rarsan
commented
1 year ago Thanks for reporting this @tszebeni ! There's a fix in-flight for this as part of the larger PR #35 . That PR should be merged this week. Alternatively, feel free to submit a hotfix PR for this and I can review/approve promptly.
Appreciate your feedback and any other security use case you might be interested in.
Dear repo maintainers, while I was investigating the queries for log analytics, I found that there is an error in file: https://github.com/GoogleCloudPlatform/security-analytics/blob/4e139fe1ac21745dcf4cf9c0f942dedda0c83817/backends/log_analytics/sql/1_30_console_accesses.sql#L34 comma needs to be used instead of an OR, within parentheses of operator IN. That way the query succeeds, otherwise syntax error is given.