search

elastic / kibana

Your window into the Elastic Stack
https://www.elastic.co/products/kibana
Other
19.64k stars 8.23k forks source link

[Security Solution] [Bug] Bulk actions show option to mark alerts as Open, Close and Acknowledged unaware of its state on the Attack Discovery tab #199425

Open muskangulati-qasource opened 6 days ago

muskangulati-qasource commented 6 days ago

Describe the bug Bulk actions show option to mark alerts as Open, Close and Acknowledged unaware of its state on the Attack Discovery tab

Kibana/Elasticsearch Stack version

VERSION: 8.16.0
BUILD: 79556
COMMIT: f02d1303b5230c357ac7e4c49c8adadd5f66af38

Pre condition

  1. Kibana 8.16.0 build should exist
  2. AI connector should be added
  3. Endpoint(s) should be installed and alerts must be generated

Steps

  1. Login to the kibana
  2. Navigate to Attack Discovery under Security
  3. Click on the 'Generate' button
  4. Once the generation is done, navigate to the alerts sub tab for the generation
  5. Select bulk alerts
  6. Click on 'Selected 'n' alerts' link
  7. Observe the options to mark test cases as Open, Close and Acknowledge as available irrespective of its state

Expected Result The bulk options should be consistent to what is available for individual alerts

Screenshot Image

elasticmachine commented 6 days ago

Pinging @elastic/security-solution (Team: SecuritySolution)

muskangulati-qasource commented 6 days ago

@amolnater-qasource please review!

amolnater-qasource commented 6 days ago

Reviewed & assigned to @MadameSheema