4f9b0e6752fd3aa36167eb49ff13d6792c Mon Sep 17 00:00:00 2001
From: Paulo Silva <paulo.henrique@elastic.co>
Date: Mon, 4 Nov 2024 06:00:35 -0800
Subject: [PATCH] Reducing vulnerability runtime mappings (#198739)

## Summary

It closes https://github.com/elastic/security-team/issues/11034

This PR removes runtime mappings for vulnerabilities, since they will be
added on the third party integration on [this
PR](https://github.com/elastic/integrations/pull/11614) before the 8.16
release, we can remove the runtime mappings in Kibana in favour of not
compromising performance.

Co-authored-by: Maxim Kholod <maxim.kholod@elastic.co>
(cherry picked from commit 10d7926e3b2a943250d0ec2437c8d645486b84bd)
---
 .../cloud_security_posture/public/common/constants.ts     | 8 ++------
 1 file changed, 2 insertions(+), 6 deletions(-)

diff --git a/x-pack/plugins/cloud_security_posture/public/common/constants.ts b/x-pack/plugins/cloud_security_posture/public/common/constants.ts
index fab73eb153e69..ea3866cbe1256 100644
--- a/x-pack/plugins/cloud_security_posture/public/common/constants.ts
+++ b/x-pack/plugins/cloud_security_posture/public/common/constants.ts
@@ -263,9 +263,7 @@ The runtime mappings are used to prevent filtering out the data when any of thes
 TODO: Remove the fields below once they are mapped as Keyword in the Third Party integrations, or remove
 the fields from the runtime mappings if they are removed from the Data Table.
 */
-export const CDR_VULNERABILITY_DATA_TABLE_RUNTIME_MAPPING_FIELDS: string[] = [
-  VULNERABILITY_FIELDS.VENDOR,
-];
+export const CDR_VULNERABILITY_DATA_TABLE_RUNTIME_MAPPING_FIELDS: string[] = [];
 export const CDR_MISCONFIGURATION_DATA_TABLE_RUNTIME_MAPPING_FIELDS: string[] = [
   'rule.benchmark.rule_number',
   'rule.section',
@@ -279,9 +277,7 @@ to prevent filtering out the data when grouping by the key field.
 TODO: Remove the fields below once they are mapped as Keyword in the Third Party integrations, or remove
 the fields from the runtime mappings if they are removed from the Data Table.
 */
-export const CDR_VULNERABILITY_GROUPING_RUNTIME_MAPPING_FIELDS: Record<string, string[]> = {
-  [VULNERABILITY_GROUPING_OPTIONS.CLOUD_ACCOUNT_NAME]: [VULNERABILITY_FIELDS.CLOUD_PROVIDER],
-};
+export const CDR_VULNERABILITY_GROUPING_RUNTIME_MAPPING_FIELDS: Record<string, string[]> = {};
 export const CDR_MISCONFIGURATION_GROUPING_RUNTIME_MAPPING_FIELDS: Record<string, string[]> = {
   [FINDINGS_GROUPING_OPTIONS.ORCHESTRATOR_CLUSTER_NAME]: ['orchestrator.cluster.name'],
   [FINDINGS_GROUPING_OPTIONS.CLOUD_ACCOUNT_NAME]: ['cloud.account.name'],