elastic / kibana

Your window into the Elastic Stack
https://www.elastic.co/products/kibana
Other
19.61k stars 8.22k forks source link

[Security Solution] Implement query filters diff algorithm #190241

Open jpdjere opened 2 months ago

jpdjere commented 2 months ago

Epics: https://github.com/elastic/security-team/issues/1974 (internal), https://github.com/elastic/kibana/issues/174168

Summary

Implement an algorithm for diffing and merging changes in the array of filters which is used in the query fields: kql_query, eql_query, and esql_query. The array is currently diffed using a simple diffing approach.

Context from the Rule Customization RFC:

To do

elasticmachine commented 2 months ago

Pinging @elastic/security-detections-response (Team:Detections and Resp)

elasticmachine commented 2 months ago

Pinging @elastic/security-solution (Team: SecuritySolution)

elasticmachine commented 2 months ago

Pinging @elastic/security-detection-rule-management (Team:Detection Rule Management)