Having multiple indicators in the platform, we can use filtering to isolate a group that we wish to analyze/vet for deployment. We want to use the "Detection" switch in the UI for this. However, in order to set this to "on"/true we need to visit each Indicator one at a time. We would like to be able to select multiple Indicators, and then use the "replace" action in the bulk update UI to set the Detection field to true or false (the x_opencti_detection field in the entity).
Current Workaround
Manually turn the "Detection" switch on in the UI for each Indicator, which is time consuming and tedious.
Proposed Solution
In the "replace" action for the bulk update form, allow Detection to be an option (with "Yes"/"No" or "True"/"False" values) that can be replaced with a bulk update on Indicator type entities.
If the feature request is approved, would you be willing to submit a PR?
Use case
Having multiple indicators in the platform, we can use filtering to isolate a group that we wish to analyze/vet for deployment. We want to use the "Detection" switch in the UI for this. However, in order to set this to "on"/
truewe need to visit each Indicator one at a time. We would like to be able to select multiple Indicators, and then use the "replace" action in the bulk update UI to set the Detection field totrueorfalse(thex_opencti_detectionfield in the entity).Current Workaround
Manually turn the "Detection" switch on in the UI for each Indicator, which is time consuming and tedious.
Proposed Solution
In the "replace" action for the bulk update form, allow Detection to be an option (with "Yes"/"No" or "True"/"False" values) that can be replaced with a bulk update on Indicator type entities.
If the feature request is approved, would you be willing to submit a PR?
Yes but it depends upon my available time